mám problém s Windows Update

jakubskorepa · Příspěvekod **jakubskorepa** » 26 pro 2008 12:35

uaaaaa pomoc! když chci spustit tu sluzbu co si psal tak to hodí tu samou chybu jako update... 80070437(už jí umím nazpaměť) na naky strance (co na pohled neni microsoftu) je napsano todle

0x80070437 -2147023817 Error_Different_Service_Account a u toho (nevim jestli to ma souvislost... toto)
BITS service has a dependency on lanmanworkstation service in BITS 1.0 and 1.2. If “Client for Microsoft networks” network component is uninstalled, then lanmanworkstation service is deleted, but BITS dependency will still be present. After that, BITS service fails to start

jinak tu samou chybu to píše i když chi ručně stáhnout a nainstalovat jednotlivý aktualizace...

radši to ještě opíšu:
Instalační program zjistil chybu: 0x80070437
Účet uvedený pro tuto službu je jiný, než účet uvedený dalšími službami běžícími v témž procesu. tak a je to... to mam jako projít všechny procesy a dát je na jeden účet? u některejch to ani nejde win update mi píše že potřebuje dvě další služby a stejnej účet u nich.. když si je najdu a zkonteroluju to má každá jinej účet a je to šedý takže to nejde změnit

Reklama

Příspěvekod **jaro3** » 26 pro 2008 14:46

Nejlepší by bylo opravit windows pomocí instalačního DVD s windows vista.Je dost poškozený.
Ještě zkus opravit ten Bits.
http://www.microsoft.com/downloads/deta ... 1496cd94a4
Zkus znovu nainstalovat (pomocí DVD s win vista) Client for Microsoft networks , píše to že je odinstalovány síť. komponenty.
Jinak mě zatím nic nenapadá.

jakubskorepa · Příspěvekod **jakubskorepa** » 26 pro 2008 15:43

jo zkusim to ale to cd sem k tomu nedostal prej to mam rovnou na HDD je tam (ve spravci pc) jeden odl kterej má asi 11,7GB prej je to tam ale hnevim jak se tam mam dostat....

píše to (ten program jak tam byl odkaz) že ta služba není vyžadovaná a případy kdy bude najdu na náký web stránce...

Příspěvekod **jaro3** » 26 pro 2008 16:15

Tak po konzultaci ještě vyzkoušíme , zdali tam ještě nezůstává nějaká nákaza, měls tam toho hodně a ComboFix Ti nešel..
Stáhni si RSIT (by random/random)
- spusť ho, objeví se ti okno, tak pro pokračování klikni na Continue
- počkej až program proběhne a zobrazí se ti log jinak ho najdeš zde: C:\rsit\log.txt zkopíruj sem prosím celý jeho obsah

Poté:
Download OTViewIt
http://oldtimer.geekstogo.com/OTViewIt.exe

to your desktop.
Close all windows and double click OTViewIt
Place a tick in the Scan all Users box
Click Run Scan and let the program run uninterrupted
On completion it will produce two logs on the Desktop, post the OTViewIt.txt and Extras.txt logs in your next post.
Ten log(tedy oba) sem dej také.

jakubskorepa · Příspěvekod **jakubskorepa** » 26 pro 2008 16:42

napoprvy se seknul tak\sem si otevrel prohlizec a pustil ho znova je to tam vidět...
Logfile of random's system information tool 1.05 (written by random/random)
Run by Skouřič at 2008-12-26 16:28:38
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 88 GB (39%) free of 226 GB
Total RAM: 1917 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:28:42, on 26.12.2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Creative\SBLive 24-Bit External\Volume Panel\VolPanlu.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\WindowsMobile\wmdSync.exe
c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
C:\Users\Skouřič\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skouřič\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skouřič\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skouřič\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skouřič\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skouřič\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skouřič\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skouřič\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skouřič\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Skouřič\Plocha\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Skouřič.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.atlas.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O1 - Hosts: ::1 localhost
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [COMODO SafeSurf] "C:\Program Files\COMODO\SafeSurf\cssurf.exe" -s
O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\COMODO\Firewall\cfp.exe" -h
O4 - HKLM\..\Run: [VolPanel] "C:\Program Files\Creative\SBLive 24-Bit External\Volume Panel\VolPanlu.exe" /r
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe
O4 - HKCU\..\Run: [StartCCC] c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6\ICQ.exe
O20 - AppInit_DLLs: C:\Windows\system32\guard32.dll C:\Windows\system32\cssdll32.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - Unknown owner - C:\Program Files\COMODO\Firewall\cmdagent.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: TeamViewer 3 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer3\TeamViewer_Host.exe
O23 - Service: Fujitsu Siemens Computers Diagnostic Testhandler (TestHandler) - Fujitsu Siemens Computers - C:\firststeps\OnlineDiagnostic\TestManager\TestHandler.exe

--
End of file - 5218 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskUser.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2008-12-25 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-12-25 34816]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2008-11-26 81000]
"COMODO SafeSurf"=C:\Program Files\COMODO\SafeSurf\cssurf.exe [2008-06-30 278264]
"COMODO Firewall Pro"=C:\Program Files\COMODO\Firewall\cfp.exe [2008-12-11 1797880]
"VolPanel"=C:\Program Files\Creative\SBLive 24-Bit External\Volume Panel\VolPanlu.exe [2007-02-28 180224]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2008-12-25 136600]
"Windows Mobile-based device management"=C:\Windows\WindowsMobile\wmdSync.exe [2006-11-02 215552]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
""= []
"StartCCC"=c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative SB Monitoring Utility]
RunDll32 sbavmon.dll []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Skouřič\AppData\Local\Google\Update\GoogleUpdate.exe [2008-08-30 133104]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2008-01-18 1008184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"=" C:\Windows\system32\guard32.dll C:\Windows\system32\cssdll32.dll"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======List of files/folders created in the last 1 months======

2008-12-26 16:21:57 ----D---- C:\rsit
2008-12-25 20:45:47 ----A---- C:\Windows\system32\javaws.exe
2008-12-25 20:45:47 ----A---- C:\Windows\system32\javaw.exe
2008-12-25 20:45:47 ----A---- C:\Windows\system32\java.exe
2008-12-25 20:45:47 ----A---- C:\Windows\system32\deploytk.dll
2008-12-25 01:01:10 ----D---- C:\32788R22FWJFW
2008-12-25 00:58:58 ----A---- C:\Windows\ntbtlog.txt
2008-12-24 22:09:06 ----D---- C:\Program Files\Microsoft Silverlight
2008-12-24 20:26:34 ----D---- C:\Program Files\RegCleaner
2008-12-24 20:26:16 ----D---- C:\Program Files\CCleaner
2008-12-24 10:53:16 ----D---- C:\Users\Skouřič\AppData\Roaming\Malwarebytes
2008-12-24 10:53:08 ----D---- C:\ProgramData\Malwarebytes
2008-12-24 10:53:07 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-12-24 02:18:47 ----D---- C:\Program Files\Trend Micro
2008-12-24 00:14:38 ----D---- C:\Program Files\AudioCommander
2008-12-24 00:04:28 ----D---- C:\Program Files\AVTJet Studio
2008-12-23 23:02:43 ----N---- C:\Windows\UniFISH.exe
2008-12-23 11:39:48 ----SH---- C:\Windows\system32\pdlqxdyd.ini
2008-12-23 11:38:35 ----SH---- C:\Windows\system32\rfannumg.ini
2008-12-22 12:09:07 ----D---- C:\Users\Skouřič\AppData\Roaming\uTorrent
2008-12-22 12:09:06 ----D---- C:\Program Files\uTorrent
2008-12-18 15:02:15 ----ASH---- C:\Windows\system32\fmkxcpql.ini
2008-12-17 20:46:33 ----D---- C:\ProgramData\WindowsSearch
2008-12-17 08:41:51 ----SH---- C:\Windows\system32\xuggkwxn.ini
2008-12-16 18:53:28 ----SH---- C:\Windows\system32\lbeeftdq.ini
2008-12-15 20:12:07 ----SH---- C:\Windows\system32\hhrgqhar.ini
2008-12-15 12:57:45 ----SH---- C:\Windows\system32\fdxuxmon.ini
2008-12-14 10:07:03 ----SH---- C:\Windows\system32\vyaeketv.ini
2008-12-13 18:12:28 ----SH---- C:\Windows\system32\wttwgwys.ini
2008-12-13 09:19:37 ----SH---- C:\Windows\system32\upobnvjx.ini
2008-12-12 20:17:07 ----D---- C:\Program Files\7-Zip
2008-12-12 19:19:28 ----SH---- C:\Windows\system32\qjrxxhyo.ini
2008-12-11 17:53:56 ----A---- C:\Windows\system32\tzres.dll
2008-12-11 14:27:38 ----A---- C:\Windows\system32\mf.dll
2008-12-11 14:27:37 ----A---- C:\Windows\system32\WMVCORE.DLL
2008-12-11 14:27:35 ----A---- C:\Windows\system32\WMNetMgr.dll
2008-12-11 14:27:35 ----A---- C:\Windows\system32\logagent.exe
2008-12-11 14:27:17 ----A---- C:\Windows\system32\shell32.dll
2008-12-11 14:26:57 ----A---- C:\Windows\system32\Apphlpdm.dll
2008-12-11 14:26:54 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2008-12-11 14:26:11 ----A---- C:\Windows\system32\gdi32.dll
2008-12-11 14:25:58 ----A---- C:\Windows\system32\mshtml.dll
2008-12-11 14:25:55 ----A---- C:\Windows\system32\urlmon.dll
2008-12-11 14:25:54 ----A---- C:\Windows\system32\ieframe.dll
2008-12-11 14:25:51 ----A---- C:\Windows\system32\wininet.dll
2008-12-11 14:25:48 ----A---- C:\Windows\system32\mstime.dll
2008-12-11 14:25:44 ----A---- C:\Windows\system32\iertutil.dll
2008-12-11 14:25:38 ----A---- C:\Windows\system32\jsproxy.dll
2008-12-10 21:00:10 ----SH---- C:\Windows\system32\jdeiuwsl.ini
2008-12-10 20:51:57 ----SH---- C:\Windows\system32\bvlbtknx.ini
2008-12-10 17:46:48 ----SH---- C:\Windows\system32\vrekijke.ini
2008-12-10 10:53:12 ----A---- C:\Windows\system32\c7124d0f-.txt
2008-11-30 21:13:15 ----D---- C:\Program Files\GIF Movie Gear
2008-11-28 12:28:02 ----A---- C:\Users\Skouřič\AppData\Roaming\inst.exe

