VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o kontrolu logu - seká se Notebook

https://forum.viry.cz:443/viewtopic.php?t=100294

Stránka 2 z 5

Re: Prosím o kontrolu logu - seká se Notebook

Napsal: 22 dub 2010 17:36
od motji
Ještě něco dočistíme, ale zajímalo by mě, proč jste dnes použil Avenger a na co, poprosím o tento log
C:\avenger.txt

A proč máte spuštěný AVG antirootkit? Našel něco?
Pokud zde spolu čistíme počítač, byla bych ráda, kdyby jste dělal jen to co já řeknu, a když děláte sken něčím jiným, tak mi sdělil výsledky. nezdá se Vám něco? :o


:arrow: Otevřete si Poznámkový blok a zkopírujte do něj text

Kód: Vybrat vše

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7abf0bbe-bfb1-31a4-8ace-2c85f4bbc455}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}"=-
"{2C688203-7EB3-4327-9995-1CB417BA23F9}"=-
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"combofix"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=-
-uložte jako (typ: všechny soubory) kde za název souboru zadáte "smazani.reg" bez uvozovek,
klikněte na uložit, pak na soubor standardně 2X klikněte a potvrďte dialogové okno.


:arrow: Seká se to při jaké činnosti?

Re: Prosím o kontrolu logu - seká se Notebook

Napsal: 22 dub 2010 17:57
od Cigi11
Za to se omlouvám, tohle není můj notebook je kamarádky, která mě požádala o pomoc, bohužel jsem nevěděl co s tím a proto jsem napsal sem. Prý ji to poradil kamarád.
seká se to při nečinnosti systému (cca po 5 minutách), při poslouchání písniček (ke konci písniček se to na pár vteřin zasekne a hned zase rozeběhne a nakonec se to úplně kousne.
AVG antirootkit nic nenašel
tady je ten log

Logfile of The Avenger Version 2.0, (c) by Swandog46
http://swandog46.geekstogo.com

Platform: Windows Vista

*******************

Script file opened successfully.
Script file read successfully.

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Rootkit scan active.
No rootkits found!


Completed script processing.

*******************

Finished! Terminate.

Re: Prosím o kontrolu logu - seká se Notebook

Napsal: 22 dub 2010 18:05
od motji
Avenger jste použili uplně zbytečně, on sice detekovat rootkita při spuštění, ale hlavně se do něj dávají skripty s pokyny na mazání.

:arrow: Podívejte se do správce zařízení, jestli tam nemáte nějaké žluté otazníky.

:arrow: Vypněte jednu službu k defragmentaci disku, mohli by spolu kolidovat
TuneUp.Defrag
Diskeeper


:arrow: start-spustit - napište chkdsk /f/r
-[enter]
souhlas - restartuje se pc a nechá se disk zkontrolovat

Re: Prosím o kontrolu logu - seká se Notebook

Napsal: 22 dub 2010 18:08
od Cigi11
otazníky tady jsou u
Řadič Adaptec AIC-7870 rozhraní SCSI ke sběrnici PCI (emulovaný)
Microsoft ISATAP Adapter

a ten TuneUp.Defrag by měl být vypnutý

Re: Prosím o kontrolu logu - seká se Notebook

Napsal: 22 dub 2010 20:33
od motji
Po té kontrole disku dejte vědět, jestli to pomohlo.

Re: Prosím o kontrolu logu - seká se Notebook

Napsal: 22 dub 2010 21:10
od motji
K těm ovladačům ve správci zařízení
Klikněte pravým myšítkem na Řadič Adaptec AIC-7870 rozhraní SCSI ke sběrnici PCI
- vlastnosti - záložka podrobnosti
-nastavte zde ještě ID hardwaru
-Zkopírujte sem co je u toho napsáno

Re: Prosím o kontrolu logu - seká se Notebook

Napsal: 23 dub 2010 12:47
od Cigi11
Řadič Adaptec AIC-7870 rozhraní SCSI ke sběrnici PCI
ID Hardwaru:
pci\ven_9004&dev_7078&subsys_70781414

je to zatím dobré
akorát svchost.exe je tam asi 15x, iexplorer.exe je tu 3x přitom mám otevřen jen jeden

chci se zeptat na program: HDD Regenerator

Re: Prosím o kontrolu logu - seká se Notebook

Napsal: 23 dub 2010 12:53
od motji
Kolik máte v exploreru spuštěných záložek?

Při skenu vypněte všechny prohlížeče a udělejte
:arrow: Stáhněte SysProt AntiRootkit
http://sites.google.com/site/sysprotantirootkit/
-rozbalte a spusťte
-provedte všechny záložky a vložte logy

Re: Prosím o kontrolu logu - seká se Notebook

Napsal: 23 dub 2010 13:11
od Cigi11
tady je log:

SysProt AntiRootkit v1.0.1.0
by swatkat

******************************************************************************************
******************************************************************************************

Process:
Name: [System Idle Process]
PID: 0
Hidden: No
Window Visible: No

Name: System
PID: 4
Hidden: No
Window Visible: No

Name: C:\Windows\System32\smss.exe
PID: 636
Hidden: No
Window Visible: No

Name: C:\Windows\System32\csrss.exe
PID: 716
Hidden: No
Window Visible: No

Name: C:\Windows\System32\wininit.exe
PID: 768
Hidden: No
Window Visible: No

Name: C:\Windows\System32\csrss.exe
PID: 780
Hidden: No
Window Visible: No

Name: C:\Windows\System32\services.exe
PID: 812
Hidden: No
Window Visible: No

Name: C:\Windows\System32\lsass.exe
PID: 828
Hidden: No
Window Visible: No

Name: C:\Windows\System32\lsm.exe
PID: 836
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 980
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1024
Hidden: No
Window Visible: No

Name: C:\Windows\System32\nvvsvc.exe
PID: 1052
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1080
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1132
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1180
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1212
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1232
Hidden: No
Window Visible: No

Name: C:\Windows\System32\audiodg.exe
PID: 1304
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1324
Hidden: No
Window Visible: No

Name: C:\Windows\System32\winlogon.exe
PID: 1356
Hidden: No
Window Visible: No

Name: C:\Windows\System32\SLsvc.exe
PID: 1364
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1424
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1552
Hidden: No
Window Visible: No

Name: C:\Program Files\ATK Hotkey\AsLdrSrv.exe
PID: 1676
Hidden: No
Window Visible: No

Name: C:\Program Files\ATKGFNEX\GFNEXSrv.exe
PID: 1688
Hidden: No
Window Visible: No

Name: C:\Windows\System32\spoolsv.exe
PID: 1776
Hidden: No
Window Visible: No

Name: C:\Windows\System32\taskeng.exe
PID: 1788
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1808
Hidden: No
Window Visible: No

Name: C:\Windows\System32\agrsmsvc.exe
PID: 232
Hidden: No
Window Visible: No

Name: C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PID: 432
Hidden: No
Window Visible: No

Name: C:\Program Files\Bonjour\mDNSResponder.exe
PID: 472
Hidden: No
Window Visible: No

Name: C:\Windows\System32\nvvsvc.exe
PID: 560
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 692
Hidden: No
Window Visible: No

Name: C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
PID: 724
Hidden: No
Window Visible: No

Name: C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
PID: 784
Hidden: No
Window Visible: No

Name: C:\Program Files\ESET\ESET Smart Security\ekrn.exe
PID: 1564
Hidden: No
Window Visible: No

Name: C:\Program Files\Common Files\LightScribe\LSSrvc.exe
PID: 2128
Hidden: No
Window Visible: No

Name: C:\Windows\System32\lxczcoms.exe
PID: 2156
Hidden: No
Window Visible: No

Name: C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PID: 2184
Hidden: No
Window Visible: No

Name: C:\Windows\System32\PnkBstrA.exe
PID: 2312
Hidden: No
Window Visible: No

Name: C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
PID: 2348
Hidden: No
Window Visible: No

Name: C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PID: 2368
Hidden: No
Window Visible: No

Name: C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
PID: 2420
Hidden: No
Window Visible: No

Name: C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
PID: 2464
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 2492
Hidden: No
Window Visible: No

Name: C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
PID: 2544
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 2592
Hidden: No
Window Visible: No

Name: C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
PID: 2628
Hidden: No
Window Visible: No

Name: C:\Windows\System32\SearchIndexer.exe
PID: 2708
Hidden: No
Window Visible: No

Name: C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
PID: 3004
Hidden: No
Window Visible: No

Name: C:\Windows\System32\alg.exe
PID: 3264
Hidden: No
Window Visible: No

Name: C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\asghost.exe
PID: 4024
Hidden: No
Window Visible: No

Name: C:\Windows\System32\dwm.exe
PID: 4060
Hidden: No
Window Visible: No

Name: C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
PID: 964
Hidden: No
Window Visible: No

Name: C:\Windows\System32\taskeng.exe
PID: 2304
Hidden: No
Window Visible: No

Name: C:\Windows\explorer.exe
PID: 2860
Hidden: No
Window Visible: No

Name: C:\Program Files\ASUS\ASUS Live Update\ALU.exe
PID: 1604
Hidden: No
Window Visible: Yes

Name: C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
PID: 448
Hidden: No
Window Visible: No

Name: C:\Program Files\ATK Hotkey\HControl.exe
PID: 3624
Hidden: No
Window Visible: No

Name: C:\Program Files\ATK Hotkey\MsgTranAgt.exe
PID: 2324
Hidden: No
Window Visible: No

Name: C:\Program Files\Wireless Console 2\wcourier.exe
PID: 2884
Hidden: No
Window Visible: No

Name: C:\Program Files\P4G\BatteryLife.exe
PID: 1412
Hidden: No
Window Visible: No

Name: C:\Program Files\ASUS\Splendid\ACMON.exe
PID: 2244
Hidden: No
Window Visible: No

Name: C:\Program Files\ASUS\ASUS CopyProtect\ASPG.exe
PID: 1464
Hidden: No
Window Visible: No

Name: C:\Windows\System32\ACEngSvr.exe
PID: 1580
Hidden: No
Window Visible: No

Name: C:\Program Files\ATKOSD2\ATKOSD2.exe
PID: 3636
Hidden: No
Window Visible: No

Name: C:\Program Files\ATK Hotkey\ATKOSD.exe
PID: 3104
Hidden: No
Window Visible: No

Name: C:\Windows\RtHDVCpl.exe
PID: 3964
Hidden: No
Window Visible: No

Name: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
PID: 3688
Hidden: No
Window Visible: No

