Logfile of random's system information tool 1.09 (written by random/random)
Run by marika at 2012-10-09 11:05:18
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 88 GB (64%) free of 137 GB
Total RAM: 1791 MB (32% free)
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
atieclxx
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe"
"C:\Program Files (x86)\System Control Manager\MSIService.exe"
"C:\Program Files\MySQL\MySQL Server 5.1\bin\mysqld.exe" --defaults-file="C:\Program Files\MySQL\MySQL Server 5.1\my.ini" MySQL
"C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2340
"C:\Program Files (x86)\Sticky Password\stpass.exe" /autorunned
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\NetSoftware\NetSoftware.exe"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\System32\svchost.exe -k secsvcs
"C:\Users\marika\Downloads\RSITx64.exe"
C:\windows\system32\wbem\wmiprvse.exe
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 524 528 536 65536 532
"C:\windows\system32\notepad.exe"
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player Updater.job
=========Mozilla firefox=========
ProfilePath - C:\Users\marika\AppData\Roaming\Mozilla\Firefox\Profiles\ijkzm78c.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=undefined&q="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.4.402.278 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_278.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.4.402.278 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_11_4_402_278.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files (x86)\Mozilla Firefox\searchplugins\
avg-secure-search.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Users\marika\AppData\Roaming\Mozilla\Firefox\Profiles\ijkzm78c.default\extensions\
avg@toolbar
engine@conduit.com
foxmarks@kei.com
gemgecko-web@gemius.com
{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
{ba14329e-9550-4989-b3f2-9732e92d17cc}
{ea614400-e918-4741-9a97-7a972ff7c30b}
C:\Users\marika\AppData\Roaming\Mozilla\Firefox\Profiles\ijkzm78c.default\searchplugins\
askcom.xml
avg-secure-search.xml
conduit.xml
firmycz.xml
icqplugin-1.xml
icqplugin-2.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin.xml
mapycz.xml
MyStart Search.xml
search.xml
zbocz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2012-08-21 1501776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-27 63944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-09-22 191792]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-08-21 1227224]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-11-10 393600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-03-02 4296864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CE7C3CF0-4B15-11D1-ABED-709549C10000}]
Internet Panel - C:\Program Files\NetSoftware\IEHelper.dll [2012-04-01 495888]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Lištička - C:\Program Files (x86)\Seznam.cz\listicka.dll [2011-03-15 2201600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2012-08-21 1501776]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{1EA00BE1-6E54-4E2A-8099-680300BF23E1} - Nástroje Lištičky - C:\Program Files (x86)\Seznam.cz\toolbar\toolbar.dll [2011-03-10 183808]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-08-21 1227224]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Skytel"=C:\Program Files\Realtek\Audio\HDA\Skytel.exe [2009-06-24 1833504]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"StickyPassword"=C:\Program Files (x86)\Sticky Password\stpass.exe [2012-08-23 3212152]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-08-21 4282728]
"NetSoftware"=C:\Program Files\NetSoftware\Starter.exe [2012-08-28 188928]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-07-27 919008]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\avas_service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\avss_service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\tpavdrw_service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\tpmgma_service]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2012-10-09 11:05:20 ----D---- C:\Program Files\trend micro
2012-10-09 11:05:18 ----D---- C:\rsit
2012-09-26 06:22:33 ----A---- C:\windows\system32\OxpsConverter.exe
2012-09-22 21:46:11 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2012-09-22 21:46:11 ----A---- C:\windows\system32\mshtmled.dll
2012-09-22 21:46:09 ----A---- C:\windows\SYSWOW64\vbscript.dll
2012-09-22 21:46:08 ----A---- C:\windows\SYSWOW64\ieui.dll
2012-09-22 21:46:07 ----A---- C:\windows\system32\ieui.dll
2012-09-22 21:46:06 ----A---- C:\windows\SYSWOW64\url.dll
2012-09-22 21:46:06 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2012-09-22 21:46:06 ----A---- C:\windows\system32\url.dll
2012-09-22 21:46:06 ----A---- C:\windows\system32\ieUnatt.exe
2012-09-22 21:46:03 ----A---- C:\windows\SYSWOW64\urlmon.dll
2012-09-22 21:46:02 ----A---- C:\windows\system32\urlmon.dll
2012-09-22 21:46:00 ----A---- C:\windows\system32\jscript9.dll
2012-09-22 21:45:59 ----A---- C:\windows\system32\msfeeds.dll
2012-09-22 21:45:58 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2012-09-22 21:45:56 ----A---- C:\windows\SYSWOW64\wininet.dll
2012-09-22 21:45:56 ----A---- C:\windows\system32\wininet.dll
2012-09-22 21:45:53 ----A---- C:\windows\system32\jsproxy.dll
2012-09-22 21:45:52 ----A---- C:\windows\SYSWOW64\jscript9.dll
2012-09-22 21:45:51 ----A---- C:\windows\SYSWOW64\jscript.dll
2012-09-22 21:45:51 ----A---- C:\windows\system32\vbscript.dll
2012-09-22 21:45:50 ----A---- C:\windows\system32\jscript.dll
2012-09-22 21:45:49 ----A---- C:\windows\system32\iertutil.dll
2012-09-22 21:45:48 ----A---- C:\windows\SYSWOW64\iertutil.dll
2012-09-22 21:45:47 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2012-09-22 21:45:42 ----A---- C:\windows\SYSWOW64\mshtml.dll
2012-09-22 21:45:37 ----A---- C:\windows\system32\mshtml.dll
2012-09-22 21:45:33 ----A---- C:\windows\system32\ieframe.dll
2012-09-22 21:45:29 ----A---- C:\windows\SYSWOW64\ieframe.dll
2012-09-12 14:06:12 ----A---- C:\windows\system32\drivers\ndis.sys
2012-09-12 14:06:11 ----A---- C:\windows\system32\drivers\RNDISMP.sys
2012-09-12 14:06:08 ----A---- C:\windows\system32\d3d10level9.dll
2012-09-12 14:06:07 ----A---- C:\windows\SYSWOW64\d3d10level9.dll
2012-09-12 14:06:03 ----A---- C:\windows\system32\drivers\tcpip.sys
2012-09-12 14:06:02 ----A---- C:\windows\system32\drivers\netio.sys
2012-09-12 14:06:01 ----A---- C:\windows\system32\drivers\FWPKCLNT.SYS
======List of files/folders modified in the last 1 month======
2012-10-09 11:06:48 ----D---- C:\windows\Temp
2012-10-09 11:05:20 ----RD---- C:\Program Files
2012-10-09 10:03:17 ----SHD---- C:\System Volume Information
2012-10-09 09:59:20 ----D---- C:\ProgramData\NetSoftware
2012-10-09 09:58:25 ----D---- C:\windows\system32\config
2012-10-09 09:58:11 ----D---- C:\Program Files\NetSoftware
2012-10-08 20:27:06 ----D---- C:\Users\marika\AppData\Roaming\Skype
2012-10-08 11:58:15 ----D---- C:\windows\System32
2012-10-08 11:58:15 ----D---- C:\windows\inf
2012-10-08 11:58:15 ----A---- C:\windows\system32\PerfStringBackup.INI
2012-10-08 11:56:52 ----D---- C:\Users\marika\AppData\Roaming\ICQ
2012-10-06 16:19:49 ----D---- C:\windows\system32\catroot2
2012-10-04 06:45:54 ----D---- C:\Windows
2012-10-02 17:26:13 ----D---- C:\windows\system32\NDF
2012-09-28 17:18:17 ----SD---- C:\Users\marika\AppData\Roaming\Microsoft
2012-09-26 06:27:43 ----D---- C:\windows\winsxs
2012-09-26 06:19:41 ----D---- C:\windows\system32\catroot
2012-09-26 06:18:38 ----D---- C:\Program Files\CCleaner
2012-09-23 11:34:29 ----D---- C:\Program Files (x86)\Internet Explorer
2012-09-23 11:34:28 ----D---- C:\windows\SYSWOW64\migration
2012-09-23 11:34:28 ----D---- C:\windows\SysWOW64
2012-09-23 11:34:23 ----D---- C:\windows\system32\migration
2012-09-23 11:34:21 ----D---- C:\Program Files\Internet Explorer
2012-09-21 14:46:39 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2012-09-14 07:56:41 ----D---- C:\windows\debug
2012-09-13 08:23:14 ----SHD---- C:\windows\Installer
2012-09-13 08:23:14 ----SHD---- C:\Config.Msi
2012-09-13 06:32:07 ----D---- C:\windows\system32\drivers
2012-09-13 06:32:01 ----D---- C:\windows\system32\DriverStore
2012-09-13 06:26:04 ----A---- C:\windows\system32\MRT.exe
2012-09-13 06:25:35 ----D---- C:\ProgramData\Microsoft Help
2012-09-11 11:50:53 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 16440]
R0 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\windows\System32\Drivers\aswrdr2.sys [2012-08-21 54072]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2012-08-21 969200]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2012-08-21 359464]
R1 aswTdi;avast! Network Shield Support; C:\windows\system32\drivers\aswTdi.sys [2012-08-21 59728]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswFsBlk;aswFsBlk; C:\windows\system32\drivers\aswFsBlk.sys [2012-08-21 25232]
R2 aswMonFlt;aswMonFlt; \??\C:\windows\system32\drivers\aswMonFlt.sys [2012-08-21 71600]
R3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2009-07-30 6038016]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2009-06-24 1787168]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver; C:\windows\system32\DRIVERS\netr28x.sys [2009-06-19 712704]
R3 RTHDMIAzAudService;Service for HDMI; C:\windows\system32\drivers\RtHDMIVX.sys [2009-06-24 205472]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2009-05-22 215040]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 fssfltr;FssFltr; C:\windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2009-06-04 216064]
S3 RtsUIR;Realtek IR Driver; C:\windows\system32\DRIVERS\Rts516xIR.sys []
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 smserial;smserial; C:\windows\system32\DRIVERS\SmSerl64.sys [2009-06-10 1227776]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\windows\system32\DRIVERS\RtsUCcid.sys []
S3 WinUsb;WinUsb; C:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
R2 AHDDC2;Ashampoo HDD Control 2 Service; C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe [2011-04-05 1518976]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2009-07-30 203264]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-08-21 44808]
R2 Micro Star SCM;Micro Star SCM; C:\Program Files (x86)\System Control Manager\MSIService.exe [2009-07-10 160768]
R2 MySQL;MySQL; C:\Program Files\MySQL\MySQL Server 5.1\bin\mysqld.exe [2009-08-18 7599616]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-09-22 249136]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-06-07 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-21 250288]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 DfSdkS;Defragmentation-Service; C:\Program Files (x86)\Ashampoo\Ashampoo HDD Control 2\DfSdkS64.exe [2009-08-24 544768]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-07 114144]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-05-17 1255736]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zavirovaná IP??!!