======List of files/folders modified in the last 1 months======

2008-12-26 16:28:41 ----D---- C:\Windows\Temp
2008-12-26 16:22:06 ----D---- C:\Windows\Prefetch
2008-12-26 15:50:38 ----D---- C:\Windows
2008-12-26 15:39:01 ----D---- C:\Program Files\Mozilla Firefox
2008-12-26 15:28:57 ----D---- C:\Windows\System32
2008-12-26 15:28:57 ----D---- C:\Windows\inf
2008-12-26 15:28:57 ----A---- C:\Windows\system32\PerfStringBackup.INI
2008-12-26 15:25:06 ----D---- C:\Windows\system32\drivers
2008-12-26 12:27:04 ----D---- C:\Windows\winsxs
2008-12-26 12:16:30 ----D---- C:\Windows\system32\catroot
2008-12-26 12:11:18 ----SHD---- C:\System Volume Information
2008-12-26 02:29:46 ----D---- C:\Users\Skouřič\AppData\Roaming\OpenOffice.org2
2008-12-26 00:14:38 ----A---- C:\Windows\NeroDigital.ini
2008-12-25 23:35:07 ----A---- C:\Windows\avisplitter.INI
2008-12-25 22:23:59 ----D---- C:\Windows\WindowsMobile
2008-12-25 21:15:16 ----SHD---- C:\Windows\Installer
2008-12-25 21:15:03 ----D---- C:\Program Files\Common Files
2008-12-25 20:45:24 ----D---- C:\Program Files\Java
2008-12-24 22:09:06 ----RD---- C:\Program Files
2008-12-24 21:10:58 ----HD---- C:\ProgramData
2008-12-24 20:44:39 ----HD---- C:\Program Files\InstallShield Installation Information
2008-12-24 20:43:21 ----D---- C:\Program Files\Free Window Registry Repair
2008-12-24 20:36:18 ----D---- C:\Windows\Debug
2008-12-24 19:41:46 ----D---- C:\Install
2008-12-24 00:32:33 ----A---- C:\Windows\CTWave32.ini
2008-12-24 00:27:50 ----A---- C:\Windows\sbwin.ini
2008-12-24 00:27:30 ----D---- C:\Users\Skouřič\AppData\Roaming\Smart Recorder
2008-12-23 12:24:15 ----D---- C:\Windows\system32\Tasks
2008-12-23 12:03:22 ----D---- C:\Windows\system32\catroot2
2008-12-23 11:02:15 ----D---- C:\Windows\system32\Msdtc
2008-12-23 11:02:11 ----D---- C:\Windows\system32\wbem
2008-12-23 11:01:30 ----D---- C:\Windows\system32\config
2008-12-23 11:01:09 ----D---- C:\Windows\Tasks
2008-12-23 11:01:09 ----D---- C:\Windows\system32\spool
2008-12-23 11:01:06 ----D---- C:\Windows\system32\CodeIntegrity
2008-12-23 11:01:03 ----D---- C:\ProgramData\Tablet
2008-12-23 11:00:33 ----D---- C:\Windows\registration
2008-12-23 10:52:33 ----D---- C:\Windows\Logs
2008-12-13 18:02:48 ----D---- C:\Windows\rescache
2008-12-13 00:03:41 ----D---- C:\Windows\system32\cs-CZ
2008-12-12 20:33:53 ----RD---- C:\Users
2008-12-11 22:34:11 ----D---- C:\Windows\Minidump
2008-12-11 22:27:54 ----D---- C:\Program Files\Microsoft Works
2008-12-11 17:57:31 ----D---- C:\Program Files\Windows Mail
2008-12-11 17:57:30 ----D---- C:\Windows\AppPatch
2008-12-11 13:58:39 ----A---- C:\Windows\system32\guard32.dll
2008-12-10 21:06:32 ----D---- C:\Users\Skouřič\AppData\Roaming\ICQ
2008-12-10 10:44:51 ----D---- C:\Users\Skouřič\AppData\Roaming\SecondLife
2008-12-10 10:44:50 ----D---- C:\Users\Skouřič\AppData\Roaming\Nvu
2008-12-10 10:44:44 ----D---- C:\Users\Skouřič\AppData\Roaming\GHISLER
2008-12-10 10:44:44 ----D---- C:\Users\Skouřič\AppData\Roaming\geoget
2008-12-10 10:44:44 ----D---- C:\Users\Skouřič\AppData\Roaming\Desktopicon
2008-12-10 10:44:44 ----D---- C:\Users\Skouřič\AppData\Roaming\DAEMON Tools
2008-12-10 10:44:40 ----D---- C:\Users\Skouřič\AppData\Roaming\Anvil Studio
2008-12-10 10:44:25 ----D---- C:\CAPSCAN
2008-12-10 00:24:37 ----A---- C:\Windows\system32\mrt.exe
2008-12-08 19:52:03 ----D---- C:\totalcmd
2008-12-07 20:11:53 ----D---- C:\Games
2008-11-28 12:28:06 ----D---- C:\Program Files\DVDFab 5
2008-11-28 12:28:03 ----D---- C:\Users\Skouřič\AppData\Roaming\Vso
2008-11-28 12:27:17 ----D---- C:\Program Files\Nvu

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2008-11-26 23152]
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2008-11-26 111184]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2008-11-26 50864]
R1 cmdGuard;COMODO Firewall Pro Sandbox Driver; C:\Windows\System32\DRIVERS\cmdguard.sys [2008-12-11 99344]
R1 cmdHlp;COMODO Firewall Pro Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2008-11-26 25104]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2008-11-26 20560]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2008-11-26 51792]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2008-05-07 767488]
R3 CmBatt;Ovladač baterie Microsoft ACPI Control Method Battery; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-18 14208]
R3 Inspect;Comodo Firewall Network Driver; C:\Windows\system32\DRIVERS\inspect.sys [2008-11-01 72720]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-04-10 1764960]
R3 ksaud;Creative USB Audio Driver; C:\Windows\system32\drivers\ksaud.sys [2007-05-19 400896]
R3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-02-02 2385920]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-01-15 70144]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2006-11-22 982272]
S1 aiptektp;Pen Pad; C:\Windows\system32\DRIVERS\aiptektp.sys [2006-06-06 22528]
S3 Dot4;Ovladač MS IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-18 131584]
S3 Dot4Print;Ovladač třídy tiskárny standardu IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-18 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-18 36864]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-18 5632]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-18 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-18 5888]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-18 5504]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-18 6016]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2008-01-18 15872]
S3 usbaudio;Ovladač zvuků USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2008-01-18 73088]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-18 35328]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-18 83328]
S4 iaStor;Intel RAID Controller; C:\Windows\system32\drivers\iastor.sys [2007-07-12 305176]
S4 JRAID;JRAID; C:\Windows\system32\drivers\jraid.sys [2007-06-13 48256]
S4 nvrd32;NVIDIA nForce RAID Driver; C:\Windows\system32\drivers\nvrd32.sys [2007-07-02 131616]
S4 nvstor32;nvstor32; C:\Windows\system32\drivers\nvstor32.sys [2007-07-02 110112]
S4 viamraid;viamraid; C:\Windows\system32\drivers\viamraid.sys [2006-11-08 102912]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2008-11-26 18752]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2007-02-02 565248]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2008-11-26 155160]
R2 CISVC;@%systemroot%\system32\CISVC.EXE,-1; C:\Windows\system32\CISVC.EXE [2008-01-18 11264]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\Firewall\cmdagent.exe [2008-12-11 618232]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [2007-04-19 303104]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-18 21504]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-18 21504]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2008-01-18 21504]
R2 simptcp;@%SystemRoot%\system32\simptcp.dll,-200; C:\Windows\System32\tcpsvcs.exe [2006-11-02 9728]
R2 TeamViewer;TeamViewer 3; C:\Program Files\TeamViewer3\TeamViewer_Host.exe [2008-06-20 181544]
R2 TestHandler;Fujitsu Siemens Computers Diagnostic Testhandler; C:\firststeps\OnlineDiagnostic\TestManager\TestHandler.exe [2006-12-08 204800]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2008-01-18 21504]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2008-11-26 254040]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2008-11-26 352920]
S3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-18 21504]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-02-26 267824]

-----------------EOF-----------------

jakubskorepa · Příspěvekod **jakubskorepa** » 26 pro 2008 16:44

tady je ten druhej ale hodilo to 2 logy tak davam ten s nazvem toho programu

OTViewIt logfile created on: 26.12.2008 16:34:04 - Run
OTViewIt by OldTimer - Version 1.0.20.1 Folder = C:\Users\Skouřič\Plocha
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1,87 Gb Total Physical Memory | 1,06 Gb Available Physical Memory | 56,69% Memory free
3,99 Gb Paging File | 2,88 Gb Available in Paging File | 72,15% Paging File free
Paging file location(s): c:\pagefile.sys 0 0;

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 221,17 Gb Total Space | 85,88 Gb Free Space | 38,83% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: NOTEBOOK
Current User Name: Skouřič
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Whitelist: On
File Age = 30 Days

========== Processes ==========

[2008.01.18 22:33:38 | 00,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininit.exe
[2008.01.18 22:33:16 | 00,229,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsm.exe
[2007.02.02 14:59:54 | 00,565,248 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\System32\Ati2evxx.exe
[2008.01.18 22:33:24 | 02,623,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLsvc.exe
[2007.02.02 14:59:54 | 00,565,248 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\System32\Ati2evxx.exe
[2008.11.26 18:12:08 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
[2008.11.26 18:18:46 | 00,155,160 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
[2008.12.11 13:58:07 | 00,618,232 | ---- | M] () -- C:\Program Files\COMODO\Firewall\cmdagent.exe
[2006.11.02 10:45:49 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TCPSVCS.EXE
[2008.06.20 12:14:44 | 00,181,544 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer3\TeamViewer_Host.exe
[2006.12.08 10:52:04 | 00,204,800 | ---- | M] (Fujitsu Siemens Computers) -- C:\FirstSteps\OnlineDiagnostic\TestManager\TestHandler.exe
[2008.05.27 06:18:43 | 00,439,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchIndexer.exe
[2008.01.18 22:33:34 | 00,169,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskeng.exe
[2007.04.19 06:36:32 | 00,303,104 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe
[2008.01.18 22:33:40 | 00,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
[2008.01.18 22:33:40 | 00,245,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiPrvSE.exe
[2008.01.18 22:33:34 | 00,169,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskeng.exe
[2008.01.18 22:33:10 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwm.exe
[2008.11.26 18:18:51 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
[2007.02.28 16:50:50 | 00,180,224 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\SBLive 24-Bit External\Volume Panel\VolPanlu.exe
[2008.12.25 20:45:30 | 00,136,600 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
[2006.11.02 00:46:00 | 00,215,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\WindowsMobile\wmdSync.exe
[2006.09.29 09:57:30 | 00,049,152 | ---- | M] (ATI Technologies Inc.) -- c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
[2008.01.18 22:33:40 | 00,202,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnscfg.exe
[2008.01.18 22:33:34 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\unsecapp.exe
[2006.09.29 09:57:36 | 00,049,152 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
[2008.01.18 22:33:14 | 00,198,656 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
[2008.01.18 22:33:40 | 00,245,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiPrvSE.exe
[2008.05.27 06:18:16 | 00,184,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchProtocolHost.exe
[2008.05.27 06:17:55 | 00,087,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchFilterHost.exe
[2008.12.26 16:20:41 | 00,423,424 | ---- | M] (OldTimer Tools) -- C:\Users\Skouřič\Plocha\OTViewIt.exe

========== (O23) Win32 Services ==========

[2008.11.26 18:12:08 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running])
[2007.02.02 14:59:54 | 00,565,248 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\System32\Ati2evxx.exe -- (Ati External Event Utility [Auto | Running])
[2008.11.26 18:18:46 | 00,155,160 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running])
[2008.11.26 18:18:32 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner [On_Demand | Stopped])
[2008.11.26 18:16:23 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Stopped])
File not found -- -- (CertPropSvc [Unknown | Running])
[2008.01.05 02:26:42 | 00,070,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
[2008.12.11 13:58:07 | 00,618,232 | ---- | M] () -- C:\Program Files\COMODO\Firewall\cmdagent.exe -- (cmdAgent [Auto | Running])
[2007.04.19 06:36:32 | 00,303,104 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService [Auto | Running])
File not found -- -- (DcomLaunch [Unknown | Running])
[2008.01.18 22:33:08 | 02,091,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dfsr.exe -- (DFSR [On_Demand | Stopped])
[2008.01.18 22:34:08 | 00,134,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dps.dll -- (DPS [Unknown | Running])
[2008.01.18 22:33:10 | 00,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehrecvr.exe -- (ehRecvr [On_Demand | Stopped])
[2006.11.02 13:35:29 | 00,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehsched.exe -- (ehSched [On_Demand | Stopped])
[2008.01.05 02:21:54 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
[2008.01.18 22:34:26 | 00,574,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpsvc.dll -- (gpsvc [Unknown | Running])
[2008.12.23 11:02:15 | 00,000,000 | ---D | M] -- C:\Windows\System32\Msdtc -- (MSDTC [Unknown | Stopped])
[2008.01.05 02:21:40 | 00,122,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
[2007.02.26 19:16:22 | 00,267,824 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService [On_Demand | Stopped])
[2008.01.18 22:36:20 | 00,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SCardSvr.dll -- (SCardSvr [Unknown | Stopped])
File not found -- -- (Schedule [Unknown | Running])
File not found -- -- (SCPolicySvc [Unknown | Stopped])
[2006.11.02 10:45:49 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TCPSVCS.EXE -- (simptcp [Auto | Running])
[2008.01.18 22:33:24 | 02,623,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLsvc.exe -- (slsvc [Auto | Running])
[2006.11.02 10:45:46 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\snmptrap.exe -- (SNMPTRAP [On_Demand | Stopped])
[2008.06.20 12:14:44 | 00,181,544 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer3\TeamViewer_Host.exe -- (TeamViewer [Auto | Running])
[2006.12.08 10:52:04 | 00,204,800 | ---- | M] (Fujitsu Siemens Computers) -- C:\FirstSteps\OnlineDiagnostic\TestManager\TestHandler.exe -- (TestHandler [Auto | Running])
[2008.01.18 22:33:34 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UI0Detect.exe -- (UI0Detect [On_Demand | Stopped])
[2008.01.18 22:33:34 | 00,382,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vds.exe -- (vds [On_Demand | Stopped])
File not found -- -- (WdiServiceHost [Unknown | Stopped])
File not found -- -- (WdiSystemHost [Unknown | Running])
[2008.01.18 22:33:40 | 00,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc [Auto | Running])
[2008.05.27 06:18:43 | 00,439,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchIndexer.exe -- (WSearch [Auto | Running])