Name: C:\Program Files\ASUS\ATK Media\DMedia.exe
PID: 3720
Hidden: No
Window Visible: No

Name: C:\Windows\AsScrPro.exe
PID: 3896
Hidden: No
Window Visible: No

Name: C:\Program Files\ESET\ESET Smart Security\egui.exe
PID: 1576
Hidden: No
Window Visible: No

Name: C:\Program Files\ATK Hotkey\KBFiltr.exe
PID: 3356
Hidden: No
Window Visible: No

Name: C:\Program Files\ATK Hotkey\WDC.exe
PID: 2388
Hidden: No
Window Visible: No

Name: C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PID: 2848
Hidden: No
Window Visible: No

Name: C:\Program Files\RocketDock\RocketDock.exe
PID: 3388
Hidden: No
Window Visible: No

Name: C:\Program Files\Windows Media Player\wmpnscfg.exe
PID: 2016
Hidden: No
Window Visible: No

Name: C:\Program Files\Windows Media Player\wmpnetwk.exe
PID: 3648
Hidden: No
Window Visible: No

Name: C:\Program Files\Synaptics\SynTP\SynAsus.exe
PID: 3608
Hidden: No
Window Visible: No

Name: C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
PID: 4204
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 4332
Hidden: No
Window Visible: No

Name: C:\Program Files\Internet Explorer\iexplore.exe
PID: 4160
Hidden: No
Window Visible: No

Name: C:\Program Files\Internet Explorer\iexplore.exe
PID: 4164
Hidden: No
Window Visible: No

Name: C:\Program Files\Internet Explorer\iexplore.exe
PID: 4488
Hidden: No
Window Visible: No

Name: C:\Users\Cigi\Desktop\SysProt\SysProt.exe
PID: 4464
Hidden: No
Window Visible: Yes

Name: C:\Windows\System32\wbem\WmiPrvSE.exe
PID: 2540
Hidden: No
Window Visible: No

******************************************************************************************
******************************************************************************************
Kernel Modules:
Module Name: \??\C:\Users\Cigi\Desktop\SysProt\SysProtDrv.sys
Service Name: SysProtDrv.sys
Module Base: A8B22000
Module End: A8B2D000
Hidden: No

Module Name: C:\Windows\system32\ntkrnlpa.exe
Service Name: ---
Module Base: 82814000
Module End: 82BCD000
Hidden: No

Module Name: C:\Windows\system32\hal.dll
Service Name: ---
Module Base: 82BCD000
Module End: 82C00000
Hidden: No

Module Name: C:\Windows\system32\kdcom.dll
Service Name: ---
Module Base: 80409000
Module End: 80411000
Hidden: No

Module Name: C:\Windows\system32\mcupdate_GenuineIntel.dll
Service Name: ---
Module Base: 80411000
Module End: 80471000
Hidden: No

Module Name: C:\Windows\system32\PSHED.dll
Service Name: ---
Module Base: 80471000
Module End: 80482000
Hidden: No

Module Name: C:\Windows\system32\BOOTVID.dll
Service Name: ---
Module Base: 80482000
Module End: 8048A000
Hidden: No

Module Name: C:\Windows\system32\CLFS.SYS
Service Name: CLFS
Module Base: 8048A000
Module End: 804CB000
Hidden: No

Module Name: C:\Windows\system32\CI.dll
Service Name: ---
Module Base: 804CB000
Module End: 805AB000
Hidden: No

Module Name: C:\Windows\system32\drivers\Wdf01000.sys
Service Name: Wdf01000
Module Base: 80604000
Module End: 80680000
Hidden: No

Module Name: C:\Windows\system32\drivers\WDFLDR.SYS
Service Name: ---
Module Base: 80680000
Module End: 8068D000
Hidden: No

Module Name: C:\Windows\system32\drivers\acpi.sys
Service Name: ACPI
Module Base: 8068D000
Module End: 806D3000
Hidden: No

Module Name: C:\Windows\system32\drivers\WMILIB.SYS
Service Name: ---
Module Base: 806D3000
Module End: 806DC000
Hidden: No

Module Name: C:\Windows\system32\drivers\msisadrv.sys
Service Name: msisadrv
Module Base: 806DC000
Module End: 806E4000
Hidden: No

Module Name: C:\Windows\system32\drivers\pci.sys
Service Name: pci
Module Base: 806E4000
Module End: 8070B000
Hidden: No

Module Name: C:\Windows\System32\drivers\partmgr.sys
Service Name: partmgr
Module Base: 8070B000
Module End: 8071A000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\compbatt.sys
Service Name: Compbatt
Module Base: 8071A000
Module End: 8071D000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\BATTC.SYS
Service Name: BattC
Module Base: 8071D000
Module End: 80727000
Hidden: No

Module Name: C:\Windows\system32\drivers\volmgr.sys
Service Name: volmgr
Module Base: 80727000
Module End: 80736000
Hidden: No

Module Name: C:\Windows\System32\drivers\volmgrx.sys
Service Name: volmgrx
Module Base: 80736000
Module End: 80780000
Hidden: No

Module Name: C:\Windows\System32\drivers\mountmgr.sys
Service Name: MountMgr
Module Base: 80780000
Module End: 80790000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\iaStor.sys
Service Name: iaStor
Module Base: 82E0B000
Module End: 82EDB000
Hidden: No

Module Name: C:\Windows\system32\drivers\atapi.sys
Service Name: atapi
Module Base: 82EDB000
Module End: 82EE3000
Hidden: No

Module Name: C:\Windows\system32\drivers\ataport.SYS
Service Name: ---
Module Base: 82EE3000
Module End: 82F01000
Hidden: No

Module Name: C:\Windows\system32\drivers\msahci.sys
Service Name: msahci
Module Base: 82F01000
Module End: 82F0B000
Hidden: No

Module Name: C:\Windows\system32\drivers\PCIIDEX.SYS
Service Name: ---
Module Base: 82F0B000
Module End: 82F19000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\SCSIPORT.SYS
Service Name: ---
Module Base: 82F2D000
Module End: 82F53000
Hidden: No

Module Name: C:\Windows\system32\drivers\fltmgr.sys
Service Name: FltMgr
Module Base: 82F53000
Module End: 82F85000
Hidden: No

Module Name: C:\Windows\system32\drivers\fileinfo.sys
Service Name: FileInfo
Module Base: 82F85000
Module End: 82F95000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\lullaby.sys
Service Name: lullaby
Module Base: 82F95000
Module End: 82F9D000
Hidden: No

Module Name: C:\Windows\System32\Drivers\PxHelp20.sys
Service Name: PxHelp20
Module Base: 82F9D000
Module End: 82FA7000
Hidden: No

Module Name: C:\Windows\System32\Drivers\ksecdd.sys
Service Name: KSecDD
Module Base: 8AA00000
Module End: 8AA71000
Hidden: No

Module Name: C:\Windows\system32\drivers\ndis.sys
Service Name: NDIS
Module Base: 8AA71000
Module End: 8AB7C000
Hidden: No

Module Name: C:\Windows\system32\drivers\msrpc.sys
Service Name: MsRPC
Module Base: 8AB7C000
Module End: 8ABA7000
Hidden: No

Module Name: C:\Windows\system32\drivers\NETIO.SYS
Service Name: ---
Module Base: 8ABA7000
Module End: 8ABE1000
Hidden: No

Module Name: C:\Windows\System32\drivers\tcpip.sys
Service Name: Tcpip
Module Base: 8AC02000
Module End: 8ACEB000
Hidden: No

Module Name: C:\Windows\System32\drivers\fwpkclnt.sys
Service Name: ---
Module Base: 8ACEB000
Module End: 8AD06000
Hidden: No

Module Name: C:\Windows\System32\Drivers\Ntfs.sys
Service Name: Ntfs
Module Base: 8AE0C000
Module End: 8AF1B000
Hidden: No

Module Name: C:\Windows\system32\drivers\volsnap.sys
Service Name: volsnap
Module Base: 8AF1B000
Module End: 8AF54000
Hidden: No

Module Name: C:\Windows\System32\Drivers\spldr.sys
Service Name: spldr
Module Base: 8AF54000
Module End: 8AF5C000
Hidden: No

Module Name: C:\Windows\System32\Drivers\mup.sys
Service Name: Mup
Module Base: 8AF5C000
Module End: 8AF6B000
Hidden: No

Module Name: C:\Windows\System32\drivers\ecache.sys
Service Name: Ecache
Module Base: 8AF6B000
Module End: 8AF92000
Hidden: No

Module Name: C:\Windows\system32\drivers\disk.sys
Service Name: disk
Module Base: 8AF92000
Module End: 8AFA3000
Hidden: No

Module Name: C:\Windows\system32\drivers\CLASSPNP.SYS
Service Name: ---
Module Base: 8AFA3000
Module End: 8AFC4000
Hidden: No

Module Name: C:\Windows\system32\drivers\crcdisk.sys
Service Name: crcdisk
Module Base: 8AFC4000
Module End: 8AFCD000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\tunnel.sys
Service Name: tunnel
Module Base: 8AFDA000
Module End: 8AFE5000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\tunmp.sys
Service Name: tunmp
Module Base: 8AFE5000
Module End: 8AFEE000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\intelppm.sys
Service Name: intelppm
Module Base: 8AFEE000
Module End: 8AFFD000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\nvlddmkm.sys
Service Name: nvlddmkm
Module Base: 8EA03000
Module End: 8F4FD000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\nvBridge.kmd
Service Name: ---
Module Base: 8F4FD000
Module End: 8F4FF000
Hidden: No

Module Name: C:\Windows\System32\drivers\dxgkrnl.sys
Service Name: DXGKrnl
Module Base: 8F4FF000
Module End: 8F59E000
Hidden: No

