Nefunkční windows update, prosím o kontrolu logu

Zpráva

bleak · #1 Příspěvek od **bleak** » 17 led 2012 05:34

chyba 80072EFD mně zavedla až sem, prosím o kontrolu logu z RSIT:

Logfile of random's system information tool 1.09 (written by random/random)
Run by Miroslav at 2012-01-17 05:26:23
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 13 GB (11%) free of 122 GB
Total RAM: 3069 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 5:26:31, on 17.1.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\ManicTime\ManicTime.exe
C:\Program Files\FindAndRunRobot\FindAndRunRobot.exe
C:\Program Files\Miranda IM\miranda32.exe
C:\Program Files\ProcrastiTracker\procrastitracker.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\CrystalDiskInfo\DiskInfo.exe
C:\Users\Miroslav\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Miroslav\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Miroslav\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Miroslav\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Miroslav\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Miroslav\AppData\Local\MultiCommander\MultiCommander.exe
C:\Program Files\NetBeans 7.0.1\bin\netbeans.exe
C:\Windows\explorer.exe
C:\Users\Miroslav\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Miroslav\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\System32\mstsc.exe
C:\Users\Miroslav\AppData\Local\Google\Chrome\Application\chrome.exe
D:\Program Files\KeePass Password Safe\KeePass.exe
C:\Windows\helppane.exe
C:\Windows\system32\taskmgr.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\notepad.exe
C:\Program Files\Oracle\VirtualBox\VirtualBox.exe
C:\Program Files\Oracle\VirtualBox\VBoxSVC.exe
C:\Users\Miroslav\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\System32\cmd.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Miroslav\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Miroslav\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Miroslav\Downloads\RSIT.exe
C:\Program Files\trend micro\Miroslav.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Miroslav\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [ManicTime] C:\Program Files\ManicTime\ManicTime.exe /minimized /name:
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Find And Run Robot.lnk = C:\Program Files\FindAndRunRobot\FindAndRunRobot.exe
O4 - Startup: Miranda IM.lnk = C:\Program Files\Miranda IM\miranda32.exe
O4 - Startup: ProcrastiTracker.lnk = C:\Program Files\ProcrastiTracker\procrastitracker.exe
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {361E6B79-4A69-4376-B0F2-3D1EBEE9D7E2} (RtspVaPgCtrl Class) - http://10.1.40.227/RtspVaPgDec.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O20 - AppInit_DLLs:
O23 - Service: Apache2.2 - Apache Software Foundation - D:\apache\apache\bin\httpd.exe
O23 - Service: EaseUS Agent - Unknown owner - C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - Firebird Project - C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe
O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - Firebird Project - C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe
O23 - Service: MySQL - MySQL AB - D:\apache\mysql\bin\mysqld.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 6641 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-261312198-2171236468-1253401179-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-261312198-2171236468-1253401179-1000UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\pluzikz2.default

prefs.js - "extensions.enabledItems" - "firebug@software.joehewitt.com:1.6.1, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\pluzikz2.default\extensions\
LogMeInClient@logmein.com

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-10-18 42272]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2010-03-17 8546848]
"NUSB3MON"=C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2009-11-20 106496]
"VirtualCloneDrive"=C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2009-06-17 85160]
"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2011-09-08 3076144]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Miroslav\AppData\Local\Google\Update\GoogleUpdate.exe [2010-11-13 136176]
"ManicTime"=C:\Program Files\ManicTime\ManicTime.exe [2011-10-26 248656]