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zavirovaná IP??!!
Jasněnka
Re: Zavirovaná IP??!!
Zdravim 
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne
Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Zavirovaná IP??!!
RogueKiller V8.1.1 [10/03/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Website: http://tigzy.geekstogo.com/roguekiller.php
Operační systém: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : marika [Práva správce]
Mód : Kontrola -- Datum : 10/09/2012 12:03:09
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[TASK][SUSP PATH] {1DB43A7F-056F-44BF-BDEF-3BBBB497CF0E} : C:\Users\marika\AppData\Local\Apps\2.0\Y0M72O0A.03K\LMBJEWG7.JV1\regt..tion_ce4b3f2549b0de68_0002.0006_b034f65d79d034ae\RegTool.exe -> NALEZENO
[TASK][SUSP PATH] {41C9D73A-AF20-45AA-98E1-6E96F86978B0} : C:\Users\marika\AppData\Local\Apps\2.0\Y0M72O0A.03K\LMBJEWG7.JV1\regt..tion_ce4b3f2549b0de68_0002.0006_b034f65d79d034ae\RegTool.exe -> NALEZENO
[TASK][SUSP PATH] {5DDD8613-732C-43E9-8191-E0D100DC21E0} : C:\Users\marika\AppData\Local\Apps\2.0\Y0M72O0A.03K\LMBJEWG7.JV1\regt..tion_ce4b3f2549b0de68_0002.0006_b034f65d79d034ae\RegTool.exe -> NALEZENO
[TASK][SUSP PATH] {B9F2FE68-5878-47D4-AE21-285F00D86AA0} : C:\Users\marika\AppData\Local\Apps\2.0\Y0M72O0A.03K\LMBJEWG7.JV1\regt..tion_ce4b3f2549b0de68_0002.0006_b034f65d79d034ae\RegTool.exe -> NALEZENO
[TASK][SUSP PATH] {DF56F325-AB37-4E99-9A0B-494E906F1532} : C:\Users\marika\AppData\Local\Apps\2.0\Y0M72O0A.03K\LMBJEWG7.JV1\regt..tion_ce4b3f2549b0de68_0002.0006_b034f65d79d034ae\RegTool.exe -> NALEZENO
[TASK][SUSP PATH] {EB2D6332-6363-46DC-8722-2418122940E3} : C:\Users\marika\AppData\Local\Apps\2.0\Y0M72O0A.03K\LMBJEWG7.JV1\regt..tion_ce4b3f2549b0de68_0002.0006_b034f65d79d034ae\RegTool.exe -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\windows\system32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: WDC WD25 00BEVT-22A23T0 SATA Disk Device +++++
--- User ---
[MBR] 2ae964ead5b61bbe9db66eefb732335a
[BSP] 40307c7ad02c5b054a23251ae12e8aeb : Windows 7 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 10240 Mo
1 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 20973568 | Size: 100 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 21178368 | Size: 136880 Mo
3 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 301508608 | Size: 91253 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
+++++ PhysicalDrive1: SPIF301 USB2SATA Bridge USB Device +++++
Error reading User MBR!
User = LL1 ... OK!
Error reading LL2 MBR!
Dokončeno : << RKreport[1].txt >>
RKreport[1].txt
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Website: http://tigzy.geekstogo.com/roguekiller.php
Operační systém: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : marika [Práva správce]
Mód : Kontrola -- Datum : 10/09/2012 12:03:09
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[TASK][SUSP PATH] {1DB43A7F-056F-44BF-BDEF-3BBBB497CF0E} : C:\Users\marika\AppData\Local\Apps\2.0\Y0M72O0A.03K\LMBJEWG7.JV1\regt..tion_ce4b3f2549b0de68_0002.0006_b034f65d79d034ae\RegTool.exe -> NALEZENO
[TASK][SUSP PATH] {41C9D73A-AF20-45AA-98E1-6E96F86978B0} : C:\Users\marika\AppData\Local\Apps\2.0\Y0M72O0A.03K\LMBJEWG7.JV1\regt..tion_ce4b3f2549b0de68_0002.0006_b034f65d79d034ae\RegTool.exe -> NALEZENO
[TASK][SUSP PATH] {5DDD8613-732C-43E9-8191-E0D100DC21E0} : C:\Users\marika\AppData\Local\Apps\2.0\Y0M72O0A.03K\LMBJEWG7.JV1\regt..tion_ce4b3f2549b0de68_0002.0006_b034f65d79d034ae\RegTool.exe -> NALEZENO
[TASK][SUSP PATH] {B9F2FE68-5878-47D4-AE21-285F00D86AA0} : C:\Users\marika\AppData\Local\Apps\2.0\Y0M72O0A.03K\LMBJEWG7.JV1\regt..tion_ce4b3f2549b0de68_0002.0006_b034f65d79d034ae\RegTool.exe -> NALEZENO
[TASK][SUSP PATH] {DF56F325-AB37-4E99-9A0B-494E906F1532} : C:\Users\marika\AppData\Local\Apps\2.0\Y0M72O0A.03K\LMBJEWG7.JV1\regt..tion_ce4b3f2549b0de68_0002.0006_b034f65d79d034ae\RegTool.exe -> NALEZENO
[TASK][SUSP PATH] {EB2D6332-6363-46DC-8722-2418122940E3} : C:\Users\marika\AppData\Local\Apps\2.0\Y0M72O0A.03K\LMBJEWG7.JV1\regt..tion_ce4b3f2549b0de68_0002.0006_b034f65d79d034ae\RegTool.exe -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\windows\system32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: WDC WD25 00BEVT-22A23T0 SATA Disk Device +++++
--- User ---
[MBR] 2ae964ead5b61bbe9db66eefb732335a
[BSP] 40307c7ad02c5b054a23251ae12e8aeb : Windows 7 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 10240 Mo
1 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 20973568 | Size: 100 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 21178368 | Size: 136880 Mo
3 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 301508608 | Size: 91253 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
+++++ PhysicalDrive1: SPIF301 USB2SATA Bridge USB Device +++++
Error reading User MBR!
User = LL1 ... OK!
Error reading LL2 MBR!
Dokončeno : << RKreport[1].txt >>
RKreport[1].txt
Jasněnka
Re: Zavirovaná IP??!!
Znovu spustte RogueKiller jako spravce (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Zavirovaná IP??!!
RogueKiller V8.1.1 [10/03/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Website: http://tigzy.geekstogo.com/roguekiller.php
Operační systém: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : marika [Práva správce]
Mód : Odebrat -- Datum : 10/09/2012 12:11:33
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\windows\system32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: WDC WD25 00BEVT-22A23T0 SATA Disk Device +++++
--- User ---
[MBR] 2ae964ead5b61bbe9db66eefb732335a
[BSP] 40307c7ad02c5b054a23251ae12e8aeb : Windows 7 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 10240 Mo
1 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 20973568 | Size: 100 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 21178368 | Size: 136880 Mo
3 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 301508608 | Size: 91253 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
+++++ PhysicalDrive1: SPIF301 USB2SATA Bridge USB Device +++++
Error reading User MBR!
User = LL1 ... OK!
Error reading LL2 MBR!
Dokončeno : << RKreport[4].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Website: http://tigzy.geekstogo.com/roguekiller.php
Operační systém: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : marika [Práva správce]
Mód : Odebrat -- Datum : 10/09/2012 12:11:33
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\windows\system32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: WDC WD25 00BEVT-22A23T0 SATA Disk Device +++++
--- User ---
[MBR] 2ae964ead5b61bbe9db66eefb732335a
[BSP] 40307c7ad02c5b054a23251ae12e8aeb : Windows 7 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 10240 Mo
1 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 20973568 | Size: 100 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 21178368 | Size: 136880 Mo
3 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 301508608 | Size: 91253 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
+++++ PhysicalDrive1: SPIF301 USB2SATA Bridge USB Device +++++
Error reading User MBR!
User = LL1 ... OK!
Error reading LL2 MBR!
Dokončeno : << RKreport[4].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt
Jasněnka
Re: Zavirovaná IP??!!
RogueKiller V8.1.1 [10/03/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Website: http://tigzy.geekstogo.com/roguekiller.php
Operační systém: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : marika [Práva správce]
Mód : Oprava HOSTS -- Datum : 10/09/2012 12:12:17
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\windows\system32\drivers\etc\hosts
¤¤¤ Resetovaný HOSTS: ¤¤¤
Dokončeno : << RKreport[5].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt ; RKreport[5].txt
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Website: http://tigzy.geekstogo.com/roguekiller.php
Operační systém: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : marika [Práva správce]
Mód : Oprava HOSTS -- Datum : 10/09/2012 12:12:17
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\windows\system32\drivers\etc\hosts
¤¤¤ Resetovaný HOSTS: ¤¤¤
Dokončeno : << RKreport[5].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt ; RKreport[5].txt
Jasněnka
Re: Zavirovaná IP??!!
