Rustock.b-ADS attached to the System32-folder:
Attempting to remove ADS...
Looking for Rustock.b-files in the System32-folder:
Re§im ECHO je vypnut.
******************* Post-run Status of system *******************
Rustock.b-driver on the system:
YOU NEED TO CONSULT MORE ADVANCED TOOLS!!
The Gmer-rootkitscanner may be a good place to start.
Gmer rootkit-scanner may be found here: http://www.gmer.net
Rustock.b-ADS attached to the System32-folder:
Re§im ECHO je vypnut.
You should either run the tool again or consult more advanced tools
The Gmer-rootkitscanner may be a good place to start.
Gmer rootkit-scanner may be found here: http://www.gmer.net
Looking for Rustock.b-files in the System32-folder:
Re§im ECHO je vypnut.
You should either run the tool again or consult more advanced tools
Swandog46's Avenger or Gmer's-rootkitscanner may be a good place to start.
Swandog46's Avenger may be found here: http://swandog46.geekstogo.com/avengernotes.htm
Gmer rootkit-scanner may be found here: http://www.gmer.net
******************************* End of Logfile ********************************
Logfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Services\ivsnwcys
*******************
Script file located at: \??\C:\Program Files\ymaxbjaj.txt
Script file opened successfully.
Script file read successfully
Backups directory opened successfully at C:\Avenger
*******************
Beginning to process script file:
Driver PE386 unloaded successfully.
Program G:\Rustbfix\2run.bat successfully set up to run once on reboot.
Completed script processing.
*******************
Finished! Terminate.
Prosim o kontrolu logu (vyřešeno)
-
fredik
- člen Security týmu
-
Master Level 7
- Příspěvky: 4680
- Registrován: červenec 06
- Pohlaví:
- Stav:
Offline
Zkus sem dát ještě pro jistotu nový log z HJT.
V podstatě máš pc dobře zabezpečené Antivir, Firewall, používáš alternativ. prohlížeč akorát nevím co používáš za antispyware program máš tam podle logu RegRun Security Suite (trochu matoucí je jeho označení) ale jak si na tom stojí tak to nevím, ten program osobně neznám.
V podstatě máš pc dobře zabezpečené Antivir, Firewall, používáš alternativ. prohlížeč akorát nevím co používáš za antispyware program máš tam podle logu RegRun Security Suite (trochu matoucí je jeho označení) ale jak si na tom stojí tak to nevím, ten program osobně neznám.
Logfile of HijackThis v1.99.1
Scan saved at 13:49:47, on 14.1.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\ConMet\ConMet.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\WINDOWS\system32\CTFMON.EXE
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
G:\speedfan\speedfan.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\Program Files\Greatis\RegRunSuite\RegRunCenter.exe
C:\Program Files\Greatis\RegRunSuite\WatchDog.exe
C:\Program Files\Greatis\RegRunSuite\regrun2.exe
C:\DOCUME~1\TAKA~1\LOCALS~1\Temp\Rar$EX14.8441\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: XTTBPos00 Class - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\Program Files\ICQToolbar\toolbaru.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [ConMet] C:\Program Files\ConMet\ConMet.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Regrun2] C:\PROGRA~1\Greatis\REGRUN~1\WatchDog.exe
O4 - HKCU\..\Run: [Registry] "C:\Program Files\Greatis\RegRunSuite\lsoon.exe" -1 30 "C:\Program Files\Greatis\RegRunSuite\rescue.exe" /a "c:\backreg\rstore.ini"
O4 - Startup: SpeedFan.lnk = G:\speedfan\speedfan.exe
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{91AFDD90-E0FB-4C76-A248-F821F53B0CB3}: NameServer = 194.228.41.65 194.228.41.113
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Kerio Technologies - C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
tady mi udělal log RegRun Security Suit je-li to k něčemu
SpyHolesList Version:1.7
14.01.2007 13:45:24
WinDir=C:\WINDOWS
Startup=C:\Documents and Settings\Taťka\Nabídka Start\Programy\Po spuštění\
Common Startup=C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\
Microsoft Windows XP Service Pack 2 (5.1.2600)
Internet Explorer 6.0.2900.2180
[Internet Explorer]
[Default Home Page] :HKLM Default_Page_URL=""
[Current Home Page] :HKCU Start Page=about:blank
[Current Home Page] :HKCU HOMEOldSP=""
[Search URL Template] :HKLM 1=www.%s.com
[Search URL Template] :HKLM 2=www.%s.org
[Search URL Template] :HKLM 3=www.%s.net
[Search URL Template] :HKLM 4=www.%s.edu
[All Users Search] :HKLM Default_Search_URL=http://www.google.com
[All Users Search] :HKLM Search Page=http://www.google.com
[Current Users Search] :HKCU Search Page=http://www.google.com
[Current Users Search] :HKCU Search Bar=http://www.google.com/ie
[IE Local Blank Page] :HKCU Local Page=""
[IE Local Blank Page] :HKLM Local Page=""
[Browser Helper Objects] {02478D38-C3F9-4EFB-9B51-7695ECA05670}=C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
### Yahoo! Toolbar Yahoo! Inc. Yahoo! Toolbar 6, 2, 5, 0
[Browser Helper Objects] {055FD26D-3A88-4e15-963D-DC8493744B1D}=C:\Program Files\ICQToolbar\toolbaru.dll
### IE Toolbar IE Toolbar IE Toolbar 2, 0, 20, 7
[Browser Helper Objects] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}=C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
### Adobe Acrobat IE Helper Version 7.0 for ActiveX Adobe Systems Incorporated AcroIEHelper Library 7, 0, 0, 0
[Browser Helper Objects] {53707962-6F74-2D53-2644-206D7942484F}=C:\PROGRA~1\SPYBOT~1\SDHelper.dll
### Bad download blocker Safer Networking Limited Spybot - Search & Destroy 1, 4, 0, 3
[Browser Helper Objects] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}=C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
### Java(TM) 2 Platform Standard Edition binary Sun Microsystems, Inc. Java(TM) 2 Platform Standard Edition 5.0 Update 6 5.0.60.5
[Auto Search URL] :HKCU provider=""
[Auto Search URL] :HKCU "Default Value"=""
[Search Assistant] :HKCU SearchAssistant=""
[Search Assistant] :HKLM SearchAssistant=http://www.google.com/ie
[Search Assistant] :HKCU CustomizeSearch=""
[Search Assistant] :HKLM CustomizeSearch=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
[CustomizeSearch] :HKLM CustomizeSearch=""
[URLSearchHook] :HKCU {855F3B16-6D32-4fe6-8A56-BBB695989046}=C:\Program Files\ICQToolbar\toolbaru.dll
### IE Toolbar IE Toolbar IE Toolbar 2, 0, 20, 7
[Default Prefix] :HKLM "Default Value"=http://
[URL Default Prefixes] :HKLM ftp=ftp://
[URL Default Prefixes] :HKLM gopher=gopher://
[URL Default Prefixes] :HKLM home=http://
[URL Default Prefixes] :HKLM mosaic=http://
[URL Default Prefixes] :HKLM www=http://
[Safe Sites] :HKLM ie.search.msn.com=http://ie.search.msn.com/*
[AboutURLs] :HKLM NavigationFailure=res://shdoclc.dll/navcancl.htm
[AboutURLs] :HKLM DesktopItemNavigationFailure=res://shdoclc.dll/navcancl.htm
[AboutURLs] :HKLM NavigationCanceled=res://shdoclc.dll/navcancl.htm
[AboutURLs] :HKLM OfflineInformation=res://shdoclc.dll/offcancl.htm
[AboutURLs] :HKLM Home=270
[AboutURLs] :HKLM blank=res://mshtml.dll/blank.htm
[AboutURLs] :HKLM PostNotCached=res://mshtml.dll/repost.htm
[User Style Sheet] :HKCU User Stylesheet=""
[User Style Sheet] :HKUS User Stylesheet=""
[User Style Sheet] :HKCU Use My Stylesheet=0
[User Style Sheet] :HKUS Use My Stylesheet=0
[Execute unsigned ActiveX in My Computer Zone] :HKCU 1201=1
[Execute unsigned ActiveX in My Computer Zone] :HKLM 1201=1
[Execute unsigned ActiveX in Local Intranet Zone] :HKCU 1201=3
[Execute unsigned ActiveX in Local Intranet Zone] :HKLM 1201=3
[Execute unsigned ActiveX in Internet Zone] :HKCU 1201=3
[Execute unsigned ActiveX in Internet Zone] :HKLM 1201=3
[Links Toolbar] :HKCU LinksFolderName=Odkazy
[Toolbars] :HKLM {855F3B16-6D32-4fe6-8A56-BBB695989046}=C:\Program Files\ICQToolbar\toolbaru.dll
### IE Toolbar IE Toolbar IE Toolbar 2, 0, 20, 7
[Toolbars] :HKLM {EF99BD32-C1FB-11D2-892F-0090271D4F88}=C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
### Yahoo! Toolbar Yahoo! Inc. Yahoo! Toolbar 6, 2, 5, 0
[Explorer Bars] :HKLM {4D5C8C25-D075-11d0-B416-00C04FB90376}=%SystemRoot%\System32\shdocvw.dll
### Shell Doc Object and Control Library Microsoft Corporation Microsoft(R) Windows (R) 2000 Operating System 6.00.2900.2987
[IE Extensions - All Users] :HKLM {08B0E5C0-4FCB-11CF-AAA5-00401C608501}=%SystemRoot%\System32\shdocvw.dll
### Shell Doc Object and Control Library Microsoft Corporation Microsoft(R) Windows (R) 2000 Operating System 6.00.2900.2987
[IE Extensions - All Users] :HKLM {B863453A-26C3-4e1f-A54D-A2CD196348E9}=C:\Program Files\ICQLite\ICQLite.exe
### ICQLite ICQ Ltd. ICQLite 20, 52, 2587, 0
[IE Extensions - All Users] :HKLM {FB5F1910-F110-11d2-BB9E-00C04F795683}=C:\Program Files\Messenger\msmsgs.exe
### Windows Messenger Microsoft Corporation Messenger Version 4.7.3001
[Context menu items] :HKCU &ICQ Toolbar Search=res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
[Context menu items] :HKCU E&xportovat do aplikace Microsoft Excel=res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
[Proxy] :HKCU ProxyServer=""
[Proxy] :HKCU ProxyEnable=0
[Network Settings]
[Hosts File Path] :HKLM DataBasePath=%SystemRoot%\System32\drivers\etc
[Hosts File Contents] :HKLM 127.0.0.1 localhost
[Domain Name] :HKLM Domain=""
[Name Server] {91AFDD90-E0FB-4C76-A248-F821F53B0CB3}=194.228.41.65 194.228.41.113
### DefaultGateway: IPAddress:0.0.0.0
[WinSock2 Components] :HKLM mswsock.dll=%SystemRoot%\System32\mswsock.dll
### Poskytovatel služeb Microsoft Windows Sockets 2.0 Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[WinSock2 Components] :HKLM winrnr.dll=%SystemRoot%\System32\winrnr.dll
### LDAP RnR Provider DLL Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[WinSock2 Components] :HKLM nwprovau.dll=%SystemRoot%\System32\nwprovau.dll
### Client Service for NetWare Provider and Authentication Package DLL Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.3015
[WinSock2 Components] :HKLM rsvpsp.dll=%SystemRoot%\system32\rsvpsp.dll
### Microsoft Windows Rsvp 1.0 Service Provider Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Windows Shell]
[Display Scrap's Extensions] :HKLM NeverShowExt=""
[ScreenSaver] :HKCU SCRNSAVE.EXE=""
[System.ini] shell=Explorer.exe
[Main File Extensions] :HKLM .exe="%1" %*
[Main File Extensions] :HKLM .com="%1" %*
[Main File Extensions] :HKLM .pif="%1" %*
[Main File Extensions] :HKLM .cmd="%1" %*
[Main File Extensions] :HKLM .scr="%1" /S
[Main File Extensions] :HKLM .jpg=rundll32.exe C:\WINDOWS\System32\shimgvw.dll,ImageView_Fullscreen %1
[Main File Extensions] :HKLM .jpeg=C:\PROGRA~1\QUICKT~1\PictureViewer.exe "%1"
[Shell Execute Hooks] :HKLM {AEB6717E-7E19-11d0-97EE-00C04FD91972}=shell32.dll
### Windows Shell Common Dll Microsoft Corporation Microsoft(R) Windows (R) 2000 Operating System 6.00.2900.2951
[Shell Execute Hooks] :HKLM {F552DDE6-2090-4bf4-B924-6141E87789A5}=C:\Program Files\Greatis\RegRunSuite\RRShell.dll
### RRShell Module Greatis Software, LLC RRShell Module 1, 0, 1, 2
[UserInit Value] :HKLM UserInit=C:\WINDOWS\system32\userinit.exe,
[Winlogon Notification] :HKLM AtiExtEvent=Ati2evxx.dll
### AtiExtEvent ATI External Event Utility DLL Module ATI Technologies Inc. ATI External Event Utility for NT, W2K and W9X 6.14.10.4131.01
[Winlogon Notification] :HKLM crypt32chain=crypt32.dll
### crypt32chain Crypto API32 Microsoft Corporation Operační systém Microsoft® Windows® 5.131.2600.2180
[Winlogon Notification] :HKLM cryptnet=cryptnet.dll
### cryptnet Crypto Network Related API Microsoft Corporation Microsoft® Windows® Operating System 5.131.2600.2180
[Winlogon Notification] :HKLM cscdll=cscdll.dll
### cscdll Offline Network Agent Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Winlogon Notification] :HKLM ScCertProp=wlnotify.dll
### ScCertProp Common DLL to receive Winlogon notifications Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Winlogon Notification] :HKLM Schedule=wlnotify.dll
### Schedule Common DLL to receive Winlogon notifications Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Winlogon Notification] :HKLM sclgntfy=sclgntfy.dll
### sclgntfy Secondary Logon Service Notification DLL Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Winlogon Notification] :HKLM SensLogn=WlNotify.dll
### SensLogn Common DLL to receive Winlogon notifications Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Winlogon Notification] :HKLM termsrv=wlnotify.dll
### termsrv Common DLL to receive Winlogon notifications Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Winlogon Notification] :HKLM wlballoon=wlnotify.dll
### wlballoon Common DLL to receive Winlogon notifications Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Shell Services DelayLoad] :HKLM PostBootReminder=%SystemRoot%\system32\SHELL32.dll
### Windows Shell Common Dll Microsoft Corporation Microsoft(R) Windows (R) 2000 Operating System 6.00.2900.2951
[Shell Services DelayLoad] :HKLM CDBurn=%SystemRoot%\system32\SHELL32.dll
### Windows Shell Common Dll Microsoft Corporation Microsoft(R) Windows (R) 2000 Operating System 6.00.2900.2951
[Shell Services DelayLoad] :HKLM WebCheck=%SystemRoot%\System32\webcheck.dll
### Web Site Monitor Microsoft Corporation Operační systém Microsoft® Windows® 6.00.2900.2180
[Shell Services DelayLoad] :HKLM SysTray=C:\WINDOWS\System32\stobject.dll
### Systray shell service object Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Prevents Display in Control Panel from running.] :HKCU NoDispCpl=0
[Disable Registry Tools ] :HKCU DisableRegistryTools =0
[SharedTaskScheduler] :HKLM {438755C2-A8BA-11D1-B96B-00A0C90312E1}=%SystemRoot%\System32\browseui.dll
### Shell Browser UI Library Společnost Microsoft Microsoft(R) Windows (R) 2000 Operating System 6.00.2900.2995
[SharedTaskScheduler] :HKLM {8C7461EF-2B13-11d2-BE35-3078302C2030}=%SystemRoot%\System32\browseui.dll
### Shell Browser UI Library Společnost Microsoft Microsoft(R) Windows (R) 2000 Operating System 6.00.2900.2995
[Kernel Auto Boot]
[ActiveSetup] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95}=C:\WINDOWS\inf\unregmp2.exe /ShowWMP
### Microsoft Windows Media Player Setup Utility Microsoft Corporation Microsoft(R) Windows Media Player 9.00.00.3250
[Bootexecute] :HKLM BootExecute=""
[KnownDLLs] :HKLM advapi32=advapi32.dll
[KnownDLLs] :HKLM comdlg32=comdlg32.dll
[KnownDLLs] :HKLM DllDirectory=%SystemRoot%\system32
[KnownDLLs] :HKLM gdi32=gdi32.dll
[KnownDLLs] :HKLM imagehlp=imagehlp.dll
[KnownDLLs] :HKLM kernel32=kernel32.dll
[KnownDLLs] :HKLM lz32=lz32.dll
[KnownDLLs] :HKLM ole32=ole32.dll
[KnownDLLs] :HKLM oleaut32=oleaut32.dll
[KnownDLLs] :HKLM olecli32=olecli32.dll
[KnownDLLs] :HKLM olecnv32=olecnv32.dll
[KnownDLLs] :HKLM olesvr32=olesvr32.dll
[KnownDLLs] :HKLM olethk32=olethk32.dll
[KnownDLLs] :HKLM rpcrt4=rpcrt4.dll
[KnownDLLs] :HKLM shell32=shell32.dll
[KnownDLLs] :HKLM url=url.dll
[KnownDLLs] :HKLM urlmon=urlmon.dll
[KnownDLLs] :HKLM user32=user32.dll
[KnownDLLs] :HKLM version=version.dll
[KnownDLLs] :HKLM wininet=wininet.dll
[KnownDLLs] :HKLM wldap32=wldap32.dll
[Environment - Path ] :HKLM Path=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Common Files\Ulead Systems\MPEG
[List of Injected DLLs] :HKLM AppInit_DLLs=""
[Auto Services] aswUpdSv
### Internal Name: aswUpdSv. Status: service running. Actual File: "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe" * Zajišťuje spouštění aktualizace pro antivirus avast!.