========== Driver Services ==========

[2006.11.02 10:51:38 | 00,420,968 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\adp94xx.sys -- (adp94xx [Disabled | Stopped])
[2006.11.02 10:51:32 | 00,297,576 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\adpahci.sys -- (adpahci [Disabled | Stopped])
[2006.11.02 10:50:35 | 00,098,408 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\adpu160m.sys -- (adpu160m [Disabled | Stopped])
[2006.11.02 10:51:00 | 00,147,048 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\adpu320.sys -- (adpu320 [Disabled | Stopped])
[2006.11.02 10:50:11 | 00,071,272 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\djsvs.sys -- (aic78xx [Disabled | Stopped])
[2006.06.06 08:51:06 | 00,022,528 | ---- | M] (WALTOP International Corp.) -- C:\Windows\System32\drivers\aiptektp.sys -- (aiptektp [System | Stopped])
[2006.11.02 10:49:20 | 00,014,952 | ---- | M] (Acer Laboratories Inc.) -- C:\Windows\System32\drivers\aliide.sys -- (aliide [Disabled | Stopped])
[2006.11.02 10:49:59 | 00,054,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\AMDAGP.SYS -- (amdagp [On_Demand | Stopped])
[2006.11.02 10:49:26 | 00,015,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\amdide.sys -- (amdide [Disabled | Stopped])
[2006.11.02 09:30:18 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\amdk7.sys -- (AmdK7 [Disabled | Stopped])
[2008.01.18 20:27:22 | 00,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\amdk8.sys -- (AmdK8 [On_Demand | Running])
[2006.11.02 10:50:09 | 00,067,688 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\arc.sys -- (arc [Disabled | Stopped])
[2006.11.02 10:50:10 | 00,067,688 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\arcsas.sys -- (arcsas [Disabled | Stopped])
[2008.11.26 18:17:25 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk [Auto | Running])
[2008.11.26 18:17:15 | 00,051,792 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt [Auto | Running])
[2008.11.26 18:16:29 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr [System | Running])
[2008.11.26 18:17:36 | 00,111,184 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP [System | Running])
[2008.11.26 18:16:38 | 00,050,864 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi [System | Running])
[2008.05.07 08:55:22 | 00,767,488 | ---- | M] (Atheros Communications, Inc.) -- C:\Windows\System32\drivers\athr.sys -- (athr [On_Demand | Running])
[2008.01.18 20:28:28 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\bowser.sys -- (bowser [On_Demand | Running])
[2006.11.02 09:24:45 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\System32\drivers\BrFiltLo.sys -- (BrFiltLo [On_Demand | Stopped])
[2006.11.02 09:24:46 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\System32\drivers\BrFiltUp.sys -- (BrFiltUp [On_Demand | Stopped])
[2006.11.02 09:25:24 | 00,071,808 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\BrSerId.sys -- (Brserid [Disabled | Stopped])
[2006.11.02 09:24:44 | 00,062,336 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\BrSerWdm.sys -- (BrSerWdm [Disabled | Stopped])
[2006.11.02 09:24:44 | 00,012,160 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\BrUsbMdm.sys -- (BrUsbMdm [Disabled | Stopped])
[2006.11.02 09:24:47 | 00,011,904 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\BrUsbSer.sys -- (BrUsbSer [On_Demand | Stopped])
[2006.11.02 09:55:23 | 00,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\bthmodem.sys -- (BTHMODEM [Disabled | Stopped])
[2006.11.02 09:55:08 | 00,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\circlass.sys -- (circlass [Disabled | Stopped])
[2008.01.18 22:43:00 | 00,247,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\clfs.sys -- (CLFS [Unknown | Running])
[2008.12.11 13:58:36 | 00,099,344 | ---- | M] (COMODO) -- C:\Windows\System32\drivers\cmdguard.sys -- (cmdGuard [System | Running])
[2008.11.26 17:44:52 | 00,025,104 | ---- | M] (COMODO) -- C:\Windows\System32\drivers\cmdhlp.sys -- (cmdHlp [System | Running])
[2006.11.02 10:49:28 | 00,016,488 | ---- | M] (CMD Technology, Inc.) -- C:\Windows\System32\drivers\cmdide.sys -- (cmdide [Disabled | Stopped])
[2006.11.02 10:49:43 | 00,022,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\crcdisk.sys -- (crcdisk [Boot | Running])
[2006.11.02 09:30:18 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\crusoe.sys -- (Crusoe [Disabled | Stopped])
[2008.01.18 20:28:22 | 00,075,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\dfsc.sys -- (DfsC [System | Running])
[2008.01.18 20:49:14 | 00,131,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\Dot4.sys -- (Dot4 [On_Demand | Stopped])
[2008.01.18 20:49:10 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\Dot4Prt.sys -- (Dot4Print [On_Demand | Stopped])
[2008.01.18 20:49:12 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\Dot4usb.sys -- (dot4usb [On_Demand | Stopped])
[2008.08.02 02:01:23 | 00,625,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgkrnl.sys -- (DXGKrnl [On_Demand | Running])
[2006.11.02 08:30:54 | 00,117,760 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60 [On_Demand | Stopped])
[2008.01.18 22:42:12 | 00,143,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ecache.sys -- (Ecache [Boot | Running])
[2006.11.02 10:51:34 | 00,316,520 | ---- | M] (Emulex) -- C:\Windows\System32\drivers\elxstor.sys -- (elxstor [Disabled | Stopped])
[2008.01.18 20:28:02 | 00,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\exfat.sys -- (exfat [On_Demand | Stopped])
[2008.01.18 22:42:32 | 00,058,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\fileinfo.sys -- (FileInfo [Boot | Running])
[2008.01.18 20:30:24 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\filetrace.sys -- (Filetrace [On_Demand | Stopped])
[2006.11.02 10:50:04 | 00,058,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\GAGP30KX.SYS -- (gagp30kx [On_Demand | Stopped])
[2006.11.02 08:36:49 | 00,235,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\HdAudio.sys -- (HdAudAddService [On_Demand | Stopped])
[2008.01.18 19:30:50 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hdaudbus.sys -- (HDAudBus [On_Demand | Running])
[2006.11.02 09:55:22 | 00,029,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidbth.sys -- (HidBth [Disabled | Stopped])
[2006.11.02 09:55:01 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidir.sys -- (HidIr [Disabled | Stopped])
[2006.11.02 10:50:10 | 00,037,480 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\System32\drivers\HpCISSs.sys -- (HpCISSs [Disabled | Stopped])
[2007.07.12 15:35:02 | 00,305,176 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\iaStor.sys -- (iaStor [Disabled | Stopped])
[2006.11.02 10:51:25 | 00,232,040 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\iaStorV.sys -- (iaStorV [Disabled | Stopped])
[2006.11.02 10:50:17 | 00,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) -- C:\Windows\System32\drivers\iirsp.sys -- (iirsp [Disabled | Stopped])
[2008.11.01 19:52:53 | 00,072,720 | ---- | M] (COMODO) -- C:\Windows\System32\drivers\inspect.sys -- (Inspect [On_Demand | Running])
[2007.04.10 18:05:38 | 01,764,960 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService [On_Demand | Running])
[2006.11.02 09:42:03 | 00,065,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\IPMIDrv.sys -- (IPMIDRV [Disabled | Stopped])
[2008.01.18 22:42:36 | 00,181,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msiscsi.sys -- (iScsiPrt [On_Demand | Running])
[2006.11.02 10:50:07 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\System32\drivers\iteatapi.sys -- (iteatapi [Disabled | Stopped])
[2006.11.02 10:50:09 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\System32\drivers\iteraid.sys -- (iteraid [Disabled | Stopped])
[2007.06.13 22:47:12 | 00,048,256 | ---- | M] (JMicron Technology Corp.) -- C:\Windows\System32\drivers\jraid.sys -- (JRAID [Disabled | Stopped])
[2006.11.02 09:51:12 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\kbdhid.sys -- (kbdhid [Disabled | Stopped])
[2007.05.19 07:44:50 | 00,400,896 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\System32\drivers\ksaud.sys -- (ksaud [On_Demand | Running])
[2008.01.18 20:55:04 | 00,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\lltdio.sys -- (lltdio [Auto | Running])
[2006.11.02 10:50:04 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\lsi_fc.sys -- (LSI_FC [Disabled | Stopped])
[2006.11.02 10:50:05 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\lsi_sas.sys -- (LSI_SAS [Disabled | Stopped])
[2006.11.02 10:50:10 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\lsi_scsi.sys -- (LSI_SCSI [Disabled | Stopped])
[2008.01.18 20:30:38 | 00,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\luafv.sys -- (luafv [Auto | Running])
[2006.11.02 10:49:53 | 00,028,776 | ---- | M] (LSI Logic Corporation) -- C:\Windows\System32\drivers\megasas.sys -- (megasas [Disabled | Stopped])
[2008.01.18 20:52:20 | 00,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\monitor.sys -- (monitor [On_Demand | Running])
[2006.11.02 10:50:16 | 00,078,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mpio.sys -- (mpio [Disabled | Stopped])
[2008.01.18 20:54:48 | 00,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mpsdrv.sys -- (mpsdrv [On_Demand | Stopped])
[2006.11.02 10:49:59 | 00,033,384 | ---- | M] (LSI Logic Corporation) -- C:\Windows\System32\drivers\Mraid35x.sys -- (Mraid35x [Disabled | Stopped])
[2008.08.27 02:05:41 | 00,212,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mrxsmb10.sys -- (mrxsmb10 [On_Demand | Running])
[2008.01.18 20:28:38 | 00,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mrxsmb20.sys -- (mrxsmb20 [On_Demand | Running])
[2006.11.02 10:49:44 | 00,023,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msahci.sys -- (msahci [Disabled | Stopped])
[2006.11.02 10:50:17 | 00,080,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msdsm.sys -- (msdsm [Disabled | Stopped])
[2008.01.18 22:41:16 | 00,016,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msisadrv.sys -- (msisadrv [Boot | Running])
[2008.01.18 22:42:30 | 00,163,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msrpc.sys -- (MsRPC [On_Demand | Stopped])
[2008.05.20 03:07:31 | 00,148,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\nwifi.sys -- (NativeWifiP [On_Demand | Running])
[2006.11.02 10:50:19 | 00,045,160 | ---- | M] (IBM Corporation) -- C:\Windows\System32\drivers\nfrd960.sys -- (nfrd960 [Disabled | Stopped])
[2008.01.18 20:55:52 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\nsiproxy.sys -- (nsiproxy [System | Running])
[2006.11.02 08:36:50 | 00,020,608 | ---- | M] (N-trig Innovative Technologies) -- C:\Windows\System32\drivers\ntrigdigi.sys -- (ntrigdigi [Disabled | Stopped])
[2006.11.02 10:50:24 | 00,088,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvraid.sys -- (nvraid [Boot | Running])
[2007.07.02 16:37:10 | 00,131,616 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvrd32.sys -- (nvrd32 [Disabled | Stopped])
[2006.11.02 10:50:13 | 00,040,040 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvstor.sys -- (nvstor [Disabled | Stopped])
[2007.07.02 16:37:08 | 00,110,112 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvstor32.sys -- (nvstor32 [Disabled | Stopped])
[2006.11.02 10:50:40 | 00,106,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\NV_AGP.SYS -- (nv_agp [On_Demand | Stopped])
[2006.11.02 10:04:35 | 00,878,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\PEAuth.sys -- (PEAUTH [Auto | Running])
[2008.04.05 02:21:42 | 00,072,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\pacer.sys -- (PSched [System | Running])
[2006.11.02 10:51:45 | 00,900,712 | ---- | M] (QLogic Corporation) -- C:\Windows\System32\drivers\ql2300.sys -- (ql2300 [Disabled | Stopped])
[2006.11.02 10:50:35 | 00,106,088 | ---- | M] (QLogic Corporation) -- C:\Windows\System32\drivers\ql40xx.sys -- (ql40xx [Disabled | Stopped])
[2008.01.18 20:56:08 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\qwavedrv.sys -- (QWAVEdrv [On_Demand | Stopped])
[2007.02.02 15:09:42 | 02,385,920 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\System32\drivers\atikmdag.sys -- (R300 [On_Demand | Running])
[2008.01.18 20:56:44 | 00,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\rassstp.sys -- (RasSstp [On_Demand | Running])
[2008.01.18 21:01:10 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\RDPENCDD.sys -- (RDPENCDD [System | Running])
[2008.01.18 20:55:04 | 00,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\rspndr.sys -- (rspndr [Auto | Running])
[2007.01.15 22:28:20 | 00,070,144 | ---- | M] (Realtek Corporation) -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169 [On_Demand | Running])
[2006.11.02 10:50:16 | 00,076,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sbp2port.sys -- (sbp2port [Disabled | Stopped])
[2006.11.02 07:37:21 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv [Auto | Running])
[2008.01.18 20:49:18 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sermouse.sys -- (sermouse [Disabled | Stopped])
[2006.11.02 09:51:38 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sffdisk.sys -- (sffdisk [Disabled | Stopped])
[2006.11.02 09:51:40 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sffp_mmc.sys -- (sffp_mmc [On_Demand | Stopped])
[2006.11.02 09:51:40 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sffp_sd.sys -- (sffp_sd [On_Demand | Stopped])
[2006.11.02 10:49:51 | 00,053,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\SISAGP.SYS -- (sisagp [On_Demand | Stopped])
[2006.11.02 10:50:10 | 00,038,504 | ---- | M] (Silicon Integrated Systems Corp.) -- C:\Windows\System32\drivers\sisraid2.sys -- (SiSRaid2 [Disabled | Stopped])
[2006.11.02 10:50:16 | 00,071,784 | ---- | M] (Silicon Integrated Systems) -- C:\Windows\System32\drivers\sisraid4.sys -- (SiSRaid4 [Disabled | Stopped])
[2008.01.18 20:55:28 | 00,066,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\smb.sys -- (Smb [System | Running])
[2006.11.22 17:35:00 | 00,982,272 | ---- | M] (Motorola Inc.) -- C:\Windows\System32\drivers\smserial.sys -- (smserial [On_Demand | Running])
[2008.01.18 22:41:32 | 00,021,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\spldr.sys -- (spldr [Boot | Running])
[2008.08.24 18:55:59 | 00,717,296 | ---- | M] () -- C:\Windows\System32\drivers\sptd.sys -- (sptd [Boot | Running])
[2008.01.18 20:29:16 | 00,144,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\srv2.sys -- (srv2 [On_Demand | Running])
[2008.01.18 20:29:14 | 00,098,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\srvnet.sys -- (srvnet [On_Demand | Running])
[2006.11.02 10:50:05 | 00,035,944 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\symc8xx.sys -- (Symc8xx [Disabled | Stopped])
[2006.11.02 10:49:56 | 00,031,848 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\sym_hi.sys -- (Sym_hi [Disabled | Stopped])
[2006.11.02 10:50:03 | 00,034,920 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\sym_u3.sys -- (Sym_u3 [Disabled | Stopped])
[2008.01.18 20:56:08 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tcpipreg.sys -- (tcpipreg [Auto | Running])
[2008.01.18 20:56:00 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tdx.sys -- (tdx [System | Running])
[2008.01.18 21:01:16 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tssecsrv.sys -- (tssecsrv [On_Demand | Running])
[2008.01.18 20:55:42 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\TUNMP.SYS -- (tunmp [On_Demand | Running])
[2008.01.18 20:55:52 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tunnel.sys -- (tunnel [On_Demand | Running])
[2006.11.02 10:49:59 | 00,056,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\UAGP35.SYS -- (uagp35 [On_Demand | Stopped])
[2006.11.02 10:50:04 | 00,058,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ULIAGPKX.SYS -- (uliagpkx [On_Demand | Stopped])
[2006.11.02 10:51:25 | 00,235,112 | ---- | M] (ULi Electronics Inc.) -- C:\Windows\System32\drivers\uliahci.sys -- (uliahci [Disabled | Stopped])
[2006.11.02 10:50:35 | 00,098,408 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\System32\drivers\ulsata.sys -- (UlSata [Disabled | Stopped])
[2006.11.02 10:50:45 | 00,115,816 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\System32\drivers\ulsata2.sys -- (ulsata2 [Disabled | Stopped])
[2008.01.18 20:53:42 | 00,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\umbus.sys -- (umbus [On_Demand | Running])
[2008.01.18 20:53:24 | 00,073,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio [On_Demand | Stopped])
[2006.11.02 09:55:09 | 00,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbcir.sys -- (usbcir [Disabled | Stopped])
[2008.01.18 20:56:10 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usb8023x.sys -- (usb_rndisx [On_Demand | Stopped])
[2006.11.02 09:53:56 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\vgapnp.sys -- (vga [On_Demand | Stopped])
[2006.11.02 09:30:19 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\viac7.sys -- (ViaC7 [Disabled | Stopped])
[2006.11.02 10:49:30 | 00,017,512 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\System32\drivers\viaide.sys -- (viaide [Disabled | Stopped])
[2006.11.08 14:23:52 | 00,102,912 | ---- | M] (VIA Technologies inc,.ltd) -- C:\Windows\System32\drivers\viamraid.sys -- (viamraid [Disabled | Stopped])
[2008.01.18 22:42:20 | 00,052,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\volmgr.sys -- (volmgr [Boot | Running])
[2008.01.18 22:43:04 | 00,294,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\volmgrx.sys -- (volmgrx [Boot | Running])
[2006.11.02 10:50:41 | 00,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) -- C:\Windows\System32\drivers\vsmraid.sys -- (vsmraid [Boot | Running])
[2006.11.02 09:52:52 | 00,020,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wacompen.sys -- (WacomPen [Disabled | Stopped])
[2006.11.02 10:49:38 | 00,019,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wd.sys -- (Wd [Disabled | Stopped])
[2008.01.18 22:43:28 | 00,503,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\Wdf01000.sys -- (Wdf01000 [Boot | Running])
[2006.11.02 09:35:03 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wmiacpi.sys -- (WmiAcpi [Disabled | Stopped])
[2008.01.18 20:56:50 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ws2ifsl.sys -- (ws2ifsl [Disabled | Stopped])