Module Name: C:\Windows\System32\drivers\watchdog.sys
Service Name: ---
Module Base: 8F59E000
Module End: 8F5AB000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\usbuhci.sys
Service Name: usbuhci
Module Base: 8F5AB000
Module End: 8F5B6000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\USBPORT.SYS
Service Name: ---
Module Base: 8F5B6000
Module End: 8F5F4000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\usbehci.sys
Service Name: usbehci
Module Base: 8AD06000
Module End: 8AD15000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\HDAudBus.sys
Service Name: HDAudBus
Module Base: 8AD15000
Module End: 8AD27000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\NETw5v32.sys
Service Name: NETw5v32
Module Base: 8F60E000
Module End: 8F996000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\Rtlh86.sys
Service Name: RTL8169
Module Base: 8F996000
Module End: 8F9D1000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\ohci1394.sys
Service Name: ohci1394
Module Base: 8F9D1000
Module End: 8F9E1000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\1394BUS.SYS
Service Name: ---
Module Base: 8F9E1000
Module End: 8F9EF000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\sdbus.sys
Service Name: sdbus
Module Base: 8AD27000
Module End: 8AD41000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\rimmptsk.sys
Service Name: rimmptsk
Module Base: 8F9EF000
Module End: 8FA00000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\rimsptsk.sys
Service Name: rimsptsk
Module Base: 8AD41000
Module End: 8AD55000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\rixdptsk.sys
Service Name: rismxdp
Module Base: 8AD55000
Module End: 8ADA7000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\i8042prt.sys
Service Name: i8042prt
Module Base: 8ADA7000
Module End: 8ADBA000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\kbfiltr.sys
Service Name: kbfiltr
Module Base: 8F600000
Module End: 8F608000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\kbdclass.sys
Service Name: kbdclass
Module Base: 8F5F4000
Module End: 8F5FF000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\SynTP.sys
Service Name: SynTP
Module Base: 8ADBA000
Module End: 8ADE9000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\USBD.SYS
Service Name: ---
Module Base: 8F608000
Module End: 8F60A000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\mouclass.sys
Service Name: mouclass
Module Base: 8AE00000
Module End: 8AE0B000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\itecir.sys
Service Name: itecir
Module Base: 82FA7000
Module End: 82FFF000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\cdrom.sys
Service Name: cdrom
Module Base: 8ABE1000
Module End: 8ABF9000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
Service Name: GEARAspiWDM
Module Base: 8AFCD000
Module End: 8AFD7000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\CmBatt.sys
Service Name: CmBatt
Module Base: 8F60A000
Module End: 8F60E000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\ATKACPI.sys
Service Name: MTsensor
Module Base: 8ADE9000
Module End: 8ADF1000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\Epfwndis.sys
Service Name: Epfwndis
Module Base: 8ADF1000
Module End: 8ADFC000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\msiscsi.sys
Service Name: iScsiPrt
Module Base: 80790000
Module End: 807BE000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\storport.sys
Service Name: ---
Module Base: 807BE000
Module End: 807FF000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\TDI.SYS
Service Name: ---
Module Base: 82E00000
Module End: 82E0B000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\rasl2tp.sys
Service Name: Rasl2tp
Module Base: 805AB000
Module End: 805C2000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\ndistapi.sys
Service Name: NdisTapi
Module Base: 82F19000
Module End: 82F24000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\ndiswan.sys
Service Name: NdisWan
Module Base: 805C2000
Module End: 805E5000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\raspppoe.sys
Service Name: RasPppoe
Module Base: 805E5000
Module End: 805F4000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\raspptp.sys
Service Name: PptpMiniport
Module Base: 8FA00000
Module End: 8FA14000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\rassstp.sys
Service Name: RasSstp
Module Base: 8FA14000
Module End: 8FA29000
Hidden: No

Module Name: C:\Windows\System32\Drivers\pcouffin.sys
Service Name: pcouffin
Module Base: 8FA29000
Module End: 8FA35000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\termdd.sys
Service Name: TermDD
Module Base: 8FA35000
Module End: 8FA45000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\swenum.sys
Service Name: swenum
Module Base: 8FA45000
Module End: 8FA47000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\ks.sys
Service Name: ---
Module Base: 8FA47000
Module End: 8FA71000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\circlass.sys
Service Name: circlass
Module Base: 8FA71000
Module End: 8FA7F000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\mssmbios.sys
Service Name: mssmbios
Module Base: 8FA7F000
Module End: 8FA89000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\MarvinBus.sys
Service Name: MarvinBus
Module Base: 8FA89000
Module End: 8FAB7000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\umbus.sys
Service Name: umbus
Module Base: 8FAB7000
Module End: 8FAC4000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\usbhub.sys
Service Name: usbhub
Module Base: 8FAC4000
Module End: 8FAF8000
Hidden: No

Module Name: C:\Windows\System32\Drivers\NDProxy.SYS
Service Name: NDProxy
Module Base: 8FAF8000
Module End: 8FB09000
Hidden: No

Module Name: C:\Windows\system32\drivers\RTKVHDA.sys
Service Name: IntcAzAudAddService
Module Base: 91C02000
Module End: 91E0F000
Hidden: No

Module Name: C:\Windows\system32\drivers\portcls.sys
Service Name: ---
Module Base: 91E0F000
Module End: 91E3C000
Hidden: No

Module Name: C:\Windows\system32\drivers\drmk.sys
Service Name: ---
Module Base: 91E3C000
Module End: 91E61000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\AGRSM.sys
Service Name: AgereSoftModem
Module Base: 91E61000
Module End: 91F87000
Hidden: No

Module Name: C:\Windows\system32\drivers\modem.sys
Service Name: Modem
Module Base: 91F87000
Module End: 91F94000
Hidden: No

Module Name: C:\Windows\system32\drivers\nvhda32v.sys
Service Name: NVHDA
Module Base: 91F94000
Module End: 91FA7000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\hidir.sys
Service Name: HidIr
Module Base: 91FA7000
Module End: 91FB2000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\HIDCLASS.SYS
Service Name: ---
Module Base: 91FB2000
Module End: 91FC2000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\HIDPARSE.SYS
Service Name: ---
Module Base: 91FC2000
Module End: 91FC9000
Hidden: No

Module Name: C:\Windows\system32\drivers\MODEMCSA.sys
Service Name: MODEMCSA
Module Base: 91FC9000
Module End: 91FD3000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\kbdhid.sys
Service Name: kbdhid
Module Base: 91FD3000
Module End: 91FDC000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\mouhid.sys
Service Name: mouhid
Module Base: 91FDC000
Module End: 91FE4000
Hidden: No

Module Name: \??\C:\Windows\system32\drivers\SSHDRV76.sys
Service Name: SSHDRV76
Module Base: 8FB09000
Module End: 8FB39000
Hidden: No

Module Name: C:\Windows\System32\Drivers\Fs_Rec.SYS
Service Name: Fs_Rec
Module Base: 91FE4000
Module End: 91FED000
Hidden: No

Module Name: C:\Windows\System32\Drivers\Null.SYS
Service Name: Null
Module Base: 91FED000
Module End: 91FF4000
Hidden: No

Module Name: C:\Windows\System32\Drivers\Beep.SYS
Service Name: Beep
Module Base: 91FF4000
Module End: 91FFB000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\ehdrv.sys
Service Name: ehdrv
Module Base: 8FB39000
Module End: 8FB56000
Hidden: No

Module Name: \??\C:\Windows\system32\drivers\SBREdrv.sys
Service Name: SBRE
Module Base: 8FB56000
Module End: 8FB6C000
Hidden: No

Module Name: C:\Windows\System32\drivers\vga.sys
Service Name: vga
Module Base: 8FB6C000
Module End: 8FB78000
Hidden: No

Module Name: C:\Windows\System32\drivers\VIDEOPRT.SYS
Service Name: ---
Module Base: 8FB78000
Module End: 8FB99000
Hidden: No

Module Name: C:\Windows\System32\DRIVERS\RDPCDD.sys
Service Name: RDPCDD
Module Base: 8FB99000
Module End: 8FBA1000
Hidden: No

Module Name: C:\Windows\system32\drivers\rdpencdd.sys
Service Name: RDPENCDD
Module Base: 8FBA1000
Module End: 8FBA9000
Hidden: No

Module Name: C:\Windows\System32\Drivers\Msfs.SYS
Service Name: Msfs
Module Base: 8FBA9000
Module End: 8FBB4000
Hidden: No

Module Name: C:\Windows\System32\Drivers\Npfs.SYS
Service Name: Npfs
Module Base: 8FBB4000
Module End: 8FBC2000
Hidden: No

Module Name: C:\Windows\System32\DRIVERS\rasacd.sys
Service Name: RasAcd
Module Base: 8FBC2000
Module End: 8FBCB000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\tdx.sys
Service Name: tdx
Module Base: 8FBCB000
Module End: 8FBE1000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\smb.sys
Service Name: Smb
Module Base: 8FBE1000
Module End: 8FBF5000
Hidden: No

Module Name: C:\Windows\system32\drivers\afd.sys
Service Name: AFD
Module Base: 9260B000
Module End: 92653000
Hidden: No

Module Name: C:\Windows\System32\DRIVERS\netbt.sys
Service Name: netbt
Module Base: 92653000
Module End: 92685000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\pacer.sys
Service Name: PSched
Module Base: 92685000
Module End: 9269B000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\netbios.sys
Service Name: NetBIOS
Module Base: 9269B000
Module End: 926A9000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\wanarp.sys
Service Name: Wanarp
Module Base: 926A9000
Module End: 926BC000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\rdbss.sys
Service Name: rdbss
Module Base: 926BC000
Module End: 926F8000
Hidden: No

Module Name: C:\Windows\system32\drivers\nsiproxy.sys
Service Name: nsiproxy
Module Base: 926F8000
Module End: 92702000
Hidden: No

Module Name: C:\Windows\System32\Drivers\dfsc.sys
Service Name: DfsC
Module Base: 92708000
Module End: 9271F000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\ATSwpDrv.sys
Service Name: ATSWPDRV
Module Base: 9271F000
Module End: 92742000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\hidusb.sys
Service Name: HidUsb
Module Base: 92742000
Module End: 9274B000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\usbccgp.sys
Service Name: usbccgp
Module Base: 9274B000
Module End: 92762000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\snp2uvc.sys
Service Name: SNP2UVC
Module Base: 93A0B000
Module End: 93BBC000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\STREAM.SYS
Service Name: ---
Module Base: 93BBC000
Module End: 93BC9000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\sncduvc.SYS
Service Name: ---
Module Base: 93BC9000
Module End: 93BD0000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\cdfs.sys
Service Name: cdfs
Module Base: 93BD0000
Module End: 93BE6000
Hidden: No

Module Name: C:\Windows\System32\drivers\Dxapi.sys
Service Name: ---
Module Base: 93BF3000
Module End: 93BFD000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\monitor.sys
Service Name: monitor
Module Base: 92762000
Module End: 92771000
Hidden: No