[Auto Services] Ati HotKey Poller
### Internal Name: Ati HotKey Poller. Status: service running. Actual File: C:\WINDOWS\system32\Ati2evxx.exe *
[Auto Services] ATI Smart
### Internal Name: ATI Smart. Status: service stopped. Actual File: C:\WINDOWS\system32\ati2sgag.exe *
[Auto Services] AudioSrv
### Internal Name: AudioSrv. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Spravuje zvuková zařízení programů pro systém Windows. Jeli tato sloužba zastavena, nebudou zvuková zařízení a efekty správně fungovat. Je-li tato služba zakázána, pak se spuštění všech služeb výslovně závislých na této službě nezdaří.
[Auto Services] avast! Antivirus
### Internal Name: avast! Antivirus. Status: service running. Actual File: "C:\Program Files\Alwil Software\Avast4\ashServ.exe" * Zajišťuje antivirové služby programu avast!, jako např. rezidentní ochranu, virovou truhlu a plánovač.
[Auto Services] avast! Mail Scanner
### Internal Name: avast! Mail Scanner. Status: service running. Actual File: "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service * Zajišťuje kontrolu pošty pro avast! antivirus.
[Auto Services] BITS
### Internal Name: BITS. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Přenáší soubory na pozadí s použitím nevyužité kapacity linky. Pokud je služba zastavena, funkce jako Windows Update nebo MSN Explorer nebudou moci automaticky stahovat programy a další informace. Pokud je tato služba zakázána, služby které na ní explicitně závisí možná nebudou moci přenášet soubory (v případě že nemají zabudovanou funkci pro přenos přímo pomocí IE při zakázané službě BITS).
[Auto Services] Browser
### Internal Name: Browser. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Udržuje aktualizovaný seznam počítačů v síti a poskytuje seznam počítačů kvalifikovaných jako prohlížeče. Po zastavení služby nebude tento seznam dále aktualizován ani udržován. Jestliže je tato služba zakázána, nezdaří se spuštění žádných služeb, které na této službě závisí.
[Auto Services] CryptSvc
### Internal Name: CryptSvc. Status: service running. Actual File: C:\WINDOWS\system32\svchost.exe -k netsvcs * Poskytuje tři služby pro správu: Databázovou službu katalogu, která potvrzuje podpisy souborů systému Windows; službu Ochrany kořenových certifikátů, která přidává a odebírá důvěryhodné kořenové Certifikační úřady; službu Správy klíčů, která pomáhá přihlásit počítač k odběru certifikátů. Je-li tato služba zastavena, nebudou tyto služby správy správně fungovat. Je-li tato služba zakázána, pak se spuštění všech služeb výslovně závislých na této službě nezdaří.
[Auto Services] DcomLaunch
### Internal Name: DcomLaunch. Status: service running. Actual File: C:\WINDOWS\system32\svchost -k DcomLaunch * Poskytuje funkce spouštění pro služby DCOM
[Auto Services] Dhcp
### Internal Name: Dhcp. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Spravuje konfiguraci sítě, registruje a aktualizuje adresy IP a názvy DNS.
[Auto Services] dmserver
### Internal Name: dmserver. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Rozpozná a sleduje nové jednotky pevných disků a odesílá informace o diskových svazcích Službě správy pro Správce logických disků. Je-li tato služba zastavená, informace o stavu dynamických disků a konfiguraci mohou být zastaralé. Je-li tato služba zakázána, pak se spuštění všech služeb výslovně závislých na této službě nezdaří.
[Auto Services] Dnscache
### Internal Name: Dnscache. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k NetworkService * Překládá a ukládá do paměti názvy DNS (Domain Name System) pro tento počítač. Po zastavení této služby nebude počítač moci překládat názvy DNS a detekovat řadiče domény služby Active Directory. Jestliže je tato služba zakázána, nezdaří se spuštění žádných služeb, které na této službě závisí.
[Auto Services] Eventlog
### Internal Name: Eventlog. Status: service running. Actual File: C:\WINDOWS\system32\services.exe * Umožňuje zobrazování zpráv protokolu událostí vystavených programy a komponenty pro systém Windows. Tato služba nemůže být zastavena.
[Auto Services] helpsvc
### Internal Name: helpsvc. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Umožňuje spuštění nápovědy a odborné pomoci v tomto počítači. Pokud je tato služba zastavena, nápověda a odborná pomoc nebude k dispozici. Pokud je tato služba vypnuta, nebude možné spustit žádnou z explicitně závislých služeb.
[Auto Services] KPF4
### Internal Name: KPF4. Status: service running. Actual File: "C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe" * Kerio Personal Firewall Engine
[Auto Services] lanmanserver
### Internal Name: lanmanserver. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Podporuje pro tento počítač sdílení souborů, tisku a pojmenovaných kanálů v síti. Po zastavení služby nebudou tyto funkce k dispozici. Jestliže je tato služba zakázána, nezdaří se spuštění žádných služeb, které na této službě závisí.
[Auto Services] lanmanworkstation
### Internal Name: lanmanworkstation. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Vytváří a udržuje síťová připojení klientů ke vzdáleným serverům. Po zastavení služby nebudou tato připojení k dispozici. Jestliže je tato služba zakázána, nezdaří se spuštění žádných služeb, které na této službě závisí.
[Auto Services] LmHosts
### Internal Name: LmHosts. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k LocalService * Obsahuje podporu služby NetBIOS pro protokol TCP/IP (NetBT) a překládání názvů NetBIOS.
[Auto Services] PlugPlay
### Internal Name: PlugPlay. Status: service running. Actual File: C:\WINDOWS\system32\services.exe * Umožňuje počítači rozpoznat a upravit změny hardwaru s minimálním nebo žádným vstupem uživatele. Zastavení nebo zakázání služby může vést k nestabilitě systému.
[Auto Services] PolicyAgent
### Internal Name: PolicyAgent. Status: service running. Actual File: C:\WINDOWS\System32\lsass.exe * Spravuje zásady zabezpečení protokolu IP a spouští ovladač ISAKMP/Oakley (IKE) a ovladač zabezpečení protokolu IP.
[Auto Services] ProtectedStorage
### Internal Name: ProtectedStorage. Status: service running. Actual File: C:\WINDOWS\system32\lsass.exe * Poskytuje chráněné úložiště pro citlivá data, jako např. soukromé klíče, čímž data chrání před přístupem neověřených služeb, procesů nebo uživatelů.
[Auto Services] RemoteRegistry
### Internal Name: RemoteRegistry. Status: service running. Actual File: C:\WINDOWS\system32\svchost.exe -k LocalService * Umožňuje vzdáleným uživatelům měnit nastavení registru tohoto počítače. Je-li služba zastavena, může být registr měněn pouze uživatelem tohoto počítače. Je-li tato služba zakázána, pak se spuštění všech služeb výslovně závislých na této službě nezdaří.
[Auto Services] RpcSs
### Internal Name: RpcSs. Status: service running. Actual File: C:\WINDOWS\system32\svchost -k rpcss * Poskytuje mapovač koncových bodů a různé další služby RPC.
[Auto Services] SamSs
### Internal Name: SamSs. Status: service running. Actual File: C:\WINDOWS\system32\lsass.exe * Ukládá informace o zabezpečení účtů místních uživatelů.
[Auto Services] Schedule
### Internal Name: Schedule. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Umožňuje uživateli konfigurovat a plánovat automaticky spouštěné úlohy v tomto počítači. Je-li služba zastavena, nebudou tyto úlohy v plánovanou dobu spuštěny. Je-li tato služba zakázána, pak se spuštění všech služeb výslovně závislých na této službě nezdaří.
[Auto Services] seclogon
### Internal Name: seclogon. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Umožňuje spouštění procesů s jiným pověřením. Je-li služba zastaven, nebude tento typ přihlašovacího přístupu k dispozici. Je-li tato služba zakázána, pak se spuštění všech služeb výslovně závislých na této službě nezdaří.
[Auto Services] SENS
### Internal Name: SENS. Status: service running. Actual File: C:\WINDOWS\system32\svchost.exe -k netsvcs * Sleduje systémové události, jako např. přihlášení k systému Windows, síťové události nebo události týkající se napájení, a oznamuje výskyt těchto událostí odběratelům systému událostí COM+.
[Auto Services] SharedAccess
### Internal Name: SharedAccess. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Zajišťuje překlad síťové adresy, adresování, překlad adres IP a ochranu před neoprávněným vniknutím do podnikové nebo domácí sítě.
[Auto Services] ShellHWDetection
### Internal Name: ShellHWDetection. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs *
[Auto Services] Spooler
### Internal Name: Spooler. Status: service running. Actual File: C:\WINDOWS\system32\spoolsv.exe * Načítá soubory do paměti pro pozdější tisk.
[Auto Services] srservice
### Internal Name: srservice. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Provádí obnovení systému. Chcete-li službu zastavit, vypněte Obnovu systému na kartě Obnova systému Vlastností počítače.
[Auto Services] stisvc
### Internal Name: stisvc. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k imgsvc * Poskytuje služby načítání obrázků ze skenerů a fotoaparátů.
[Auto Services] Themes
### Internal Name: Themes. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Zprostředkovává správu motivů.
[Auto Services] TrkWks
### Internal Name: TrkWks. Status: service running. Actual File: C:\WINDOWS\system32\svchost.exe -k netsvcs * Spravuje propojení mezi soubory v systému NTFS v rámci počítače i mezi počítači v doméně sítě.
[Auto Services] W32Time
### Internal Name: W32Time. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Udržuje synchronizaci data a času u všech klientů a serverů v síti. Pokud bude tato služba ukončena, synchronizace data a času nebude k dispozici. Jestliže je tato služba zakázána, nezdaří se spuštění žádných služeb, které na této službě závisí.
[Auto Services] WebClient
### Internal Name: WebClient. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k LocalService * Umožňuje programům pro systém Windows vytvářet, přistupovat a měnit soubory pro Internet. Je-li služba zastavena, nebudou tyto funkce k dispozici. Je-li tato služba zakázána, pak se spuštění všech služeb výslovně závislých na této službě nezdaří.
[Auto Services] winmgmt
### Internal Name: winmgmt. Status: service running. Actual File: C:\WINDOWS\system32\svchost.exe -k netsvcs * Poskytuje běžné rohraní a objektový model k přístupu k informacím pro správu o operačním systému, zařízeních, aplikacích a službách. Jeli tato služba zastavena, většina softwaru pro systém Windows nebude fungovat správně. Je-li tato služba zakázáne, pak se spuštění všech služeb na této službě výslovně závislých nezdaří.
[Auto Services] wscsvc
### Internal Name: wscsvc. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Monitoruje nastavení zabezpečení systému.
[Auto Services] wuauserv
### Internal Name: wuauserv. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Povoluje stahování a instalaci aktualizací systému Windows. Pokud je tato služba zakázána, nebude možné použít funkci Automatické aktualizace ani webový server Windows Update.