C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Find And Run Robot.lnk - C:\Program Files\FindAndRunRobot\FindAndRunRobot.exe
Miranda IM.lnk - C:\Program Files\Miranda IM\miranda32.exe
ProcrastiTracker.lnk - C:\Program Files\ProcrastiTracker\procrastitracker.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.I420"=MSH263.DRV
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.SP54"=SP5X_32.DLL
"VIDC.SP55"=SP5X_32.DLL
"VIDC.SP56"=SP5X_32.DLL
"VIDC.SP57"=SP5X_32.DLL
"VIDC.SP58"=SP5X_32.DLL
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-01-17 05:26:24 ----D---- C:\Program Files\trend micro
2012-01-17 05:26:23 ----D---- C:\rsit
2012-01-16 13:59:24 ----D---- C:\Windows\SoftwareDistribution
2012-01-11 17:12:47 ----SHD---- C:\Users\Miroslav\AppData\Roaming\wyUpdate AU
2012-01-11 17:12:46 ----D---- C:\Users\Miroslav\AppData\Roaming\Cyberduck
2012-01-11 14:07:45 ----D---- C:\Program Files\7-Zip
2012-01-06 09:24:12 ----D---- C:\Users\Miroslav\AppData\Roaming\MultiCommander

======List of files/folders modified in the last 1 month======

2012-01-17 05:26:25 ----D---- C:\Windows\Temp
2012-01-17 05:26:24 ----RD---- C:\Program Files
2012-01-17 05:25:18 ----D---- C:\Users\Miroslav\AppData\Roaming\procrastitrackerdbs
2012-01-16 17:12:15 ----D---- C:\Users\Miroslav\AppData\Roaming\FileZilla
2012-01-16 13:59:24 ----D---- C:\Windows
2012-01-16 06:47:12 ----D---- C:\Program Files\FileZilla FTP Client
2012-01-13 07:28:41 ----D---- C:\Windows\system32\config
2012-01-12 15:00:20 ----SHD---- C:\System Volume Information
2012-01-12 12:42:17 ----D---- C:\Windows\System32
2012-01-12 12:42:17 ----D---- C:\Windows\inf
2012-01-12 12:42:17 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-01-12 12:38:03 ----D---- C:\ProgramData\NVIDIA
2012-01-11 17:12:21 ----RSD---- C:\Windows\assembly
2012-01-11 13:01:33 ----D---- C:\Users\Miroslav\AppData\Roaming\FreeCommander
2012-01-11 13:01:06 ----D---- C:\Users\Miroslav\AppData\Roaming\WinRAR
2012-01-10 17:18:32 ----D---- C:\Program Files\Mozilla Thunderbird
2012-01-02 19:57:23 ----D---- C:\Users\Miroslav\AppData\Roaming\HelpNDoc
2011-12-29 12:35:52 ----D---- C:\Windows\Minidump
2011-12-23 11:46:42 ----D---- C:\Program Files\Mozilla Firefox