Module Name: C:\Windows\system32\drivers\luafv.sys
Service Name: luafv
Module Base: 92771000
Module End: 9278C000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\eamon.sys
Service Name: eamon
Module Base: A4606000
Module End: A46C2000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\epfw.sys
Service Name: epfw
Module Base: A46C2000
Module End: A46E5000
Hidden: No

Module Name: C:\Windows\system32\drivers\spsys.sys
Service Name: ---
Module Base: A46E5000
Module End: A4794000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\lltdio.sys
Service Name: lltdio
Module Base: A4794000
Module End: A47A4000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\nwifi.sys
Service Name: NativeWifiP
Module Base: A47A4000
Module End: A47CE000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\ndisuio.sys
Service Name: Ndisuio
Module Base: A47CE000
Module End: A47D8000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\rspndr.sys
Service Name: rspndr
Module Base: A47D8000
Module End: A47EB000
Hidden: No

Module Name: \??\C:\Program Files\ATKGFNEX\ASMMAP.sys
Service Name: ASMMAP
Module Base: A47EB000
Module End: A47F2000
Hidden: No

Module Name: C:\Windows\system32\drivers\HTTP.sys
Service Name: HTTP
Module Base: 9278C000
Module End: 927F9000
Hidden: No

Module Name: C:\Windows\System32\DRIVERS\srvnet.sys
Service Name: srvnet
Module Base: A6C0A000
Module End: A6C27000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\bowser.sys
Service Name: bowser
Module Base: A6C27000
Module End: A6C40000
Hidden: No

Module Name: C:\Windows\System32\drivers\mpsdrv.sys
Service Name: mpsdrv
Module Base: A6C40000
Module End: A6C55000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\mrxsmb.sys
Service Name: mrxsmb
Module Base: A6C55000
Module End: A6C74000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\mrxsmb10.sys
Service Name: mrxsmb10
Module Base: A6C74000
Module End: A6CAD000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\mrxsmb20.sys
Service Name: mrxsmb20
Module Base: A6CAD000
Module End: A6CC5000
Hidden: No

Module Name: C:\Windows\System32\DRIVERS\srv2.sys
Service Name: srv2
Module Base: A6CC5000
Module End: A6CEC000
Hidden: No

Module Name: C:\Windows\System32\DRIVERS\srv.sys
Service Name: srv
Module Base: A6CEC000
Module End: A6D3A000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\epfwwfp.sys
Service Name: epfwwfp
Module Base: A6D3A000
Module End: A6D48000
Hidden: No

Module Name: \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys
Service Name: ghaio
Module Base: A6D48000
Module End: A6D4B000
Hidden: No

Module Name: C:\Windows\System32\Drivers\fastfat.SYS
Service Name: fastfat
Module Base: A6D4B000
Module End: A6D73000
Hidden: No

Module Name: C:\Windows\system32\drivers\peauth.sys
Service Name: PEAUTH
Module Base: A8A05000
Module End: A8AE3000
Hidden: No

Module Name: C:\Windows\System32\Drivers\secdrv.SYS
Service Name: secdrv
Module Base: A8AE3000
Module End: A8AED000
Hidden: No

Module Name: C:\Windows\System32\drivers\tcpipreg.sys
Service Name: tcpipreg
Module Base: A8AED000
Module End: A8AF9000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\ipnat.sys
Service Name: IPNAT
Module Base: A8AF9000
Module End: A8B1F000
Hidden: No

Module Name: \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys
Service Name: TuneUpUtilitiesDrv
Module Base: A8B1F000
Module End: A8B20000
Hidden: No

******************************************************************************************
******************************************************************************************
No SSDT Hooks found

******************************************************************************************
******************************************************************************************
No Kernel Hooks found

******************************************************************************************
******************************************************************************************
No IRP Hooks found

******************************************************************************************
******************************************************************************************
Ports:
Local Address: CIGI-PC:49100
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Windows\System32\svchost.exe
State: LISTENING

Local Address: CIGI-PC:27015
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
State: LISTENING

Local Address: CIGI-PC:5354
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Bonjour\mDNSResponder.exe
State: LISTENING

Local Address: CIGI-PC.MSHOME.NET:49171
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Windows\System32\alg.exe
State: LISTENING

Local Address: CIGI-PC.MSHOME.NET:NETBIOS-SSN
Remote Address: 0.0.0.0:0
Type: TCP
Process: System
State: LISTENING

Local Address: CIGI-PC:49156
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Windows\System32\services.exe
State: LISTENING

Local Address: CIGI-PC:49155
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Windows\System32\lsass.exe
State: LISTENING

Local Address: CIGI-PC:49154
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Windows\System32\svchost.exe
State: LISTENING

Local Address: CIGI-PC:49153
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Windows\System32\svchost.exe
State: LISTENING

Local Address: CIGI-PC:49152
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Windows\System32\wininit.exe
State: LISTENING

Local Address: CIGI-PC:31038
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
State: LISTENING

Local Address: CIGI-PC:10243
Remote Address: 0.0.0.0:0
Type: TCP
Process: System
State: LISTENING

Local Address: CIGI-PC:10058
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Windows\System32\lxczcoms.exe
State: LISTENING

Local Address: CIGI-PC:5357
Remote Address: 0.0.0.0:0
Type: TCP
Process: System
State: LISTENING

Local Address: CIGI-PC:ICSLAP
Remote Address: 0.0.0.0:0
Type: TCP
Process: System
State: LISTENING

Local Address: CIGI-PC:RTSP
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Windows Media Player\wmpnetwk.exe
State: LISTENING

Local Address: CIGI-PC:MICROSOFT-DS
Remote Address: 0.0.0.0:0
Type: TCP
Process: System
State: LISTENING

Local Address: CIGI-PC:EPMAP
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Windows\System32\svchost.exe
State: LISTENING

Local Address: CIGI-PC:64335
Remote Address: NA
Type: UDP
Process: C:\Program Files\Internet Explorer\iexplore.exe
State: NA

Local Address: CIGI-PC:60049
Remote Address: NA
Type: UDP
Process: C:\Program Files\Internet Explorer\iexplore.exe
State: NA

Local Address: CIGI-PC:57313
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:56028
Remote Address: NA
Type: UDP
Process: C:\Program Files\Internet Explorer\iexplore.exe
State: NA

Local Address: CIGI-PC:53364
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:49162
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:44301
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\PnkBstrA.exe
State: NA

Local Address: CIGI-PC:SSDP
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC.MSHOME.NET:53363
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC.MSHOME.NET:5353
Remote Address: NA
Type: UDP
Process: C:\Program Files\Bonjour\mDNSResponder.exe
State: NA

Local Address: CIGI-PC.MSHOME.NET:SSDP
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC.MSHOME.NET:138
Remote Address: NA
Type: UDP
Process: System
State: NA

Local Address: CIGI-PC.MSHOME.NET:NETBIOS-NS
Remote Address: NA
Type: UDP
Process: System
State: NA

Local Address: CIGI-PC:65254
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:65252
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:49556
Remote Address: NA
Type: UDP
Process: C:\Program Files\Bonjour\mDNSResponder.exe
State: NA

Local Address: CIGI-PC:49161
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:49154
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:49152
Remote Address: NA
Type: UDP
Process: C:\Program Files\Bonjour\mDNSResponder.exe
State: NA

Local Address: CIGI-PC:LLMNR
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:5005
Remote Address: NA
Type: UDP
Process: C:\Program Files\Windows Media Player\wmpnetwk.exe
State: NA

Local Address: CIGI-PC:5004
Remote Address: NA
Type: UDP
Process: C:\Program Files\Windows Media Player\wmpnetwk.exe
State: NA

Local Address: CIGI-PC:UPNP-DISCOVERY
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:UPNP-DISCOVERY
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:123
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:DOMAIN
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

******************************************************************************************
******************************************************************************************
Hidden files/folders:
Object: D:\Music\Scooter\Scooter-Discography\Scooter - 24 Carat Gold [2002]\09 - Call me manana.mp3
Status: Hidden

Object: D:\Music\Scooter\Scooter-Discography\Scooter - Encore\07 - Call Me Manana.mp3
Status: Hidden

Object: D:\System Volume Information\tracking.log
Status: Access denied

Object: C:\Program Files\Microsoft Office\Office12\1032\DataServices\+??µ????????????????????????µ????SQL.odc
Status: Hidden

Object: C:\Program Files\Microsoft Office\Office12\1032\DataServices\+??????? µ? ?? ??? ?????? ?????????? ????µ????.odc
Status: Hidden

Object: C:\Program Files\Microsoft Office\Office12\QUERIES\??????? ???µ???????????? ??????? ??? MSN MoneyCentral Investor.iqy
Status: Hidden

Object: C:\Program Files\Microsoft Office\Office12\QUERIES\??µ??µ?????? ?????µ??? ??? MSN MoneyCentral Investor.iqy
Status: Hidden

Object: C:\Program Files\Microsoft Office\Office12\QUERIES\??µ?? µ?????? ??? MSN MoneyCentral Investor.iqy
Status: Hidden

Object: C:\Program Files\Microsoft Office\Templates\1032\??????????_µ???????_???????????µ??.xltx
Status: Hidden

Object: C:\System Volume Information\DFSR
Status: Access denied

Object: C:\System Volume Information\MountPointManagerRemoteDatabase
Status: Access denied

Object: C:\System Volume Information\setup_9.0.0.722_21.04.2010_17-13drv.isw
Status: Access denied

Object: C:\System Volume Information\SPP
Status: Access denied

Object: C:\System Volume Information\SystemRestore
Status: Access denied

Object: C:\System Volume Information\tracking.log
Status: Access denied

Object: C:\System Volume Information\Windows Backup
Status: Access denied

Object: C:\System Volume Information\{1063563e-4bd9-11df-b2a4-00221584ee06}{3808876b-c176-4e48-b7ae-04046e6cc752}
Status: Access denied

Object: C:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752}
Status: Access denied

Object: C:\System Volume Information\{472d7255-4e1b-11df-a8ed-00221584ee06}{3808876b-c176-4e48-b7ae-04046e6cc752}
Status: Access denied

Object: C:\System Volume Information\{669f59f3-4e30-11df-948a-00221584ee06}{3808876b-c176-4e48-b7ae-04046e6cc752}
Status: Access denied

Object: C:\System Volume Information\{94e3a34a-4c79-11df-b14a-00221584ee06}{3808876b-c176-4e48-b7ae-04046e6cc752}
Status: Access denied