[Auto Services] WZCSVC
### Internal Name: WZCSVC. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Poskytuje automatickou konfiguraci adaptérů 802.11
[Drivers] ntoskrnl.exe=C:\WINDOWS\SYSTEM32\NTOSKRNL.EXE
### NT Kernel & System Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2622
[Drivers] hal.dll=C:\WINDOWS\SYSTEM32\HAL.DLL
### Hardware Abstraction Layer DLL Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] KDCOM.DLL=C:\WINDOWS\SYSTEM32\KDCOM.DLL
### Kernel Debugger HW Extension DLL Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] BOOTVID.dll=C:\WINDOWS\SYSTEM32\BOOTVID.DLL
### VGA Boot Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] ACPI.sys=C:\WINDOWS\system32\DRIVERS\ACPI.sys
### ACPI Driver for NT Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] WMILIB.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\WMILIB.SYS
### WMILIB WMI support library Dll Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] pci.sys=C:\WINDOWS\system32\DRIVERS\pci.sys
### NT Plug and Play PCI Enumerator Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] isapnp.sys=C:\WINDOWS\system32\DRIVERS\isapnp.sys
### PNP ISA Bus Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.0
[Drivers] viaide.sys=C:\WINDOWS\system32\DRIVERS\viaide.sys
### Generic PCI IDE Bus Driver Microsoft Corporation Microsoft(R) Windows NT(R) Operating System 5.00.1636.1
[Drivers] PCIIDEX.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\PCIIDEX.SYS
### PCI IDE Bus Driver Extension Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] MountMgr.sys=C:\WINDOWS\system32\DRIVERS\MountMgr.sys
### Mount Manager Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] ftdisk.sys=C:\WINDOWS\system32\DRIVERS\ftdisk.sys
### FT Disk Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.0
[Drivers] dmload.sys=C:\WINDOWS\system32\DRIVERS\dmload.sys
### NT Disk Manager Startup Driver Microsoft Corp., Veritas Software. Logical Disk Manager for Windows NT 1.0
[Drivers] dmio.sys=C:\WINDOWS\system32\DRIVERS\dmio.sys
### NT Disk Manager I/O Driver Microsoft Corp., Veritas Software VERITAS® NT Disk Manager 1.0
[Drivers] PartMgr.sys=C:\WINDOWS\system32\DRIVERS\PartMgr.sys
### Partition Manager Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] VolSnap.sys=C:\WINDOWS\system32\DRIVERS\VolSnap.sys
### Volume Shadow Copy Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] atapi.sys=C:\WINDOWS\system32\DRIVERS\atapi.sys
### IDE/ATAPI Port Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] disk.sys=C:\WINDOWS\system32\DRIVERS\disk.sys
### PnP Disk Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] CLASSPNP.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\CLASSPNP.SYS
### SCSI Class System Dll Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] fltmgr.sys=C:\WINDOWS\system32\DRIVERS\fltmgr.sys
### Microsoft Filesystem Filter Manager Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2978
[Drivers] sr.sys=C:\WINDOWS\system32\DRIVERS\sr.sys
### System Restore Filesystem Filter Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] KSecDD.sys=C:\WINDOWS\system32\DRIVERS\KSecDD.sys
### Kernel Security Support Provider Interface Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] Ntfs.sys=C:\WINDOWS\system32\DRIVERS\Ntfs.sys
### NT File System Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] NDIS.sys=C:\WINDOWS\system32\DRIVERS\NDIS.sys
### NDIS 5.1 wrapper driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] viaagp.sys=C:\WINDOWS\system32\DRIVERS\viaagp.sys
### VIA NT AGP Filter Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] viaagp1.sys=C:\WINDOWS\system32\DRIVERS\viaagp1.sys
### VIA NT AGP Filter VIA Technologies, Inc. VIA CPU to AGP2.0/AGP3.0 Controller 5.1.0.3442
[Drivers] speedfan.sys=C:\WINDOWS\system32\DRIVERS\speedfan.sys
[Drivers] Mup.sys=C:\WINDOWS\system32\DRIVERS\Mup.sys
### Multiple UNC Provider driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] giveio.sys=C:\WINDOWS\system32\DRIVERS\giveio.sys
[Drivers] amdk7.sys=C:\WINDOWS\SYSTEM32\DRIVERS\AMDK7.SYS
### Processor Device Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] ati2mtag.sys=C:\WINDOWS\SYSTEM32\DRIVERS\ATI2MTAG.SYS
### ATI Radeon WindowsNT Miniport Driver ATI Technologies Inc. ATI Radeon WindowsNT Miniport Driver 6.14.10.6606
[Drivers] VIDEOPRT.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\VIDEOPRT.SYS
### Video Port Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] cdrom.sys=C:\WINDOWS\SYSTEM32\DRIVERS\CDROM.SYS
### SCSI CD-ROM Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] redbook.sys=C:\WINDOWS\SYSTEM32\DRIVERS\REDBOOK.SYS
### Redbook Audio Filter Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] ks.sys=C:\WINDOWS\SYSTEM32\DRIVERS\KS.SYS
### Kernel CSA Library Microsoft Corporation Microsoft(R) Windows(R) Operating System 5.3.2600.2180
[Drivers] GEARAspiWDM.sys=C:\WINDOWS\SYSTEM32\DRIVERS\GEARASPIWDM.SYS
### CDRom Class Filter Driver GEAR Software Inc. GEAR.wrks 7.xx
[Drivers] imapi.sys=C:\WINDOWS\SYSTEM32\DRIVERS\IMAPI.SYS
### IMAPI Kernel Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] usbuhci.sys=C:\WINDOWS\SYSTEM32\DRIVERS\USBUHCI.SYS
### UHCI USB Miniport Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] USBPORT.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\USBPORT.SYS
### USB 1.1 & 2.0 Port Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] ac97via.sys=C:\WINDOWS\SYSTEM32\DRIVERS\AC97VIA.SYS
### VIA Audio WDM Driver VIA Technologies, Inc. VIA Audio WDM Driver 5.10.00.3622
[Drivers] portcls.sys=C:\WINDOWS\SYSTEM32\DRIVERS\PORTCLS.SYS
### Port Class (Class Driver for Port/Miniport Devices) Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] drmk.sys=C:\WINDOWS\SYSTEM32\DRIVERS\DRMK.SYS
### Microsoft Kernel DRM Descrambler Filter Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] Pv848.sys=C:\WINDOWS\SYSTEM32\DRIVERS\PV848.SYS
### BtCap WDM Video Capture Driver Conexant Systems, Inc. bt848.sys 3.1.28.2
[Drivers] STREAM.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\STREAM.SYS
### WDM CODEC Class Device Driver 2.0 Microsoft Corporation Microsoft(R) Windows(R) Operating System 5.3.2600.2180
[Drivers] fdc.sys=C:\WINDOWS\SYSTEM32\DRIVERS\FDC.SYS
### Floppy Disk Controller Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] serial.sys=C:\WINDOWS\SYSTEM32\DRIVERS\SERIAL.SYS
### Serial Device Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] actser.sys=C:\WINDOWS\SYSTEM32\DRIVERS\ACTSER.SYS
### Actser Serial Filter driver Siemens AG Actser Filter Driver 2.04
[Drivers] serenum.sys=C:\WINDOWS\SYSTEM32\DRIVERS\SERENUM.SYS
### Serial Port Enumerator Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] parport.sys=C:\WINDOWS\SYSTEM32\DRIVERS\PARPORT.SYS
### Parallel Port Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] i8042prt.sys=C:\WINDOWS\SYSTEM32\DRIVERS\I8042PRT.SYS
### i8042 Port Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] L8042pr2.Sys=C:\WINDOWS\SYSTEM32\DRIVERS\L8042PR2.SYS
### Logitech PS/2 Mouse Filter Driver. Logitech, Inc. Logitech MouseWare(TM) 9.75.294.0
[Drivers] LMouFlt2.Sys=C:\WINDOWS\SYSTEM32\DRIVERS\LMOUFLT2.SYS
### Logitech Filter Driver for Mouse Class. Logitech, Inc. Logitech MouseWare(TM) 9.75.294.0
[Drivers] mouclass.sys=C:\WINDOWS\SYSTEM32\DRIVERS\MOUCLASS.SYS
### Mouse Class Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] itchfltr.sys=C:\WINDOWS\SYSTEM32\DRIVERS\ITCHFLTR.SYS
### Logitech PS2 Keyboard Filter Driver. Logitech, Inc. Logitech iTouch(TM) 2.10.251.0
[Drivers] kbdclass.sys=C:\WINDOWS\SYSTEM32\DRIVERS\KBDCLASS.SYS
### Keyboard Class Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] audstub.sys=C:\WINDOWS\SYSTEM32\DRIVERS\AUDSTUB.SYS
### AudStub Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] rasl2tp.sys=C:\WINDOWS\SYSTEM32\DRIVERS\RASL2TP.SYS
### RAS L2TP mini-port/call-manager driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] ndistapi.sys=C:\WINDOWS\SYSTEM32\DRIVERS\NDISTAPI.SYS
### NDIS 3.0 connection wrapper driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] ndiswan.sys=C:\WINDOWS\SYSTEM32\DRIVERS\NDISWAN.SYS
### MS PPP Framing Driver (Strong Encryption) Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] raspppoe.sys=C:\WINDOWS\SYSTEM32\DRIVERS\RASPPPOE.SYS
### RAS PPPoE mini-port/call-manager driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] raspptp.sys=C:\WINDOWS\SYSTEM32\DRIVERS\RASPPTP.SYS
### Peer-to-Peer Tunneling Protocol Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] TDI.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\TDI.SYS
### TDI Wrapper Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] psched.sys=C:\WINDOWS\SYSTEM32\DRIVERS\PSCHED.SYS
### MS QoS Packet Scheduler Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] msgpc.sys=C:\WINDOWS\SYSTEM32\DRIVERS\MSGPC.SYS
### MS General Packet Classifier Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] ptilink.sys=C:\WINDOWS\SYSTEM32\DRIVERS\PTILINK.SYS
### Parallel Technologies DirectParallel IO Library Parallel Technologies, Inc. Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] raspti.sys=C:\WINDOWS\SYSTEM32\DRIVERS\RASPTI.SYS
### PTI DirectParallel(R) mini-port/call-manager driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] rdpdr.sys=C:\WINDOWS\SYSTEM32\DRIVERS\RDPDR.SYS
### Microsoft RDP Device redirector Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] termdd.sys=C:\WINDOWS\SYSTEM32\DRIVERS\TERMDD.SYS
### Terminal Server Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] swenum.sys=C:\WINDOWS\SYSTEM32\DRIVERS\SWENUM.SYS
### Plug and Play Software Device Enumerator Microsoft Corporation Microsoft(R) Windows(R) Operating System 5.3.2600.2180
[Drivers] update.sys=C:\WINDOWS\SYSTEM32\DRIVERS\UPDATE.SYS
### Update Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] mssmbios.sys=C:\WINDOWS\SYSTEM32\DRIVERS\MSSMBIOS.SYS
### System Management BIOS Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] NDProxy.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\NDPROXY.SYS
### NDIS Proxy Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] usbhub.sys=C:\WINDOWS\SYSTEM32\DRIVERS\USBHUB.SYS
### Default Hub Driver for USB Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] USBD.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\USBD.SYS
### Universal Serial Bus Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] PvXBAR.sys=C:\WINDOWS\SYSTEM32\DRIVERS\PVXBAR.SYS
### BtXBar WDM Crossbar Driver Conexant Systems, Inc. btxbar.sys 3.1.28.2
[Drivers] flpydisk.sys=C:\WINDOWS\SYSTEM32\DRIVERS\FLPYDISK.SYS
### Floppy Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] Fs_Rec.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\FS_REC.SYS
### File System Recognizer Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] Null.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\NULL.SYS
### NULL Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] Beep.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\BEEP.SYS
### BEEP Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] VIAPFD.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\VIAPFD.SYS
### VIA PFD driver VIA Technologies. Inc. VIA PFD driver 5.00.2195.100
[Drivers] vga.sys=C:\WINDOWS\SYSTEM32\DRIVERS\VGA.SYS
### VGA/Super VGA Video Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] mnmdd.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\MNMDD.SYS
### Frame buffer simulator Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] RDPCDD.sys=C:\WINDOWS\SYSTEM32\DRIVERS\RDPCDD.SYS
### RDP Miniport Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] fwdrv.sys=C:\WINDOWS\SYSTEM32\DRIVERS\FWDRV.SYS
### Kerio Technologies 4.1.6002
[Drivers] Msfs.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\MSFS.SYS
### Mailslot driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] Npfs.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\NPFS.SYS
### NPFS Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] rasacd.sys=C:\WINDOWS\SYSTEM32\DRIVERS\RASACD.SYS
### RAS Automatic Connection Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] ipsec.sys=C:\WINDOWS\SYSTEM32\DRIVERS\IPSEC.SYS
### IPSec Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] tcpip.sys=C:\WINDOWS\SYSTEM32\DRIVERS\TCPIP.SYS
### TCP/IP Protocol Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2892
[Drivers] aswTdi.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\ASWTDI.SYS
### avast! TDI Filter Driver ALWIL Software avast! Antivirus System 4.7
[Drivers] netbt.sys=C:\WINDOWS\SYSTEM32\DRIVERS\NETBT.SYS
### MBT Transport driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] afd.sys=C:\WINDOWS\SYSTEM32\DRIVERS\AFD.SYS
### Ancillary Function Driver for WinSock Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] netbios.sys=C:\WINDOWS\SYSTEM32\DRIVERS\NETBIOS.SYS
### NetBIOS interface driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] rdbss.sys=C:\WINDOWS\SYSTEM32\DRIVERS\RDBSS.SYS
### Redirected Drive Buffering SubSystem Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2902
[Drivers] mrxsmb.sys=C:\WINDOWS\SYSTEM32\DRIVERS\MRXSMB.SYS
### Windows NT SMB Minirdr Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2902
[Drivers] khips.sys=C:\WINDOWS\SYSTEM32\DRIVERS\KHIPS.SYS
### Kerio Host Intrusion Prevention Driver HIPS 1.0.1796
[Drivers] ipnat.sys=C:\WINDOWS\SYSTEM32\DRIVERS\IPNAT.SYS
### IP Network Address Translator Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2524
[Drivers] wanarp.sys=C:\WINDOWS\SYSTEM32\DRIVERS\WANARP.SYS
### MS Remote Access and Routing ARP Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] Fips.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\FIPS.SYS
### FIPS Crypto Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.0
[Drivers] Aavmker4.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\AAVMKER4.SYS
### avast! Base Kernel-Mode Device Driver for Windows NT/2000/XP ALWIL Software avast! Antivirus System 4.7
[Drivers] geneusb.sys=C:\WINDOWS\SYSTEM32\DRIVERS\GENEUSB.SYS
### GeneLink USB Driver Genesys Logic GeneLink 1.05
[Drivers] genelan.sys=C:\WINDOWS\SYSTEM32\DRIVERS\GENELAN.SYS
### GeneLink Network Driver Genesys Logic GeneLink 1.05
[Drivers] adiusbaw.sys=C:\WINDOWS\SYSTEM32\DRIVERS\ADIUSBAW.SYS
### ADSL USB Driver Analog Devices Inc. ADSL USB WAN Driver 2.2.9.14
[Drivers] Cdfs.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\CDFS.SYS
### CD-ROM File System Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] atapi.sys=C:\WINDOWS\SYSTEM32\DRIVERS\DUMP_ATAPI.SYS
[Drivers] WMILIB.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\DUMP_WMILIB.SYS
[Drivers] win32k.sys=C:\WINDOWS\SYSTEM32\WIN32K.SYS
### Multi-User Win32 Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2770
[Drivers] Dxapi.sys=C:\WINDOWS\SYSTEM32\DRIVERS\DXAPI.SYS