========== (R ) Internet Explorer ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main]
"Default_Page_URL"=http://go.microsoft.com/fwlink/?LinkId=69157
"Default_Search_URL"=http://go.microsoft.com/fwlink/?LinkId=54896
"Default_Secondary_Page_URL"=
"Extensions Off Page"=about:NoAdd-ons
"Local Page"=C:\Windows\SYSTEM32\blank.htm
"Search Page"=http://go.microsoft.com/fwlink/?LinkId=54896
"Security Risk Page"=about:SecurityRisk
"Start Page"=http://go.microsoft.com/fwlink/?LinkId=69157

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Search]
"CustomizeSearch"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
"SearchAssistant"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main]
"Local Page"=C:\Windows\SYSTEM32\blank.htm
"Search Page"=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
"Start Page"=http://www.atlas.cz/
"StartPageCache"=

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" (HKLM) -- C:\Windows\System32\ieframe.dll (Microsoft Corporation)

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"ProxyEnable" = 0

[HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"ProxyEnable" = 0

[HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main]

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"ProxyEnable" = 0

[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main]

[HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" (HKLM) -- C:\Windows\System32\ieframe.dll (Microsoft Corporation)

[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main]

[HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" (HKLM) -- C:\Windows\System32\ieframe.dll (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-1717588766-1400539547-3450735735-1000\SOFTWARE\Microsoft\Internet Explorer\Main]
"Local Page"=C:\Windows\SYSTEM32\blank.htm
"Search Page"=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
"Start Page"=http://www.atlas.cz/
"StartPageCache"=

[HKEY_USERS\S-1-5-21-1717588766-1400539547-3450735735-1000\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" (HKLM) -- C:\Windows\System32\ieframe.dll (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-1717588766-1400539547-3450735735-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"ProxyEnable" = 0

========== (O1) Hosts File ==========

HOSTS File = (761 bytes) - C:\Windows\System32\drivers\etc\Hosts
First 25 entries...
127.0.0.1 localhost
::1 localhost

========== (O2) BHO's ==========

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (HKLM) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (HKLM) -- C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
{DBC80044-A445-435b-BC74-9C25C1C588A9} (HKLM) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)

========== (O3) Toolbars ==========

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{32099AAC-C132-4136-9E9A-4E364A424E17}" (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found

[HKEY_USERS\S-1-5-21-1717588766-1400539547-3450735735-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{32099AAC-C132-4136-9E9A-4E364A424E17}" (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found

========== (O4) Run Keys ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" (Adobe Systems Incorporated)
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe (ALWIL Software)
"COMODO Firewall Pro"="C:\Program Files\COMODO\Firewall\cfp.exe" -h ()
"COMODO SafeSurf"="C:\Program Files\COMODO\SafeSurf\cssurf.exe" -s (COMODO)
"SunJavaUpdateSched"="C:\Program Files\Java\jre6\bin\jusched.exe" (Sun Microsystems, Inc.)
"VolPanel"="C:\Program Files\Creative\SBLive 24-Bit External\Volume Panel\VolPanlu.exe" /r (Creative Technology Ltd)
"Windows Mobile-based device management"=%windir%\WindowsMobile\wmdSync.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
""= File not found
"StartCCC"=c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ()

[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=%ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (Microsoft Corporation)
"WindowsWelcomeCenter"=rundll32.exe oobefldr.dll,ShowWelcomeCenter (Microsoft Corporation)

[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=%ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (Microsoft Corporation)
"WindowsWelcomeCenter"=rundll32.exe oobefldr.dll,ShowWelcomeCenter (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-1717588766-1400539547-3450735735-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
""= File not found
"StartCCC"=c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ()

========== (O6 & O7) Current Version Policies ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
"ConsentPromptBehaviorAdmin"=2
"ConsentPromptBehaviorUser"=1
"EnableInstallerDetection"=1
"EnableLUA"=0
"EnableSecureUIAPaths"=1
"EnableVirtualization"=1
"PromptOnSecureDesktop"=1
"ValidateAdminCodeSignatures"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"scforceoption"=0
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"FilterAdministratorToken"=0
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats]
"CF_TEXT"=1
"CF_BITMAP"=2
"CF_OEMTEXT"=7
"CF_DIB"=8
"CF_PALETTE"=9
"CF_UNICODETEXT"=13
"CF_DIBV5"=17

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"NoDriveTypeAutoRun"=145

[HKEY_USERS\S-1-5-21-1717588766-1400539547-3450735735-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"NoDriveTypeAutoRun"=145

========== (O8) IE Context Menu Extensions ==========

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\]
E&xportovat do aplikace Microsoft Excel: C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE File not found

[HKEY_USERS\S-1-5-21-1717588766-1400539547-3450735735-1000\Software\Microsoft\Internet Explorer\MenuExt\]
E&xportovat do aplikace Microsoft Excel: C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE File not found

========== (O9) IE Extensions ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\]
{E59EB121-F339-4851-A3BA-FE49C35617C2}: Button: ICQ6 -- %ProgramFiles%\ICQ6\ICQ.exe [2008.09.01 16:08:21 | 00,173,304 | ---- | M] (ICQ, Inc.)
{E59EB121-F339-4851-A3BA-FE49C35617C2}: Menu: ICQ6 -- %ProgramFiles%\ICQ6\ICQ.exe [2008.09.01 16:08:21 | 00,173,304 | ---- | M] (ICQ, Inc.)

========== (O12) Internet Explorer Plugins ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\]
PluginsPage: "" = http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s
PluginsPageFriendlyName: "" = Microsoft ActiveX Gallery

========== (O13) Default Prefixes ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix]
""=http://

========== (O15) Trusted Sites ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\]
1 domain(s) and sub-domain(s) not assigned to a zone.

========== (O16) DPF ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\]
{8AD9C840-044E-11D1-B3E9-00805F499D93}: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab -- Java Plug-in 1.6.0_11
{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab -- Java Plug-in 1.6.0_11
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}: http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab -- Java Plug-in 1.6.0_11

========== (O17) DNS Name Servers ==========

{08D2C45D-43D8-40EB-9999-220C16520444} (Servers: | Description: Realtek RTL8101 Family PCI-E Fast Ethernet NIC (NDIS 6.0))
{46D6BFC5-AEF1-46B1-BA09-58CF8B5B59AB} (Servers: | Description: Microsoft Windows Mobile Remote Adapter)
{DB5F4A40-2C3C-410A-BC5E-F9372E371297} (Servers: | Description: Atheros AR5007EG Wireless Network Adapter)

========== (O20) AppInit_DLLs ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_Dlls"=C:\Windows\system32\guard32.dll C:\Windows\system32\cssdll32.dll
>[2008.12.11 13:58:39 | 00,147,192 | ---- | M] () -- C:\Windows\System32\guard32.dll
>[2008.06.30 18:19:34 | 00,249,592 | ---- | M] (COMODO) -- C:\Windows\System32\cssdll32.dll

========== HKLM *SecurityProviders* ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders]
"SecurityProviders"=credssp.dll
>[2008.01.18 22:34:00 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\credssp.dll

========== LSA *Security Packages* ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"Security Packages"=kerberos,msv1_0,schannel,wdigest,tspkg,
>[2008.01.18 22:36:44 | 00,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TSpkg.dll

========== Safeboot Options ==========

"AlternateShell"=cmd.exe

========== CDRom AutoRun Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom]
"AutoRun" = 1