Object: C:\System Volume Information\{eb0f2048-4acd-11df-8afb-00221584ee06}{3808876b-c176-4e48-b7ae-04046e6cc752}
Status: Access denied

Object: C:\System Volume Information\{f6bdcc13-4aac-11df-9949-00221584ee06}{3808876b-c176-4e48-b7ae-04046e6cc752}
Status: Access denied

Object: C:\System Volume Information\{f6bdcc79-4aac-11df-9949-00221584ee06}{3808876b-c176-4e48-b7ae-04046e6cc752}
Status: Access denied

Object: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTDiagLog.etl
Status: Access denied

Object: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-Application.etl
Status: Access denied

Object: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventlog-Security.etl
Status: Access denied

Object: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-System.etl
Status: Access denied

Object: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTMsMpPsSession.etl
Status: Access denied

Re: Prosím o kontrolu logu - seká se Notebook

Napsal: 23 dub 2010 15:10
od motji
Měl jste ted zapnutý u toho skenu ten internet exporer?
Já ted musím od počítače, přijdu večer :)

Re: Prosím o kontrolu logu - seká se Notebook

Napsal: 23 dub 2010 18:03
od Cigi11
při nabýhání mi tam napíše: Lsdelete program not founf - swipping autocheck
ještě se mi zdá, když chci notebook restartovat, naskočí vypínání, jako obvykle, ale to trvá strašně dlouho, než se notebook restartuje, pak naběhne, ten Lsdelete ...
Jak už jsem psal, při poslouchání písniček nebo koukání na film se mi to na chvilku zastaví a o pár vteřin se to kousne, tím si myslím že to musí být někde v systému windows, spouštím to přes windows media player (vista).

nebyl jsem si jist, tak jsem pro jistotu udělal nový scan:

SysProt AntiRootkit v1.0.1.0
by swatkat

******************************************************************************************
******************************************************************************************

Process:
Name: [System Idle Process]
PID: 0
Hidden: No
Window Visible: No

Name: System
PID: 4
Hidden: No
Window Visible: No

Name: C:\Windows\System32\smss.exe
PID: 636
Hidden: No
Window Visible: No

Name: C:\Windows\System32\csrss.exe
PID: 716
Hidden: No
Window Visible: No

Name: C:\Windows\System32\wininit.exe
PID: 768
Hidden: No
Window Visible: No

Name: C:\Windows\System32\csrss.exe
PID: 788
Hidden: No
Window Visible: No

Name: C:\Windows\System32\services.exe
PID: 812
Hidden: No
Window Visible: No

Name: C:\Windows\System32\lsass.exe
PID: 828
Hidden: No
Window Visible: No

Name: C:\Windows\System32\lsm.exe
PID: 836
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 984
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1028
Hidden: No
Window Visible: No

Name: C:\Windows\System32\nvvsvc.exe
PID: 1056
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1084
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1136
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1176
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1212
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1232
Hidden: No
Window Visible: No

Name: C:\Windows\System32\audiodg.exe
PID: 1304
Hidden: No
Window Visible: No

Name: C:\Windows\System32\winlogon.exe
PID: 1336
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1360
Hidden: No
Window Visible: No

Name: C:\Windows\System32\SLsvc.exe
PID: 1376
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1416
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1544
Hidden: No
Window Visible: No

Name: C:\Program Files\ATK Hotkey\AsLdrSrv.exe
PID: 1664
Hidden: No
Window Visible: No

Name: C:\Program Files\ATKGFNEX\GFNEXSrv.exe
PID: 1680
Hidden: No
Window Visible: No

Name: C:\Windows\System32\taskeng.exe
PID: 1732
Hidden: No
Window Visible: No

Name: C:\Windows\System32\spoolsv.exe
PID: 1776
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 1816
Hidden: No
Window Visible: No

Name: C:\Windows\System32\agrsmsvc.exe
PID: 1996
Hidden: No
Window Visible: No

Name: C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PID: 2036
Hidden: No
Window Visible: No

Name: C:\Program Files\Bonjour\mDNSResponder.exe
PID: 432
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 440
Hidden: No
Window Visible: No

Name: C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
PID: 564
Hidden: No
Window Visible: No

Name: C:\Windows\System32\nvvsvc.exe
PID: 652
Hidden: No
Window Visible: No

Name: C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
PID: 792
Hidden: No
Window Visible: No

Name: C:\Program Files\ESET\ESET Smart Security\ekrn.exe
PID: 1552
Hidden: No
Window Visible: No

Name: C:\Program Files\Common Files\LightScribe\LSSrvc.exe
PID: 2204
Hidden: No
Window Visible: No

Name: C:\Windows\System32\lxczcoms.exe
PID: 2260
Hidden: No
Window Visible: No

Name: C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PID: 2296
Hidden: No
Window Visible: No

Name: C:\Windows\System32\PnkBstrA.exe
PID: 2424
Hidden: No
Window Visible: No

Name: C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
PID: 2444
Hidden: No
Window Visible: No

Name: C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
PID: 2488
Hidden: No
Window Visible: No

Name: C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
PID: 2520
Hidden: No
Window Visible: No

Name: C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
PID: 2536
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 2568
Hidden: No
Window Visible: No

Name: C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
PID: 2604
Hidden: No
Window Visible: No

Name: C:\Windows\System32\svchost.exe
PID: 2636
Hidden: No
Window Visible: No

Name: C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
PID: 2652
Hidden: No
Window Visible: No

Name: C:\Windows\System32\SearchIndexer.exe
PID: 2732
Hidden: No
Window Visible: No

Name: C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
PID: 3016
Hidden: No
Window Visible: No

Name: C:\Windows\System32\alg.exe
PID: 3500
Hidden: No
Window Visible: No

Name: C:\Windows\System32\taskeng.exe
PID: 3692
Hidden: No
Window Visible: No

Name: C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
PID: 3772
Hidden: No
Window Visible: No

Name: C:\Windows\System32\dwm.exe
PID: 3804
Hidden: No
Window Visible: No

Name: C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\asghost.exe
PID: 3868
Hidden: No
Window Visible: No

Name: C:\Program Files\ASUS\ASUS Live Update\ALU.exe
PID: 3920
Hidden: No
Window Visible: Yes

Name: C:\Windows\explorer.exe
PID: 4008
Hidden: No
Window Visible: No

Name: C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
PID: 4016
Hidden: No
Window Visible: No

Name: C:\Program Files\ATK Hotkey\HControl.exe
PID: 2392
Hidden: No
Window Visible: No

Name: C:\Program Files\ATK Hotkey\MsgTranAgt.exe
PID: 2588
Hidden: No
Window Visible: No

Name: C:\Program Files\Wireless Console 2\wcourier.exe
PID: 2852
Hidden: No
Window Visible: No

Name: C:\Program Files\P4G\BatteryLife.exe
PID: 2976
Hidden: No
Window Visible: No

Name: C:\Program Files\ASUS\Splendid\ACMON.exe
PID: 2116
Hidden: No
Window Visible: No

Name: C:\Program Files\ASUS\ASUS CopyProtect\ASPG.exe
PID: 1640
Hidden: No
Window Visible: No

Name: C:\Windows\System32\ACEngSvr.exe
PID: 760
Hidden: No
Window Visible: No

Name: C:\Program Files\ATK Hotkey\ATKOSD.exe
PID: 3848
Hidden: No
Window Visible: No

Name: C:\Program Files\ATK Hotkey\KBFiltr.exe
PID: 3928
Hidden: No
Window Visible: No

Name: C:\Program Files\ATK Hotkey\WDC.exe
PID: 3244
Hidden: No
Window Visible: No

Name: C:\Program Files\ATKOSD2\ATKOSD2.exe
PID: 1008
Hidden: No
Window Visible: No

Name: C:\Windows\RtHDVCpl.exe
PID: 3964
Hidden: No
Window Visible: No

Name: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
PID: 3416
Hidden: No
Window Visible: No

Name: C:\Program Files\ASUS\ATK Media\DMedia.exe
PID: 2800
Hidden: No
Window Visible: No

Name: C:\Windows\AsScrPro.exe
PID: 2844
Hidden: No
Window Visible: No

Name: C:\Program Files\ESET\ESET Smart Security\egui.exe
PID: 3988
Hidden: No
Window Visible: No

Name: C:\Program Files\Synaptics\SynTP\SynAsus.exe
PID: 1296
Hidden: No
Window Visible: No

Name: C:\Program Files\RocketDock\RocketDock.exe
PID: 628
Hidden: No
Window Visible: Yes

Name: C:\Program Files\Windows Media Player\wmpnscfg.exe
PID: 3104
Hidden: No
Window Visible: No

Name: C:\Program Files\Windows Media Player\wmpnetwk.exe
PID: 3284
Hidden: No
Window Visible: No

Name: C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
PID: 4380
Hidden: No
Window Visible: No

Name: C:\Program Files\Internet Explorer\iexplore.exe
PID: 5040
Hidden: No
Window Visible: No

Name: C:\Program Files\Internet Explorer\iexplore.exe
PID: 5228
Hidden: No
Window Visible: No

Name: C:\Windows\System32\wbem\WmiPrvSE.exe
PID: 2880
Hidden: No
Window Visible: No

Name: C:\Users\Cigi\Desktop\SysProt\SysProt.exe
PID: 3420
Hidden: No
Window Visible: Yes

******************************************************************************************
******************************************************************************************
Kernel Modules:
Module Name: \??\C:\Users\Cigi\Desktop\SysProt\SysProtDrv.sys
Service Name: SysProtDrv.sys
Module Base: A9B7B000
Module End: A9B86000
Hidden: No

Module Name: C:\Windows\system32\ntkrnlpa.exe
Service Name: ---
Module Base: 82807000
Module End: 82BC0000
Hidden: No

Module Name: C:\Windows\system32\hal.dll
Service Name: ---
Module Base: 82BC0000
Module End: 82BF3000
Hidden: No

Module Name: C:\Windows\system32\kdcom.dll
Service Name: ---
Module Base: 80400000
Module End: 80408000
Hidden: No

Module Name: C:\Windows\system32\mcupdate_GenuineIntel.dll
Service Name: ---
Module Base: 80408000
Module End: 80468000
Hidden: No

Module Name: C:\Windows\system32\PSHED.dll
Service Name: ---
Module Base: 80468000
Module End: 80479000
Hidden: No