### DirectX API Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] watchdog.sys=C:\WINDOWS\SYSTEM32\WATCHDOG.SYS
### Watchdog Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] dxg.sys=C:\WINDOWS\SYSTEM32\DRIVERS\DXG.SYS
### DirectX Graphics Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] dxgthk.sys=C:\WINDOWS\SYSTEM32\DRIVERS\DXGTHK.SYS
### DirectX Graphics Driver Thunk Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] ati2dvag.dll=C:\WINDOWS\SYSTEM32\ATI2DVAG.DLL
### ATI Radeon WindowsNT Display Driver ATI Technologies Inc. ATI Radeon WindowsNT Display Driver 6.14.10.6606
[Drivers] ati2cqag.dll=C:\WINDOWS\SYSTEM32\ATI2CQAG.DLL
### Central Memory Manager / Queue Server Module ATI Technologies Inc. ATI Radeon Family 5.2.3790.1830
[Drivers] atikvmag.dll=C:\WINDOWS\SYSTEM32\ATIKVMAG.DLL
### Virtual Command And Memory Manager ATI Technologies Inc. Virtual Command And Memory Manager 5.2.3790.1830
[Drivers] ati3duag.dll=C:\WINDOWS\SYSTEM32\ATI3DUAG.DLL
### ati3duag.dll ATI Technologies Inc. ATI Technologies Inc. Radeon DirectX Universal Driver 6.14.10.0392
[Drivers] ativvaxx.dll=C:\WINDOWS\SYSTEM32\ATIVVAXX.DLL
### Radeon Video Acceleration Universal Driver ATI Technologies Inc. ATI Technologies Inc. Radeon Video Acceleration Universal Driver 6.14.01.0095
[Drivers] nwlnkipx.sys=C:\WINDOWS\SYSTEM32\DRIVERS\NWLNKIPX.SYS
### NWLINK2 IPX Protocol Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] nwlnknb.sys=C:\WINDOWS\SYSTEM32\DRIVERS\NWLNKNB.SYS
### NWLINK2 IPX Netbios Protocol Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] ndisuio.sys=C:\WINDOWS\SYSTEM32\DRIVERS\NDISUIO.SYS
### NDIS User mode I/O Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] mrxdav.sys=C:\WINDOWS\SYSTEM32\DRIVERS\MRXDAV.SYS
### Windows NT WebDav Minirdr Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] ParVdm.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\PARVDM.SYS
### VDM Parallel Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.0
[Drivers] SENTINEL.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\SENTINEL.SYS
[Drivers] aswMon2.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\ASWMON2.SYS
### avast! File System Filter Driver for Windows XP ALWIL Software avast! Antivirus System 4.7
[Drivers] nwlnkspx.sys=C:\WINDOWS\SYSTEM32\DRIVERS\NWLNKSPX.SYS
### NWLINK2 SPX Protocol Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] srv.sys=C:\WINDOWS\SYSTEM32\DRIVERS\SRV.SYS
### Server driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2974
[Drivers] secdrv.sys=C:\WINDOWS\SYSTEM32\DRIVERS\SECDRV.SYS
### Macrovision SECURITY Driver Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K. Macrovision SECURITY Driver SECURITY Driver 4.00.060 2004/08/31
[Drivers] aswRdr.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\ASWRDR.SYS
### avast! TDI RDR Driver ALWIL Software avast! Antivirus System 4.7
[Drivers] wdmaud.sys=C:\WINDOWS\SYSTEM32\DRIVERS\WDMAUD.SYS
### MMSYSTEM Wave/Midi API mapper Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2929
[Drivers] sysaudio.sys=C:\WINDOWS\SYSTEM32\DRIVERS\SYSAUDIO.SYS
### System Audio WDM Filter Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] HTTP.sys=C:\WINDOWS\SYSTEM32\DRIVERS\HTTP.SYS
### HTTP Protocol Stack Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2869
[Drivers] kmixer.sys=C:\WINDOWS\SYSTEM32\DRIVERS\KMIXER.SYS
### Kernel Mode Audio Mixer Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2929
[Drivers] regguard.sys=C:\WINDOWS\SYSTEM32\DRIVERS\REGGUARD.SYS
### Registry Guard - registry keys protection driver for Windows NT/2000/XP/2003/Vista Greatis Software RegRun Security Suite 4.60
[Drivers] UnHackMeDrv.sys=C:\WINDOWS\SYSTEM32\DRIVERS\UNHACKMEDRV.SYS
### UnHackMe Kernel Driver Greatis Software, LLC. UnHackme 5.00.2195.1620
[Drivers] ntdll.dll=C:\WINDOWS\SYSTEM32\NTDLL.DLL
### NT Layer DLL Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Auto Start Apps]
[Registry Run] :HKCU ctfmon.exe=C:\WINDOWS\system32\ctfmon.exe
### CTF Loader Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Registry Run] :HKCU Regrun2=C:\PROGRA~1\Greatis\REGRUN~1\WatchDog.exe
### WatchDog Greatis Software RegRun Security Suite 4.0
[Registry Run] :HKCU Registry="C:\Program Files\Greatis\RegRunSuite\lsoon.exe" -1 30 "C:\Program Files\Greatis\RegRunSuite\rescue.exe" /a "c:\backreg\rstore.ini"
### Launch application with delay Greatis Software RegRun Security Suite 3.1
[Registry Run] :HKLM zBrowser Launcher=C:\Program Files\Logitech\iTouch\iTouch.exe
### iTouch Application Logitech Inc. iTouch 2.16.268
[Registry Run] :HKLM Logitech Utility=Logi_MwX.Exe
### Logitech Launcher Application Logitech Inc. MouseWare 9.75.294
[Registry Run] :HKLM avast!=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
### avast! service GUI component avast! Antivirus 5, 0, 0, 0
[Registry Run] :HKLM ConMet=C:\Program Files\ConMet\ConMet.exe
### Connection Meter® E+P Studio Connection Meter® 5
[Registry Run] :HKLM KernelFaultCheck=%systemroot%\system32\dumprep 0 -k
[Win.ini] load=""
[Win.ini] run=""
[Startup Folder] SpeedFan.lnk=G:\speedfan\speedfan.exe
### Almico Software (http://www.almico.com) SpeedFan 4.27
[Common Startup Folder] DSLMON.lnk=C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
### ADIMON MFC Application DSLMON Application 1, 0, 0, 1
[Common Startup Folder] Microsoft Office.lnk=C:\Program Files\Microsoft Office\Office10\OSA.EXE
### Microsoft Office XP component Microsoft Corporation Microsoft Office XP 10.0.2609
[In memory]
[Running Processes] C:\WINDOWS\SYSTEM32\SMSS.EXE
### Správce relací systému Windows NT Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Running Processes] C:\WINDOWS\SYSTEM32\WINLOGON.EXE
### Windows NT Logon Application Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Running Processes] C:\WINDOWS\SYSTEM32\SERVICES.EXE
### Services and Controller app Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Running Processes] C:\WINDOWS\SYSTEM32\LSASS.EXE
### LSA Shell (Export Version) Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Running Processes] C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
### ATI External Event Utility EXE Module ATI Technologies Inc. ATI External Event Utility for WindowsNT and Windows9X 6.14.10.4131.01
[Running Processes] C:\WINDOWS\SYSTEM32\SVCHOST.EXE
### Generic Host Process for Win32 Services Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Running Processes] C:\WINDOWS\SYSTEM32\SVCHOST.EXE
### Generic Host Process for Win32 Services Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Running Processes] C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
### Spooler SubSystem App Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2696
[Running Processes] C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASWUPDSV.EXE
[Running Processes] C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASHSERV.EXE
### avast! antivirus service avast! Antivirus 4, 7, 0, 0
[Running Processes] C:\PROGRAM FILES\KERIO\PERSONAL FIREWALL 4\KPF4SS.EXE
### Kerio Personal Firewall 4 - Service Kerio Technologies Kerio Personal Firewall 4 4.2.2
[Running Processes] C:\PROGRAM FILES\KERIO\PERSONAL FIREWALL 4\KPF4GUI.EXE
### Kerio Personal Firewall 4 - GUI Kerio Technologies Kerio Personal Firewall 4 4.2.2
[Running Processes] C:\WINDOWS\SYSTEM32\SVCHOST.EXE
### Generic Host Process for Win32 Services Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Running Processes] C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASHMAISV.EXE
### avast! e-Mail Scanner Service ALWIL Software avast! Antivirus 4, 7, 0, 0
[Running Processes] C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASHWEBSV.EXE
### avast! Web Scanner ALWIL Software avast! Antivirus 4, 7, 0, 0
[Running Processes] C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
### ATI External Event Utility EXE Module ATI Technologies Inc. ATI External Event Utility for WindowsNT and Windows9X 6.14.10.4131.01
[Running Processes] C:\PROGRAM FILES\KERIO\PERSONAL FIREWALL 4\KPF4GUI.EXE
### Kerio Personal Firewall 4 - GUI Kerio Technologies Kerio Personal Firewall 4 4.2.2
[Running Processes] C:\WINDOWS\EXPLORER.EXE
### Průzkumník Windows Microsoft Corporation Microsoft(R) Windows (R) 2000 Operating System 6.00.2900.2180
[Running Processes] C:\PROGRAM FILES\LOGITECH\ITOUCH\ITOUCH.EXE
### iTouch Application Logitech Inc. iTouch 2.16.268
[Running Processes] C:\PROGRA~1\ALWILS~1\AVAST4\ASHDISP.EXE
### avast! service GUI component avast! Antivirus 5, 0, 0, 0
[Running Processes] C:\PROGRAM FILES\CONMET\CONMET.EXE
### Connection Meter® E+P Studio Connection Meter® 5
[Running Processes] C:\PROGRAM FILES\LOGITECH\MOUSEWARE\SYSTEM\EM_EXEC.EXE
### Logitech Events Handler Application Logitech Inc. MouseWare 9.75.302
[Running Processes] C:\WINDOWS\SYSTEM32\CTFMON.EXE
### CTF Loader Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Running Processes] C:\PROGRAM FILES\SAGEM\SAGEM F@ST 800-840\DSLMON.EXE
### ADIMON MFC Application DSLMON Application 1, 0, 0, 1
[Running Processes] G:\SPEEDFAN\SPEEDFAN.EXE
### Almico Software (http://www.almico.com) SpeedFan 4.27
[Running Processes] C:\PROGRAM FILES\MOZILLA FIREFOX\FIREFOX.EXE
### Firefox Mozilla Corporation Firefox 1.5.0.9
[Running Processes] C:\PROGRAM FILES\WINRAR\WINRAR.EXE
### WinRAR archiver Alexander Roshal
[Running Processes] C:\DOCUME~1\TAKA~1\LOCALS~1\TEMP\RAR$EX00.026\HIJACKTHIS.EXE
### HijackThis Soeperman Enterprises Ltd. HijackThis 1.99.0001
[Running Processes] C:\PROGRAM FILES\GREATIS\REGRUNSUITE\REGRUNCENTER.EXE
### RegRun Control Center Greatis Software RegRun Security Suite 5.0
[Running Processes] C:\PROGRAM FILES\GREATIS\REGRUNSUITE\WATCHDOG.EXE
### WatchDog Greatis Software RegRun Security Suite 4.0
[Running Processes] C:\PROGRAM FILES\GREATIS\REGRUNSUITE\REGRUN2.EXE
### RegRun Start Control Greatis Software RegRun Security Suite 5.0
[Loaded DLLs] C:\WINDOWS\System32\mstask.dll
### Task Scheduler interface DLL Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Loaded DLLs] C:\Program Files\Greatis\RegRunSuite\RRShell.dll
### RRShell Module Greatis Software, LLC RRShell Module 1, 0, 1, 2
[Loaded DLLs] C:\Program Files\Logitech\iTouch\iTchHk.dll
### iTouch Hook Library Logitech Inc. iTouch 1.0.0
[Loaded DLLs] C:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll
### Logitech Message Hook Library Logitech Inc. Productivity Software Common Files 1.0.0
[Loaded DLLs] C:\Program Files\Greatis\RegRunSuite\regguardl.dll
[Loaded DLLs] C:\Program Files\Logitech\iTouch\iTchHk.dll
### iTouch Hook Library Logitech Inc. iTouch 1.0.0
[Loaded DLLs] C:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll
### Logitech Message Hook Library Logitech Inc. Productivity Software Common Files 1.0.0
[Loaded DLLs] C:\Program Files\Logitech\iTouch\iTchHk.dll
### iTouch Hook Library Logitech Inc. iTouch 1.0.0
[Loaded DLLs] C:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll
### Logitech Message Hook Library Logitech Inc. Productivity Software Common Files 1.0.0
[Loaded DLLs] C:\Program Files\Logitech\iTouch\iTchHk.dll
### iTouch Hook Library Logitech Inc. iTouch 1.0.0
[Loaded DLLs] C:\WINDOWS\system32\asycfilt.dll
### Microsoft Corporation 5.1.2600.2180
[Loaded DLLs] C:\WINDOWS\system32\MSVBVM60.DLL
### Visual Basic Virtual Machine Microsoft Corporation Visual Basic 6.00.9782
[Loaded DLLs] C:\WINDOWS\System32\mydocs.dll
### My Documents Folder UI Microsoft Corporation Operační systém Microsoft® Windows® 6.00.2900.2180
[Loaded DLLs] C:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll
### Logitech Message Hook Library Logitech Inc. Productivity Software Common Files 1.0.0
[Loaded DLLs] C:\Program Files\Logitech\iTouch\iTchHk.dll
### iTouch Hook Library Logitech Inc. iTouch 1.0.0
[Loaded DLLs] C:\WINDOWS\system32\xpsp2res.dll
### Zprávy aktualizace Service Pack 2 Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Loaded DLLs] C:\WINDOWS\system32\wiashext.dll
### Imaging Devices Shell Folder UI Microsoft Corporation Microsoft(R) Windows (R) 2000 Operating System 5.1.2600.2180
[Loaded DLLs] C:\WINDOWS\System32\shgina.dll
### Windows Shell User Logon Microsoft Corporation Microsoft® Windows® Operating System 6.00.2900.2180
[Loaded DLLs] C:\WINDOWS\system32\riched32.dll
### Wrapper Dll for Richedit 1.0 Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Loaded DLLs] C:\Program Files\WinRAR\rarlng.dll
[Loaded DLLs] C:\Program Files\Logitech\iTouch\kbdhook.dll
### Keyboard Hook Library Logitech Inc. iTouch 2.16.268
[Loaded DLLs] C:\PROGRA~1\MOZILL~1\nssckbi.dll
### NSS Builtin Trusted Root CAs Netscape Communications Corporation Network Security Services 1.53
[Loaded DLLs] C:\Program Files\Mozilla Firefox\plugins\NPSWF32.dll
[Loaded DLLs] C:\WINDOWS\system32\IMM32.DLL
### Windows XP IMM32 API Client DLL Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Loaded DLLs] C:\Program Files\Logitech\iTouch\iTchHk.dll
### iTouch Hook Library Logitech Inc. iTouch 1.0.0
[Loaded DLLs] C:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll
### Logitech Message Hook Library Logitech Inc. Productivity Software Common Files 1.0.0
[Loaded DLLs] C:\WINDOWS\System32\msimtf.dll
### Active IMM Server DLL Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Loaded DLLs] C:\Program Files\Mozilla Firefox\components\jar50.dll
### Mozilla Foundation Firefox 1.8.0.9: 2006120612
[Loaded DLLs] C:\Program Files\Mozilla Firefox\xpcom_compat.dll
### Mozilla Foundation Firefox 1.8.0.9: 2006120612
[Loaded DLLs] C:\Program Files\Mozilla Firefox\ssl3.dll
### NSS SSL Library Netscape Communications Corporation Network Security Services 3.10.2
[Loaded DLLs] C:\Program Files\Mozilla Firefox\softokn3.dll
### NSS PKCS #11 Library Netscape Communications Corporation Network Security Services 3.10.2
[Loaded DLLs] C:\Program Files\Mozilla Firefox\nss3.dll
### NSS Base Library Netscape Communications Corporation Network Security Services 3.10.2
[Loaded DLLs] C:\Program Files\Mozilla Firefox\smime3.dll
### NSS S/MIME Library Netscape Communications Corporation Network Security Services 3.10.2
[Loaded DLLs] C:\Program Files\Mozilla Firefox\plds4.dll
### PLDS Library Netscape Communications Corporation Netscape Portable Runtime 4.6.1
[Loaded DLLs] C:\Program Files\Mozilla Firefox\plc4.dll
### PLC Library Netscape Communications Corporation Netscape Portable Runtime 4.6.1
[Loaded DLLs] C:\Program Files\Mozilla Firefox\xpcom_core.dll
### Mozilla Foundation Firefox 1.8.0.9: 2006120612
[Loaded DLLs] C:\Program Files\Mozilla Firefox\nspr4.dll
### NSPR Library Netscape Communications Corporation Netscape Portable Runtime 4.6.1
[Loaded DLLs] C:\Program Files\Mozilla Firefox\js3250.dll
### Netscape 32-bit JavaScript Module Netscape Communications Corporation NETSCAPE 4.0
[Loaded DLLs] C:\WINDOWS\System32\wbem\wbemdisp.dll