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kód: Vybrat vše
CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Zavirovaná IP??!!
Muze to trvat klidne i hodku, nekdy i vic. Pokud pracuje, nechte ho
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Zavirovaná IP??!!
Aha...
A můžu si pustit poštovního klienta a několik složek otevřít prostě pracovat u toho?..
A můžu si pustit poštovního klienta a několik složek otevřít prostě pracovat u toho?..
Jasněnka
Re: Zavirovaná IP??!!
Ono to jeste stale bezi? Hybe se tam neco (treba dole)?
Tak jako nejlepsi by bylo, kdyby se nepouzivalo nic, zvlast kdyz mate podezreni na zavirovani. Ale jestli u toho potrebujete neco delat, tak si to pustte
Tak jako nejlepsi by bylo, kdyby se nepouzivalo nic, zvlast kdyz mate podezreni na zavirovani. Ale jestli u toho potrebujete neco delat, tak si to pustte
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Zavirovaná IP??!!
Tak prácě mě stojí ale tak, radši tedy ještě počkám. Ono to snad už brzo skončí...
Jo, stále něco dole běží...
Manual File Scan...
Jo, stále něco dole běží...
Manual File Scan...
Jasněnka
Re: Zavirovaná IP??!!
Pokud bezi, tak je to v poradku. Taky myslim, ze uz brzy skonci.
Jaka prace? Doufam, ze se nejedna o pracovni/firemni stroj
Mimochodem, proc si myslite, ze mate zavirovanou IP?
Jaka prace? Doufam, ze se nejedna o pracovni/firemni stroj
Mimochodem, proc si myslite, ze mate zavirovanou IP?
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Zavirovaná IP??!!
No, používám tento přenosný PC hlavně k mé práci. To by nemělo snad ničemu vadit, nebo ano?!..Ale nejsem žádná firma...
Mám podezření, protože mi v poštovním klientovi mozilla Thunderbird neodesílá e-maily s koncovkou seznam...
Z jednoho fóra mi značili, že mám snad zavirovanou IP adresu a potvrzoval mě to i od seznamu na technickém chatu...
Ale antivir mi nic takového nehlásí...
Mám podezření, protože mi v poštovním klientovi mozilla Thunderbird neodesílá e-maily s koncovkou seznam...
Z jednoho fóra mi značili, že mám snad zavirovanou IP adresu a potvrzoval mě to i od seznamu na technickém chatu...
Ale antivir mi nic takového nehlásí...
Jasněnka
Re: Zavirovaná IP??!!
OTL Extras logfile created on: 10/9/2012 12:17:13 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\marika\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1.75 Gb Total Physical Memory | 0.58 Gb Available Physical Memory | 32.93% Memory free
3.50 Gb Paging File | 2.17 Gb Available in Paging File | 62.08% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 133.67 Gb Total Space | 85.53 Gb Free Space | 63.98% Space Free | Partition Type: NTFS
Drive D: | 89.11 Gb Total Space | 25.36 Gb Free Space | 28.45% Space Free | Partition Type: NTFS
Computer Name: MARIKA-MSI | User Name: marika | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML] -- Reg Error: Key error. File not found
.url[@ = InternetShortcut] -- C:\windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
[HKEY_USERS\S-1-5-21-1884878553-492949299-735548271-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- Reg Error: Key error.
https [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- Reg Error: Key error.
https [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{021808BD-95BD-4BC0-8BAB-30AFAA1A4CDB}" = rport=445 | protocol=6 | dir=out | app=system |
"{02B6FCC8-E8F6-4F1B-B887-E7D05A25747A}" = rport=138 | protocol=17 | dir=out | app=system |
"{08C0D154-BBA7-4701-B9B3-FF6952460006}" = lport=3540 | protocol=17 | dir=in | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{10C72197-0A56-4CEA-B591-E2ED75D918E6}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{12012F3B-C09D-4FDD-9E27-D69DB350542D}" = lport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{13E49B7E-21A5-4640-8978-BDB1FC80694F}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{15BA9254-7365-4773-BBEA-08CCF2DD3C75}" = lport=3540 | protocol=17 | dir=in | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{16FBED30-1C82-42BF-B6A5-D2DEAB142BF2}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{1824B52F-8708-44FC-A7D9-12D4468F4C26}" = lport=443 | protocol=6 | dir=in | app=system |
"{18780DB7-AE28-4853-98DF-B449ADDD186D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{1B938DE2-D36D-401E-AF67-5AFEDA0E4A9C}" = rport=3540 | protocol=17 | dir=out | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{1D72605A-2CA2-4D5A-ACA3-CBD7D6AB4A05}" = lport=554 | protocol=6 | dir=in | app=%systemroot%\ehome\ehshell.exe |
"{201FED52-AC46-417A-AC66-C579A3DFDA2A}" = rport=3540 | protocol=17 | dir=out | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{239DA1F6-46CF-40FE-BAE6-D365E56FE1D2}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{23B603CF-0A4B-41CD-8E1B-9B8EE1B04C1B}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{257C3343-D559-4117-9D2F-EAD00E17F7F3}" = lport=2869 | protocol=6 | dir=in | app=system |
"{266A70F2-22EE-47C6-8515-9F816D772058}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{26AF11E0-474E-42A2-9F15-E25D1D1494D8}" = lport=rpc | protocol=6 | dir=in | svc=vds | app=%systemroot%\system32\vds.exe |
"{26F217B1-67C2-4541-84A8-98EC892A4E4E}" = lport=rpc | protocol=6 | dir=in | app=%systemroot%\system32\services.exe |
"{2F2614F7-8AC8-4425-B578-820C270298C9}" = rport=5357 | protocol=6 | dir=out | app=system |
"{323CE352-AC7C-4F42-BD8D-36A510742367}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{3FFD27EC-5A13-40F6-9A2A-0D5B9D4E0561}" = rport=3702 | protocol=17 | dir=out | app=%systemroot%\system32\p2phost.exe |
"{4067C5F4-D568-4D22-8AA3-4D389973107C}" = rport=5358 | protocol=6 | dir=out | app=system |
"{408F7521-CFC4-4699-9089-8689BE652E44}" = rport=1701 | protocol=17 | dir=out | app=system |
"{42195325-0514-4EFC-A35D-AFD77A7112B4}" = lport=445 | protocol=6 | dir=in | app=system |
"{4507BCB2-20DC-4522-920C-2775E0C9619A}" = lport=2869 | protocol=6 | dir=in | app=system |
"{475A97E3-1A79-491A-B4EE-9B8A2929AA52}" = rport=137 | protocol=17 | dir=out | app=system |
"{4868122E-C4EC-445F-B4A0-27AAC33A8884}" = lport=5357 | protocol=6 | dir=in | app=system |
"{4A1BB1C7-AE19-46A6-A09A-4B4A3DF21592}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe |
"{5273B5FA-8F42-4EC0-B15B-9018FF21A4E2}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5CE2CBBE-A44D-4868-B592-31C66A97B3B1}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{5E1B38C0-08AC-4F4C-B47F-714956B3BF66}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5F63E7F8-4A54-4782-8060-EC6E33FE4676}" = rport=139 | protocol=6 | dir=out | app=system |
"{6042E78C-E43A-4AB9-9A8C-3922B4348DF5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{60F56252-5466-4506-A7E8-975FE6B0D762}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{62497043-768D-4155-B43B-A59354764686}" = lport=80 | protocol=6 | dir=in | app=system |
"{657F1B7A-6215-4029-B0DC-4182033A449B}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{65B3EA00-A2D9-47AB-9906-DA6A36432E85}" = lport=445 | protocol=6 | dir=in | app=system |
"{698B2E9D-85A0-4ABF-ADB4-11048DF9EAD0}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{6E3971EE-9CD2-4076-AE86-B47C188438FA}" = lport=2869 | protocol=6 | dir=in | app=system |
"{6FE10BD2-01C9-4721-A500-56FBDFAA94E8}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{733167FB-A489-424E-8DC3-748154D57F70}" = lport=10243 | protocol=6 | dir=in | app=system |
"{74D15A34-30E1-44DE-B34A-591C55D38915}" = lport=7777 | protocol=17 | dir=in | app=%systemroot%\ehome\ehshell.exe |
"{77BE1505-ABF2-4342-9F4C-185057FBA8A5}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{79427D8A-8459-4A6D-A76B-B089D558F838}" = lport=rpc | protocol=6 | dir=in | svc=ktmrm | app=%systemroot%\system32\svchost.exe |
"{7F1543A9-9F06-44DC-A5DD-1B8E178FBF95}" = lport=rpc | protocol=6 | dir=in | svc=eventlog | app=%systemroot%\system32\svchost.exe |
"{842DB6DB-ECCE-4080-B280-31E4BE1018B1}" = lport=10244 | protocol=6 | dir=in | app=system |
"{89E9B44F-0344-4066-99AC-5C6813A5445E}" = lport=1723 | protocol=6 | dir=in | app=system |
"{901B1533-CE5F-4897-B011-B6028B1E5773}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{92A37E30-5A93-4DCA-AE18-E37B3762A0EC}" = lport=rpc | protocol=6 | dir=in | svc=policyagent | app=%systemroot%\system32\svchost.exe |
"{972B2B30-7859-47ED-B7B6-F34988333DA0}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9A41CFA1-36A0-4246-88B3-F0171CC4E07F}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9B83AE5C-F5DE-4F0F-AC7D-98E224C7F88E}" = rport=10243 | protocol=6 | dir=out | app=system |
"{9C276793-6DAB-49C9-AD40-50041CE4344A}" = lport=137 | protocol=17 | dir=in | app=system |