Module Name: C:\Windows\system32\BOOTVID.dll
Service Name: ---
Module Base: 80479000
Module End: 80481000
Hidden: No

Module Name: C:\Windows\system32\CLFS.SYS
Service Name: CLFS
Module Base: 80481000
Module End: 804C2000
Hidden: No

Module Name: C:\Windows\system32\CI.dll
Service Name: ---
Module Base: 804C2000
Module End: 805A2000
Hidden: No

Module Name: C:\Windows\system32\drivers\Wdf01000.sys
Service Name: Wdf01000
Module Base: 80600000
Module End: 8067C000
Hidden: No

Module Name: C:\Windows\system32\drivers\WDFLDR.SYS
Service Name: ---
Module Base: 8067C000
Module End: 80689000
Hidden: No

Module Name: C:\Windows\system32\drivers\acpi.sys
Service Name: ACPI
Module Base: 80689000
Module End: 806CF000
Hidden: No

Module Name: C:\Windows\system32\drivers\WMILIB.SYS
Service Name: ---
Module Base: 806CF000
Module End: 806D8000
Hidden: No

Module Name: C:\Windows\system32\drivers\msisadrv.sys
Service Name: msisadrv
Module Base: 806D8000
Module End: 806E0000
Hidden: No

Module Name: C:\Windows\system32\drivers\pci.sys
Service Name: pci
Module Base: 806E0000
Module End: 80707000
Hidden: No

Module Name: C:\Windows\System32\drivers\partmgr.sys
Service Name: partmgr
Module Base: 80707000
Module End: 80716000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\compbatt.sys
Service Name: Compbatt
Module Base: 80716000
Module End: 80719000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\BATTC.SYS
Service Name: BattC
Module Base: 80719000
Module End: 80723000
Hidden: No

Module Name: C:\Windows\system32\drivers\volmgr.sys
Service Name: volmgr
Module Base: 80723000
Module End: 80732000
Hidden: No

Module Name: C:\Windows\System32\drivers\volmgrx.sys
Service Name: volmgrx
Module Base: 80732000
Module End: 8077C000
Hidden: No

Module Name: C:\Windows\System32\drivers\mountmgr.sys
Service Name: MountMgr
Module Base: 8077C000
Module End: 8078C000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\iaStor.sys
Service Name: iaStor
Module Base: 82E0A000
Module End: 82EDA000
Hidden: No

Module Name: C:\Windows\system32\drivers\atapi.sys
Service Name: atapi
Module Base: 82EDA000
Module End: 82EE2000
Hidden: No

Module Name: C:\Windows\system32\drivers\ataport.SYS
Service Name: ---
Module Base: 82EE2000
Module End: 82F00000
Hidden: No

Module Name: C:\Windows\system32\drivers\msahci.sys
Service Name: msahci
Module Base: 82F00000
Module End: 82F0A000
Hidden: No

Module Name: C:\Windows\system32\drivers\PCIIDEX.SYS
Service Name: ---
Module Base: 82F0A000
Module End: 82F18000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\SCSIPORT.SYS
Service Name: ---
Module Base: 82F2C000
Module End: 82F52000
Hidden: No

Module Name: C:\Windows\system32\drivers\fltmgr.sys
Service Name: FltMgr
Module Base: 82F52000
Module End: 82F84000
Hidden: No

Module Name: C:\Windows\system32\drivers\fileinfo.sys
Service Name: FileInfo
Module Base: 82F84000
Module End: 82F94000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\lullaby.sys
Service Name: lullaby
Module Base: 82F94000
Module End: 82F9C000
Hidden: No

Module Name: C:\Windows\System32\Drivers\PxHelp20.sys
Service Name: PxHelp20
Module Base: 82F9C000
Module End: 82FA6000
Hidden: No

Module Name: C:\Windows\System32\Drivers\ksecdd.sys
Service Name: KSecDD
Module Base: 8078C000
Module End: 807FD000
Hidden: No

Module Name: C:\Windows\system32\drivers\ndis.sys
Service Name: NDIS
Module Base: 8AA0C000
Module End: 8AB17000
Hidden: No

Module Name: C:\Windows\system32\drivers\msrpc.sys
Service Name: MsRPC
Module Base: 8AB17000
Module End: 8AB42000
Hidden: No

Module Name: C:\Windows\system32\drivers\NETIO.SYS
Service Name: ---
Module Base: 8AB42000
Module End: 8AB7C000
Hidden: No

Module Name: C:\Windows\System32\drivers\tcpip.sys
Service Name: Tcpip
Module Base: 8AC00000
Module End: 8ACE9000
Hidden: No

Module Name: C:\Windows\System32\drivers\fwpkclnt.sys
Service Name: ---
Module Base: 8ACE9000
Module End: 8AD04000
Hidden: No

Module Name: C:\Windows\System32\Drivers\Ntfs.sys
Service Name: Ntfs
Module Base: 8AE0F000
Module End: 8AF1E000
Hidden: No

Module Name: C:\Windows\system32\drivers\volsnap.sys
Service Name: volsnap
Module Base: 8AF1E000
Module End: 8AF57000
Hidden: No

Module Name: C:\Windows\System32\Drivers\spldr.sys
Service Name: spldr
Module Base: 8AF57000
Module End: 8AF5F000
Hidden: No

Module Name: C:\Windows\System32\Drivers\mup.sys
Service Name: Mup
Module Base: 8AF5F000
Module End: 8AF6E000
Hidden: No

Module Name: C:\Windows\System32\drivers\ecache.sys
Service Name: Ecache
Module Base: 8AF6E000
Module End: 8AF95000
Hidden: No

Module Name: C:\Windows\system32\drivers\disk.sys
Service Name: disk
Module Base: 8AF95000
Module End: 8AFA6000
Hidden: No

Module Name: C:\Windows\system32\drivers\CLASSPNP.SYS
Service Name: ---
Module Base: 8AFA6000
Module End: 8AFC7000
Hidden: No

Module Name: C:\Windows\system32\drivers\crcdisk.sys
Service Name: crcdisk
Module Base: 8AFC7000
Module End: 8AFD0000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\tunnel.sys
Service Name: tunnel
Module Base: 8AFDD000
Module End: 8AFE8000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\tunmp.sys
Service Name: tunmp
Module Base: 8AFE8000
Module End: 8AFF1000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\intelppm.sys
Service Name: intelppm
Module Base: 8AFF1000
Module End: 8B000000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\nvlddmkm.sys
Service Name: nvlddmkm
Module Base: 8F203000
Module End: 8FCFD000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\nvBridge.kmd
Service Name: ---
Module Base: 8FCFD000
Module End: 8FCFF000
Hidden: No

Module Name: C:\Windows\System32\drivers\dxgkrnl.sys
Service Name: DXGKrnl
Module Base: 8FCFF000
Module End: 8FD9E000
Hidden: No

Module Name: C:\Windows\System32\drivers\watchdog.sys
Service Name: ---
Module Base: 8FD9E000
Module End: 8FDAB000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\usbuhci.sys
Service Name: usbuhci
Module Base: 8FDAB000
Module End: 8FDB6000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\USBPORT.SYS
Service Name: ---
Module Base: 8FDB6000
Module End: 8FDF4000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\usbehci.sys
Service Name: usbehci
Module Base: 8AE00000
Module End: 8AE0F000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\HDAudBus.sys
Service Name: HDAudBus
Module Base: 8AD04000
Module End: 8AD16000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\NETw5v32.sys
Service Name: NETw5v32
Module Base: 8EA01000
Module End: 8ED89000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\Rtlh86.sys
Service Name: RTL8169
Module Base: 8ED89000
Module End: 8EDC4000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\ohci1394.sys
Service Name: ohci1394
Module Base: 8EDC4000
Module End: 8EDD4000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\1394BUS.SYS
Service Name: ---
Module Base: 8EDD4000
Module End: 8EDE2000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\sdbus.sys
Service Name: sdbus
Module Base: 8EDE2000
Module End: 8EDFC000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\rimmptsk.sys
Service Name: rimmptsk
Module Base: 8AD16000
Module End: 8AD27000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\rimsptsk.sys
Service Name: rimsptsk
Module Base: 8AD27000
Module End: 8AD3B000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\rixdptsk.sys
Service Name: rismxdp
Module Base: 8AD3B000
Module End: 8AD8D000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\i8042prt.sys
Service Name: i8042prt
Module Base: 8AD8D000
Module End: 8ADA0000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\kbfiltr.sys
Service Name: kbfiltr
Module Base: 8FDF4000
Module End: 8FDFC000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\kbdclass.sys
Service Name: kbdclass
Module Base: 8AFD0000
Module End: 8AFDB000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\SynTP.sys
Service Name: SynTP
Module Base: 8ADA0000
Module End: 8ADCF000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\USBD.SYS
Service Name: ---
Module Base: 8EDFC000
Module End: 8EDFE000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\mouclass.sys
Service Name: mouclass
Module Base: 8ADCF000
Module End: 8ADDA000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\itecir.sys
Service Name: itecir
Module Base: 8AB7C000
Module End: 8ABD4000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\cdrom.sys
Service Name: cdrom
Module Base: 8ADDA000
Module End: 8ADF2000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
Service Name: GEARAspiWDM
Module Base: 8ADF2000
Module End: 8ADFC000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\CmBatt.sys
Service Name: CmBatt
Module Base: 8FDFC000
Module End: 8FE00000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\ATKACPI.sys
Service Name: MTsensor
Module Base: 8ABD4000
Module End: 8ABDC000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\Epfwndis.sys
Service Name: Epfwndis
Module Base: 8ABDC000
Module End: 8ABE7000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\msiscsi.sys
Service Name: iScsiPrt
Module Base: 82FA6000
Module End: 82FD4000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\storport.sys
Service Name: ---
Module Base: 805A2000
Module End: 805E3000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\TDI.SYS
Service Name: ---
Module Base: 8ABE7000
Module End: 8ABF2000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\rasl2tp.sys
Service Name: Rasl2tp
Module Base: 82FD4000
Module End: 82FEB000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\ndistapi.sys
Service Name: NdisTapi
Module Base: 8ABF2000
Module End: 8ABFD000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\ndiswan.sys
Service Name: NdisWan
Module Base: 8FE0E000
Module End: 8FE31000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\raspppoe.sys
Service Name: RasPppoe
Module Base: 8FE31000
Module End: 8FE40000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\raspptp.sys
Service Name: PptpMiniport
Module Base: 8FE40000
Module End: 8FE54000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\rassstp.sys
Service Name: RasSstp
Module Base: 8FE54000
Module End: 8FE69000
Hidden: No