### WMI Scripting Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Loaded DLLs] C:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll
### Logitech Message Hook Library Logitech Inc. Productivity Software Common Files 1.0.0
[Loaded DLLs] C:\WINDOWS\System32\mui\0005\hhctrlui.dll
### Ovládací prvek Microsoft® HTML Help Microsoft Corporation HTML Help 4.74.9273
[Loaded DLLs] C:\WINDOWS\System32\hhctrl.ocx
### Microsoft® HTML Help Control Microsoft Corporation HTML Help 5.2.3790.2744
[Loaded DLLs] C:\Program Files\Logitech\iTouch\iTchHk.dll
### iTouch Hook Library Logitech Inc. iTouch 1.0.0
[Loaded DLLs] C:\Program Files\Logitech\MouseWare\System\LgWndHk.dll
### Logitech Call Window Hook Library Logitech Inc. MouseWare 9.75.302
[Loaded DLLs] C:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll
### Logitech Message Hook Library Logitech Inc. Productivity Software Common Files 1.0.0
[Loaded DLLs] C:\Program Files\Logitech\iTouch\iTchHk.dll
### iTouch Hook Library Logitech Inc. iTouch 1.0.0
[Loaded DLLs] C:\Program Files\Logitech\MouseWare\System\LgWndHk.dll
### Logitech Call Window Hook Library Logitech Inc. MouseWare 9.75.302
[Loaded DLLs] C:\Program Files\SAGEM\SAGEM F@st 800-840\Languages\English.dll
### ADIMON MFC Application DSLMON Application 1, 0, 0, 1
[Loaded DLLs] C:\WINDOWS\system32\oledlg.dll
### Microsoft Windows(TM) OLE 2.0 User Interface Support Microsoft Corporation Microsoft Windows(TM) OLE 2.0 User Interface Support 2.01
[Loaded DLLs] C:\Program Files\Logitech\iTouch\iTchHk.dll
### iTouch Hook Library Logitech Inc. iTouch 1.0.0
[Loaded DLLs] C:\Program Files\Logitech\MouseWare\System\LgWndHk.dll
### Logitech Call Window Hook Library Logitech Inc. MouseWare 9.75.302
[Loaded DLLs] C:\Program Files\Logitech\MouseWare\System\LgWndHk.dll
### Logitech Call Window Hook Library Logitech Inc. MouseWare 9.75.302
[Loaded DLLs] C:\Program Files\Logitech\MouseWare\system\ccmsghk.dll
### Logitech Multi Purpose Hook Library Logitech Inc. MouseWare
Scan saved at 13:49:47, on 14.1.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\ConMet\ConMet.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\WINDOWS\system32\CTFMON.EXE
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
G:\speedfan\speedfan.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\Program Files\Greatis\RegRunSuite\RegRunCenter.exe
C:\Program Files\Greatis\RegRunSuite\WatchDog.exe
C:\Program Files\Greatis\RegRunSuite\regrun2.exe
C:\DOCUME~1\TAKA~1\LOCALS~1\Temp\Rar$EX14.8441\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: XTTBPos00 Class - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\Program Files\ICQToolbar\toolbaru.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [ConMet] C:\Program Files\ConMet\ConMet.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Regrun2] C:\PROGRA~1\Greatis\REGRUN~1\WatchDog.exe
O4 - HKCU\..\Run: [Registry] "C:\Program Files\Greatis\RegRunSuite\lsoon.exe" -1 30 "C:\Program Files\Greatis\RegRunSuite\rescue.exe" /a "c:\backreg\rstore.ini"
O4 - Startup: SpeedFan.lnk = G:\speedfan\speedfan.exe
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{91AFDD90-E0FB-4C76-A248-F821F53B0CB3}: NameServer = 194.228.41.65 194.228.41.113
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Kerio Technologies - C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
tady mi udělal log RegRun Security Suit je-li to k něčemu
SpyHolesList Version:1.7
14.01.2007 13:45:24
WinDir=C:\WINDOWS
Startup=C:\Documents and Settings\Taťka\Nabídka Start\Programy\Po spuštění\
Common Startup=C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\
Microsoft Windows XP Service Pack 2 (5.1.2600)
Internet Explorer 6.0.2900.2180
[Internet Explorer]
[Default Home Page] :HKLM Default_Page_URL=""
[Current Home Page] :HKCU Start Page=about:blank
[Current Home Page] :HKCU HOMEOldSP=""
[Search URL Template] :HKLM 1=www.%s.com
[Search URL Template] :HKLM 2=www.%s.org
[Search URL Template] :HKLM 3=www.%s.net
[Search URL Template] :HKLM 4=www.%s.edu
[All Users Search] :HKLM Default_Search_URL=http://www.google.com
[All Users Search] :HKLM Search Page=http://www.google.com
[Current Users Search] :HKCU Search Page=http://www.google.com
[Current Users Search] :HKCU Search Bar=http://www.google.com/ie
[IE Local Blank Page] :HKCU Local Page=""
[IE Local Blank Page] :HKLM Local Page=""
[Browser Helper Objects] {02478D38-C3F9-4EFB-9B51-7695ECA05670}=C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
### Yahoo! Toolbar Yahoo! Inc. Yahoo! Toolbar 6, 2, 5, 0
[Browser Helper Objects] {055FD26D-3A88-4e15-963D-DC8493744B1D}=C:\Program Files\ICQToolbar\toolbaru.dll
### IE Toolbar IE Toolbar IE Toolbar 2, 0, 20, 7
[Browser Helper Objects] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}=C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
### Adobe Acrobat IE Helper Version 7.0 for ActiveX Adobe Systems Incorporated AcroIEHelper Library 7, 0, 0, 0
[Browser Helper Objects] {53707962-6F74-2D53-2644-206D7942484F}=C:\PROGRA~1\SPYBOT~1\SDHelper.dll
### Bad download blocker Safer Networking Limited Spybot - Search & Destroy 1, 4, 0, 3
[Browser Helper Objects] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}=C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
### Java(TM) 2 Platform Standard Edition binary Sun Microsystems, Inc. Java(TM) 2 Platform Standard Edition 5.0 Update 6 5.0.60.5
[Auto Search URL] :HKCU provider=""
[Auto Search URL] :HKCU "Default Value"=""
[Search Assistant] :HKCU SearchAssistant=""
[Search Assistant] :HKLM SearchAssistant=http://www.google.com/ie
[Search Assistant] :HKCU CustomizeSearch=""
[Search Assistant] :HKLM CustomizeSearch=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
[CustomizeSearch] :HKLM CustomizeSearch=""
[URLSearchHook] :HKCU {855F3B16-6D32-4fe6-8A56-BBB695989046}=C:\Program Files\ICQToolbar\toolbaru.dll
### IE Toolbar IE Toolbar IE Toolbar 2, 0, 20, 7
[Default Prefix] :HKLM "Default Value"=http://
[URL Default Prefixes] :HKLM ftp=ftp://
[URL Default Prefixes] :HKLM gopher=gopher://
[URL Default Prefixes] :HKLM home=http://
[URL Default Prefixes] :HKLM mosaic=http://
[URL Default Prefixes] :HKLM www=http://
[Safe Sites] :HKLM ie.search.msn.com=http://ie.search.msn.com/*
[AboutURLs] :HKLM NavigationFailure=res://shdoclc.dll/navcancl.htm
[AboutURLs] :HKLM DesktopItemNavigationFailure=res://shdoclc.dll/navcancl.htm
[AboutURLs] :HKLM NavigationCanceled=res://shdoclc.dll/navcancl.htm
[AboutURLs] :HKLM OfflineInformation=res://shdoclc.dll/offcancl.htm
[AboutURLs] :HKLM Home=270
[AboutURLs] :HKLM blank=res://mshtml.dll/blank.htm
[AboutURLs] :HKLM PostNotCached=res://mshtml.dll/repost.htm
[User Style Sheet] :HKCU User Stylesheet=""
[User Style Sheet] :HKUS User Stylesheet=""
[User Style Sheet] :HKCU Use My Stylesheet=0
[User Style Sheet] :HKUS Use My Stylesheet=0
[Execute unsigned ActiveX in My Computer Zone] :HKCU 1201=1
[Execute unsigned ActiveX in My Computer Zone] :HKLM 1201=1
[Execute unsigned ActiveX in Local Intranet Zone] :HKCU 1201=3
[Execute unsigned ActiveX in Local Intranet Zone] :HKLM 1201=3
[Execute unsigned ActiveX in Internet Zone] :HKCU 1201=3
[Execute unsigned ActiveX in Internet Zone] :HKLM 1201=3
[Links Toolbar] :HKCU LinksFolderName=Odkazy
[Toolbars] :HKLM {855F3B16-6D32-4fe6-8A56-BBB695989046}=C:\Program Files\ICQToolbar\toolbaru.dll
### IE Toolbar IE Toolbar IE Toolbar 2, 0, 20, 7
[Toolbars] :HKLM {EF99BD32-C1FB-11D2-892F-0090271D4F88}=C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
### Yahoo! Toolbar Yahoo! Inc. Yahoo! Toolbar 6, 2, 5, 0
[Explorer Bars] :HKLM {4D5C8C25-D075-11d0-B416-00C04FB90376}=%SystemRoot%\System32\shdocvw.dll
### Shell Doc Object and Control Library Microsoft Corporation Microsoft(R) Windows (R) 2000 Operating System 6.00.2900.2987
[IE Extensions - All Users] :HKLM {08B0E5C0-4FCB-11CF-AAA5-00401C608501}=%SystemRoot%\System32\shdocvw.dll
### Shell Doc Object and Control Library Microsoft Corporation Microsoft(R) Windows (R) 2000 Operating System 6.00.2900.2987
[IE Extensions - All Users] :HKLM {B863453A-26C3-4e1f-A54D-A2CD196348E9}=C:\Program Files\ICQLite\ICQLite.exe
### ICQLite ICQ Ltd. ICQLite 20, 52, 2587, 0
[IE Extensions - All Users] :HKLM {FB5F1910-F110-11d2-BB9E-00C04F795683}=C:\Program Files\Messenger\msmsgs.exe
### Windows Messenger Microsoft Corporation Messenger Version 4.7.3001
[Context menu items] :HKCU &ICQ Toolbar Search=res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
[Context menu items] :HKCU E&xportovat do aplikace Microsoft Excel=res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
[Proxy] :HKCU ProxyServer=""
[Proxy] :HKCU ProxyEnable=0
[Network Settings]
[Hosts File Path] :HKLM DataBasePath=%SystemRoot%\System32\drivers\etc
[Hosts File Contents] :HKLM 127.0.0.1 localhost
[Domain Name] :HKLM Domain=""
[Name Server] {91AFDD90-E0FB-4C76-A248-F821F53B0CB3}=194.228.41.65 194.228.41.113
### DefaultGateway: IPAddress:0.0.0.0
[WinSock2 Components] :HKLM mswsock.dll=%SystemRoot%\System32\mswsock.dll
### Poskytovatel služeb Microsoft Windows Sockets 2.0 Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[WinSock2 Components] :HKLM winrnr.dll=%SystemRoot%\System32\winrnr.dll
### LDAP RnR Provider DLL Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[WinSock2 Components] :HKLM nwprovau.dll=%SystemRoot%\System32\nwprovau.dll
### Client Service for NetWare Provider and Authentication Package DLL Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.3015
[WinSock2 Components] :HKLM rsvpsp.dll=%SystemRoot%\system32\rsvpsp.dll
### Microsoft Windows Rsvp 1.0 Service Provider Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Windows Shell]
[Display Scrap's Extensions] :HKLM NeverShowExt=""
[ScreenSaver] :HKCU SCRNSAVE.EXE=""
[System.ini] shell=Explorer.exe
[Main File Extensions] :HKLM .exe="%1" %*
[Main File Extensions] :HKLM .com="%1" %*
[Main File Extensions] :HKLM .pif="%1" %*
[Main File Extensions] :HKLM .cmd="%1" %*
[Main File Extensions] :HKLM .scr="%1" /S
[Main File Extensions] :HKLM .jpg=rundll32.exe C:\WINDOWS\System32\shimgvw.dll,ImageView_Fullscreen %1
[Main File Extensions] :HKLM .jpeg=C:\PROGRA~1\QUICKT~1\PictureViewer.exe "%1"
[Shell Execute Hooks] :HKLM {AEB6717E-7E19-11d0-97EE-00C04FD91972}=shell32.dll
### Windows Shell Common Dll Microsoft Corporation Microsoft(R) Windows (R) 2000 Operating System 6.00.2900.2951
[Shell Execute Hooks] :HKLM {F552DDE6-2090-4bf4-B924-6141E87789A5}=C:\Program Files\Greatis\RegRunSuite\RRShell.dll
### RRShell Module Greatis Software, LLC RRShell Module 1, 0, 1, 2
[UserInit Value] :HKLM UserInit=C:\WINDOWS\system32\userinit.exe,
[Winlogon Notification] :HKLM AtiExtEvent=Ati2evxx.dll
### AtiExtEvent ATI External Event Utility DLL Module ATI Technologies Inc. ATI External Event Utility for NT, W2K and W9X 6.14.10.4131.01
[Winlogon Notification] :HKLM crypt32chain=crypt32.dll
### crypt32chain Crypto API32 Microsoft Corporation Operační systém Microsoft® Windows® 5.131.2600.2180
[Winlogon Notification] :HKLM cryptnet=cryptnet.dll
### cryptnet Crypto Network Related API Microsoft Corporation Microsoft® Windows® Operating System 5.131.2600.2180
[Winlogon Notification] :HKLM cscdll=cscdll.dll
### cscdll Offline Network Agent Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Winlogon Notification] :HKLM ScCertProp=wlnotify.dll
### ScCertProp Common DLL to receive Winlogon notifications Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Winlogon Notification] :HKLM Schedule=wlnotify.dll
### Schedule Common DLL to receive Winlogon notifications Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Winlogon Notification] :HKLM sclgntfy=sclgntfy.dll
### sclgntfy Secondary Logon Service Notification DLL Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Winlogon Notification] :HKLM SensLogn=WlNotify.dll
### SensLogn Common DLL to receive Winlogon notifications Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Winlogon Notification] :HKLM termsrv=wlnotify.dll
### termsrv Common DLL to receive Winlogon notifications Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Winlogon Notification] :HKLM wlballoon=wlnotify.dll
### wlballoon Common DLL to receive Winlogon notifications Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Shell Services DelayLoad] :HKLM PostBootReminder=%SystemRoot%\system32\SHELL32.dll
### Windows Shell Common Dll Microsoft Corporation Microsoft(R) Windows (R) 2000 Operating System 6.00.2900.2951
[Shell Services DelayLoad] :HKLM CDBurn=%SystemRoot%\system32\SHELL32.dll
### Windows Shell Common Dll Microsoft Corporation Microsoft(R) Windows (R) 2000 Operating System 6.00.2900.2951
[Shell Services DelayLoad] :HKLM WebCheck=%SystemRoot%\System32\webcheck.dll
### Web Site Monitor Microsoft Corporation Operační systém Microsoft® Windows® 6.00.2900.2180
[Shell Services DelayLoad] :HKLM SysTray=C:\WINDOWS\System32\stobject.dll
### Systray shell service object Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Prevents Display in Control Panel from running.] :HKCU NoDispCpl=0
[Disable Registry Tools ] :HKCU DisableRegistryTools =0
[SharedTaskScheduler] :HKLM {438755C2-A8BA-11D1-B96B-00A0C90312E1}=%SystemRoot%\System32\browseui.dll
### Shell Browser UI Library Společnost Microsoft Microsoft(R) Windows (R) 2000 Operating System 6.00.2900.2995
[SharedTaskScheduler] :HKLM {8C7461EF-2B13-11d2-BE35-3078302C2030}=%SystemRoot%\System32\browseui.dll
### Shell Browser UI Library Společnost Microsoft Microsoft(R) Windows (R) 2000 Operating System 6.00.2900.2995
[Kernel Auto Boot]
[ActiveSetup] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95}=C:\WINDOWS\inf\unregmp2.exe /ShowWMP
### Microsoft Windows Media Player Setup Utility Microsoft Corporation Microsoft(R) Windows Media Player 9.00.00.3250
[Bootexecute] :HKLM BootExecute=""
[KnownDLLs] :HKLM advapi32=advapi32.dll
[KnownDLLs] :HKLM comdlg32=comdlg32.dll
[KnownDLLs] :HKLM DllDirectory=%SystemRoot%\system32
[KnownDLLs] :HKLM gdi32=gdi32.dll
[KnownDLLs] :HKLM imagehlp=imagehlp.dll
[KnownDLLs] :HKLM kernel32=kernel32.dll
[KnownDLLs] :HKLM lz32=lz32.dll
[KnownDLLs] :HKLM ole32=ole32.dll
[KnownDLLs] :HKLM oleaut32=oleaut32.dll
[KnownDLLs] :HKLM olecli32=olecli32.dll
[KnownDLLs] :HKLM olecnv32=olecnv32.dll
[KnownDLLs] :HKLM olesvr32=olesvr32.dll
[KnownDLLs] :HKLM olethk32=olethk32.dll
[KnownDLLs] :HKLM rpcrt4=rpcrt4.dll
[KnownDLLs] :HKLM shell32=shell32.dll
[KnownDLLs] :HKLM url=url.dll
[KnownDLLs] :HKLM urlmon=urlmon.dll
[KnownDLLs] :HKLM user32=user32.dll
[KnownDLLs] :HKLM version=version.dll
[KnownDLLs] :HKLM wininet=wininet.dll
[KnownDLLs] :HKLM wldap32=wldap32.dll
[Environment - Path ] :HKLM Path=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Common Files\Ulead Systems\MPEG
[List of Injected DLLs] :HKLM AppInit_DLLs=""
[Auto Services] aswUpdSv
### Internal Name: aswUpdSv. Status: service running. Actual File: "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe" * Zajišťuje spouštění aktualizace pro antivirus avast!.