"{9CE1E0F9-4D35-4EA5-B2F7-39B2AE48512B}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{9F612EC0-AD5B-4506-B31C-4D32FC8F22C0}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{A20E2899-EAE6-4EDD-8181-816D8FBF6F65}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{A867DAA3-BBAA-4587-AF84-4FDF4E91C0DA}" = lport=135 | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{AB19EED8-6764-4A3F-9C0B-1C86E0EB0382}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{AB49A3E1-F417-445F-84B9-6A91BEB8042C}" = lport=rpc | protocol=6 | dir=in | svc=schedule | app=%systemroot%\system32\svchost.exe |
"{AD437182-E11E-4BD8-A542-9C3FEAF00A23}" = lport=3702 | protocol=17 | dir=in | app=%systemroot%\system32\p2phost.exe |
"{AD69019B-6BE2-45AC-9266-5C0DC6656CF8}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{B3B86B39-E1D5-4784-8B78-745006450282}" = lport=3306 | protocol=6 | dir=in | name=mysql |
"{B812EB53-5912-4B89-AA18-D667864F58B5}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{B8B28FA8-19E9-4A67-A681-42BB9B0F627D}" = lport=445 | protocol=6 | dir=in | app=system |
"{BE0399F1-53CA-4B8F-BD6E-533932513350}" = rport=1723 | protocol=6 | dir=out | app=system |
"{C09FA348-7C63-4035-968F-7AE2E6A2F57C}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{C1D1F07F-C788-437B-8017-93BA385183EB}" = lport=2869 | protocol=6 | dir=in | app=system |
"{C25D488A-4CDC-4B22-B017-595B4A2297DD}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{C45C7E06-1D9C-4A34-AA6B-A4F1010738FE}" = lport=445 | protocol=6 | dir=in | app=system |
"{C5752690-B0A3-423F-9835-116BDBCE74DB}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{CA097973-DB73-4BA5-82E0-0B52E861BBA7}" = lport=162 | protocol=17 | dir=in | svc=snmptrap | app=%systemroot%\system32\snmptrap.exe |
"{CAB468FA-DAD5-4F43-BEDE-371BE71837E9}" = lport=5358 | protocol=6 | dir=in | app=system |
"{CCCF0AF6-9EE6-4293-902B-284A28832CB9}" = lport=1701 | protocol=17 | dir=in | app=system |
"{CD83A700-EFE9-41EB-BD74-E84CB2F986C6}" = lport=rpc | protocol=6 | dir=in | app=%systemroot%\system32\vdsldr.exe |
"{CF926E37-1773-4ED8-B42E-C9DD36494E31}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D6C058B0-9021-47C9-A70B-D7E3B5C60F3D}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D71D29DD-1C70-44EA-9D8C-F9B8E2C31B77}" = lport=5985 | protocol=6 | dir=in | app=system |
"{DB784FE5-2A86-4E7F-BE81-5A6163EFB87C}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{DE4BE3C2-796E-4ADC-86C7-D889AC25C3B5}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{E123E0EE-A103-4192-B6B6-1035554EA6DE}" = lport=139 | protocol=6 | dir=in | app=system |
"{F8759B03-62EF-45A6-A848-B4727811202E}" = lport=3390 | protocol=6 | dir=in | app=system |
"{FB31F7F8-FF19-4514-94EB-FEF03DF15087}" = lport=135 | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{FCA0CE9E-2E9A-49F4-B557-3B2DA3B7E962}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{FCB82312-196C-44CD-8780-9ED3F3FF402A}" = lport=138 | protocol=17 | dir=in | app=system |
"{FF5763EB-B7C7-42C1-8E53-C1C3777C3431}" = lport=10245 | protocol=6 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{039A2D1E-12CD-4D6D-9018-9C036FCDAD40}" = protocol=6 | dir=out | app=%systemroot%\ehome\ehshell.exe |
"{0861B13C-5FC4-4290-B7A9-557259E4BE67}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{09D538D4-6574-4526-94CE-C1DF6FB6E2BB}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0EC1CFB6-C058-4675-B6CF-E2563739FDB0}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{11F942A6-EDC9-4FFA-862E-037EB9FA44D1}" = protocol=47 | dir=out | app=system |
"{17A0CBE4-D1B6-422B-A675-D39CE3B19430}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{1991CA44-F30A-42F8-BF78-282961B44DC7}" = protocol=47 | dir=in | app=system |
"{200B82D2-BE8A-4793-9809-7E0A54BC6017}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{20AC97DC-4143-489E-A588-1919504AD455}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{2716C320-989A-4E19-8FD8-45425C2F9F97}" = protocol=6 | dir=out | app=system |
"{2E51AD49-4346-4A47-A52B-C2140658E5B7}" = protocol=6 | dir=in | app=%systemroot%\system32\msdtc.exe |
"{3D0B728F-8733-42E2-8541-90A2B1A3DB8D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{3D674522-4151-4DA1-BF84-60514992F8AB}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{43AE3663-A35D-4989-85B9-0AD6B69C46CA}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{4B47517B-DE02-4FBB-B44D-88CDDEC4E757}" = protocol=17 | dir=out | app=%systemroot%\ehome\ehshell.exe |
"{51FC96B1-D10F-4B90-9FBD-F881EDFBC86C}" = protocol=6 | dir=out | svc=msiscsi | app=%systemroot%\system32\svchost.exe |
"{546AFA7E-6C6E-4106-AA2D-AA47166742EE}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{5E48BDD9-061E-40F8-9419-3062CEB7DB4E}" = protocol=6 | dir=in | app=%systemroot%\system32\plasrv.exe |
"{5EBDF083-F13B-4053-AE18-12500882A7BC}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{6455B353-2F34-4B38-B05F-34834D571448}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{651F25AE-4222-4F32-A807-C0055D7A927A}" = protocol=6 | dir=out | svc=winmgmt | app=%systemroot%\system32\svchost.exe |
"{65548ED8-F624-4828-BCB1-84792213E48A}" = protocol=6 | dir=out | app=%systemroot%\system32\p2phost.exe |
"{6B11EF75-8296-45B5-B701-C0704FCE7D84}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6CE9ACFD-6172-4D4D-9F98-235A5DF7984D}" = protocol=6 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{6D89718A-9AC5-4BB8-B267-DA7F99B09812}" = protocol=6 | dir=out | svc=mcx2svc | app=%systemroot%\system32\svchost.exe |
"{744AB75F-74AA-44BF-B5EB-08DCF8E622EF}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{759098B8-B59D-4499-8662-B2B56D9EC6EF}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{80CEF393-A50E-4048-821B-8BB3C4DCDFC9}" = protocol=6 | dir=out | app=%systemroot%\system32\wudfhost.exe |
"{839C034E-DCEA-4F25-A93D-A8A7FAFA0EB6}" = protocol=6 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{8606009A-9691-4471-ACFF-99EE00277920}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{8DB92617-A06C-4D35-9900-FF921E6C9737}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{91CF1AEC-CB88-4EF7-82BC-BF68AAF21F87}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{92345A43-0201-4DCB-A565-A6657C00BA11}" = protocol=6 | dir=out | app=%systemroot%\ehome\mcrmgr.exe |
"{949A0024-5366-47D0-A7E0-3A21BFE1C57A}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{9ADB5DAA-9FA6-4EFB-9A12-727FA65DFE2C}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{9C322A23-9DBB-4DF9-858D-AF4319330CC2}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{9E7D9539-EF7E-4EA6-9A52-8B2FF11C2FF0}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{B0EC7FAF-EE84-4254-87F8-941BB3DF46B3}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{BB660F1D-2C64-40CD-9BC1-D174BE08F7CD}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{BF3B6A06-AE17-4492-B95D-57845B82CF69}" = protocol=6 | dir=in | app=%systemroot%\system32\wbem\unsecapp.exe |
"{C0EC25D0-30EC-45FC-BFDC-83B05CBB0D13}" = protocol=6 | dir=in | svc=winmgmt | app=%systemroot%\system32\svchost.exe |
"{C1A652D7-EB2D-4FCF-ACEE-BB09FE9BFDCC}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{D0E8531C-61D7-435E-87A5-FCBD05AF448D}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{D78822C5-A9A5-4DAA-9A69-28CEA5E6B332}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{E1E3B7C7-4619-4701-9AF1-00B3F185759C}" = protocol=6 | dir=out | app=%systemroot%\ehome\mcx2prov.exe |
"{E4B504A8-3311-436B-8B95-A1B25EBB9ADE}" = protocol=6 | dir=in | app=%systemroot%\system32\p2phost.exe |
"{E986EFEE-4284-4017-8BD8-45793CB16F26}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{EE4D2150-E372-4173-B729-D5B0F03169C7}" = protocol=6 | dir=in | svc=msiscsi | app=%systemroot%\system32\svchost.exe |
"{F22A0E57-DCE8-4B74-9BA7-9ACBD5753AD7}" = protocol=6 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{F394D726-6366-4B51-8E83-56E9C57A4715}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{F7811CE3-BEFA-4B15-8F05-3B58A193DFA2}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{F85B24E4-959B-47F9-A79D-00FA181375E3}" = protocol=6 | dir=out | app=%systemroot%\system32\msdtc.exe |
"{F8CA6553-3254-4172-B37D-7BA8FB35D43F}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{F92626AF-D183-49E0-B6B9-17523B239CE8}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{FF93450D-922D-4089-A00A-B4573033F2BA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"TCP Query User{974F5CA4-2B12-4354-95E1-779D4E99B0DE}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"TCP Query User{BB02B813-6918-4170-8880-7F1328603212}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"UDP Query User{236EB0CA-C108-4E57-A8C1-7C21900B24C0}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"UDP Query User{44D1F79B-3748-4502-9602-C4AFAC160D85}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
"{34384A2A-2CA2-4446-AB0E-1F360BA2AAC5}" = Windows Live Remote Service Resources