========== Files/Folders - Created Within 30 Days ==========

[2008.12.26 16:21:57 | 00,000,000 | ---D | C] -- C:\rsit
[2008.12.26 16:20:30 | 00,423,424 | ---- | C] (OldTimer Tools) -- C:\Users\Skouřič\Plocha\OTViewIt.exe
[2008.12.26 16:20:17 | 00,781,851 | ---- | C] () -- C:\Users\Skouřič\Plocha\RSIT.exe
[2008.12.26 15:46:01 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\Users\Skouřič\Plocha\Windows6.0-KB940520-x86-CSY.exe
[2008.12.26 15:42:55 | 01,478,696 | ---- | C] (Microsoft Corporation) -- C:\Users\Skouřič\Plocha\GenuineCheck.exe
[2008.12.26 12:12:51 | 01,027,760 | ---- | C] () -- C:\Users\Skouřič\Plocha\Windows6.0-KB958624-x86.msu
[2008.12.26 11:29:19 | 75,137,189 | ---- | C] () -- C:\Users\Skouřič\Plocha\Windows6.0-KB947821-v4-x86.msu
[2008.12.26 02:29:59 | 00,000,000 | ---D | C] -- C:\Users\Skouřič\Plocha\Melodie mého srdce - Soundtrack
[2008.12.25 22:24:36 | 00,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdRapi_01_00_00.Wdf
[2008.12.25 13:29:36 | 20,112,83456 | -HS- | C] () -- C:\hiberfil.sys
[2008.12.25 01:18:37 | 03,301,777 | -H-- | C] () -- C:\Users\Skouřič\AppData\Local\IconCache.db
[2008.12.25 01:01:10 | 00,000,000 | ---D | C] -- C:\32788R22FWJFW
[2008.12.24 22:09:06 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2008.12.24 21:05:10 | 00,000,000 | ---D | C] -- C:\Users\Skouřič\Plocha\PC-Help
[2008.12.24 20:41:21 | 00,036,034 | ---- | C] () -- C:\Users\Skouřič\Documents\cc_20081224_204116.reg
[2008.12.24 20:26:34 | 00,000,000 | ---D | C] -- C:\Program Files\RegCleaner
[2008.12.24 20:26:16 | 00,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2008.12.24 10:53:16 | 00,000,000 | ---D | C] -- C:\Users\Skouřič\AppData\Roaming\Malwarebytes
[2008.12.24 10:53:12 | 00,015,504 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2008.12.24 10:53:09 | 00,038,496 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2008.12.24 10:53:08 | 00,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2008.12.24 10:53:07 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2008.12.24 02:18:47 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2008.12.24 00:14:38 | 00,000,000 | ---D | C] -- C:\Program Files\AudioCommander
[2008.12.24 00:05:22 | 00,000,000 | ---D | C] -- C:\Users\Skouřič\Documents\AVTJet Video Studio
[2008.12.24 00:04:28 | 00,000,000 | ---D | C] -- C:\Program Files\AVTJet Studio
[2008.12.23 23:02:43 | 00,024,576 | ---- | C] () -- C:\Windows\UniFISH.exe
[2008.12.23 11:39:48 | 01,643,550 | -HS- | C] () -- C:\Windows\System32\pdlqxdyd.ini
[2008.12.23 11:38:35 | 01,643,550 | -HS- | C] () -- C:\Windows\System32\rfannumg.ini
[2008.12.22 12:09:07 | 00,000,000 | ---D | C] -- C:\Users\Skouřič\AppData\Roaming\uTorrent
[2008.12.22 12:09:06 | 00,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2008.12.18 15:02:15 | 01,643,550 | -HS- | C] () -- C:\Windows\System32\fmkxcpql.ini
[2008.12.17 20:46:33 | 00,000,000 | ---D | C] -- C:\ProgramData\WindowsSearch
[2008.12.17 18:40:38 | 00,000,069 | -HS- | C] () -- C:\Users\Skouřič\AppData\Local\desktop.ini
[2008.12.17 11:55:55 | 00,000,000 | ---D | C] -- C:\Users\Skouřič\Documents\Zbytek školy
[2008.12.17 08:41:51 | 01,621,533 | -HS- | C] () -- C:\Windows\System32\xuggkwxn.ini
[2008.12.16 18:53:28 | 01,621,533 | -HS- | C] () -- C:\Windows\System32\lbeeftdq.ini
[2008.12.15 20:12:07 | 01,621,534 | -HS- | C] () -- C:\Windows\System32\hhrgqhar.ini
[2008.12.15 12:57:45 | 01,620,708 | -HS- | C] () -- C:\Windows\System32\fdxuxmon.ini
[2008.12.14 10:07:03 | 01,620,657 | -HS- | C] () -- C:\Windows\System32\vyaeketv.ini
[2008.12.13 18:12:28 | 01,620,657 | -HS- | C] () -- C:\Windows\System32\wttwgwys.ini
[2008.12.13 09:19:37 | 01,620,657 | -HS- | C] () -- C:\Windows\System32\upobnvjx.ini
[2008.12.12 20:17:07 | 00,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2008.12.12 19:19:28 | 01,615,150 | -HS- | C] () -- C:\Windows\System32\qjrxxhyo.ini
[2008.12.11 17:53:56 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2008.12.11 14:27:38 | 02,868,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2008.12.11 14:27:37 | 02,386,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL
[2008.12.11 14:27:35 | 00,996,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMNetMgr.dll
[2008.12.11 14:27:35 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe
[2008.12.11 14:27:17 | 11,580,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shell32.dll
[2008.12.11 14:26:57 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2008.12.11 14:26:54 | 04,240,384 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2008.12.11 14:26:11 | 00,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gdi32.dll
[2008.12.11 14:25:58 | 03,578,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.dll
[2008.12.11 14:25:55 | 01,166,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll
[2008.12.11 14:25:54 | 06,068,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieframe.dll
[2008.12.11 14:25:51 | 00,827,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll
[2008.12.11 14:25:48 | 00,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2008.12.11 14:25:44 | 00,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iertutil.dll
[2008.12.11 14:25:38 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2008.12.11 14:25:36 | 01,383,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2008.12.10 21:00:10 | 01,557,552 | -HS- | C] () -- C:\Windows\System32\jdeiuwsl.ini
[2008.12.10 20:51:57 | 01,557,552 | -HS- | C] () -- C:\Windows\System32\bvlbtknx.ini
[2008.12.10 17:46:48 | 01,519,339 | -HS- | C] () -- C:\Windows\System32\vrekijke.ini
[2008.12.07 19:42:51 | 00,001,356 | ---- | C] () -- C:\Users\Skouřič\AppData\Local\d3d9caps.dat
[2008.11.30 21:13:15 | 00,000,000 | ---D | C] -- C:\Program Files\GIF Movie Gear
[2008.11.28 12:28:02 | 00,087,608 | ---- | C] () -- C:\Users\Skouřič\AppData\Roaming\inst.exe
[2008.11.28 12:28:02 | 00,047,360 | ---- | C] (VSO Software) -- C:\Users\Skouřič\AppData\Roaming\pcouffin.sys
[2008.11.28 12:28:02 | 00,007,887 | ---- | C] () -- C:\Users\Skouřič\AppData\Roaming\pcouffin.cat
[2008.11.28 12:28:02 | 00,001,144 | ---- | C] () -- C:\Users\Skouřič\AppData\Roaming\pcouffin.inf
[2008.11.28 12:28:02 | 00,000,000 | ---D | C] -- C:\Users\Skouřič\Documents\PcSetup
[2008.11.26 21:36:24 | 00,000,000 | ---D | C] -- C:\Users\Skouřič\AppData\Roaming\Nvu
[2008.11.26 21:35:56 | 00,000,000 | ---D | C] -- C:\Program Files\Nvu
[2008.11.26 18:28:51 | 00,000,000 | ---D | C] -- C:\Users\Skouřič\Documents\Downloads

========== Files - Modified Within 30 Days ==========

[2 C:\Windows\System32\*.tmp files]
[2008.12.26 16:20:41 | 00,423,424 | ---- | M] (OldTimer Tools) -- C:\Users\Skouřič\Plocha\OTViewIt.exe
[2008.12.26 16:20:29 | 00,781,851 | ---- | M] () -- C:\Users\Skouřič\Plocha\RSIT.exe
[2008.12.26 15:46:01 | 00,031,744 | ---- | M] (Microsoft Corporation) -- C:\Users\Skouřič\Plocha\Windows6.0-KB940520-x86-CSY.exe
[2008.12.26 15:43:20 | 00,003,296 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2008.12.26 15:43:20 | 00,003,296 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2008.12.26 15:43:04 | 01,478,696 | ---- | M] (Microsoft Corporation) -- C:\Users\Skouřič\Plocha\GenuineCheck.exe
[2008.12.26 15:31:21 | 00,084,992 | ---- | M] () -- C:\Users\Skouřič\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.12.26 15:28:57 | 01,402,862 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2008.12.26 15:28:57 | 00,601,548 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2008.12.26 15:28:57 | 00,589,688 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2008.12.26 15:28:57 | 00,116,670 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2008.12.26 15:28:57 | 00,102,520 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2008.12.26 15:25:05 | 00,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2008.12.26 15:24:37 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2008.12.26 15:24:28 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2008.12.26 15:23:48 | 20,112,83456 | -HS- | M] () -- C:\hiberfil.sys
[2008.12.26 12:51:33 | 03,301,777 | -H-- | M] () -- C:\Users\Skouřič\AppData\Local\IconCache.db
[2008.12.26 12:13:00 | 01,027,760 | ---- | M] () -- C:\Users\Skouřič\Plocha\Windows6.0-KB958624-x86.msu
[2008.12.26 11:47:06 | 75,137,189 | ---- | M] () -- C:\Users\Skouřič\Plocha\Windows6.0-KB947821-v4-x86.msu
[2008.12.26 00:14:38 | 00,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini
[2008.12.25 23:35:07 | 00,000,038 | ---- | M] () -- C:\Windows\avisplitter.INI
[2008.12.25 22:24:36 | 00,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdRapi_01_00_00.Wdf
[2008.12.24 20:41:30 | 00,036,034 | ---- | M] () -- C:\Users\Skouřič\Documents\cc_20081224_204116.reg
[2008.12.24 00:32:33 | 00,000,027 | ---- | M] () -- C:\Windows\CTWave32.ini
[2008.12.24 00:27:50 | 00,000,070 | ---- | M] () -- C:\Windows\sbwin.ini
[2008.12.23 11:39:53 | 01,643,550 | -HS- | M] () -- C:\Windows\System32\pdlqxdyd.ini
[2008.12.23 11:38:41 | 01,643,550 | -HS- | M] () -- C:\Windows\System32\rfannumg.ini
[2008.12.18 15:03:28 | 01,643,550 | -HS- | M] () -- C:\Windows\System32\fmkxcpql.ini
[2008.12.17 18:40:38 | 00,000,069 | -HS- | M] () -- C:\Users\Skouřič\AppData\Local\desktop.ini
[2008.12.17 08:41:57 | 01,621,533 | -HS- | M] () -- C:\Windows\System32\xuggkwxn.ini
[2008.12.16 18:53:39 | 01,621,533 | -HS- | M] () -- C:\Windows\System32\lbeeftdq.ini
[2008.12.15 20:12:14 | 01,621,534 | -HS- | M] () -- C:\Windows\System32\hhrgqhar.ini
[2008.12.15 12:57:50 | 01,620,708 | -HS- | M] () -- C:\Windows\System32\fdxuxmon.ini
[2008.12.14 10:08:09 | 00,001,356 | ---- | M] () -- C:\Users\Skouřič\AppData\Local\d3d9caps.dat
[2008.12.14 10:07:13 | 01,620,657 | -HS- | M] () -- C:\Windows\System32\vyaeketv.ini
[2008.12.13 18:12:39 | 01,620,657 | -HS- | M] () -- C:\Windows\System32\wttwgwys.ini
[2008.12.13 09:19:48 | 01,620,657 | -HS- | M] () -- C:\Windows\System32\upobnvjx.ini
[2008.12.12 19:19:38 | 01,615,150 | -HS- | M] () -- C:\Windows\System32\qjrxxhyo.ini
[2008.12.12 08:16:10 | 00,338,664 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2008.12.11 22:43:23 | 00,087,536 | ---- | M] () -- C:\Users\Skouřič\AppData\Local\GDIPFONTCACHEV1.DAT
[2008.12.11 13:58:39 | 00,147,192 | ---- | M] () -- C:\Windows\System32\guard32.dll
[2008.12.11 13:58:36 | 00,099,344 | ---- | M] (COMODO) -- C:\Windows\System32\drivers\cmdguard.sys
[2008.12.10 21:00:19 | 01,557,552 | -HS- | M] () -- C:\Windows\System32\jdeiuwsl.ini
[2008.12.10 20:52:04 | 01,557,552 | -HS- | M] () -- C:\Windows\System32\bvlbtknx.ini
[2008.12.10 17:46:56 | 01,519,339 | -HS- | M] () -- C:\Windows\System32\vrekijke.ini
[2008.12.10 00:24:37 | 17,593,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mrt.exe
[2008.12.03 19:59:06 | 00,038,496 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2008.12.03 19:59:02 | 00,015,504 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2008.11.28 12:28:02 | 00,087,608 | ---- | M] () -- C:\Users\Skouřič\AppData\Roaming\inst.exe
[2008.11.28 12:28:02 | 00,047,360 | ---- | M] (VSO Software) -- C:\Users\Skouřič\AppData\Roaming\pcouffin.sys
[2008.11.28 12:28:02 | 00,007,887 | ---- | M] () -- C:\Users\Skouřič\AppData\Roaming\pcouffin.cat
[2008.11.28 12:28:02 | 00,001,144 | ---- | M] () -- C:\Users\Skouřič\AppData\Roaming\pcouffin.inf
[2008.11.26 18:21:30 | 01,236,208 | ---- | M] (ALWIL Software) -- C:\Windows\System32\aswBoot.exe
[2008.11.26 18:17:36 | 00,111,184 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswSP.sys
[2008.11.26 18:17:25 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2008.11.26 18:17:15 | 00,051,792 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2008.11.26 18:16:38 | 00,050,864 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2008.11.26 18:16:29 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2008.11.26 18:15:10 | 00,097,480 | ---- | M] (ALWIL Software) -- C:\Windows\System32\AvastSS.scr
[2008.11.26 17:44:52 | 00,025,104 | ---- | M] (COMODO) -- C:\Windows\System32\drivers\cmdhlp.sys
< End of report >

jakubskorepa · Příspěvekod **jakubskorepa** » 26 pro 2008 16:46

a ten druhej... z toho druhyho programu

OTViewIt Extras logfile created on: 26.12.2008 16:34:04 - Run
OTViewIt by OldTimer - Version 1.0.20.1 Folder = C:\Users\Skouřič\Plocha
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1,87 Gb Total Physical Memory | 1,06 Gb Available Physical Memory | 56,69% Memory free
3,99 Gb Paging File | 2,88 Gb Available in Paging File | 72,15% Paging File free
Paging file location(s): c:\pagefile.sys 0 0;