[Auto Services] Ati HotKey Poller
### Internal Name: Ati HotKey Poller. Status: service running. Actual File: C:\WINDOWS\system32\Ati2evxx.exe *
[Auto Services] ATI Smart
### Internal Name: ATI Smart. Status: service stopped. Actual File: C:\WINDOWS\system32\ati2sgag.exe *
[Auto Services] AudioSrv
### Internal Name: AudioSrv. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Spravuje zvuková zařízení programů pro systém Windows. Jeli tato sloužba zastavena, nebudou zvuková zařízení a efekty správně fungovat. Je-li tato služba zakázána, pak se spuštění všech služeb výslovně závislých na této službě nezdaří.
[Auto Services] avast! Antivirus
### Internal Name: avast! Antivirus. Status: service running. Actual File: "C:\Program Files\Alwil Software\Avast4\ashServ.exe" * Zajišťuje antivirové služby programu avast!, jako např. rezidentní ochranu, virovou truhlu a plánovač.
[Auto Services] avast! Mail Scanner
### Internal Name: avast! Mail Scanner. Status: service running. Actual File: "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service * Zajišťuje kontrolu pošty pro avast! antivirus.
[Auto Services] BITS
### Internal Name: BITS. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Přenáší soubory na pozadí s použitím nevyužité kapacity linky. Pokud je služba zastavena, funkce jako Windows Update nebo MSN Explorer nebudou moci automaticky stahovat programy a další informace. Pokud je tato služba zakázána, služby které na ní explicitně závisí možná nebudou moci přenášet soubory (v případě že nemají zabudovanou funkci pro přenos přímo pomocí IE při zakázané službě BITS).
[Auto Services] Browser
### Internal Name: Browser. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Udržuje aktualizovaný seznam počítačů v síti a poskytuje seznam počítačů kvalifikovaných jako prohlížeče. Po zastavení služby nebude tento seznam dále aktualizován ani udržován. Jestliže je tato služba zakázána, nezdaří se spuštění žádných služeb, které na této službě závisí.
[Auto Services] CryptSvc
### Internal Name: CryptSvc. Status: service running. Actual File: C:\WINDOWS\system32\svchost.exe -k netsvcs * Poskytuje tři služby pro správu: Databázovou službu katalogu, která potvrzuje podpisy souborů systému Windows; službu Ochrany kořenových certifikátů, která přidává a odebírá důvěryhodné kořenové Certifikační úřady; službu Správy klíčů, která pomáhá přihlásit počítač k odběru certifikátů. Je-li tato služba zastavena, nebudou tyto služby správy správně fungovat. Je-li tato služba zakázána, pak se spuštění všech služeb výslovně závislých na této službě nezdaří.
[Auto Services] DcomLaunch
### Internal Name: DcomLaunch. Status: service running. Actual File: C:\WINDOWS\system32\svchost -k DcomLaunch * Poskytuje funkce spouštění pro služby DCOM
[Auto Services] Dhcp
### Internal Name: Dhcp. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Spravuje konfiguraci sítě, registruje a aktualizuje adresy IP a názvy DNS.
[Auto Services] dmserver
### Internal Name: dmserver. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Rozpozná a sleduje nové jednotky pevných disků a odesílá informace o diskových svazcích Službě správy pro Správce logických disků. Je-li tato služba zastavená, informace o stavu dynamických disků a konfiguraci mohou být zastaralé. Je-li tato služba zakázána, pak se spuštění všech služeb výslovně závislých na této službě nezdaří.
[Auto Services] Dnscache
### Internal Name: Dnscache. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k NetworkService * Překládá a ukládá do paměti názvy DNS (Domain Name System) pro tento počítač. Po zastavení této služby nebude počítač moci překládat názvy DNS a detekovat řadiče domény služby Active Directory. Jestliže je tato služba zakázána, nezdaří se spuštění žádných služeb, které na této službě závisí.
[Auto Services] Eventlog
### Internal Name: Eventlog. Status: service running. Actual File: C:\WINDOWS\system32\services.exe * Umožňuje zobrazování zpráv protokolu událostí vystavených programy a komponenty pro systém Windows. Tato služba nemůže být zastavena.
[Auto Services] helpsvc
### Internal Name: helpsvc. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Umožňuje spuštění nápovědy a odborné pomoci v tomto počítači. Pokud je tato služba zastavena, nápověda a odborná pomoc nebude k dispozici. Pokud je tato služba vypnuta, nebude možné spustit žádnou z explicitně závislých služeb.
[Auto Services] KPF4
### Internal Name: KPF4. Status: service running. Actual File: "C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe" * Kerio Personal Firewall Engine
[Auto Services] lanmanserver
### Internal Name: lanmanserver. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Podporuje pro tento počítač sdílení souborů, tisku a pojmenovaných kanálů v síti. Po zastavení služby nebudou tyto funkce k dispozici. Jestliže je tato služba zakázána, nezdaří se spuštění žádných služeb, které na této službě závisí.
[Auto Services] lanmanworkstation
### Internal Name: lanmanworkstation. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Vytváří a udržuje síťová připojení klientů ke vzdáleným serverům. Po zastavení služby nebudou tato připojení k dispozici. Jestliže je tato služba zakázána, nezdaří se spuštění žádných služeb, které na této službě závisí.
[Auto Services] LmHosts
### Internal Name: LmHosts. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k LocalService * Obsahuje podporu služby NetBIOS pro protokol TCP/IP (NetBT) a překládání názvů NetBIOS.
[Auto Services] PlugPlay
### Internal Name: PlugPlay. Status: service running. Actual File: C:\WINDOWS\system32\services.exe * Umožňuje počítači rozpoznat a upravit změny hardwaru s minimálním nebo žádným vstupem uživatele. Zastavení nebo zakázání služby může vést k nestabilitě systému.
[Auto Services] PolicyAgent
### Internal Name: PolicyAgent. Status: service running. Actual File: C:\WINDOWS\System32\lsass.exe * Spravuje zásady zabezpečení protokolu IP a spouští ovladač ISAKMP/Oakley (IKE) a ovladač zabezpečení protokolu IP.
[Auto Services] ProtectedStorage
### Internal Name: ProtectedStorage. Status: service running. Actual File: C:\WINDOWS\system32\lsass.exe * Poskytuje chráněné úložiště pro citlivá data, jako např. soukromé klíče, čímž data chrání před přístupem neověřených služeb, procesů nebo uživatelů.
[Auto Services] RemoteRegistry
### Internal Name: RemoteRegistry. Status: service running. Actual File: C:\WINDOWS\system32\svchost.exe -k LocalService * Umožňuje vzdáleným uživatelům měnit nastavení registru tohoto počítače. Je-li služba zastavena, může být registr měněn pouze uživatelem tohoto počítače. Je-li tato služba zakázána, pak se spuštění všech služeb výslovně závislých na této službě nezdaří.
[Auto Services] RpcSs
### Internal Name: RpcSs. Status: service running. Actual File: C:\WINDOWS\system32\svchost -k rpcss * Poskytuje mapovač koncových bodů a různé další služby RPC.
[Auto Services] SamSs
### Internal Name: SamSs. Status: service running. Actual File: C:\WINDOWS\system32\lsass.exe * Ukládá informace o zabezpečení účtů místních uživatelů.
[Auto Services] Schedule
### Internal Name: Schedule. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Umožňuje uživateli konfigurovat a plánovat automaticky spouštěné úlohy v tomto počítači. Je-li služba zastavena, nebudou tyto úlohy v plánovanou dobu spuštěny. Je-li tato služba zakázána, pak se spuštění všech služeb výslovně závislých na této službě nezdaří.
[Auto Services] seclogon
### Internal Name: seclogon. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Umožňuje spouštění procesů s jiným pověřením. Je-li služba zastaven, nebude tento typ přihlašovacího přístupu k dispozici. Je-li tato služba zakázána, pak se spuštění všech služeb výslovně závislých na této službě nezdaří.
[Auto Services] SENS
### Internal Name: SENS. Status: service running. Actual File: C:\WINDOWS\system32\svchost.exe -k netsvcs * Sleduje systémové události, jako např. přihlášení k systému Windows, síťové události nebo události týkající se napájení, a oznamuje výskyt těchto událostí odběratelům systému událostí COM+.
[Auto Services] SharedAccess
### Internal Name: SharedAccess. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Zajišťuje překlad síťové adresy, adresování, překlad adres IP a ochranu před neoprávněným vniknutím do podnikové nebo domácí sítě.
[Auto Services] ShellHWDetection
### Internal Name: ShellHWDetection. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs *
[Auto Services] Spooler
### Internal Name: Spooler. Status: service running. Actual File: C:\WINDOWS\system32\spoolsv.exe * Načítá soubory do paměti pro pozdější tisk.
[Auto Services] srservice
### Internal Name: srservice. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Provádí obnovení systému. Chcete-li službu zastavit, vypněte Obnovu systému na kartě Obnova systému Vlastností počítače.
[Auto Services] stisvc
### Internal Name: stisvc. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k imgsvc * Poskytuje služby načítání obrázků ze skenerů a fotoaparátů.
[Auto Services] Themes
### Internal Name: Themes. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Zprostředkovává správu motivů.
[Auto Services] TrkWks
### Internal Name: TrkWks. Status: service running. Actual File: C:\WINDOWS\system32\svchost.exe -k netsvcs * Spravuje propojení mezi soubory v systému NTFS v rámci počítače i mezi počítači v doméně sítě.
[Auto Services] W32Time
### Internal Name: W32Time. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Udržuje synchronizaci data a času u všech klientů a serverů v síti. Pokud bude tato služba ukončena, synchronizace data a času nebude k dispozici. Jestliže je tato služba zakázána, nezdaří se spuštění žádných služeb, které na této službě závisí.
[Auto Services] WebClient
### Internal Name: WebClient. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k LocalService * Umožňuje programům pro systém Windows vytvářet, přistupovat a měnit soubory pro Internet. Je-li služba zastavena, nebudou tyto funkce k dispozici. Je-li tato služba zakázána, pak se spuštění všech služeb výslovně závislých na této službě nezdaří.
[Auto Services] winmgmt
### Internal Name: winmgmt. Status: service running. Actual File: C:\WINDOWS\system32\svchost.exe -k netsvcs * Poskytuje běžné rohraní a objektový model k přístupu k informacím pro správu o operačním systému, zařízeních, aplikacích a službách. Jeli tato služba zastavena, většina softwaru pro systém Windows nebude fungovat správně. Je-li tato služba zakázáne, pak se spuštění všech služeb na této službě výslovně závislých nezdaří.
[Auto Services] wscsvc
### Internal Name: wscsvc. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Monitoruje nastavení zabezpečení systému.
[Auto Services] wuauserv
### Internal Name: wuauserv. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Povoluje stahování a instalaci aktualizací systému Windows. Pokud je tato služba zakázána, nebude možné použít funkci Automatické aktualizace ani webový server Windows Update.