"{3921492E-82D2-4180-8124-E347AD2F2DB4}" = Windows Live Remote Client Resources
"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
"{46A5FBE9-ADB3-4493-A1CC-B4CFFD24D26A}" = Windows Live Family Safety
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{522E383F-B341-9137-A4C0-5EAD88257EBB}" = ccc-utility64
"{561AB451-B967-475C-80E0-3B6679C38B52}" = MySQL Server 5.1
"{5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}" = Windows Live Language Selector
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{701D8EE6-6A5A-4509-9740-35F551193CE0}" = Windows Live Family Safety
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2010
"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{F4582924-EA2F-68DA-9E35-95EF02B96BDE}" = ATI Catalyst Install Manager
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"CCleaner" = CCleaner
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{068B46A0-8858-4CEB-80BC-A4AE787A05FC}" = Windows Live Sync
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{25478065-4CB1-448C-80E4-8C4529017EE3}" = ArcSoft WebCam Companion 3
"{25D677EB-E581-6A02-589B-BBF8E574EE66}" = CCC Help Portuguese
"{2EB67C68-2771-099F-62FE-CE55D9AF86CA}" = Catalyst Control Center Core Implementation
"{324DD2A2-EBF4-4D59-6DEF-298B25740453}" = Catalyst Control Center Graphics Light
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{3A9DABA1-6190-0FCD-A7E4-44C844B667D3}" = Catalyst Control Center Graphics Full Existing
"{3C6037CF-584D-1F36-62AE-55EFA7C7168C}" = CCC Help English
"{4264C020-850B-4F08-ACBE-98205D9C336C}" = Windows Live Writer
"{463F67F4-58D0-4C0D-BBC9-D0CC4E56D1B8}" = Windows Live UX Platform Language Pack
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{543508B7-4BB3-9FB6-9233-3AFE77FAA775}" = Catalyst Control Center Graphics Full New
"{57DAA46D-670D-487B-B82C-644BD5C360ED}" = Brother HL-2030
"{62583F2E-0E2B-BC02-AAA6-C3F261196912}" = ccc-core-static
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE}" = ICQ7.7
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{80E8C65A-8F70-4585-88A2-ABC54BABD576}" = Windows Live Mesh
"{85643AB7-2687-4F5B-A0D1-0CC8E764B677}" = CCC Help Chinese Standard
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90140000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0015-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0016-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0018-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-0019-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001A-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001B-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0405-0000-0000000FF1CE}_Office14.SingleImage_{2304F942-79D2-46F7-A512-269A7F5B7EFC}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-001F-041B-0000-0000000FF1CE}_Office14.SingleImage_{A162C5E6-7778-4D5B-9F0A-38F0122DD859}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0405-1000-0000000FF1CE}_Office14.SingleImage_{AB90513B-B892-41B5-8F8B-1D356A449652}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-002C-0405-0000-0000000FF1CE}_Office14.SingleImage_{8148DB19-71B1-4415-8B26-DF5B9E873FC3}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-003D-0000-0000-0000000FF1CE}" = Microsoft Office Single Image 2010
"{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-006E-0405-0000-0000000FF1CE}_Office14.SingleImage_{EEF3E2C0-135B-44DC-BEDD-7F01CFBEFF46}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00A1-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D53EB3E-EDEA-2D0D-07C1-CBF446A44E7D}" = Catalyst Control Center Graphics Previews Vista
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AB78C965-5C67-409B-8433-D7B5BDB12073}" = Windows Live Writer Resources
"{AC6364D6-6A32-D198-7FFB-0F171E00BF22}" = CCC Help Italian
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.4) - Czech
"{B1D17925-F0B1-9C94-7FDC-6DFFC0122FDC}" = Catalyst Control Center InstallProxy
"{B44F3823-52DD-45CA-A916-8B320778715D}" = Messenger Companion
"{B6190387-0036-4BEB-8D74-A0AFC5F14706}" = Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{C454280F-3C3E-4929-B60E-9E6CED5717E7}" = Windows Live Mail
"{C6B4A51C-65B9-0424-A29A-1C3423172E65}" = CCC Help German
"{C73B5B3B-F974-48CA-8B91-3E8A432AEA5B}" = Microsoft Works
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CFF8B8E8-E086-4DE0-935F-FE22CAB54F80}" = Microsoft Search Enhancement Pack
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DD7E7757-1C6F-4C35-B380-FFF587973C89}" = CCC Help Japanese
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{EAFD83A5-3C5A-25FD-4109-487872B4106F}" = Catalyst Control Center Localization All
"{EC7F0D7F-F77F-654F-1776-4D53CBD47570}" = CCC Help Spanish
"{ED9C5D25-55DF-48D8-9328-2AC0D75DE5D8}" = System Control Manager
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FB0FDAEE-0C21-8610-B072-8B0028904E94}" = CCC Help French
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Ashampoo HDD Control 2_is1" = Ashampoo HDD Control 2 2.07
"avast" = avast! Free Antivirus
"Mozilla Firefox 14.0.1 (x86 cs)" = Mozilla Firefox 14.0.1 (x86 cs)
"Mozilla Thunderbird 11.0.1 (x86 cs)" = Mozilla Thunderbird 11.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NetSoftware" = NetSoftware
"Office14.SingleImage" = Microsoft Office 2010 pro studenty a domácnosti
"Sticky Password_is1" = Sticky Password 6.0.4.396
"szn-software-listicka" = Seznam Lištička (Všichni uživatelé tohoto počítače.)
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1884878553-492949299-735548271-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"518496c506da956e" = RegTool2
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 9/25/2012 12:17:39 AM | Computer Name = marika-msi | Source = ESENT | ID = 455
Description = Windows (3012) Windows: Při otevírání souboru protokolu C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS0001E.log
došlo k chybě -1811.
Error - 9/25/2012 12:17:39 AM | Computer Name = marika-msi | Source = Windows Search Service | ID = 9000
Description =
Error - 9/25/2012 12:17:39 AM | Computer Name = marika-msi | Source = Windows Search Service | ID = 7040
Description =
Error - 9/25/2012 12:17:39 AM | Computer Name = marika-msi | Source = Windows Search Service | ID = 7042
Description =
Error - 9/25/2012 12:17:39 AM | Computer Name = marika-msi | Source = Windows Search Service | ID = 9002
Description =
Error - 9/25/2012 12:17:39 AM | Computer Name = marika-msi | Source = Windows Search Service | ID = 3029
Description =
Error - 9/25/2012 12:17:42 AM | Computer Name = marika-msi | Source = Windows Search Service | ID = 3029
Description =
Error - 9/25/2012 12:17:42 AM | Computer Name = marika-msi | Source = Windows Search Service | ID = 3028
Description =
Error - 9/25/2012 12:17:42 AM | Computer Name = marika-msi | Source = Windows Search Service | ID = 3058
Description =
Error - 9/25/2012 12:17:42 AM | Computer Name = marika-msi | Source = Windows Search Service | ID = 7010
Description =
[ Media Center Events ]
Error - 5/22/2011 12:48:32 PM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 18:48:32 - Chyba při připojování k Internetu 18:48:32 - Nelze kontaktovat
server..
Error - 5/22/2011 12:48:39 PM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 18:48:37 - Chyba při připojování k Internetu 18:48:37 - Nelze kontaktovat
server..
Error - 5/22/2011 1:48:56 PM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 19:48:55 - Chyba při připojování k Internetu 19:48:55 - Nelze kontaktovat
server..
Error - 5/22/2011 1:49:06 PM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 19:49:01 - Chyba při připojování k Internetu 19:49:01 - Nelze kontaktovat
server..
Error - 5/25/2011 1:15:29 AM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 7:15:29 - Chyba při připojování k Internetu 7:15:29 - Nelze kontaktovat
server..
Error - 5/25/2011 1:15:43 AM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 7:15:34 - Chyba při připojování k Internetu 7:15:34 - Nelze kontaktovat
server..
Error - 6/30/2011 2:18:51 PM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 20:18:50 - Chyba při připojování k Internetu 20:18:50 - Nelze kontaktovat
server..
Error - 6/30/2011 2:19:05 PM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 20:18:56 - Chyba při připojování k Internetu 20:18:56 - Nelze kontaktovat
server..
Error - 7/4/2011 12:24:34 PM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 18:24:33 - Chyba při připojování k Internetu 18:24:34 - Nelze kontaktovat
server..
Error - 7/4/2011 12:24:55 PM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 18:24:39 - Chyba při připojování k Internetu 18:24:39 - Nelze kontaktovat
server..
[ System Events ]
Error - 10/8/2012 12:13:44 PM | Computer Name = marika-msi | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR2.