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 221,17 Gb Total Space | 85,88 Gb Free Space | 38,83% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: NOTEBOOK
Current User Name: Skouřič
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Whitelist: On
File Age = 30 Days

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval"=1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride"=0
"AntiSpywareOverride"=0
"FirewallOverride"=0
"VistaSp1"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-1717588766-1400539547-3450735735-1000]
"EnableNotifications"=1
"EnableNotificationsRef"=1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
"DisableNotifications"=0
"EnableFirewall"=0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Logging]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

========== (O10) Winsock2 Catalogs ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\]
NameSpace_Catalog5\Catalog_Entries\000000000001 [@%SystemRoot%\system32\nlasvc.dll,-1000] -- C:\Windows\System32\nlaapi.dll (Microsoft Corporation)
NameSpace_Catalog5\Catalog_Entries\000000000002 [@%SystemRoot%\system32\napinsp.dll,-1000] -- C:\Windows\System32\NapiNSP.dll (Společnost Microsoft)
NameSpace_Catalog5\Catalog_Entries\000000000003 [@%SystemRoot%\system32\pnrpnsp.dll,-1000] -- C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
NameSpace_Catalog5\Catalog_Entries\000000000004 [@%SystemRoot%\system32\pnrpnsp.dll,-1001] -- C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)

========== HKEY_LOCAL_MACHINE Protocol Defaults ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults - Default Protocols
ldap -- 4 = Restricted sites (Not a Default Protocol)
news -- 4 = Restricted sites (Not a Default Protocol)
nntp -- 4 = Restricted sites (Not a Default Protocol)
oecmd -- 4 = Restricted sites (Not a Default Protocol)
snews -- 4 = Restricted sites (Not a Default Protocol)

========== HKEY_USERS Protocol Defaults ==========

[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults] - Default Protocols
@ivt -- @ivt protocol not assigned
file -- file protocol not assigned
ftp -- ftp protocol not assigned
http -- http protocol not assigned
https -- https protocol not assigned
shell -- shell protocol not assigned

========== HKEY_USERS Protocol Defaults ==========

[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults] - Default Protocols
@ivt -- @ivt protocol not assigned
file -- file protocol not assigned
ftp -- ftp protocol not assigned
http -- http protocol not assigned
https -- https protocol not assigned
shell -- shell protocol not assigned

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{08CA9554-B5FE-4313-938F-D4A417B81175}"=QuickTime
"{1E04F83B-2AB9-4301-9EF7-E86307F79C72}"=Google Earth
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}"=Java(TM) 6 Update 11
"{29FA38B4-0AE4-4D0D-8A51-6165BB990BB0}"=WebReg
"{2B541619-4920-A88A-AEB6-C4E76672B726}"=ccc-utility
"{2F28B3C9-2C89-4206-8B33-8ADC9577C49B}"=Scan
"{32AFDE70-6890-478B-BC92-8F3C76B8A77B}"=Branding
"{3412904A-EBCE-4D0B-9052-A3001B8ED666}"=Sound Blaster Live! 24-Bit External
"{4160DC5B-4C56-D0C3-C5FD-F5BDAD3C882B}"=ATI Catalyst Install Manager
"{543E938C-BDC4-4933-A612-01293996845F}"=UnloadSupport
"{60DE4033-9503-48D1-A483-7846BD217CA9}"=ICQ6
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}"=Windows Media Player Firefox Plugin
"{706BB40A-4102-4c89-8107-DC68C4EBD19B}"=HP Deskjet All-In-One Software 9.0
"{71C97813-ADFC-AA48-D24F-17E6CD41B413}"=Skins
"{787AD427-7FEB-A87C-4C2E-C95610EF345B}"=Catalyst Control Center Core Implementation
"{81CD6232-10F5-4832-B3DA-1B88B1571029}"=Nero 7 Essentials
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}"=Microsoft Silverlight
"{94D66D71-12F0-48A5-B46A-D4B835A0F1B7}"=FirstSteps Diagnostics
"{9A983135-BB9F-6E62-F282-AD76BB9551FE}"=CCC Help English
"{9AE73DF3-2349-A626-AE42-7959D7583E2B}"=Catalyst Control Center Graphics Full Existing
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}"=Microsoft Visual C++ 2005 Redistributable
"{A9C365A3-06C0-43b4-A2DB-EDF0A6079AA9}"=DJ_AIO_Software
"{AC76BA86-7AD7-1029-7B44-A81200000003}"=Adobe Reader 8 - Czech
"{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}"=AIO_Scan
"{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}"=Creative MediaSource 5
"{C2ED62F4-4F0B-44DF-B630-DD02FD7E8C60}"=OpenOffice.org 2.4
"{C61E8F12-31F1-C2E6-DC0C-505CBF2BEE57}"=ccc-core-static
"{E2662C24-B31E-4349-A084-32EB76E8B760}"=BufferChm
"{E9C18EBD-85BE-47D0-AA73-3FEDCC976B04}"=Toolbox
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}"=Realtek High Definition Audio Driver
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}"=32 Bit HP CIO Components Installer
"{F56D6F46-1D62-4734-BF12-6457A1ED17BD}"=DJ_AIO_Software_min
"{FA2B72B1-B29E-57FB-5AFB-74734AC3442E}"=Catalyst Control Center Graphics Previews Vista
"7-Zip"=7-Zip 4.62
"Adobe Flash Player ActiveX"=Adobe Flash Player ActiveX
"Adobe Flash Player Plugin"=Adobe Flash Player 10 Plugin
"ATI Uninstaller"=ATI Uninstaller
"avast!"=avast! Antivirus
"Cakewalk Pro Audio 8.0"=Cakewalk Pro Audio 8.0
"CCleaner"=CCleaner (remove only)
"COMODO Firewall Pro"=COMODO Firewall Pro
"COMODO SafeSurf"=COMODO SafeSurf
"Creative Software AutoUpdate"=Creative Software AutoUpdate
"GeoGebra"=GeoGebra
"GIF Movie Gear_is1"=GIF Movie Gear 4.1.2
"HijackThis"=HijackThis 2.0.2
"Jazz Jackrabbit 2"=Jazz Jackrabbit 2
"KLiteCodecPack_is1"=K-Lite Mega Codec Pack 3.6.5
"Malwarebytes' Anti-Malware_is1"=Malwarebytes' Anti-Malware
"Mozilla Firefox (3.0.5)"=Mozilla Firefox (3.0.5)
"Mp3 Knife_is1"=Mp3 Knife 3.2
"NoteCard"=NoteCard
"Rmtablet"=USB Tablet Manager
"SMSERIAL"=Motorola SM56 Data Fax Modem
"SysInfo"=Creative System Information
"TeamViewer 3"=TeamViewer 3
"Totalcmd"=Total Commander (Remove or Repair)
"WinRAR archiver"=WinRAR

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome"=Google Chrome

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1717588766-1400539547-3450735735-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome"=Google Chrome

========== Last 10 Event Log Errors ==========

[ Antivirus Events ]
Error - 6.7.2008 12:59:12 | Computer Name = PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of \\PC\SdílenéDokum\27.01.2008\mobil\Obraz014.jpg failed, 00000040.

Error - 6.7.2008 12:59:13 | Computer Name = PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of \\PC\SdílenéDokum\27.01.2008\mobil\Obraz015.jpg failed, 00000040.

Error - 6.7.2008 12:59:19 | Computer Name = PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of \\PC\SdílenéDokum\27.01.2008\mobil\Obraz023.jpg failed, 00000040.

Error - 6.7.2008 13:00:04 | Computer Name = PC | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of \\PC\SdílenéDokum\27.01.2008\mobil\Obraz055.jpg failed, 00000040.

Error - 8.10.2008 7:43:53 | Computer Name = NOTEBOOK | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://releases.ubuntu.cz/8.04/ubuntu-8 ... p-i386.iso failed, 00000084.

Error - 8.10.2008 12:41:38 | Computer Name = NOTEBOOK | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Users\Skouřič\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
failed, 00000005.

Error - 4.12.2008 17:16:24 | Computer Name = NOTEBOOK | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of C:\Windows\System32\quartz.dll failed, 00000005.

Error - 6.12.2008 19:30:36 | Computer Name = NOTEBOOK | Source = avast! | ID = 33554522
Description = Nastala interní chyba v modulu aswar scan function failed!, funkce
A0000111.

Error - 7.12.2008 14:21:08 | Computer Name = NOTEBOOK | Source = avast! | ID = 33554522
Description = Nastala interní chyba v modulu aswar scan function failed!, funkce
A0000111.

Error - 7.12.2008 15:11:24 | Computer Name = NOTEBOOK | Source = avast! | ID = 33554522
Description = Nastala interní chyba v modulu aswar scan function failed!, funkce
A0000111.

[ Application Events ]
Error - 23.12.2008 17:59:15 | Computer Name = NOTEBOOK | Source = Windows Search Service | ID = 3013
Description =

Error - 23.12.2008 17:59:50 | Computer Name = NOTEBOOK | Source = Application Error | ID = 1000
Description = Chybující aplikace English.exe, verze 0.0.0.0, časové razítko 0x325e7645,
chybující modul DPLAY.dll, verze 6.0.6001.18000, časové razítko 0x4791a7a6, kód
výjimky 0xc0000135, posun chyby 0x00009cac, ID procesu 0x11a0, čas spuštění aplikace
0x01c96549c46eafcd.

Error - 23.12.2008 18:00:00 | Computer Name = NOTEBOOK | Source = Application Error | ID = 1000
Description = Chybující aplikace GameGfx.Exe, verze 0.0.0.0, časové razítko 0x325e7645,
chybující modul DPLAY.dll, verze 6.0.6001.18000, časové razítko 0x4791a7a6, kód
výjimky 0xc0000135, posun chyby 0x00009cac, ID procesu 0xf18, čas spuštění aplikace
0x01c96549cd1f0d4d.

Error - 23.12.2008 18:00:16 | Computer Name = NOTEBOOK | Source = Application Error | ID = 1000
Description = Chybující aplikace GameGfx.Exe, verze 0.0.0.0, časové razítko 0x325e7645,
chybující modul DPLAY.dll, verze 6.0.6001.18000, časové razítko 0x4791a7a6, kód
výjimky 0xc0000135, posun chyby 0x00009cac, ID procesu 0x12a8, čas spuštění aplikace
0x01c96549d68bdcfd.

Error - 23.12.2008 18:01:16 | Computer Name = NOTEBOOK | Source = Application Hang | ID = 1002
Description = Program Explorer.EXE verze 6.0.6001.18164 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Oznámení a řešení
problémů. ID procesu: d38 Čas zahájení: 01c96535263e6c85 Čas ukončení: 125

Error - 23.12.2008 18:03:03 | Computer Name = NOTEBOOK | Source = Application Error | ID = 1000
Description = Chybující aplikace GameGFX.exe, verze 0.0.0.0, časové razítko 0x325e7645,
chybující modul DPLAY.dll, verze 6.0.6001.18000, časové razítko 0x4791a7a6, kód
výjimky 0xc0000135, posun chyby 0x00009cac, ID procesu 0x1564, čas spuštění aplikace
0x01c9654a38d489cd.