[Auto Services] WZCSVC
### Internal Name: WZCSVC. Status: service running. Actual File: C:\WINDOWS\System32\svchost.exe -k netsvcs * Poskytuje automatickou konfiguraci adaptérů 802.11
[Drivers] ntoskrnl.exe=C:\WINDOWS\SYSTEM32\NTOSKRNL.EXE
### NT Kernel & System Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2622
[Drivers] hal.dll=C:\WINDOWS\SYSTEM32\HAL.DLL
### Hardware Abstraction Layer DLL Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] KDCOM.DLL=C:\WINDOWS\SYSTEM32\KDCOM.DLL
### Kernel Debugger HW Extension DLL Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] BOOTVID.dll=C:\WINDOWS\SYSTEM32\BOOTVID.DLL
### VGA Boot Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] ACPI.sys=C:\WINDOWS\system32\DRIVERS\ACPI.sys
### ACPI Driver for NT Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] WMILIB.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\WMILIB.SYS
### WMILIB WMI support library Dll Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] pci.sys=C:\WINDOWS\system32\DRIVERS\pci.sys
### NT Plug and Play PCI Enumerator Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] isapnp.sys=C:\WINDOWS\system32\DRIVERS\isapnp.sys
### PNP ISA Bus Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.0
[Drivers] viaide.sys=C:\WINDOWS\system32\DRIVERS\viaide.sys
### Generic PCI IDE Bus Driver Microsoft Corporation Microsoft(R) Windows NT(R) Operating System 5.00.1636.1
[Drivers] PCIIDEX.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\PCIIDEX.SYS
### PCI IDE Bus Driver Extension Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] MountMgr.sys=C:\WINDOWS\system32\DRIVERS\MountMgr.sys
### Mount Manager Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] ftdisk.sys=C:\WINDOWS\system32\DRIVERS\ftdisk.sys
### FT Disk Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.0
[Drivers] dmload.sys=C:\WINDOWS\system32\DRIVERS\dmload.sys
### NT Disk Manager Startup Driver Microsoft Corp., Veritas Software. Logical Disk Manager for Windows NT 1.0
[Drivers] dmio.sys=C:\WINDOWS\system32\DRIVERS\dmio.sys
### NT Disk Manager I/O Driver Microsoft Corp., Veritas Software VERITAS® NT Disk Manager 1.0
[Drivers] PartMgr.sys=C:\WINDOWS\system32\DRIVERS\PartMgr.sys
### Partition Manager Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] VolSnap.sys=C:\WINDOWS\system32\DRIVERS\VolSnap.sys
### Volume Shadow Copy Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] atapi.sys=C:\WINDOWS\system32\DRIVERS\atapi.sys
### IDE/ATAPI Port Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] disk.sys=C:\WINDOWS\system32\DRIVERS\disk.sys
### PnP Disk Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] CLASSPNP.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\CLASSPNP.SYS
### SCSI Class System Dll Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] fltmgr.sys=C:\WINDOWS\system32\DRIVERS\fltmgr.sys
### Microsoft Filesystem Filter Manager Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2978
[Drivers] sr.sys=C:\WINDOWS\system32\DRIVERS\sr.sys
### System Restore Filesystem Filter Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] KSecDD.sys=C:\WINDOWS\system32\DRIVERS\KSecDD.sys
### Kernel Security Support Provider Interface Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] Ntfs.sys=C:\WINDOWS\system32\DRIVERS\Ntfs.sys
### NT File System Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] NDIS.sys=C:\WINDOWS\system32\DRIVERS\NDIS.sys
### NDIS 5.1 wrapper driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] viaagp.sys=C:\WINDOWS\system32\DRIVERS\viaagp.sys
### VIA NT AGP Filter Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] viaagp1.sys=C:\WINDOWS\system32\DRIVERS\viaagp1.sys
### VIA NT AGP Filter VIA Technologies, Inc. VIA CPU to AGP2.0/AGP3.0 Controller 5.1.0.3442
[Drivers] speedfan.sys=C:\WINDOWS\system32\DRIVERS\speedfan.sys
[Drivers] Mup.sys=C:\WINDOWS\system32\DRIVERS\Mup.sys
### Multiple UNC Provider driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] giveio.sys=C:\WINDOWS\system32\DRIVERS\giveio.sys
[Drivers] amdk7.sys=C:\WINDOWS\SYSTEM32\DRIVERS\AMDK7.SYS
### Processor Device Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] ati2mtag.sys=C:\WINDOWS\SYSTEM32\DRIVERS\ATI2MTAG.SYS
### ATI Radeon WindowsNT Miniport Driver ATI Technologies Inc. ATI Radeon WindowsNT Miniport Driver 6.14.10.6606
[Drivers] VIDEOPRT.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\VIDEOPRT.SYS
### Video Port Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] cdrom.sys=C:\WINDOWS\SYSTEM32\DRIVERS\CDROM.SYS
### SCSI CD-ROM Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] redbook.sys=C:\WINDOWS\SYSTEM32\DRIVERS\REDBOOK.SYS
### Redbook Audio Filter Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] ks.sys=C:\WINDOWS\SYSTEM32\DRIVERS\KS.SYS
### Kernel CSA Library Microsoft Corporation Microsoft(R) Windows(R) Operating System 5.3.2600.2180
[Drivers] GEARAspiWDM.sys=C:\WINDOWS\SYSTEM32\DRIVERS\GEARASPIWDM.SYS
### CDRom Class Filter Driver GEAR Software Inc. GEAR.wrks 7.xx
[Drivers] imapi.sys=C:\WINDOWS\SYSTEM32\DRIVERS\IMAPI.SYS
### IMAPI Kernel Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] usbuhci.sys=C:\WINDOWS\SYSTEM32\DRIVERS\USBUHCI.SYS
### UHCI USB Miniport Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] USBPORT.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\USBPORT.SYS
### USB 1.1 & 2.0 Port Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] ac97via.sys=C:\WINDOWS\SYSTEM32\DRIVERS\AC97VIA.SYS
### VIA Audio WDM Driver VIA Technologies, Inc. VIA Audio WDM Driver 5.10.00.3622
[Drivers] portcls.sys=C:\WINDOWS\SYSTEM32\DRIVERS\PORTCLS.SYS
### Port Class (Class Driver for Port/Miniport Devices) Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] drmk.sys=C:\WINDOWS\SYSTEM32\DRIVERS\DRMK.SYS
### Microsoft Kernel DRM Descrambler Filter Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] Pv848.sys=C:\WINDOWS\SYSTEM32\DRIVERS\PV848.SYS
### BtCap WDM Video Capture Driver Conexant Systems, Inc. bt848.sys 3.1.28.2
[Drivers] STREAM.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\STREAM.SYS
### WDM CODEC Class Device Driver 2.0 Microsoft Corporation Microsoft(R) Windows(R) Operating System 5.3.2600.2180
[Drivers] fdc.sys=C:\WINDOWS\SYSTEM32\DRIVERS\FDC.SYS
### Floppy Disk Controller Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] serial.sys=C:\WINDOWS\SYSTEM32\DRIVERS\SERIAL.SYS
### Serial Device Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] actser.sys=C:\WINDOWS\SYSTEM32\DRIVERS\ACTSER.SYS
### Actser Serial Filter driver Siemens AG Actser Filter Driver 2.04
[Drivers] serenum.sys=C:\WINDOWS\SYSTEM32\DRIVERS\SERENUM.SYS
### Serial Port Enumerator Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] parport.sys=C:\WINDOWS\SYSTEM32\DRIVERS\PARPORT.SYS
### Parallel Port Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] i8042prt.sys=C:\WINDOWS\SYSTEM32\DRIVERS\I8042PRT.SYS
### i8042 Port Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] L8042pr2.Sys=C:\WINDOWS\SYSTEM32\DRIVERS\L8042PR2.SYS
### Logitech PS/2 Mouse Filter Driver. Logitech, Inc. Logitech MouseWare(TM) 9.75.294.0
[Drivers] LMouFlt2.Sys=C:\WINDOWS\SYSTEM32\DRIVERS\LMOUFLT2.SYS
### Logitech Filter Driver for Mouse Class. Logitech, Inc. Logitech MouseWare(TM) 9.75.294.0
[Drivers] mouclass.sys=C:\WINDOWS\SYSTEM32\DRIVERS\MOUCLASS.SYS
### Mouse Class Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] itchfltr.sys=C:\WINDOWS\SYSTEM32\DRIVERS\ITCHFLTR.SYS
### Logitech PS2 Keyboard Filter Driver. Logitech, Inc. Logitech iTouch(TM) 2.10.251.0
[Drivers] kbdclass.sys=C:\WINDOWS\SYSTEM32\DRIVERS\KBDCLASS.SYS
### Keyboard Class Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Drivers] audstub.sys=C:\WINDOWS\SYSTEM32\DRIVERS\AUDSTUB.SYS
### AudStub Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] rasl2tp.sys=C:\WINDOWS\SYSTEM32\DRIVERS\RASL2TP.SYS
### RAS L2TP mini-port/call-manager driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] ndistapi.sys=C:\WINDOWS\SYSTEM32\DRIVERS\NDISTAPI.SYS
### NDIS 3.0 connection wrapper driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] ndiswan.sys=C:\WINDOWS\SYSTEM32\DRIVERS\NDISWAN.SYS
### MS PPP Framing Driver (Strong Encryption) Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] raspppoe.sys=C:\WINDOWS\SYSTEM32\DRIVERS\RASPPPOE.SYS
### RAS PPPoE mini-port/call-manager driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] raspptp.sys=C:\WINDOWS\SYSTEM32\DRIVERS\RASPPTP.SYS
### Peer-to-Peer Tunneling Protocol Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] TDI.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\TDI.SYS
### TDI Wrapper Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] psched.sys=C:\WINDOWS\SYSTEM32\DRIVERS\PSCHED.SYS
### MS QoS Packet Scheduler Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] msgpc.sys=C:\WINDOWS\SYSTEM32\DRIVERS\MSGPC.SYS
### MS General Packet Classifier Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] ptilink.sys=C:\WINDOWS\SYSTEM32\DRIVERS\PTILINK.SYS
### Parallel Technologies DirectParallel IO Library Parallel Technologies, Inc. Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] raspti.sys=C:\WINDOWS\SYSTEM32\DRIVERS\RASPTI.SYS
### PTI DirectParallel(R) mini-port/call-manager driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] rdpdr.sys=C:\WINDOWS\SYSTEM32\DRIVERS\RDPDR.SYS
### Microsoft RDP Device redirector Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] termdd.sys=C:\WINDOWS\SYSTEM32\DRIVERS\TERMDD.SYS
### Terminal Server Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] swenum.sys=C:\WINDOWS\SYSTEM32\DRIVERS\SWENUM.SYS
### Plug and Play Software Device Enumerator Microsoft Corporation Microsoft(R) Windows(R) Operating System 5.3.2600.2180
[Drivers] update.sys=C:\WINDOWS\SYSTEM32\DRIVERS\UPDATE.SYS
### Update Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] mssmbios.sys=C:\WINDOWS\SYSTEM32\DRIVERS\MSSMBIOS.SYS
### System Management BIOS Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] NDProxy.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\NDPROXY.SYS
### NDIS Proxy Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] usbhub.sys=C:\WINDOWS\SYSTEM32\DRIVERS\USBHUB.SYS
### Default Hub Driver for USB Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] USBD.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\USBD.SYS
### Universal Serial Bus Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] PvXBAR.sys=C:\WINDOWS\SYSTEM32\DRIVERS\PVXBAR.SYS
### BtXBar WDM Crossbar Driver Conexant Systems, Inc. btxbar.sys 3.1.28.2
[Drivers] flpydisk.sys=C:\WINDOWS\SYSTEM32\DRIVERS\FLPYDISK.SYS
### Floppy Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] Fs_Rec.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\FS_REC.SYS
### File System Recognizer Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] Null.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\NULL.SYS
### NULL Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] Beep.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\BEEP.SYS
### BEEP Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] VIAPFD.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\VIAPFD.SYS
### VIA PFD driver VIA Technologies. Inc. VIA PFD driver 5.00.2195.100
[Drivers] vga.sys=C:\WINDOWS\SYSTEM32\DRIVERS\VGA.SYS
### VGA/Super VGA Video Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] mnmdd.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\MNMDD.SYS
### Frame buffer simulator Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] RDPCDD.sys=C:\WINDOWS\SYSTEM32\DRIVERS\RDPCDD.SYS
### RDP Miniport Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] fwdrv.sys=C:\WINDOWS\SYSTEM32\DRIVERS\FWDRV.SYS
### Kerio Technologies 4.1.6002
[Drivers] Msfs.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\MSFS.SYS
### Mailslot driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] Npfs.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\NPFS.SYS
### NPFS Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] rasacd.sys=C:\WINDOWS\SYSTEM32\DRIVERS\RASACD.SYS
### RAS Automatic Connection Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] ipsec.sys=C:\WINDOWS\SYSTEM32\DRIVERS\IPSEC.SYS
### IPSec Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] tcpip.sys=C:\WINDOWS\SYSTEM32\DRIVERS\TCPIP.SYS
### TCP/IP Protocol Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2892
[Drivers] aswTdi.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\ASWTDI.SYS
### avast! TDI Filter Driver ALWIL Software avast! Antivirus System 4.7
[Drivers] netbt.sys=C:\WINDOWS\SYSTEM32\DRIVERS\NETBT.SYS
### MBT Transport driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] afd.sys=C:\WINDOWS\SYSTEM32\DRIVERS\AFD.SYS
### Ancillary Function Driver for WinSock Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] netbios.sys=C:\WINDOWS\SYSTEM32\DRIVERS\NETBIOS.SYS
### NetBIOS interface driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] rdbss.sys=C:\WINDOWS\SYSTEM32\DRIVERS\RDBSS.SYS
### Redirected Drive Buffering SubSystem Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2902
[Drivers] mrxsmb.sys=C:\WINDOWS\SYSTEM32\DRIVERS\MRXSMB.SYS
### Windows NT SMB Minirdr Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2902
[Drivers] khips.sys=C:\WINDOWS\SYSTEM32\DRIVERS\KHIPS.SYS
### Kerio Host Intrusion Prevention Driver HIPS 1.0.1796
[Drivers] ipnat.sys=C:\WINDOWS\SYSTEM32\DRIVERS\IPNAT.SYS
### IP Network Address Translator Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2524
[Drivers] wanarp.sys=C:\WINDOWS\SYSTEM32\DRIVERS\WANARP.SYS
### MS Remote Access and Routing ARP Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] Fips.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\FIPS.SYS
### FIPS Crypto Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.0
[Drivers] Aavmker4.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\AAVMKER4.SYS
### avast! Base Kernel-Mode Device Driver for Windows NT/2000/XP ALWIL Software avast! Antivirus System 4.7
[Drivers] geneusb.sys=C:\WINDOWS\SYSTEM32\DRIVERS\GENEUSB.SYS
### GeneLink USB Driver Genesys Logic GeneLink 1.05
[Drivers] genelan.sys=C:\WINDOWS\SYSTEM32\DRIVERS\GENELAN.SYS
### GeneLink Network Driver Genesys Logic GeneLink 1.05
[Drivers] adiusbaw.sys=C:\WINDOWS\SYSTEM32\DRIVERS\ADIUSBAW.SYS
### ADSL USB Driver Analog Devices Inc. ADSL USB WAN Driver 2.2.9.14
[Drivers] Cdfs.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\CDFS.SYS
### CD-ROM File System Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] atapi.sys=C:\WINDOWS\SYSTEM32\DRIVERS\DUMP_ATAPI.SYS
[Drivers] WMILIB.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\DUMP_WMILIB.SYS
[Drivers] win32k.sys=C:\WINDOWS\SYSTEM32\WIN32K.SYS
### Multi-User Win32 Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2770
[Drivers] Dxapi.sys=C:\WINDOWS\SYSTEM32\DRIVERS\DXAPI.SYS
### DirectX API Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] watchdog.sys=C:\WINDOWS\SYSTEM32\WATCHDOG.SYS
### Watchdog Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] dxg.sys=C:\WINDOWS\SYSTEM32\DRIVERS\DXG.SYS
### DirectX Graphics Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] dxgthk.sys=C:\WINDOWS\SYSTEM32\DRIVERS\DXGTHK.SYS
### DirectX Graphics Driver Thunk Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] ati2dvag.dll=C:\WINDOWS\SYSTEM32\ATI2DVAG.DLL
### ATI Radeon WindowsNT Display Driver ATI Technologies Inc. ATI Radeon WindowsNT Display Driver 6.14.10.6606
[Drivers] ati2cqag.dll=C:\WINDOWS\SYSTEM32\ATI2CQAG.DLL
### Central Memory Manager / Queue Server Module ATI Technologies Inc. ATI Radeon Family 5.2.3790.1830
[Drivers] atikvmag.dll=C:\WINDOWS\SYSTEM32\ATIKVMAG.DLL
### Virtual Command And Memory Manager ATI Technologies Inc. Virtual Command And Memory Manager 5.2.3790.1830
[Drivers] ati3duag.dll=C:\WINDOWS\SYSTEM32\ATI3DUAG.DLL
### ati3duag.dll ATI Technologies Inc. ATI Technologies Inc. Radeon DirectX Universal Driver 6.14.10.0392
[Drivers] ativvaxx.dll=C:\WINDOWS\SYSTEM32\ATIVVAXX.DLL