Error - 10/8/2012 12:49:12 PM | Computer Name = marika-msi | Source = atikmdag | ID = 43029
Description = Display is not active
Error - 10/8/2012 1:03:51 PM | Computer Name = marika-msi | Source = atikmdag | ID = 43029
Description = Display is not active
Error - 10/8/2012 1:25:11 PM | Computer Name = marika-msi | Source = atikmdag | ID = 43029
Description = Display is not active
Error - 10/9/2012 3:57:21 AM | Computer Name = marika-msi | Source = atikmdag | ID = 52236
Description = CPLIB :: General - Invalid Parameter
Error - 10/9/2012 3:57:21 AM | Computer Name = marika-msi | Source = atikmdag | ID = 43029
Description = Display is not active
Error - 10/9/2012 4:00:18 AM | Computer Name = marika-msi | Source = WMPNetworkSvc | ID = 866300
Description =
Error - 10/9/2012 4:00:19 AM | Computer Name = marika-msi | Source = Service Control Manager | ID = 7001
Description = Služba Hostitel zařízení UPnP závisí na službě SSDP Discovery, která
neuspěla při spuštění v důsledku následující chyby: %%1058
Error - 10/9/2012 4:00:19 AM | Computer Name = marika-msi | Source = DCOM | ID = 10005
Description =
Error - 10/9/2012 4:00:24 AM | Computer Name = marika-msi | Source = Service Control Manager | ID = 7001
Description = Služba Hostitel zařízení UPnP závisí na službě SSDP Discovery, která
neuspěla při spuštění v důsledku následující chyby: %%1058
[ TuneUp Events ]
Error - 10/17/2011 10:57:15 AM | Computer Name = marika-msi | Source = TuneUp.UtilitiesSvc | ID = 300
Description =
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\marika\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
1.75 Gb Total Physical Memory | 0.58 Gb Available Physical Memory | 32.93% Memory free
3.50 Gb Paging File | 2.17 Gb Available in Paging File | 62.08% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 133.67 Gb Total Space | 85.53 Gb Free Space | 63.98% Space Free | Partition Type: NTFS
Drive D: | 89.11 Gb Total Space | 25.36 Gb Free Space | 28.45% Space Free | Partition Type: NTFS
Computer Name: MARIKA-MSI | User Name: marika | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML] -- Reg Error: Key error. File not found
.url[@ = InternetShortcut] -- C:\windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
[HKEY_USERS\S-1-5-21-1884878553-492949299-735548271-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- Reg Error: Key error.
https [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- Reg Error: Key error.
https [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{021808BD-95BD-4BC0-8BAB-30AFAA1A4CDB}" = rport=445 | protocol=6 | dir=out | app=system |
"{02B6FCC8-E8F6-4F1B-B887-E7D05A25747A}" = rport=138 | protocol=17 | dir=out | app=system |
"{08C0D154-BBA7-4701-B9B3-FF6952460006}" = lport=3540 | protocol=17 | dir=in | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{10C72197-0A56-4CEA-B591-E2ED75D918E6}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{12012F3B-C09D-4FDD-9E27-D69DB350542D}" = lport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{13E49B7E-21A5-4640-8978-BDB1FC80694F}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{15BA9254-7365-4773-BBEA-08CCF2DD3C75}" = lport=3540 | protocol=17 | dir=in | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{16FBED30-1C82-42BF-B6A5-D2DEAB142BF2}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{1824B52F-8708-44FC-A7D9-12D4468F4C26}" = lport=443 | protocol=6 | dir=in | app=system |
"{18780DB7-AE28-4853-98DF-B449ADDD186D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{1B938DE2-D36D-401E-AF67-5AFEDA0E4A9C}" = rport=3540 | protocol=17 | dir=out | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{1D72605A-2CA2-4D5A-ACA3-CBD7D6AB4A05}" = lport=554 | protocol=6 | dir=in | app=%systemroot%\ehome\ehshell.exe |
"{201FED52-AC46-417A-AC66-C579A3DFDA2A}" = rport=3540 | protocol=17 | dir=out | svc=pnrpsvc | app=%systemroot%\system32\svchost.exe |
"{239DA1F6-46CF-40FE-BAE6-D365E56FE1D2}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{23B603CF-0A4B-41CD-8E1B-9B8EE1B04C1B}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{257C3343-D559-4117-9D2F-EAD00E17F7F3}" = lport=2869 | protocol=6 | dir=in | app=system |
"{266A70F2-22EE-47C6-8515-9F816D772058}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{26AF11E0-474E-42A2-9F15-E25D1D1494D8}" = lport=rpc | protocol=6 | dir=in | svc=vds | app=%systemroot%\system32\vds.exe |
"{26F217B1-67C2-4541-84A8-98EC892A4E4E}" = lport=rpc | protocol=6 | dir=in | app=%systemroot%\system32\services.exe |
"{2F2614F7-8AC8-4425-B578-820C270298C9}" = rport=5357 | protocol=6 | dir=out | app=system |
"{323CE352-AC7C-4F42-BD8D-36A510742367}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{3FFD27EC-5A13-40F6-9A2A-0D5B9D4E0561}" = rport=3702 | protocol=17 | dir=out | app=%systemroot%\system32\p2phost.exe |
"{4067C5F4-D568-4D22-8AA3-4D389973107C}" = rport=5358 | protocol=6 | dir=out | app=system |
"{408F7521-CFC4-4699-9089-8689BE652E44}" = rport=1701 | protocol=17 | dir=out | app=system |
"{42195325-0514-4EFC-A35D-AFD77A7112B4}" = lport=445 | protocol=6 | dir=in | app=system |
"{4507BCB2-20DC-4522-920C-2775E0C9619A}" = lport=2869 | protocol=6 | dir=in | app=system |
"{475A97E3-1A79-491A-B4EE-9B8A2929AA52}" = rport=137 | protocol=17 | dir=out | app=system |
"{4868122E-C4EC-445F-B4A0-27AAC33A8884}" = lport=5357 | protocol=6 | dir=in | app=system |
"{4A1BB1C7-AE19-46A6-A09A-4B4A3DF21592}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe |
"{5273B5FA-8F42-4EC0-B15B-9018FF21A4E2}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5CE2CBBE-A44D-4868-B592-31C66A97B3B1}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{5E1B38C0-08AC-4F4C-B47F-714956B3BF66}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5F63E7F8-4A54-4782-8060-EC6E33FE4676}" = rport=139 | protocol=6 | dir=out | app=system |
"{6042E78C-E43A-4AB9-9A8C-3922B4348DF5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{60F56252-5466-4506-A7E8-975FE6B0D762}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{62497043-768D-4155-B43B-A59354764686}" = lport=80 | protocol=6 | dir=in | app=system |
"{657F1B7A-6215-4029-B0DC-4182033A449B}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{65B3EA00-A2D9-47AB-9906-DA6A36432E85}" = lport=445 | protocol=6 | dir=in | app=system |
"{698B2E9D-85A0-4ABF-ADB4-11048DF9EAD0}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{6E3971EE-9CD2-4076-AE86-B47C188438FA}" = lport=2869 | protocol=6 | dir=in | app=system |
"{6FE10BD2-01C9-4721-A500-56FBDFAA94E8}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{733167FB-A489-424E-8DC3-748154D57F70}" = lport=10243 | protocol=6 | dir=in | app=system |
"{74D15A34-30E1-44DE-B34A-591C55D38915}" = lport=7777 | protocol=17 | dir=in | app=%systemroot%\ehome\ehshell.exe |
"{77BE1505-ABF2-4342-9F4C-185057FBA8A5}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{79427D8A-8459-4A6D-A76B-B089D558F838}" = lport=rpc | protocol=6 | dir=in | svc=ktmrm | app=%systemroot%\system32\svchost.exe |
"{7F1543A9-9F06-44DC-A5DD-1B8E178FBF95}" = lport=rpc | protocol=6 | dir=in | svc=eventlog | app=%systemroot%\system32\svchost.exe |
"{842DB6DB-ECCE-4080-B280-31E4BE1018B1}" = lport=10244 | protocol=6 | dir=in | app=system |
"{89E9B44F-0344-4066-99AC-5C6813A5445E}" = lport=1723 | protocol=6 | dir=in | app=system |
"{901B1533-CE5F-4897-B011-B6028B1E5773}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{92A37E30-5A93-4DCA-AE18-E37B3762A0EC}" = lport=rpc | protocol=6 | dir=in | svc=policyagent | app=%systemroot%\system32\svchost.exe |
"{972B2B30-7859-47ED-B7B6-F34988333DA0}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9A41CFA1-36A0-4246-88B3-F0171CC4E07F}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9B83AE5C-F5DE-4F0F-AC7D-98E224C7F88E}" = rport=10243 | protocol=6 | dir=out | app=system |
"{9C276793-6DAB-49C9-AD40-50041CE4344A}" = lport=137 | protocol=17 | dir=in | app=system |
"{9CE1E0F9-4D35-4EA5-B2F7-39B2AE48512B}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{9F612EC0-AD5B-4506-B31C-4D32FC8F22C0}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{A20E2899-EAE6-4EDD-8181-816D8FBF6F65}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{A867DAA3-BBAA-4587-AF84-4FDF4E91C0DA}" = lport=135 | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{AB19EED8-6764-4A3F-9C0B-1C86E0EB0382}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{AB49A3E1-F417-445F-84B9-6A91BEB8042C}" = lport=rpc | protocol=6 | dir=in | svc=schedule | app=%systemroot%\system32\svchost.exe |
"{AD437182-E11E-4BD8-A542-9C3FEAF00A23}" = lport=3702 | protocol=17 | dir=in | app=%systemroot%\system32\p2phost.exe |
"{AD69019B-6BE2-45AC-9266-5C0DC6656CF8}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{B3B86B39-E1D5-4784-8B78-745006450282}" = lport=3306 | protocol=6 | dir=in | name=mysql |
"{B812EB53-5912-4B89-AA18-D667864F58B5}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{B8B28FA8-19E9-4A67-A681-42BB9B0F627D}" = lport=445 | protocol=6 | dir=in | app=system |
"{BE0399F1-53CA-4B8F-BD6E-533932513350}" = rport=1723 | protocol=6 | dir=out | app=system |