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ahcix86s;ahcix86s; C:\Windows\system32\DRIVERS\ahcix86s.sys [2010-01-06 190768]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 14392]
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2011-08-04 50624]
R0 EUBAKUP;EUBAKUP; C:\Windows\system32\drivers\eubakup.sys [2011-08-05 39560]
R0 EUBKMON;EUBKMON; C:\Windows\system32\drivers\EUBKMON.sys [2011-08-05 43656]
R0 ffire;FlashFire; C:\Windows\system32\DRIVERS\ffirel.sys [2009-07-23 14336]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2011-08-04 118104]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-12-17 26024]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2011-08-04 33656]
R1 EUDSKACS;EUDSKACS; \??\C:\Windows\system32\drivers\eudskacs.sys [2011-08-05 17032]
R1 EUFDDISK;EUFDDISK; \??\C:\Windows\system32\drivers\EuFdDisk.sys [2011-08-05 185480]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2011-10-03 158512]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2011-10-03 91440]
R1 vpcnfltr;Virtual PC Network Filter Driver; C:\Windows\system32\DRIVERS\vpcnfltr.sys [2010-11-20 48128]
R1 vpcvmm;@%SystemRoot%\system32\drivers\vpcvmm.sys,-100; C:\Windows\system32\drivers\vpcvmm.sys [2010-11-20 296064]
R2 DLPortIO;DriverLINX Port I/O Driver; C:\Windows\system32\drivers\DLPortIO.sys [1999-01-10 3584]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2011-08-09 163424]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2011-08-04 147480]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2008-01-24 5120]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2010-03-17 3041568]
R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2009-11-20 58880]
R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2009-11-20 137728]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2010-09-07 123496]
R3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2009-07-13 43008]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2010-03-04 277536]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-12-22 30392]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2011-10-03 104752]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2011-10-03 116016]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2009-08-09 29696]
R3 vpcbus;Služba hostitelské sběrnice programu Virtual PC; C:\Windows\system32\DRIVERS\vpchbus.sys [2010-11-20 172416]
R3 vpcusb;Služba konektoru virtualizace rozhraní USB; C:\Windows\system32\DRIVERS\vpcusb.sys [2010-11-20 78336]
S2 Ca1528av;SPCA1528 Video Camera Service; C:\Windows\System32\Drivers\Ca1528av.sys [2008-12-16 516480]
S2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 AF15BDA;AF9015 BDA Device; C:\Windows\system32\DRIVERS\AF15BDA.sys [2011-07-02 483200]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 Bridge;@%SystemRoot%\system32\bridgeres.dll,-3; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 Bulk1528;SPCA1528 Still Camera Service; C:\Windows\System32\Drivers\Bulk1528.sys [2008-06-27 11648]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 KMWDFILTERx86;HIDServiceDesc; C:\Windows\system32\DRIVERS\KMWDFILTER.sys [2009-04-29 25088]
S3 PciPPorts;PCI ECP Parallel Port; C:\Windows\system32\DRIVERS\PciPPorts.sys [2009-07-23 82944]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2009-07-14 15872]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apache2.2;Apache2.2; D:\apache\apache\bin\httpd.exe [2010-11-18 29416]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2011-09-08 974944]
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe [2011-02-01 81920]
R2 MySQL;MySQL; D:\apache\mysql\bin\mysqld.exe [2010-11-18 6095504]
R2 NVSvc;NVIDIA Driver Helper Service; C:\Windows\system32\nvvsvc.exe [2010-10-16 600680]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-10-16 369256]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe [2011-02-01 2764800]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 EaseUS Agent;EaseUS Agent; C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe []
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-11-14 1343400]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

#2 Příspěvek od **vyosek** » 17 led 2012 13:35

Zdravim a pekny den preji

Predpokladam, ze ten ESET Smart Security mate legalni = zakoupena licence

bleak · #3 Příspěvek od **bleak** » 17 led 2012 14:00

ano, Eset je legální
WU nefunguje i když vypnu v Esetu veškerou ochranu.

#4 Příspěvek od **vyosek** » 17 led 2012 14:07

Tohle jste zkousel http://windows.microsoft.com/cs-CZ/wind ... r-80072efd Pridat aktualizacni servery do vyjimek

bleak · #5 Příspěvek od **bleak** » 17 led 2012 14:27

nejsem si jistý, zda Eset umožňuje zadat do firewalu výjimky dle jmenných adres, nenašel jsem to v nastavení ani v dokumentaci.
Takže jsem firewall zcela vyřadil, ale situace je stejná.

#6 Příspěvek od **vyosek** » 17 led 2012 14:46

Nastavení - Personall firewall - Nastavit pravidla a zóny

Pripadne mrknete sem http://www.viry.cz/forum/viewtopic.php?t=56589

#7 Příspěvek od **Johny_ESET** » 17 led 2012 15:10

bleak píše:nejsem si jistý, zda Eset umožňuje zadat do firewalu výjimky dle jmenných adres, nenašel jsem to v nastavení ani v dokumentaci.
Takže jsem firewall zcela vyřadil, ale situace je stejná.

Nejdříve je nutné zjistit, zda Windows Update skutečně ovlivňuje antivirový štít (kontrola filesystému či HTTP kontrola) nebo personální firewall. Tedy pomocí kontextové nabídky stavové ikony produktu ESET vedle hodin všechno dočasně povypínat a vyzkoušet aktualizace. Pokud ani poté nepůjdou, pak bude ESET mimo hru a musíte své směrování zaměřit jinam. Pokud se aktualizace rozběhnou, zjistěte konkrétně po vypnutí čeho, se podaří aktualizovat. Pak se zaměříme na optimalizaci tohoto konkrétního modulu.