Error - 23.12.2008 18:03:11 | Computer Name = NOTEBOOK | Source = Application Error | ID = 1000
Description = Chybující aplikace GameGfx.Exe, verze 0.0.0.0, časové razítko 0x325e7645,
chybující modul DPLAY.dll, verze 6.0.6001.18000, časové razítko 0x4791a7a6, kód
výjimky 0xc0000135, posun chyby 0x00009cac, ID procesu 0x11ac, čas spuštění aplikace
0x01c9654a3e98661d.

Error - 23.12.2008 18:04:52 | Computer Name = NOTEBOOK | Source = Application Error | ID = 1000
Description = Chybující aplikace GameGFX.exe, verze 0.0.0.0, časové razítko 0x325e7645,
chybující modul DPLAY.dll, verze 6.0.6001.18000, časové razítko 0x4791a7a6, kód
výjimky 0xc0000135, posun chyby 0x00009cac, ID procesu 0xbd8, čas spuštění aplikace
0x01c9654a7a39526d.

Error - 23.12.2008 18:19:25 | Computer Name = NOTEBOOK | Source = VSS | ID = 8194
Description =

Error - 23.12.2008 18:26:56 | Computer Name = NOTEBOOK | Source = Application Hang | ID = 1002
Description = Program Explorer.EXE verze 6.0.6001.18164 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Oznámení a řešení
problémů. ID procesu: 604 Čas zahájení: 01c9654d7fc580d6 Čas ukončení: 1173

[ System Events ]
Error - 26.12.2008 7:21:53 | Computer Name = NOTEBOOK | Source = Service Control Manager | ID = 7000
Description =

Error - 26.12.2008 7:22:04 | Computer Name = NOTEBOOK | Source = Service Control Manager | ID = 7000
Description =

Error - 26.12.2008 7:27:41 | Computer Name = NOTEBOOK | Source = Service Control Manager | ID = 7000
Description =

Error - 26.12.2008 7:27:47 | Computer Name = NOTEBOOK | Source = Service Control Manager | ID = 7000
Description =

Error - 26.12.2008 7:28:58 | Computer Name = NOTEBOOK | Source = bowser | ID = 8003
Description =

Error - 26.12.2008 7:29:45 | Computer Name = NOTEBOOK | Source = Service Control Manager | ID = 7000
Description =

Error - 26.12.2008 7:51:32 | Computer Name = NOTEBOOK | Source = DCOM | ID = 10010
Description =

Error - 26.12.2008 10:24:37 | Computer Name = NOTEBOOK | Source = HTTP | ID = 15016
Description =

Error - 26.12.2008 10:25:31 | Computer Name = NOTEBOOK | Source = Service Control Manager | ID = 7026
Description =

Error - 26.12.2008 10:26:49 | Computer Name = NOTEBOOK | Source = Service Control Manager | ID = 7000
Description =

< End of report > prominte za tri zpravy ale je poolenejch 60000 znaku a melo to vždy tak 70K (2 zprávy dohromady)

Příspěvekod **jaro3** » 26 pro 2008 18:19

Žádné omluvy , ještě je tam havěť.
Stahni si Avanger
do něj podle navodu:
zadej prikaz z kodu:

Kód: Vybrat vše

Files to delete:
C:\Windows\system32\pdlqxdyd.ini
C:\Windows\system32\rfannumg.ini
C:\Windows\system32\fmkxcpql.ini
C:\Windows\system32\xuggkwxn.ini
C:\Windows\system32\lbeeftdq.ini
C:\Windows\system32\hhrgqhar.ini
C:\Windows\system32\fdxuxmon.ini
C:\Windows\system32\vyaeketv.ini
C:\Windows\system32\wttwgwys.ini
C:\Windows\system32\upobnvjx.ini
C:\Windows\system32\qjrxxhyo.ini
C:\Windows\system32\jdeiuwsl.ini
C:\Windows\system32\bvlbtknx.ini
C:\Windows\system32\vrekijke.ini
C:\Windows\system32\c7124d0f-.txt
C:\Windows\avisplitter.INI

po restartu novy log z avengeru, stejne tak si zopakuj Combofix, třeba už bude fungovat..

jakubskorepa · Příspěvekod **jakubskorepa** » 26 pro 2008 19:01

Combo fix sem pustil sice jako VirTerminator přes spustit:
tu je log z Avangeru

Akorad sem do toho Comboficxu parklat klikl hned na začátku když chtel abych ukoncil avast

Logfile of The Avenger Version 2.0, (c) by Swandog46
http://swandog46.geekstogo.com

Platform: Windows Vista

*******************

Script file opened successfully.
Script file read successfully.

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Rootkit scan active.
No rootkits found!

File "C:\Windows\system32\pdlqxdyd.ini" deleted successfully.
File "C:\Windows\system32\rfannumg.ini" deleted successfully.
File "C:\Windows\system32\fmkxcpql.ini" deleted successfully.
File "C:\Windows\system32\xuggkwxn.ini" deleted successfully.
File "C:\Windows\system32\lbeeftdq.ini" deleted successfully.
File "C:\Windows\system32\hhrgqhar.ini" deleted successfully.
File "C:\Windows\system32\fdxuxmon.ini" deleted successfully.
File "C:\Windows\system32\vyaeketv.ini" deleted successfully.
File "C:\Windows\system32\wttwgwys.ini" deleted successfully.
File "C:\Windows\system32\upobnvjx.ini" deleted successfully.
File "C:\Windows\system32\qjrxxhyo.ini" deleted successfully.
File "C:\Windows\system32\jdeiuwsl.ini" deleted successfully.
File "C:\Windows\system32\bvlbtknx.ini" deleted successfully.
File "C:\Windows\system32\vrekijke.ini" deleted successfully.
File "C:\Windows\system32\c7124d0f-.txt" deleted successfully.
File "C:\Windows\avisplitter.INI" deleted successfully.

Completed script processing.

*******************

Finished! Terminate.

a ComboFixu

ComboFix 08-12-26.01 - Skouřič 2008-12-26 18:42:24.1 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1250.1.1029.18.1917.1215 [GMT 1:00]
Spuštěný z: c:\users\Skouřič\Plocha\VirTerminator.exe
Použité ovládací přepínače :: /killall
AV: avast! antivirus 4.8.1296 [VPS 081208-0] *On-access scanning enabled* (Updated)
FW: COMODO Firewall *enabled*
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\users\Skouřič\AppData\Roaming\inst.exe
c:\windows\system32\AutoRun.inf

.
((((((((((((((((((((((((( Soubory vytvořené od 2008-11-26 do 2008-12-26 )))))))))))))))))))))))))))))))
.

2008-12-26 16:21 . 2008-12-26 16:22 <DIR> d-------- C:\rsit
2008-12-25 22:24 . 2008-12-25 22:24 0 --ah----- c:\windows\System32\drivers\Msft_User_WpdRapi_01_00_00.Wdf
2008-12-25 20:45 . 2008-12-25 20:45 410,984 --a------ c:\windows\System32\deploytk.dll
2008-12-24 22:09 . 2008-12-24 22:09 <DIR> d-------- c:\program files\Microsoft Silverlight
2008-12-24 20:26 . 2008-12-24 20:52 <DIR> d-------- c:\program files\RegCleaner
2008-12-24 20:26 . 2008-12-24 20:26 <DIR> d-------- c:\program files\CCleaner
2008-12-24 15:55 . 2008-12-24 16:14 <DIR> d-------- c:\users\Skouřič\DoctorWeb
2008-12-24 15:55 . 2008-12-24 16:14 <DIR> d-------- c:\users\Skouřič\DoctorWeb
2008-12-24 10:53 . 2008-12-24 10:53 <DIR> d-------- c:\users\Skouřič\AppData\Roaming\Malwarebytes
2008-12-24 10:53 . 2008-12-24 10:53 <DIR> d-------- c:\users\All Users\Malwarebytes
2008-12-24 10:53 . 2008-12-24 10:53 <DIR> d-------- c:\programdata\Malwarebytes
2008-12-24 10:53 . 2008-12-24 10:53 <DIR> d-------- c:\program files\Malwarebytes' Anti-Malware
2008-12-24 10:53 . 2008-12-03 19:59 38,496 --a------ c:\windows\System32\drivers\mbamswissarmy.sys
2008-12-24 10:53 . 2008-12-03 19:59 15,504 --a------ c:\windows\System32\drivers\mbam.sys
2008-12-24 02:18 . 2008-12-24 02:18 <DIR> d-------- c:\program files\Trend Micro
2008-12-24 00:14 . 2008-12-24 00:35 <DIR> d-------- c:\users\Skouřič\Application Data
2008-12-24 00:14 . 2008-12-24 00:35 <DIR> d-------- c:\users\Skouřič\Application Data
2008-12-24 00:14 . 2008-12-24 00:35 <DIR> d-------- c:\program files\AudioCommander
2008-12-24 00:04 . 2008-12-24 20:26 <DIR> d-------- c:\users\Skouřič\Desktop
2008-12-24 00:04 . 2008-12-24 20:26 <DIR> d-------- c:\users\Skouřič\Desktop
2008-12-24 00:04 . 2008-12-24 00:36 <DIR> d-------- c:\program files\AVTJet Studio
2008-12-23 23:02 . 1996-09-30 19:46 24,576 --------- c:\windows\UniFISH.exe
2008-12-22 12:09 . 2008-12-22 20:29 <DIR> d-------- c:\users\Skouřič\AppData\Roaming\uTorrent
2008-12-22 12:09 . 2008-12-22 12:09 <DIR> d-------- c:\program files\uTorrent
2008-12-17 20:46 . 2008-12-17 20:46 <DIR> d-------- c:\users\All Users\WindowsSearch
2008-12-17 20:46 . 2008-12-17 20:46 <DIR> d-------- c:\programdata\WindowsSearch
2008-12-13 18:04 . 2008-12-26 18:37 <DIR> dr------- c:\users\Skouřič\Plocha
2008-12-13 18:04 . 2008-12-26 18:37 <DIR> dr------- c:\users\Skouřič\Plocha
2008-12-12 20:17 . 2008-12-12 20:17 <DIR> d-------- c:\program files\7-Zip
2008-12-11 17:53 . 2008-10-22 02:22 2,048 --a------ c:\windows\System32\tzres.dll
2008-12-11 14:27 . 2008-06-23 02:59 2,868,736 --a------ c:\windows\System32\mf.dll
2008-12-11 14:27 . 2008-06-23 02:59 996,352 --a------ c:\windows\System32\WMNetMgr.dll
2008-12-11 14:27 . 2008-06-23 02:58 94,720 --a------ c:\windows\System32\logagent.exe
2008-12-11 14:26 . 2008-11-01 02:21 4,240,384 --a------ c:\windows\System32\GameUXLegacyGDFs.dll
2008-12-11 14:26 . 2008-10-21 06:25 296,960 --a------ c:\windows\System32\gdi32.dll
2008-12-11 14:26 . 2008-11-01 04:44 28,672 --a------ c:\windows\System32\Apphlpdm.dll
2008-12-11 14:25 . 2008-10-16 03:23 1,383,424 --a------ c:\windows\System32\mshtml.tlb
2008-12-11 14:25 . 2008-10-16 05:47 827,392 --a------ c:\windows\System32\wininet.dll
2008-11-30 21:13 . 2008-12-08 19:52 <DIR> d-------- c:\program files\GIF Movie Gear
2008-11-28 12:28 . 2008-11-28 12:28 47,360 --a------ c:\users\Skouřič\AppData\Roaming\pcouffin.sys
2008-11-26 21:36 . 2008-12-10 10:44 <DIR> d-------- c:\users\Skouřič\AppData\Roaming\Nvu
2008-11-26 21:35 . 2008-11-28 12:27 <DIR> d-------- c:\program files\Nvu