"{C09FA348-7C63-4035-968F-7AE2E6A2F57C}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{C1D1F07F-C788-437B-8017-93BA385183EB}" = lport=2869 | protocol=6 | dir=in | app=system |
"{C25D488A-4CDC-4B22-B017-595B4A2297DD}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{C45C7E06-1D9C-4A34-AA6B-A4F1010738FE}" = lport=445 | protocol=6 | dir=in | app=system |
"{C5752690-B0A3-423F-9835-116BDBCE74DB}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{CA097973-DB73-4BA5-82E0-0B52E861BBA7}" = lport=162 | protocol=17 | dir=in | svc=snmptrap | app=%systemroot%\system32\snmptrap.exe |
"{CAB468FA-DAD5-4F43-BEDE-371BE71837E9}" = lport=5358 | protocol=6 | dir=in | app=system |
"{CCCF0AF6-9EE6-4293-902B-284A28832CB9}" = lport=1701 | protocol=17 | dir=in | app=system |
"{CD83A700-EFE9-41EB-BD74-E84CB2F986C6}" = lport=rpc | protocol=6 | dir=in | app=%systemroot%\system32\vdsldr.exe |
"{CF926E37-1773-4ED8-B42E-C9DD36494E31}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D6C058B0-9021-47C9-A70B-D7E3B5C60F3D}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D71D29DD-1C70-44EA-9D8C-F9B8E2C31B77}" = lport=5985 | protocol=6 | dir=in | app=system |
"{DB784FE5-2A86-4E7F-BE81-5A6163EFB87C}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{DE4BE3C2-796E-4ADC-86C7-D889AC25C3B5}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{E123E0EE-A103-4192-B6B6-1035554EA6DE}" = lport=139 | protocol=6 | dir=in | app=system |
"{F8759B03-62EF-45A6-A848-B4727811202E}" = lport=3390 | protocol=6 | dir=in | app=system |
"{FB31F7F8-FF19-4514-94EB-FEF03DF15087}" = lport=135 | protocol=6 | dir=in | svc=rpcss | app=%systemroot%\system32\svchost.exe |
"{FCA0CE9E-2E9A-49F4-B557-3B2DA3B7E962}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{FCB82312-196C-44CD-8780-9ED3F3FF402A}" = lport=138 | protocol=17 | dir=in | app=system |
"{FF5763EB-B7C7-42C1-8E53-C1C3777C3431}" = lport=10245 | protocol=6 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{039A2D1E-12CD-4D6D-9018-9C036FCDAD40}" = protocol=6 | dir=out | app=%systemroot%\ehome\ehshell.exe |
"{0861B13C-5FC4-4290-B7A9-557259E4BE67}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{09D538D4-6574-4526-94CE-C1DF6FB6E2BB}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0EC1CFB6-C058-4675-B6CF-E2563739FDB0}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{11F942A6-EDC9-4FFA-862E-037EB9FA44D1}" = protocol=47 | dir=out | app=system |
"{17A0CBE4-D1B6-422B-A675-D39CE3B19430}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{1991CA44-F30A-42F8-BF78-282961B44DC7}" = protocol=47 | dir=in | app=system |
"{200B82D2-BE8A-4793-9809-7E0A54BC6017}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{20AC97DC-4143-489E-A588-1919504AD455}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{2716C320-989A-4E19-8FD8-45425C2F9F97}" = protocol=6 | dir=out | app=system |
"{2E51AD49-4346-4A47-A52B-C2140658E5B7}" = protocol=6 | dir=in | app=%systemroot%\system32\msdtc.exe |
"{3D0B728F-8733-42E2-8541-90A2B1A3DB8D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{3D674522-4151-4DA1-BF84-60514992F8AB}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{43AE3663-A35D-4989-85B9-0AD6B69C46CA}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{4B47517B-DE02-4FBB-B44D-88CDDEC4E757}" = protocol=17 | dir=out | app=%systemroot%\ehome\ehshell.exe |
"{51FC96B1-D10F-4B90-9FBD-F881EDFBC86C}" = protocol=6 | dir=out | svc=msiscsi | app=%systemroot%\system32\svchost.exe |
"{546AFA7E-6C6E-4106-AA2D-AA47166742EE}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{5E48BDD9-061E-40F8-9419-3062CEB7DB4E}" = protocol=6 | dir=in | app=%systemroot%\system32\plasrv.exe |
"{5EBDF083-F13B-4053-AE18-12500882A7BC}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{6455B353-2F34-4B38-B05F-34834D571448}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{651F25AE-4222-4F32-A807-C0055D7A927A}" = protocol=6 | dir=out | svc=winmgmt | app=%systemroot%\system32\svchost.exe |
"{65548ED8-F624-4828-BCB1-84792213E48A}" = protocol=6 | dir=out | app=%systemroot%\system32\p2phost.exe |
"{6B11EF75-8296-45B5-B701-C0704FCE7D84}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6CE9ACFD-6172-4D4D-9F98-235A5DF7984D}" = protocol=6 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{6D89718A-9AC5-4BB8-B267-DA7F99B09812}" = protocol=6 | dir=out | svc=mcx2svc | app=%systemroot%\system32\svchost.exe |
"{744AB75F-74AA-44BF-B5EB-08DCF8E622EF}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{759098B8-B59D-4499-8662-B2B56D9EC6EF}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{80CEF393-A50E-4048-821B-8BB3C4DCDFC9}" = protocol=6 | dir=out | app=%systemroot%\system32\wudfhost.exe |
"{839C034E-DCEA-4F25-A93D-A8A7FAFA0EB6}" = protocol=6 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{8606009A-9691-4471-ACFF-99EE00277920}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{8DB92617-A06C-4D35-9900-FF921E6C9737}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{91CF1AEC-CB88-4EF7-82BC-BF68AAF21F87}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{92345A43-0201-4DCB-A565-A6657C00BA11}" = protocol=6 | dir=out | app=%systemroot%\ehome\mcrmgr.exe |
"{949A0024-5366-47D0-A7E0-3A21BFE1C57A}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{9ADB5DAA-9FA6-4EFB-9A12-727FA65DFE2C}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{9C322A23-9DBB-4DF9-858D-AF4319330CC2}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{9E7D9539-EF7E-4EA6-9A52-8B2FF11C2FF0}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{B0EC7FAF-EE84-4254-87F8-941BB3DF46B3}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{BB660F1D-2C64-40CD-9BC1-D174BE08F7CD}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{BF3B6A06-AE17-4492-B95D-57845B82CF69}" = protocol=6 | dir=in | app=%systemroot%\system32\wbem\unsecapp.exe |
"{C0EC25D0-30EC-45FC-BFDC-83B05CBB0D13}" = protocol=6 | dir=in | svc=winmgmt | app=%systemroot%\system32\svchost.exe |
"{C1A652D7-EB2D-4FCF-ACEE-BB09FE9BFDCC}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{D0E8531C-61D7-435E-87A5-FCBD05AF448D}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{D78822C5-A9A5-4DAA-9A69-28CEA5E6B332}" = protocol=6 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{E1E3B7C7-4619-4701-9AF1-00B3F185759C}" = protocol=6 | dir=out | app=%systemroot%\ehome\mcx2prov.exe |
"{E4B504A8-3311-436B-8B95-A1B25EBB9ADE}" = protocol=6 | dir=in | app=%systemroot%\system32\p2phost.exe |
"{E986EFEE-4284-4017-8BD8-45793CB16F26}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{EE4D2150-E372-4173-B729-D5B0F03169C7}" = protocol=6 | dir=in | svc=msiscsi | app=%systemroot%\system32\svchost.exe |
"{F22A0E57-DCE8-4B74-9BA7-9ACBD5753AD7}" = protocol=6 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{F394D726-6366-4B51-8E83-56E9C57A4715}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{F7811CE3-BEFA-4B15-8F05-3B58A193DFA2}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{F85B24E4-959B-47F9-A79D-00FA181375E3}" = protocol=6 | dir=out | app=%systemroot%\system32\msdtc.exe |
"{F8CA6553-3254-4172-B37D-7BA8FB35D43F}" = protocol=17 | dir=in | app=c:\program files (x86)\icq7.7\icq.exe |
"{F92626AF-D183-49E0-B6B9-17523B239CE8}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{FF93450D-922D-4089-A00A-B4573033F2BA}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"TCP Query User{974F5CA4-2B12-4354-95E1-779D4E99B0DE}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"TCP Query User{BB02B813-6918-4170-8880-7F1328603212}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"UDP Query User{236EB0CA-C108-4E57-A8C1-7C21900B24C0}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
"UDP Query User{44D1F79B-3748-4502-9602-C4AFAC160D85}C:\program files (x86)\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\plugin-container.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
"{34384A2A-2CA2-4446-AB0E-1F360BA2AAC5}" = Windows Live Remote Service Resources
"{3921492E-82D2-4180-8124-E347AD2F2DB4}" = Windows Live Remote Client Resources
"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
"{46A5FBE9-ADB3-4493-A1CC-B4CFFD24D26A}" = Windows Live Family Safety
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{522E383F-B341-9137-A4C0-5EAD88257EBB}" = ccc-utility64
"{561AB451-B967-475C-80E0-3B6679C38B52}" = MySQL Server 5.1
"{5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}" = Windows Live Language Selector
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{701D8EE6-6A5A-4509-9740-35F551193CE0}" = Windows Live Family Safety
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2010
"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{F4582924-EA2F-68DA-9E35-95EF02B96BDE}" = ATI Catalyst Install Manager
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"CCleaner" = CCleaner
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{068B46A0-8858-4CEB-80BC-A4AE787A05FC}" = Windows Live Sync
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{25478065-4CB1-448C-80E4-8C4529017EE3}" = ArcSoft WebCam Companion 3
"{25D677EB-E581-6A02-589B-BBF8E574EE66}" = CCC Help Portuguese
"{2EB67C68-2771-099F-62FE-CE55D9AF86CA}" = Catalyst Control Center Core Implementation
"{324DD2A2-EBF4-4D59-6DEF-298B25740453}" = Catalyst Control Center Graphics Light