Module Name: C:\Windows\System32\Drivers\pcouffin.sys
Service Name: pcouffin
Module Base: 8FE69000
Module End: 8FE75000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\termdd.sys
Service Name: TermDD
Module Base: 8FE75000
Module End: 8FE85000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\swenum.sys
Service Name: swenum
Module Base: 8FE85000
Module End: 8FE87000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\ks.sys
Service Name: ---
Module Base: 8FE87000
Module End: 8FEB1000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\circlass.sys
Service Name: circlass
Module Base: 8FEB1000
Module End: 8FEBF000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\mssmbios.sys
Service Name: mssmbios
Module Base: 8FEBF000
Module End: 8FEC9000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\MarvinBus.sys
Service Name: MarvinBus
Module Base: 8FEC9000
Module End: 8FEF7000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\umbus.sys
Service Name: umbus
Module Base: 8FEF7000
Module End: 8FF04000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\usbhub.sys
Service Name: usbhub
Module Base: 8FF04000
Module End: 8FF38000
Hidden: No

Module Name: C:\Windows\System32\Drivers\NDProxy.SYS
Service Name: NDProxy
Module Base: 8FF38000
Module End: 8FF49000
Hidden: No

Module Name: C:\Windows\system32\drivers\RTKVHDA.sys
Service Name: IntcAzAudAddService
Module Base: 91E01000
Module End: 9200E000
Hidden: No

Module Name: C:\Windows\system32\drivers\portcls.sys
Service Name: ---
Module Base: 9200E000
Module End: 9203B000
Hidden: No

Module Name: C:\Windows\system32\drivers\drmk.sys
Service Name: ---
Module Base: 9203B000
Module End: 92060000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\AGRSM.sys
Service Name: AgereSoftModem
Module Base: 92060000
Module End: 92186000
Hidden: No

Module Name: C:\Windows\system32\drivers\modem.sys
Service Name: Modem
Module Base: 92186000
Module End: 92193000
Hidden: No

Module Name: C:\Windows\system32\drivers\nvhda32v.sys
Service Name: NVHDA
Module Base: 92193000
Module End: 921A6000
Hidden: No

Module Name: C:\Windows\system32\drivers\MODEMCSA.sys
Service Name: MODEMCSA
Module Base: 921A6000
Module End: 921B0000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\hidir.sys
Service Name: HidIr
Module Base: 921B0000
Module End: 921BB000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\HIDCLASS.SYS
Service Name: ---
Module Base: 921BB000
Module End: 921CB000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\HIDPARSE.SYS
Service Name: ---
Module Base: 921CB000
Module End: 921D2000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\kbdhid.sys
Service Name: kbdhid
Module Base: 921D2000
Module End: 921DB000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\mouhid.sys
Service Name: mouhid
Module Base: 921DB000
Module End: 921E3000
Hidden: No

Module Name: \??\C:\Windows\system32\drivers\SSHDRV76.sys
Service Name: SSHDRV76
Module Base: 8FF49000
Module End: 8FF79000
Hidden: No

Module Name: C:\Windows\System32\Drivers\Fs_Rec.SYS
Service Name: Fs_Rec
Module Base: 921E3000
Module End: 921EC000
Hidden: No

Module Name: C:\Windows\System32\Drivers\Null.SYS
Service Name: Null
Module Base: 921EC000
Module End: 921F3000
Hidden: No

Module Name: C:\Windows\System32\Drivers\Beep.SYS
Service Name: Beep
Module Base: 921F3000
Module End: 921FA000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\ehdrv.sys
Service Name: ehdrv
Module Base: 8FF79000
Module End: 8FF96000
Hidden: No

Module Name: \??\C:\Windows\system32\drivers\SBREdrv.sys
Service Name: SBRE
Module Base: 8FF96000
Module End: 8FFAC000
Hidden: No

Module Name: C:\Windows\System32\drivers\vga.sys
Service Name: vga
Module Base: 8FFAC000
Module End: 8FFB8000
Hidden: No

Module Name: C:\Windows\System32\drivers\VIDEOPRT.SYS
Service Name: ---
Module Base: 8FFB8000
Module End: 8FFD9000
Hidden: No

Module Name: C:\Windows\System32\DRIVERS\RDPCDD.sys
Service Name: RDPCDD
Module Base: 8FFD9000
Module End: 8FFE1000
Hidden: No

Module Name: C:\Windows\system32\drivers\rdpencdd.sys
Service Name: RDPENCDD
Module Base: 8FFE1000
Module End: 8FFE9000
Hidden: No

Module Name: C:\Windows\System32\Drivers\Msfs.SYS
Service Name: Msfs
Module Base: 8FFE9000
Module End: 8FFF4000
Hidden: No

Module Name: C:\Windows\System32\Drivers\Npfs.SYS
Service Name: Npfs
Module Base: 8FE00000
Module End: 8FE0E000
Hidden: No

Module Name: C:\Windows\System32\DRIVERS\rasacd.sys
Service Name: RasAcd
Module Base: 8FFF4000
Module End: 8FFFD000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\tdx.sys
Service Name: tdx
Module Base: 805E3000
Module End: 805F9000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\smb.sys
Service Name: Smb
Module Base: 82FEB000
Module End: 82FFF000
Hidden: No

Module Name: C:\Windows\system32\drivers\afd.sys
Service Name: AFD
Module Base: 92A04000
Module End: 92A4C000
Hidden: No

Module Name: C:\Windows\System32\DRIVERS\netbt.sys
Service Name: netbt
Module Base: 92A4C000
Module End: 92A7E000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\pacer.sys
Service Name: PSched
Module Base: 92A7E000
Module End: 92A94000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\netbios.sys
Service Name: NetBIOS
Module Base: 92A94000
Module End: 92AA2000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\wanarp.sys
Service Name: Wanarp
Module Base: 92AA2000
Module End: 92AB5000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\rdbss.sys
Service Name: rdbss
Module Base: 92AB5000
Module End: 92AF1000
Hidden: No

Module Name: C:\Windows\system32\drivers\nsiproxy.sys
Service Name: nsiproxy
Module Base: 92AF1000
Module End: 92AFB000
Hidden: No

Module Name: C:\Windows\System32\Drivers\dfsc.sys
Service Name: DfsC
Module Base: 92B01000
Module End: 92B18000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\ATSwpDrv.sys
Service Name: ATSWPDRV
Module Base: 92B18000
Module End: 92B3B000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\hidusb.sys
Service Name: HidUsb
Module Base: 92B3B000
Module End: 92B44000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\usbccgp.sys
Service Name: usbccgp
Module Base: 92B44000
Module End: 92B5B000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\snp2uvc.sys
Service Name: SNP2UVC
Module Base: 93E0F000
Module End: 93FC0000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\STREAM.SYS
Service Name: ---
Module Base: 93FC0000
Module End: 93FCD000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\sncduvc.SYS
Service Name: ---
Module Base: 93FCD000
Module End: 93FD4000
Hidden: No

Module Name: C:\Windows\System32\drivers\Dxapi.sys
Service Name: ---
Module Base: 93FE1000
Module End: 93FEB000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\monitor.sys
Service Name: monitor
Module Base: 93FEB000
Module End: 93FFA000
Hidden: No

Module Name: C:\Windows\system32\drivers\luafv.sys
Service Name: luafv
Module Base: 92B5B000
Module End: 92B76000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\eamon.sys
Service Name: eamon
Module Base: A4E01000
Module End: A4EBD000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\epfw.sys
Service Name: epfw
Module Base: A4EBD000
Module End: A4EE0000
Hidden: No

Module Name: C:\Windows\system32\drivers\spsys.sys
Service Name: ---
Module Base: A4EE0000
Module End: A4F8F000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\lltdio.sys
Service Name: lltdio
Module Base: A4F8F000
Module End: A4F9F000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\nwifi.sys
Service Name: NativeWifiP
Module Base: A4F9F000
Module End: A4FC9000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\ndisuio.sys
Service Name: Ndisuio
Module Base: A4FC9000
Module End: A4FD3000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\rspndr.sys
Service Name: rspndr
Module Base: A4FD3000
Module End: A4FE6000
Hidden: No

Module Name: \??\C:\Program Files\ATKGFNEX\ASMMAP.sys
Service Name: ASMMAP
Module Base: A4FE6000
Module End: A4FED000
Hidden: No

Module Name: C:\Windows\system32\drivers\HTTP.sys
Service Name: HTTP
Module Base: 92B76000
Module End: 92BE3000
Hidden: No

Module Name: C:\Windows\System32\DRIVERS\srvnet.sys
Service Name: srvnet
Module Base: 92BE3000
Module End: 92C00000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\bowser.sys
Service Name: bowser
Module Base: A6C0F000
Module End: A6C28000
Hidden: No

Module Name: C:\Windows\System32\drivers\mpsdrv.sys
Service Name: mpsdrv
Module Base: A6C28000
Module End: A6C3D000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\mrxsmb.sys
Service Name: mrxsmb
Module Base: A6C3D000
Module End: A6C5C000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\mrxsmb10.sys
Service Name: mrxsmb10
Module Base: A6C5C000
Module End: A6C95000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\mrxsmb20.sys
Service Name: mrxsmb20
Module Base: A6C95000
Module End: A6CAD000
Hidden: No

Module Name: C:\Windows\System32\DRIVERS\srv2.sys
Service Name: srv2
Module Base: A6CAD000
Module End: A6CD4000
Hidden: No

Module Name: C:\Windows\System32\DRIVERS\srv.sys
Service Name: srv
Module Base: A6CD4000
Module End: A6D22000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\epfwwfp.sys
Service Name: epfwwfp
Module Base: A6D22000
Module End: A6D30000
Hidden: No

Module Name: \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys
Service Name: ghaio
Module Base: A6D30000
Module End: A6D33000
Hidden: No

Module Name: C:\Windows\system32\drivers\peauth.sys
Service Name: PEAUTH
Module Base: A9A0A000
Module End: A9AE8000
Hidden: No

Module Name: C:\Windows\System32\Drivers\fastfat.SYS
Service Name: fastfat
Module Base: A9AE8000
Module End: A9B10000
Hidden: No

Module Name: C:\Windows\System32\Drivers\secdrv.SYS
Service Name: secdrv
Module Base: A9B10000
Module End: A9B1A000
Hidden: No