Aha, teď koukám výše a:

bleak píše:WU nefunguje i když vypnu v Esetu veškerou ochranu.

Pokud jste vypnul ochranu popisovaným způsobem, pak bude problém skutečně asi někde jinde. Jistota bude, pokud programovou složku ESET přejmenujete v nouzovém režimu a po restartu ověříte, zda aktualizace fungují...

#8 Příspěvek od **vyosek** » 17 led 2012 15:13

A pokud nebudou fungovat ani po krocich co napsal kolega, tak napiste a kouknem ci nas neblokuje nejaky smejd

bleak · #9 Příspěvek od **bleak** » 18 led 2012 05:09

Eset jsem odinstaloval, situace s WU stejná.
Dnes mi bude volat technická podpora Microsoft, tak uvidíme, ale raději bych si byl jistý, že nemám v OS nějaké napadení.

#10 Příspěvek od **vyosek** » 18 led 2012 09:08

Zkusime tedy mrknout na havet

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK

Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
Pokud mate Win XP spustte pod uctem Spravce\Administratora
Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

bleak · #11 Příspěvek od **bleak** » 18 led 2012 10:19

ComboFix nelze spustit, spouštím jako správce ze souboru uloženého na ploše. Na okamžik se objeví okno příkazového řádku a hned se zase zavře, obsah není vidět.
Spustil jsem tedy příkazový řádek jako správce a spustil combofix.exe z příkazového řádku.
Dostal jsem hlášku:

Kód: Vybrat vše

D:\smazat>combofix.exe
Program too big to fit in memory

nechápu to, Eset je vypnutý, RAMky 3 GB. Snad poškozený soubor Combofix.exe, stahoval jsem opakovaně.

#12 Příspěvek od **vyosek** » 18 led 2012 10:23

Stahnete ComboFix primo na plochu, spustte tradicne dvojklikem - ne jako spravce, on by si mel prava vynutit

bleak · #13 Příspěvek od **bleak** » 18 led 2012 10:40

stejný výsledek, začínám mít trochu obavy...
ale zdá se, že nejsem sám:
http://www.bleepingcomputer.com/forums/topic438698.html

#14 Příspěvek od **vyosek** » 18 led 2012 15:14

Stahnete novy CF, sUBs jej aktualizoval...

bleak · #15 Příspěvek od **bleak** » 18 led 2012 16:48

ano, zde je log:

ComboFix 12-01-18.04 - Miroslav 18.01.2012 16:42:02.1.6 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.3069.2044 [GMT 1:00]
Spuštěný z: c:\users\Miroslav\Desktop\ComboFix.exe
AV: ESET Smart Security 5.0 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Disabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 5.0 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\system32\AF15BDAEX.dll
c:\windows\system32\drivers\etc\hosts.ics
c:\windows\system32\win.ini
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-12-18 do 2012-01-18 )))))))))))))))))))))))))))))))
.
.
2012-01-18 15:44 . 2012-01-18 15:44 -------- d-----w- c:\users\Miroslav\AppData\Local\temp
2012-01-18 15:44 . 2012-01-18 15:44 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-01-18 04:02 . 2012-01-18 04:02 -------- d-----w- c:\program files\ESET
2012-01-18 04:00 . 2012-01-18 04:00 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{AC40CDA4-42C3-43D3-8E87-A0428367C3F8}\offreg.dll
2012-01-17 06:01 . 2012-01-18 15:39 -------- d-----w- c:\users\Miroslav\AppData\Local\gladinet
2012-01-17 06:01 . 2012-01-17 06:01 -------- d-----w- C:\Gladinet
2012-01-17 06:00 . 2012-01-17 06:00 -------- d-----w- c:\program files\Gladinet
2012-01-17 04:26 . 2012-01-17 04:26 -------- d-----w- c:\program files\trend micro
2012-01-17 04:26 . 2012-01-17 04:26 -------- d-----w- C:\rsit
2012-01-11 16:12 . 2012-01-12 07:59 -------- d-sh--w- c:\users\Miroslav\wc
2012-01-11 16:12 . 2012-01-11 16:12 -------- d-sh--w- c:\users\Miroslav\AppData\Roaming\wyUpdate AU
2012-01-11 16:12 . 2012-01-12 14:01 -------- d-----w- c:\users\Miroslav\AppData\Roaming\Cyberduck
2012-01-11 13:07 . 2012-01-11 13:07 -------- d-----w- c:\program files\7-Zip
2012-01-06 08:24 . 2012-01-06 08:24 -------- d-----w- c:\users\Miroslav\AppData\Roaming\MultiCommander
2012-01-06 08:22 . 2012-01-06 08:22 -------- d-----w- c:\users\Miroslav\AppData\Local\MultiCommander
2011-12-31 14:09 . 2011-11-21 10:47 6823496 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{AC40CDA4-42C3-43D3-8E87-A0428367C3F8}\mpengine.dll
2011-12-23 10:46 . 2011-12-23 10:46 626688 ----a-w- c:\program files\Mozilla Firefox\msvcr80.dll
2011-12-23 10:46 . 2011-12-23 10:46 548864 ----a-w- c:\program files\Mozilla Firefox\msvcp80.dll
2011-12-23 10:46 . 2011-12-23 10:46 479232 ----a-w- c:\program files\Mozilla Firefox\msvcm80.dll
2011-12-23 10:46 . 2011-12-23 10:46 43992 ----a-w- c:\program files\Mozilla Firefox\mozutils.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-12 11:38 . 2011-05-20 16:05 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-12-23 10:46 . 2011-11-25 07:39 121816 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GladinetIconOverlay]
@="{3C3DC57A-7535-48AF-BB9E-C3576A4F34D0}"
[HKEY_CLASSES_ROOT\CLSID\{3C3DC57A-7535-48AF-BB9E-C3576A4F34D0}]
2011-12-02 00:20 192512 ----a-w- c:\program files\Gladinet\Gladinet Cloud Desktop\GlOverlayIcon.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GladinetUploading]
@="{959A18D3-9CC9-41e8-B76F-34ED9A89D4EA}"
[HKEY_CLASSES_ROOT\CLSID\{959A18D3-9CC9-41e8-B76F-34ED9A89D4EA}]
2011-12-01 03:01 194416 ----a-w- c:\program files\Gladinet\Gladinet Cloud Desktop\GlOverlayIconU.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ManicTime"="c:\program files\ManicTime\ManicTime.exe" [2011-10-26 248656]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-03-17 8546848]
"NUSB3MON"="c:\program files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2009-11-20 106496]
"VirtualCloneDrive"="c:\program files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" [2009-06-17 85160]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 3080264]
.
c:\users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Find And Run Robot.lnk - c:\program files\FindAndRunRobot\FindAndRunRobot.exe [2010-11-16 4615680]
Miranda IM.lnk - c:\program files\Miranda IM\miranda32.exe [2011-11-27 820309]
ProcrastiTracker.lnk - c:\program files\ProcrastiTracker\procrastitracker.exe [2010-5-30 245760]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Gladinet Cloud Desktop.lnk - c:\program files\Gladinet\Gladinet Cloud Desktop\GladLauncher.exe [2011-12-1 87920]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R2 Ca1528av;SPCA1528 Video Camera Service;c:\windows\system32\Drivers\Ca1528av.sys [2008-12-16 516480]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 Bulk1528;SPCA1528 Still Camera Service;c:\windows\system32\Drivers\Bulk1528.sys [2008-06-27 11648]