### Radeon Video Acceleration Universal Driver ATI Technologies Inc. ATI Technologies Inc. Radeon Video Acceleration Universal Driver 6.14.01.0095
[Drivers] nwlnkipx.sys=C:\WINDOWS\SYSTEM32\DRIVERS\NWLNKIPX.SYS
### NWLINK2 IPX Protocol Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] nwlnknb.sys=C:\WINDOWS\SYSTEM32\DRIVERS\NWLNKNB.SYS
### NWLINK2 IPX Netbios Protocol Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] ndisuio.sys=C:\WINDOWS\SYSTEM32\DRIVERS\NDISUIO.SYS
### NDIS User mode I/O Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] mrxdav.sys=C:\WINDOWS\SYSTEM32\DRIVERS\MRXDAV.SYS
### Windows NT WebDav Minirdr Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] ParVdm.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\PARVDM.SYS
### VDM Parallel Driver Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.0
[Drivers] SENTINEL.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\SENTINEL.SYS
[Drivers] aswMon2.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\ASWMON2.SYS
### avast! File System Filter Driver for Windows XP ALWIL Software avast! Antivirus System 4.7
[Drivers] nwlnkspx.sys=C:\WINDOWS\SYSTEM32\DRIVERS\NWLNKSPX.SYS
### NWLINK2 SPX Protocol Driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Drivers] srv.sys=C:\WINDOWS\SYSTEM32\DRIVERS\SRV.SYS
### Server driver Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2974
[Drivers] secdrv.sys=C:\WINDOWS\SYSTEM32\DRIVERS\SECDRV.SYS
### Macrovision SECURITY Driver Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K. Macrovision SECURITY Driver SECURITY Driver 4.00.060 2004/08/31
[Drivers] aswRdr.SYS=C:\WINDOWS\SYSTEM32\DRIVERS\ASWRDR.SYS
### avast! TDI RDR Driver ALWIL Software avast! Antivirus System 4.7
[Drivers] wdmaud.sys=C:\WINDOWS\SYSTEM32\DRIVERS\WDMAUD.SYS
### MMSYSTEM Wave/Midi API mapper Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2929
[Drivers] sysaudio.sys=C:\WINDOWS\SYSTEM32\DRIVERS\SYSAUDIO.SYS
### System Audio WDM Filter Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Drivers] HTTP.sys=C:\WINDOWS\SYSTEM32\DRIVERS\HTTP.SYS
### HTTP Protocol Stack Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2869
[Drivers] kmixer.sys=C:\WINDOWS\SYSTEM32\DRIVERS\KMIXER.SYS
### Kernel Mode Audio Mixer Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2929
[Drivers] regguard.sys=C:\WINDOWS\SYSTEM32\DRIVERS\REGGUARD.SYS
### Registry Guard - registry keys protection driver for Windows NT/2000/XP/2003/Vista Greatis Software RegRun Security Suite 4.60
[Drivers] UnHackMeDrv.sys=C:\WINDOWS\SYSTEM32\DRIVERS\UNHACKMEDRV.SYS
### UnHackMe Kernel Driver Greatis Software, LLC. UnHackme 5.00.2195.1620
[Drivers] ntdll.dll=C:\WINDOWS\SYSTEM32\NTDLL.DLL
### NT Layer DLL Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Auto Start Apps]
[Registry Run] :HKCU ctfmon.exe=C:\WINDOWS\system32\ctfmon.exe
### CTF Loader Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Registry Run] :HKCU Regrun2=C:\PROGRA~1\Greatis\REGRUN~1\WatchDog.exe
### WatchDog Greatis Software RegRun Security Suite 4.0
[Registry Run] :HKCU Registry="C:\Program Files\Greatis\RegRunSuite\lsoon.exe" -1 30 "C:\Program Files\Greatis\RegRunSuite\rescue.exe" /a "c:\backreg\rstore.ini"
### Launch application with delay Greatis Software RegRun Security Suite 3.1
[Registry Run] :HKLM zBrowser Launcher=C:\Program Files\Logitech\iTouch\iTouch.exe
### iTouch Application Logitech Inc. iTouch 2.16.268
[Registry Run] :HKLM Logitech Utility=Logi_MwX.Exe
### Logitech Launcher Application Logitech Inc. MouseWare 9.75.294
[Registry Run] :HKLM avast!=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
### avast! service GUI component avast! Antivirus 5, 0, 0, 0
[Registry Run] :HKLM ConMet=C:\Program Files\ConMet\ConMet.exe
### Connection Meter® E+P Studio Connection Meter® 5
[Registry Run] :HKLM KernelFaultCheck=%systemroot%\system32\dumprep 0 -k
[Win.ini] load=""
[Win.ini] run=""
[Startup Folder] SpeedFan.lnk=G:\speedfan\speedfan.exe
### Almico Software (http://www.almico.com) SpeedFan 4.27
[Common Startup Folder] DSLMON.lnk=C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
### ADIMON MFC Application DSLMON Application 1, 0, 0, 1
[Common Startup Folder] Microsoft Office.lnk=C:\Program Files\Microsoft Office\Office10\OSA.EXE
### Microsoft Office XP component Microsoft Corporation Microsoft Office XP 10.0.2609
[In memory]
[Running Processes] C:\WINDOWS\SYSTEM32\SMSS.EXE
### Správce relací systému Windows NT Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Running Processes] C:\WINDOWS\SYSTEM32\WINLOGON.EXE
### Windows NT Logon Application Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Running Processes] C:\WINDOWS\SYSTEM32\SERVICES.EXE
### Services and Controller app Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Running Processes] C:\WINDOWS\SYSTEM32\LSASS.EXE
### LSA Shell (Export Version) Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Running Processes] C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
### ATI External Event Utility EXE Module ATI Technologies Inc. ATI External Event Utility for WindowsNT and Windows9X 6.14.10.4131.01
[Running Processes] C:\WINDOWS\SYSTEM32\SVCHOST.EXE
### Generic Host Process for Win32 Services Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Running Processes] C:\WINDOWS\SYSTEM32\SVCHOST.EXE
### Generic Host Process for Win32 Services Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Running Processes] C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
### Spooler SubSystem App Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2696
[Running Processes] C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASWUPDSV.EXE
[Running Processes] C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASHSERV.EXE
### avast! antivirus service avast! Antivirus 4, 7, 0, 0
[Running Processes] C:\PROGRAM FILES\KERIO\PERSONAL FIREWALL 4\KPF4SS.EXE
### Kerio Personal Firewall 4 - Service Kerio Technologies Kerio Personal Firewall 4 4.2.2
[Running Processes] C:\PROGRAM FILES\KERIO\PERSONAL FIREWALL 4\KPF4GUI.EXE
### Kerio Personal Firewall 4 - GUI Kerio Technologies Kerio Personal Firewall 4 4.2.2
[Running Processes] C:\WINDOWS\SYSTEM32\SVCHOST.EXE
### Generic Host Process for Win32 Services Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Running Processes] C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASHMAISV.EXE
### avast! e-Mail Scanner Service ALWIL Software avast! Antivirus 4, 7, 0, 0
[Running Processes] C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASHWEBSV.EXE
### avast! Web Scanner ALWIL Software avast! Antivirus 4, 7, 0, 0
[Running Processes] C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
### ATI External Event Utility EXE Module ATI Technologies Inc. ATI External Event Utility for WindowsNT and Windows9X 6.14.10.4131.01
[Running Processes] C:\PROGRAM FILES\KERIO\PERSONAL FIREWALL 4\KPF4GUI.EXE
### Kerio Personal Firewall 4 - GUI Kerio Technologies Kerio Personal Firewall 4 4.2.2
[Running Processes] C:\WINDOWS\EXPLORER.EXE
### Průzkumník Windows Microsoft Corporation Microsoft(R) Windows (R) 2000 Operating System 6.00.2900.2180
[Running Processes] C:\PROGRAM FILES\LOGITECH\ITOUCH\ITOUCH.EXE
### iTouch Application Logitech Inc. iTouch 2.16.268
[Running Processes] C:\PROGRA~1\ALWILS~1\AVAST4\ASHDISP.EXE
### avast! service GUI component avast! Antivirus 5, 0, 0, 0
[Running Processes] C:\PROGRAM FILES\CONMET\CONMET.EXE
### Connection Meter® E+P Studio Connection Meter® 5
[Running Processes] C:\PROGRAM FILES\LOGITECH\MOUSEWARE\SYSTEM\EM_EXEC.EXE
### Logitech Events Handler Application Logitech Inc. MouseWare 9.75.302
[Running Processes] C:\WINDOWS\SYSTEM32\CTFMON.EXE
### CTF Loader Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Running Processes] C:\PROGRAM FILES\SAGEM\SAGEM F@ST 800-840\DSLMON.EXE
### ADIMON MFC Application DSLMON Application 1, 0, 0, 1
[Running Processes] G:\SPEEDFAN\SPEEDFAN.EXE
### Almico Software (http://www.almico.com) SpeedFan 4.27
[Running Processes] C:\PROGRAM FILES\MOZILLA FIREFOX\FIREFOX.EXE
### Firefox Mozilla Corporation Firefox 1.5.0.9
[Running Processes] C:\PROGRAM FILES\WINRAR\WINRAR.EXE
### WinRAR archiver Alexander Roshal
[Running Processes] C:\DOCUME~1\TAKA~1\LOCALS~1\TEMP\RAR$EX00.026\HIJACKTHIS.EXE
### HijackThis Soeperman Enterprises Ltd. HijackThis 1.99.0001
[Running Processes] C:\PROGRAM FILES\GREATIS\REGRUNSUITE\REGRUNCENTER.EXE
### RegRun Control Center Greatis Software RegRun Security Suite 5.0
[Running Processes] C:\PROGRAM FILES\GREATIS\REGRUNSUITE\WATCHDOG.EXE
### WatchDog Greatis Software RegRun Security Suite 4.0
[Running Processes] C:\PROGRAM FILES\GREATIS\REGRUNSUITE\REGRUN2.EXE
### RegRun Start Control Greatis Software RegRun Security Suite 5.0
[Loaded DLLs] C:\WINDOWS\System32\mstask.dll
### Task Scheduler interface DLL Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Loaded DLLs] C:\Program Files\Greatis\RegRunSuite\RRShell.dll
### RRShell Module Greatis Software, LLC RRShell Module 1, 0, 1, 2
[Loaded DLLs] C:\Program Files\Logitech\iTouch\iTchHk.dll
### iTouch Hook Library Logitech Inc. iTouch 1.0.0
[Loaded DLLs] C:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll
### Logitech Message Hook Library Logitech Inc. Productivity Software Common Files 1.0.0
[Loaded DLLs] C:\Program Files\Greatis\RegRunSuite\regguardl.dll
[Loaded DLLs] C:\Program Files\Logitech\iTouch\iTchHk.dll
### iTouch Hook Library Logitech Inc. iTouch 1.0.0
[Loaded DLLs] C:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll
### Logitech Message Hook Library Logitech Inc. Productivity Software Common Files 1.0.0
[Loaded DLLs] C:\Program Files\Logitech\iTouch\iTchHk.dll
### iTouch Hook Library Logitech Inc. iTouch 1.0.0
[Loaded DLLs] C:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll
### Logitech Message Hook Library Logitech Inc. Productivity Software Common Files 1.0.0
[Loaded DLLs] C:\Program Files\Logitech\iTouch\iTchHk.dll
### iTouch Hook Library Logitech Inc. iTouch 1.0.0
[Loaded DLLs] C:\WINDOWS\system32\asycfilt.dll
### Microsoft Corporation 5.1.2600.2180
[Loaded DLLs] C:\WINDOWS\system32\MSVBVM60.DLL
### Visual Basic Virtual Machine Microsoft Corporation Visual Basic 6.00.9782
[Loaded DLLs] C:\WINDOWS\System32\mydocs.dll
### My Documents Folder UI Microsoft Corporation Operační systém Microsoft® Windows® 6.00.2900.2180
[Loaded DLLs] C:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll
### Logitech Message Hook Library Logitech Inc. Productivity Software Common Files 1.0.0
[Loaded DLLs] C:\Program Files\Logitech\iTouch\iTchHk.dll
### iTouch Hook Library Logitech Inc. iTouch 1.0.0
[Loaded DLLs] C:\WINDOWS\system32\xpsp2res.dll
### Zprávy aktualizace Service Pack 2 Microsoft Corporation Operační systém Microsoft® Windows® 5.1.2600.2180
[Loaded DLLs] C:\WINDOWS\system32\wiashext.dll
### Imaging Devices Shell Folder UI Microsoft Corporation Microsoft(R) Windows (R) 2000 Operating System 5.1.2600.2180
[Loaded DLLs] C:\WINDOWS\System32\shgina.dll
### Windows Shell User Logon Microsoft Corporation Microsoft® Windows® Operating System 6.00.2900.2180
[Loaded DLLs] C:\WINDOWS\system32\riched32.dll
### Wrapper Dll for Richedit 1.0 Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.0
[Loaded DLLs] C:\Program Files\WinRAR\rarlng.dll
[Loaded DLLs] C:\Program Files\Logitech\iTouch\kbdhook.dll
### Keyboard Hook Library Logitech Inc. iTouch 2.16.268
[Loaded DLLs] C:\PROGRA~1\MOZILL~1\nssckbi.dll
### NSS Builtin Trusted Root CAs Netscape Communications Corporation Network Security Services 1.53
[Loaded DLLs] C:\Program Files\Mozilla Firefox\plugins\NPSWF32.dll
[Loaded DLLs] C:\WINDOWS\system32\IMM32.DLL
### Windows XP IMM32 API Client DLL Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Loaded DLLs] C:\Program Files\Logitech\iTouch\iTchHk.dll
### iTouch Hook Library Logitech Inc. iTouch 1.0.0
[Loaded DLLs] C:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll
### Logitech Message Hook Library Logitech Inc. Productivity Software Common Files 1.0.0
[Loaded DLLs] C:\WINDOWS\System32\msimtf.dll
### Active IMM Server DLL Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Loaded DLLs] C:\Program Files\Mozilla Firefox\components\jar50.dll
### Mozilla Foundation Firefox 1.8.0.9: 2006120612
[Loaded DLLs] C:\Program Files\Mozilla Firefox\xpcom_compat.dll
### Mozilla Foundation Firefox 1.8.0.9: 2006120612
[Loaded DLLs] C:\Program Files\Mozilla Firefox\ssl3.dll
### NSS SSL Library Netscape Communications Corporation Network Security Services 3.10.2
[Loaded DLLs] C:\Program Files\Mozilla Firefox\softokn3.dll
### NSS PKCS #11 Library Netscape Communications Corporation Network Security Services 3.10.2
[Loaded DLLs] C:\Program Files\Mozilla Firefox\nss3.dll
### NSS Base Library Netscape Communications Corporation Network Security Services 3.10.2
[Loaded DLLs] C:\Program Files\Mozilla Firefox\smime3.dll
### NSS S/MIME Library Netscape Communications Corporation Network Security Services 3.10.2
[Loaded DLLs] C:\Program Files\Mozilla Firefox\plds4.dll
### PLDS Library Netscape Communications Corporation Netscape Portable Runtime 4.6.1
[Loaded DLLs] C:\Program Files\Mozilla Firefox\plc4.dll
### PLC Library Netscape Communications Corporation Netscape Portable Runtime 4.6.1
[Loaded DLLs] C:\Program Files\Mozilla Firefox\xpcom_core.dll
### Mozilla Foundation Firefox 1.8.0.9: 2006120612
[Loaded DLLs] C:\Program Files\Mozilla Firefox\nspr4.dll
### NSPR Library Netscape Communications Corporation Netscape Portable Runtime 4.6.1
[Loaded DLLs] C:\Program Files\Mozilla Firefox\js3250.dll
### Netscape 32-bit JavaScript Module Netscape Communications Corporation NETSCAPE 4.0
[Loaded DLLs] C:\WINDOWS\System32\wbem\wbemdisp.dll
### WMI Scripting Microsoft Corporation Microsoft® Windows® Operating System 5.1.2600.2180
[Loaded DLLs] C:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll
### Logitech Message Hook Library Logitech Inc. Productivity Software Common Files 1.0.0
[Loaded DLLs] C:\WINDOWS\System32\mui\0005\hhctrlui.dll
### Ovládací prvek Microsoft® HTML Help Microsoft Corporation HTML Help 4.74.9273
[Loaded DLLs] C:\WINDOWS\System32\hhctrl.ocx
### Microsoft® HTML Help Control Microsoft Corporation HTML Help 5.2.3790.2744
[Loaded DLLs] C:\Program Files\Logitech\iTouch\iTchHk.dll
### iTouch Hook Library Logitech Inc. iTouch 1.0.0
[Loaded DLLs] C:\Program Files\Logitech\MouseWare\System\LgWndHk.dll
### Logitech Call Window Hook Library Logitech Inc. MouseWare 9.75.302
[Loaded DLLs] C:\Program Files\Common Files\Logitech\Scrolling\LgMsgHk.dll
### Logitech Message Hook Library Logitech Inc. Productivity Software Common Files 1.0.0
[Loaded DLLs] C:\Program Files\Logitech\iTouch\iTchHk.dll
### iTouch Hook Library Logitech Inc. iTouch 1.0.0
[Loaded DLLs] C:\Program Files\Logitech\MouseWare\System\LgWndHk.dll
### Logitech Call Window Hook Library Logitech Inc. MouseWare 9.75.302
[Loaded DLLs] C:\Program Files\SAGEM\SAGEM F@st 800-840\Languages\English.dll
### ADIMON MFC Application DSLMON Application 1, 0, 0, 1
[Loaded DLLs] C:\WINDOWS\system32\oledlg.dll
### Microsoft Windows(TM) OLE 2.0 User Interface Support Microsoft Corporation Microsoft Windows(TM) OLE 2.0 User Interface Support 2.01
[Loaded DLLs] C:\Program Files\Logitech\iTouch\iTchHk.dll
### iTouch Hook Library Logitech Inc. iTouch 1.0.0
[Loaded DLLs] C:\Program Files\Logitech\MouseWare\System\LgWndHk.dll
### Logitech Call Window Hook Library Logitech Inc. MouseWare 9.75.302
[Loaded DLLs] C:\Program Files\Logitech\MouseWare\System\LgWndHk.dll
### Logitech Call Window Hook Library Logitech Inc. MouseWare 9.75.302
[Loaded DLLs] C:\Program Files\Logitech\MouseWare\system\ccmsghk.dll
### Logitech Multi Purpose Hook Library Logitech Inc. MouseWare
Zpět na “Viry, antiviry, firewally…”
Kdo je online
Uživatelé prohlížející si toto fórum: Majestic-12 [Bot] a 10 hostů