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{3A9DABA1-6190-0FCD-A7E4-44C844B667D3}" = Catalyst Control Center Graphics Full Existing
"{3C6037CF-584D-1F36-62AE-55EFA7C7168C}" = CCC Help English
"{4264C020-850B-4F08-ACBE-98205D9C336C}" = Windows Live Writer
"{463F67F4-58D0-4C0D-BBC9-D0CC4E56D1B8}" = Windows Live UX Platform Language Pack
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{543508B7-4BB3-9FB6-9233-3AFE77FAA775}" = Catalyst Control Center Graphics Full New
"{57DAA46D-670D-487B-B82C-644BD5C360ED}" = Brother HL-2030
"{62583F2E-0E2B-BC02-AAA6-C3F261196912}" = ccc-core-static
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE}" = ICQ7.7
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{80E8C65A-8F70-4585-88A2-ABC54BABD576}" = Windows Live Mesh
"{85643AB7-2687-4F5B-A0D1-0CC8E764B677}" = CCC Help Chinese Standard
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90140000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0015-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0016-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0018-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-0019-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001A-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001B-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0405-0000-0000000FF1CE}_Office14.SingleImage_{2304F942-79D2-46F7-A512-269A7F5B7EFC}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-001F-041B-0000-0000000FF1CE}_Office14.SingleImage_{A162C5E6-7778-4D5B-9F0A-38F0122DD859}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0405-1000-0000000FF1CE}_Office14.SingleImage_{AB90513B-B892-41B5-8F8B-1D356A449652}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-002C-0405-0000-0000000FF1CE}_Office14.SingleImage_{8148DB19-71B1-4415-8B26-DF5B9E873FC3}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-003D-0000-0000-0000000FF1CE}" = Microsoft Office Single Image 2010
"{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-006E-0405-0000-0000000FF1CE}_Office14.SingleImage_{EEF3E2C0-135B-44DC-BEDD-7F01CFBEFF46}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00A1-0405-0000-0000000FF1CE}_Office14.SingleImage_{E6C0DAE8-3840-4117-AB4D-674930D0DDE9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D53EB3E-EDEA-2D0D-07C1-CBF446A44E7D}" = Catalyst Control Center Graphics Previews Vista
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AB78C965-5C67-409B-8433-D7B5BDB12073}" = Windows Live Writer Resources
"{AC6364D6-6A32-D198-7FFB-0F171E00BF22}" = CCC Help Italian
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.4) - Czech
"{B1D17925-F0B1-9C94-7FDC-6DFFC0122FDC}" = Catalyst Control Center InstallProxy
"{B44F3823-52DD-45CA-A916-8B320778715D}" = Messenger Companion
"{B6190387-0036-4BEB-8D74-A0AFC5F14706}" = Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{C454280F-3C3E-4929-B60E-9E6CED5717E7}" = Windows Live Mail
"{C6B4A51C-65B9-0424-A29A-1C3423172E65}" = CCC Help German
"{C73B5B3B-F974-48CA-8B91-3E8A432AEA5B}" = Microsoft Works
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CFF8B8E8-E086-4DE0-935F-FE22CAB54F80}" = Microsoft Search Enhancement Pack
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DD7E7757-1C6F-4C35-B380-FFF587973C89}" = CCC Help Japanese
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{EAFD83A5-3C5A-25FD-4109-487872B4106F}" = Catalyst Control Center Localization All
"{EC7F0D7F-F77F-654F-1776-4D53CBD47570}" = CCC Help Spanish
"{ED9C5D25-55DF-48D8-9328-2AC0D75DE5D8}" = System Control Manager
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FB0FDAEE-0C21-8610-B072-8B0028904E94}" = CCC Help French
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Ashampoo HDD Control 2_is1" = Ashampoo HDD Control 2 2.07
"avast" = avast! Free Antivirus
"Mozilla Firefox 14.0.1 (x86 cs)" = Mozilla Firefox 14.0.1 (x86 cs)
"Mozilla Thunderbird 11.0.1 (x86 cs)" = Mozilla Thunderbird 11.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NetSoftware" = NetSoftware
"Office14.SingleImage" = Microsoft Office 2010 pro studenty a domácnosti
"Sticky Password_is1" = Sticky Password 6.0.4.396
"szn-software-listicka" = Seznam Lištička (Všichni uživatelé tohoto počítače.)
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1884878553-492949299-735548271-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"518496c506da956e" = RegTool2
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 9/25/2012 12:17:39 AM | Computer Name = marika-msi | Source = ESENT | ID = 455
Description = Windows (3012) Windows: Při otevírání souboru protokolu C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS0001E.log
došlo k chybě -1811.
Error - 9/25/2012 12:17:39 AM | Computer Name = marika-msi | Source = Windows Search Service | ID = 9000
Description =
Error - 9/25/2012 12:17:39 AM | Computer Name = marika-msi | Source = Windows Search Service | ID = 7040
Description =
Error - 9/25/2012 12:17:39 AM | Computer Name = marika-msi | Source = Windows Search Service | ID = 7042
Description =
Error - 9/25/2012 12:17:39 AM | Computer Name = marika-msi | Source = Windows Search Service | ID = 9002
Description =
Error - 9/25/2012 12:17:39 AM | Computer Name = marika-msi | Source = Windows Search Service | ID = 3029
Description =
Error - 9/25/2012 12:17:42 AM | Computer Name = marika-msi | Source = Windows Search Service | ID = 3029
Description =
Error - 9/25/2012 12:17:42 AM | Computer Name = marika-msi | Source = Windows Search Service | ID = 3028
Description =
Error - 9/25/2012 12:17:42 AM | Computer Name = marika-msi | Source = Windows Search Service | ID = 3058
Description =
Error - 9/25/2012 12:17:42 AM | Computer Name = marika-msi | Source = Windows Search Service | ID = 7010
Description =
[ Media Center Events ]
Error - 5/22/2011 12:48:32 PM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 18:48:32 - Chyba při připojování k Internetu 18:48:32 - Nelze kontaktovat
server..
Error - 5/22/2011 12:48:39 PM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 18:48:37 - Chyba při připojování k Internetu 18:48:37 - Nelze kontaktovat
server..
Error - 5/22/2011 1:48:56 PM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 19:48:55 - Chyba při připojování k Internetu 19:48:55 - Nelze kontaktovat
server..
Error - 5/22/2011 1:49:06 PM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 19:49:01 - Chyba při připojování k Internetu 19:49:01 - Nelze kontaktovat
server..
Error - 5/25/2011 1:15:29 AM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 7:15:29 - Chyba při připojování k Internetu 7:15:29 - Nelze kontaktovat
server..
Error - 5/25/2011 1:15:43 AM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 7:15:34 - Chyba při připojování k Internetu 7:15:34 - Nelze kontaktovat
server..
Error - 6/30/2011 2:18:51 PM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 20:18:50 - Chyba při připojování k Internetu 20:18:50 - Nelze kontaktovat
server..
Error - 6/30/2011 2:19:05 PM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 20:18:56 - Chyba při připojování k Internetu 20:18:56 - Nelze kontaktovat
server..
Error - 7/4/2011 12:24:34 PM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 18:24:33 - Chyba při připojování k Internetu 18:24:34 - Nelze kontaktovat
server..
Error - 7/4/2011 12:24:55 PM | Computer Name = marika-msi | Source = MCUpdate | ID = 0
Description = 18:24:39 - Chyba při připojování k Internetu 18:24:39 - Nelze kontaktovat
server..
[ System Events ]
Error - 10/8/2012 12:13:44 PM | Computer Name = marika-msi | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR2.
Error - 10/8/2012 12:49:12 PM | Computer Name = marika-msi | Source = atikmdag | ID = 43029
Description = Display is not active
Error - 10/8/2012 1:03:51 PM | Computer Name = marika-msi | Source = atikmdag | ID = 43029
Description = Display is not active
Error - 10/8/2012 1:25:11 PM | Computer Name = marika-msi | Source = atikmdag | ID = 43029
Description = Display is not active
Error - 10/9/2012 3:57:21 AM | Computer Name = marika-msi | Source = atikmdag | ID = 52236
Description = CPLIB :: General - Invalid Parameter
Error - 10/9/2012 3:57:21 AM | Computer Name = marika-msi | Source = atikmdag | ID = 43029
Description = Display is not active
Error - 10/9/2012 4:00:18 AM | Computer Name = marika-msi | Source = WMPNetworkSvc | ID = 866300
Description =
Error - 10/9/2012 4:00:19 AM | Computer Name = marika-msi | Source = Service Control Manager | ID = 7001
Description = Služba Hostitel zařízení UPnP závisí na službě SSDP Discovery, která
neuspěla při spuštění v důsledku následující chyby: %%1058
Error - 10/9/2012 4:00:19 AM | Computer Name = marika-msi | Source = DCOM | ID = 10005
Description =
Error - 10/9/2012 4:00:24 AM | Computer Name = marika-msi | Source = Service Control Manager | ID = 7001
Description = Služba Hostitel zařízení UPnP závisí na službě SSDP Discovery, která
neuspěla při spuštění v důsledku následující chyby: %%1058
[ TuneUp Events ]
Error - 10/17/2011 10:57:15 AM | Computer Name = marika-msi | Source = TuneUp.UtilitiesSvc | ID = 300
Description =
< End of report >
Jasněnka
Přispějete na provoz fóra?