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-12-26 17:51 2,621,440 --sha-w c:\users\Skouřič\ntuser.dat
2008-12-26 17:51 2,621,440 --sha-w c:\users\Skouřič\ntuser.dat
2008-12-26 17:32 --------- d-----w c:\users\Skouřič\AppData\Roaming\OpenOffice.org2
2008-12-25 19:45 --------- d-----w c:\program files\Java
2008-12-24 19:44 --------- d--h--w c:\program files\InstallShield Installation Information
2008-12-24 19:43 --------- d-----w c:\program files\Free Window Registry Repair
2008-12-24 09:53 --------- d-----w c:\users\Skouřič\AppData\Roaming\Malwarebytes
2008-12-23 23:27 --------- d-----w c:\users\Skouřič\AppData\Roaming\Smart Recorder
2008-12-23 10:01 --------- d-----w c:\programdata\Tablet
2008-12-22 19:29 --------- d-----w c:\users\Skouřič\AppData\Roaming\uTorrent
2008-12-11 21:27 --------- d-----w c:\program files\Microsoft Works
2008-12-11 16:57 --------- d-----w c:\program files\Windows Mail
2008-12-11 12:58 99,344 ----a-w c:\windows\system32\drivers\cmdguard.sys
2008-12-11 12:58 147,192 ----a-w c:\windows\System32\guard32.dll
2008-12-10 20:06 --------- d-----w c:\users\Skouřič\AppData\Roaming\ICQ
2008-12-10 09:44 --------- d-----w c:\users\Skouřič\AppData\Roaming\SecondLife
2008-12-10 09:44 --------- d-----w c:\users\Skouřič\AppData\Roaming\Nvu
2008-12-10 09:44 --------- d-----w c:\users\Skouřič\AppData\Roaming\GHISLER
2008-12-10 09:44 --------- d-----w c:\users\Skouřič\AppData\Roaming\geoget
2008-12-10 09:44 --------- d-----w c:\users\Skouřič\AppData\Roaming\Desktopicon
2008-12-10 09:44 --------- d-----w c:\users\Skouřič\AppData\Roaming\DAEMON Tools
2008-12-10 09:44 --------- d-----w c:\users\Skouřič\AppData\Roaming\Anvil Studio
2008-11-28 11:28 47,360 ----a-w c:\users\Skouřič\AppData\Roaming\pcouffin.sys
2008-11-28 11:28 --------- d-----w c:\users\Skouřič\AppData\Roaming\Vso
2008-11-28 11:28 --------- d-----w c:\program files\DVDFab 5
2008-11-26 17:17 51,792 ----a-w c:\windows\system32\drivers\aswMonFlt.sys
2008-11-26 16:44 25,104 ----a-w c:\windows\system32\drivers\cmdhlp.sys
2008-11-22 21:51 --------- d-----w c:\program files\CENZURA
2008-11-08 16:55 --------- d-----w c:\program files\Unlocker
2008-11-07 10:48 --------- d-----w c:\program files\SecondLife
2008-11-04 20:48 --------- d-----w c:\users\Skouřič\AppData\Roaming\GenieSoft
2008-11-04 20:48 --------- d-----w c:\program files\VSTPlugins
2008-11-01 03:44 541,696 ----a-w c:\windows\AppPatch\AcLayers.dll
2008-11-01 03:44 52,736 ----a-w c:\windows\AppPatch\iebrshim.dll
2008-11-01 03:44 460,288 ----a-w c:\windows\AppPatch\AcSpecfc.dll
2008-11-01 03:44 2,154,496 ----a-w c:\windows\AppPatch\AcGenral.dll
2008-11-01 03:44 173,056 ----a-w c:\windows\AppPatch\AcXtrnal.dll
2008-10-31 10:52 --------- d-----w c:\program files\DAEMON Tools Toolbar
2008-10-29 18:30 --------- d-----w c:\program files\Family Games
2008-10-26 09:32 --------- d-----w c:\program files\IVT Corporation
2008-10-26 09:30 --------- d-----w c:\program files\Common Files\InstallShield
2008-10-22 16:30 174 --sha-w c:\program files\desktop.ini
2008-10-22 15:26 82,432 ----a-w c:\windows\System32\axaltocm.dll
2008-10-22 15:26 101,888 ----a-w c:\windows\System32\ifxcardm.dll
2008-10-22 13:38 47,560 ----a-w c:\windows\System32\SPReview.exe
2008-10-22 13:38 152,576 ----a-w c:\windows\System32\SPWizUI.dll
2008-10-22 03:57 241,152 ----a-w c:\windows\System32\PortableDeviceApi.dll
2008-10-21 05:25 1,645,568 ----a-w c:\windows\System32\connect.dll
2008-10-16 21:13 1,809,944 ----a-w c:\windows\System32\wuaueng.dll
2008-10-16 21:12 561,688 ----a-w c:\windows\System32\wuapi.dll
2008-10-16 21:09 51,224 ----a-w c:\windows\System32\wuauclt.exe
2008-10-16 21:09 43,544 ----a-w c:\windows\System32\wups2.dll
2008-10-16 21:08 34,328 ----a-w c:\windows\System32\wups.dll
2008-10-16 20:56 1,524,736 ----a-w c:\windows\System32\wucltux.dll
2008-10-16 20:55 83,456 ----a-w c:\windows\System32\wudriver.dll
2008-10-16 13:08 162,064 ----a-w c:\windows\System32\wuwebv.dll
2008-10-16 12:56 31,232 ----a-w c:\windows\System32\wuapp.exe
2008-09-30 15:43 1,286,152 ----a-w c:\windows\System32\msxml4.dll
2007-11-07 06:24 397,312 --sha-w c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.0.6000.16480_none_ef1b6bb652cf8744\WinMail.exe
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2008-11-26 81000]
"COMODO SafeSurf"="c:\program files\COMODO\SafeSurf\cssurf.exe" [2008-06-30 278264]
"COMODO Firewall Pro"="c:\program files\COMODO\Firewall\cfp.exe" [2008-12-11 1797880]
"VolPanel"="c:\program files\Creative\SBLive 24-Bit External\Volume Panel\VolPanlu.exe" [2007-02-28 180224]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-12-25 136600]
"Windows Mobile-based device management"="c:\windows\WindowsMobile\wmdSync.exe" [2006-11-02 215552]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"= c:\windows\system32\guard32.dll c:\windows\system32\cssdll32.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"MIDI2"= vpnt.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
--a----t- 2008-08-30 09:49 133104 c:\users\Skouřič\AppData\Local\Google\Update\GoogleUpdate.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
--a------ 2008-01-18 22:38 1008184 c:\program files\Windows Defender\MSASCui.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative SB Monitoring Utility]
--a------ 2007-05-08 03:32 89600 c:\windows\System32\SBAVMon.dll

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-1717588766-1400539547-3450735735-1000]
"EnableNotifications"=dword:00000001
"EnableNotificationsRef"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{F4BA7A15-8353-42F8-B00C-D7D65B0C8D23}"= UDP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{4A1863B4-9518-4CB5-9902-6B51894B4977}"= TCP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"TCP Query User{D18468E4-65AC-4B02-95D7-D21FE35DDAEE}c:\\program files\\icq6\\icq.exe"= UDP:c:\program files\icq6\icq.exe:ICQ Library
"UDP Query User{37FD2D99-87E7-41D4-9C28-B182D7DCE701}c:\\program files\\icq6\\icq.exe"= TCP:c:\program files\icq6\icq.exe:ICQ Library
"TCP Query User{E36868D5-6CF6-4AC4-8EE5-2AB80FDB26FB}c:\\program files\\icq6\\icq.exe"= UDP:c:\program files\icq6\icq.exe:ICQ Library
"UDP Query User{81510356-A1E7-406B-BA46-11E8C6FF3E38}c:\\program files\\icq6\\icq.exe"= TCP:c:\program files\icq6\icq.exe:ICQ Library
"TCP Query User{DF25412C-8A4A-462A-9FED-8E9F55BB1E8F}c:\\games\\paintball2\\paintball2.exe"= UDP:c:\games\paintball2\paintball2.exe:paintball2
"UDP Query User{5929BB9D-3288-43D0-8D00-C58852A6F13E}c:\\games\\paintball2\\paintball2.exe"= TCP:c:\games\paintball2\paintball2.exe:paintball2
"TCP Query User{2AE9650F-5903-472A-BBE4-7914ED7D7EA6}c:\\program files\\fpscore metro\\fpscore.exe"= UDP:c:\program files\fpscore metro\fpscore.exe:fpscore
"UDP Query User{76E08A07-75D7-44AD-BD31-3C5E9952E534}c:\\program files\\fpscore metro\\fpscore.exe"= TCP:c:\program files\fpscore metro\fpscore.exe:fpscore
"TCP Query User{2DA8CE19-BFD0-4A1A-9CC0-84155A2C5106}c:\\games\\jazz2\\jazz2.exe"= UDP:c:\games\jazz2\jazz2.exe:Jazz Jackrabbit 2
"UDP Query User{55F32543-01F4-42CE-B17A-5CE0F388E1FA}c:\\games\\jazz2\\jazz2.exe"= TCP:c:\games\jazz2\jazz2.exe:Jazz Jackrabbit 2

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile]
"EnableFirewall"= 0 (0x0)

R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-06-30 111184]
R1 cmdGuard;COMODO Firewall Pro Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys [2008-06-30 99344]
R1 cmdHlp;COMODO Firewall Pro Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys [2008-06-30 25104]
R1 PSched;Plánovač paketů technologie QoS;c:\windows\system32\DRIVERS\pacer.sys [2008-10-24 72192]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\DRIVERS\aswFsBlk.sys [2008-06-30 20560]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\DRIVERS\aswMonFlt.sys [2008-06-30 51792]
R2 TeamViewer;TeamViewer 3;"c:\program files\TeamViewer3\TeamViewer_Host.exe" -service [2008-06-20 181544]
R3 ksaud;Creative USB Audio Driver;c:\windows\system32\drivers\ksaud.sys [2008-07-28 400896]
S1 aiptektp;Pen Pad;c:\windows\system32\DRIVERS\aiptektp.sys [2008-07-29 22528]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\ccc-core-static]
msiexec /fums {C61E8F12-31F1-C2E6-DC0C-505CBF2BEE57} /qb
.
Obsah adresáře 'Naplánované úlohy'

2008-11-21 c:\windows\Tasks\GoogleUpdateTaskUser.job
- c:\users\SkouY []
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.atlas.cz/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\users\Skouřič\AppData\Roaming\Mozilla\Firefox\Profiles\3aopt1c1.default\
FF - prefs.js: browser.search.selectedEngine - DAEMON Search
FF - prefs.js: browser.startup.homepage - atlas.cz
FF - plugin: c:\program files\Google\Update\1.2.131.11\npGoogleOneClick5.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
FF - plugin: c:\program files\Microsoft Silverlight\2.0.31005.0\npctrl.dll

ATTENTION: FIREFOX POLICES IS IN FORCE
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-26 18:51:51
Windows 6.0.6001 Service Pack 1 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\System32\Ati2evxx.exe
c:\windows\System32\audiodg.exe
c:\windows\System32\Ati2evxx.exe
c:\program files\Alwil Software\Avast4\aswUpdSv.exe
c:\program files\Alwil Software\Avast4\ashServ.exe
c:\windows\System32\CISVC.EXE
c:\program files\COMODO\Firewall\cmdagent.exe
c:\windows\System32\TCPSVCS.EXE
c:\firststeps\OnlineDiagnostic\TestManager\TestHandler.exe
c:\program files\Creative\Shared Files\CTAudSvc.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\System32\conime.exe
c:\program files\Alwil Software\Avast4\ashDisp.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\Windows Media Player\wmpnscfg.exe
c:\windows\System32\wbem\unsecapp.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
c:\program files\Common Files\microsoft shared\ink\InputPersonalization.exe
c:\windows\System32\dllhost.exe
.
**************************************************************************
.
Celkový čas: 2008-12-26 18:54:57 - počítač byl restartován
ComboFix-quarantined-files.txt 2008-12-26 17:54:46

Před spuštěním: Volných bajtů: 91 724 623 872
Po spuštění: Volných bajtů: 91,609,493,504

240 --- E O F --- 2008-12-11 16:56:43

Příspěvekod **jaro3** » 26 pro 2008 20:58

Log je po výmazech čistý, pokud aktualizace nefungují, použij vše , co bylo doporučeno výše+ dej sem nový log z HJT.
Stahni si SREng:
pravým na odkaz -ulož cíl jako...
- rozbal na plochu a spusť ho
- zvol "zvol Smart Scan", nech nastaveni tak jak je
- zvol "Verify the digital signature of process modules"
- klik na "Scan"
- klik na Save Reports, ulož log na plochu a cely obsah logu zkopiruj sem.

jakubskorepa · Příspěvekod **jakubskorepa** » 26 pro 2008 21:42

update furt nejdou a ten SREng je snakej spatnej odkaz... hodilo me to na stranku kde sem si klik na download a stah sem sreng2.exe doufam ze je to to co si myslel? a jak to dopadlo s tim crakerem?

Edit: přidávám log jako soubor na uloz.to má moc znaků a tady ty přílohy nedovolujou *.log ....

http://uloz.to/1091738/SREngLOG.log

jakubskorepa · Příspěvekod **jakubskorepa** » 26 pro 2008 22:02

už to můžete nechat bejt trochu sem si pohrál se službama a jak to furt řvalo že má špatnej účet tak sem překlik z ňákýho účtu co je tam napsanej na místní systémovej účet hned sem dal spustit a už instaluju aktualizae.... :lol:

.................. :crazy:

Aktualizace byly úspěšněnainstalovány. už to je tak díky

mám problém s Windows Update Vyřešeno

Re: mám problém s Windows Update

Re: mám problém s Windows Update

Re: mám problém s Windows Update

Re: mám problém s Windows Update

Re: mám problém s Windows Update

Re: mám problém s Windows Update

Re: mám problém s Windows Update

Re: mám problém s Windows Update

Re: mám problém s Windows Update

Re: mám problém s Windows Update

Re: mám problém s Windows Update

Re: mám problém s Windows Update

Kdo je online