R3 KMWDFILTERx86;HIDServiceDesc;c:\windows\system32\DRIVERS\KMWDFILTER.sys [2009-04-29 25088]
R3 PciPPorts;PCI ECP Parallel Port;c:\windows\system32\DRIVERS\PciPPorts.sys [2009-07-23 82944]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-11-14 1343400]
R4 EaseUS Agent;EaseUS Agent;c:\program files\EaseUS\Todo Backup\bin\Agent.exe [x]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2011-08-04 50624]
S0 EUBAKUP;EUBAKUP;c:\windows\system32\drivers\eubakup.sys [2011-08-05 39560]
S0 EUBKMON;EUBKMON;c:\windows\system32\drivers\EUBKMON.sys [2011-08-05 43656]
S0 ffire;FlashFire;c:\windows\system32\DRIVERS\ffirel.sys [2009-07-23 14336]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2011-08-04 118104]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [2011-08-04 33656]
S1 EUDSKACS;EUDSKACS;c:\windows\system32\drivers\eudskacs.sys [2011-08-05 17032]
S1 EUFDDISK;EUFDDISK;c:\windows\system32\drivers\EuFdDisk.sys [2011-08-05 185480]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [2011-10-03 158512]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [2011-10-03 91440]
S2 Apache2.2;Apache2.2;d:\apache\apache\bin\httpd.exe [2010-11-18 29416]
S2 DLPortIO;DriverLINX Port I/O Driver; [x]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2011-08-09 163424]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2011-09-22 974944]
S2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\Firebird\Firebird_2_1\bin\fbguard.exe [2011-02-01 81920]
S2 GladFileMonSvc;GladFileMonSvc;c:\program files\Gladinet\Gladinet Cloud Desktop\GladFileMonSvc.exe [2011-12-01 29552]
S2 SSPORT;SSPORT;c:\windows\system32\Drivers\SSPORT.sys [2008-01-24 5120]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-10-16 369256]
S3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\Firebird\Firebird_2_1\bin\fbserver.exe [2011-02-01 2764800]
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2009-11-20 58880]
S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2009-11-20 137728]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32v.sys [2010-09-07 123496]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-03-04 277536]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [2009-12-22 30392]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2011-10-03 104752]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [2011-10-03 116016]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - EPFWLWF
*NewlyCreated* - EPFWWFP
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc SensrSvc Mcx2Svc
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr
.
Obsah adresáře 'Naplánované úlohy'
.
2012-01-17 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-261312198-2171236468-1253401179-1000Core.job
- c:\users\Miroslav\AppData\Local\Google\Update\GoogleUpdate.exe [2010-11-13 12:59]
.
2012-01-18 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-261312198-2171236468-1253401179-1000UA.job
- c:\users\Miroslav\AppData\Local\Google\Update\GoogleUpdate.exe [2010-11-13 12:59]
.
.
------- Doplňkový sken -------
.
Trusted Zone: postsignum.cz\www
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\pluzikz2.default\
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-01-18 16:45:43
ComboFix-quarantined-files.txt 2012-01-18 15:45
.
Před spuštěním: Volných bajtů: 12 847 996 928
Po spuštění: Volných bajtů: 13 969 014 784
.
- - End Of File - - 717C1F02F3722484C5D07A1DBED45DB1

VIRY.CZ

Nefunkční windows update, prosím o kontrolu logu

Nefunkční windows update, prosím o kontrolu logu

Re: Nefunkční windows update, prosím o kontrolu logu

Re: Nefunkční windows update, prosím o kontrolu logu

Re: Nefunkční windows update, prosím o kontrolu logu

Re: Nefunkční windows update, prosím o kontrolu logu

Re: Nefunkční windows update, prosím o kontrolu logu

Re: Nefunkční windows update, prosím o kontrolu logu

Re: Nefunkční windows update, prosím o kontrolu logu

Re: Nefunkční windows update, prosím o kontrolu logu

Re: Nefunkční windows update, prosím o kontrolu logu

Re: Nefunkční windows update, prosím o kontrolu logu

Re: Nefunkční windows update, prosím o kontrolu logu

Re: Nefunkční windows update, prosím o kontrolu logu

Re: Nefunkční windows update, prosím o kontrolu logu

Re: Nefunkční windows update, prosím o kontrolu logu