Module Name: C:\Windows\System32\drivers\tcpipreg.sys
Service Name: tcpipreg
Module Base: A9B1A000
Module End: A9B26000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\ipnat.sys
Service Name: IPNAT
Module Base: A9B26000
Module End: A9B4C000
Hidden: No

Module Name: \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys
Service Name: TuneUpUtilitiesDrv
Module Base: A9B4C000
Module End: A9B4D000
Hidden: No

Module Name: C:\Windows\system32\DRIVERS\cdfs.sys
Service Name: cdfs
Module Base: A9B4D000
Module End: A9B63000
Hidden: No

******************************************************************************************
******************************************************************************************
No SSDT Hooks found

******************************************************************************************
******************************************************************************************
No Kernel Hooks found

******************************************************************************************
******************************************************************************************
No IRP Hooks found

******************************************************************************************
******************************************************************************************
Ports:
Local Address: CIGI-PC:49100
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Windows\System32\svchost.exe
State: LISTENING

Local Address: CIGI-PC:27015
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
State: LISTENING

Local Address: CIGI-PC:5354
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Bonjour\mDNSResponder.exe
State: LISTENING

Local Address: CIGI-PC.MSHOME.NET:49159
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Windows\System32\alg.exe
State: LISTENING

Local Address: CIGI-PC.MSHOME.NET:NETBIOS-SSN
Remote Address: 0.0.0.0:0
Type: TCP
Process: System
State: LISTENING

Local Address: CIGI-PC:49156
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Windows\System32\services.exe
State: LISTENING

Local Address: CIGI-PC:49155
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Windows\System32\lsass.exe
State: LISTENING

Local Address: CIGI-PC:49154
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Windows\System32\svchost.exe
State: LISTENING

Local Address: CIGI-PC:49153
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Windows\System32\svchost.exe
State: LISTENING

Local Address: CIGI-PC:49152
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Windows\System32\wininit.exe
State: LISTENING

Local Address: CIGI-PC:31038
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
State: LISTENING

Local Address: CIGI-PC:10243
Remote Address: 0.0.0.0:0
Type: TCP
Process: System
State: LISTENING

Local Address: CIGI-PC:10058
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Windows\System32\lxczcoms.exe
State: LISTENING

Local Address: CIGI-PC:5357
Remote Address: 0.0.0.0:0
Type: TCP
Process: System
State: LISTENING

Local Address: CIGI-PC:ICSLAP
Remote Address: 0.0.0.0:0
Type: TCP
Process: System
State: LISTENING

Local Address: CIGI-PC:RTSP
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Windows Media Player\wmpnetwk.exe
State: LISTENING

Local Address: CIGI-PC:MICROSOFT-DS
Remote Address: 0.0.0.0:0
Type: TCP
Process: System
State: LISTENING

Local Address: CIGI-PC:EPMAP
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Windows\System32\svchost.exe
State: LISTENING

Local Address: CIGI-PC:57933
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:56246
Remote Address: NA
Type: UDP
Process: C:\Program Files\Internet Explorer\iexplore.exe
State: NA

Local Address: CIGI-PC:55898
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:50484
Remote Address: NA
Type: UDP
Process: C:\Program Files\Internet Explorer\iexplore.exe
State: NA

Local Address: CIGI-PC:49162
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:44301
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\PnkBstrA.exe
State: NA

Local Address: CIGI-PC:SSDP
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC.MSHOME.NET:57932
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC.MSHOME.NET:5353
Remote Address: NA
Type: UDP
Process: C:\Program Files\Bonjour\mDNSResponder.exe
State: NA

Local Address: CIGI-PC.MSHOME.NET:SSDP
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC.MSHOME.NET:138
Remote Address: NA
Type: UDP
Process: System
State: NA

Local Address: CIGI-PC.MSHOME.NET:NETBIOS-NS
Remote Address: NA
Type: UDP
Process: System
State: NA

Local Address: CIGI-PC:64549
Remote Address: NA
Type: UDP
Process: C:\Program Files\Bonjour\mDNSResponder.exe
State: NA

Local Address: CIGI-PC:55473
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:55471
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:49161
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:49154
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:49152
Remote Address: NA
Type: UDP
Process: C:\Program Files\Bonjour\mDNSResponder.exe
State: NA

Local Address: CIGI-PC:LLMNR
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:5005
Remote Address: NA
Type: UDP
Process: C:\Program Files\Windows Media Player\wmpnetwk.exe
State: NA

Local Address: CIGI-PC:5004
Remote Address: NA
Type: UDP
Process: C:\Program Files\Windows Media Player\wmpnetwk.exe
State: NA

Local Address: CIGI-PC:UPNP-DISCOVERY
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:UPNP-DISCOVERY
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:123
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

Local Address: CIGI-PC:DOMAIN
Remote Address: NA
Type: UDP
Process: C:\Windows\System32\svchost.exe
State: NA

******************************************************************************************
******************************************************************************************
Hidden files/folders:
Object: D:\Music\Scooter\Scooter-Discography\Scooter - 24 Carat Gold [2002]\09 - Call me manana.mp3
Status: Hidden

Object: D:\Music\Scooter\Scooter-Discography\Scooter - Encore\07 - Call Me Manana.mp3
Status: Hidden

Object: D:\System Volume Information\tracking.log
Status: Access denied

Object: C:\Program Files\Microsoft Office\Office12\1032\DataServices\+??µ????????????????????????µ????SQL.odc
Status: Hidden

Object: C:\Program Files\Microsoft Office\Office12\1032\DataServices\+??????? µ? ?? ??? ?????? ?????????? ????µ????.odc
Status: Hidden

Object: C:\Program Files\Microsoft Office\Office12\QUERIES\??????? ???µ???????????? ??????? ??? MSN MoneyCentral Investor.iqy
Status: Hidden

Object: C:\Program Files\Microsoft Office\Office12\QUERIES\??µ??µ?????? ?????µ??? ??? MSN MoneyCentral Investor.iqy
Status: Hidden

Object: C:\Program Files\Microsoft Office\Office12\QUERIES\??µ?? µ?????? ??? MSN MoneyCentral Investor.iqy
Status: Hidden

Object: C:\Program Files\Microsoft Office\Templates\1032\??????????_µ???????_???????????µ??.xltx
Status: Hidden

Object: C:\System Volume Information\DFSR
Status: Access denied

Object: C:\System Volume Information\MountPointManagerRemoteDatabase
Status: Access denied

Object: C:\System Volume Information\setup_9.0.0.722_21.04.2010_17-13drv.isw
Status: Access denied

Object: C:\System Volume Information\SPP
Status: Access denied

Object: C:\System Volume Information\SystemRestore
Status: Access denied

Object: C:\System Volume Information\tracking.log
Status: Access denied

Object: C:\System Volume Information\Windows Backup
Status: Access denied

Object: C:\System Volume Information\{1063563e-4bd9-11df-b2a4-00221584ee06}{3808876b-c176-4e48-b7ae-04046e6cc752}
Status: Access denied

Object: C:\System Volume Information\{21c165de-4ef6-11df-8b29-00221584ee06}{3808876b-c176-4e48-b7ae-04046e6cc752}
Status: Access denied

Object: C:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752}
Status: Access denied

Object: C:\System Volume Information\{472d7255-4e1b-11df-a8ed-00221584ee06}{3808876b-c176-4e48-b7ae-04046e6cc752}
Status: Access denied

Object: C:\System Volume Information\{669f59f3-4e30-11df-948a-00221584ee06}{3808876b-c176-4e48-b7ae-04046e6cc752}
Status: Access denied

Object: C:\System Volume Information\{85e28d44-4eee-11df-adf4-00221584ee06}{3808876b-c176-4e48-b7ae-04046e6cc752}
Status: Access denied

Object: C:\System Volume Information\{94e3a34a-4c79-11df-b14a-00221584ee06}{3808876b-c176-4e48-b7ae-04046e6cc752}
Status: Access denied

Object: C:\System Volume Information\{eb0f2048-4acd-11df-8afb-00221584ee06}{3808876b-c176-4e48-b7ae-04046e6cc752}
Status: Access denied

Object: C:\System Volume Information\{f6bdcc13-4aac-11df-9949-00221584ee06}{3808876b-c176-4e48-b7ae-04046e6cc752}
Status: Access denied

Object: C:\System Volume Information\{f6bdcc79-4aac-11df-9949-00221584ee06}{3808876b-c176-4e48-b7ae-04046e6cc752}
Status: Access denied

Object: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTDiagLog.etl
Status: Access denied

Object: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-Application.etl
Status: Access denied

Object: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventlog-Security.etl
Status: Access denied

Object: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-System.etl
Status: Access denied

Object: C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTMsMpPsSession.etl
Status: Access denied

Re: Prosím o kontrolu logu - seká se Notebook

Napsal: 23 dub 2010 18:26
od motji
:o ted byl zapnutý?

Re: Prosím o kontrolu logu - seká se Notebook

Napsal: 23 dub 2010 18:31
od Cigi11
jj, něco jsem tam dopsal v předešlím textu

Re: Prosím o kontrolu logu - seká se Notebook

Napsal: 23 dub 2010 18:35
od motji
Prosím Vás needitujte, já to pak nevidím :) .
Ještě poprosím o aktuální log ze Rsitu, při tom mějte vypnuté prohlížeče :!: .

A znovu to celé projdu :)

Re: Prosím o kontrolu logu - seká se Notebook

Napsal: 23 dub 2010 18:38
od Cigi11
tady je log:

Logfile of random's system information tool 1.06 (written by random/random)
Run by Cigi at 2010-04-23 19:37:28
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 4 GB (2%) free of 153 GB
Total RAM: 3070 MB (59% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:37:35, on 23.4.2010
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18904)
Boot mode: Normal

Running processes:
C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
C:\Windows\Explorer.EXE
C:\Program Files\ATKOSD2\ATKOSD2.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Windows\AsScrPro.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Synaptics\SynTP\SynAsus.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Users\Cigi\Downloads\RSIT(hijackThis).exe
C:\Program Files\trend micro\Cigi.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.0.1:80
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll
O2 - BHO: (no name) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [ATKOSD2] "C:\Program Files\ATKOSD2\ATKOSD2.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe
O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\AsScrProlog.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll,RegisterModule
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O9 - Extra button: ASUS Security Protect Manager e-Wallet - {1009C944-97D5-44A9-9E32-DFF54F498968} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWallet.dll
O9 - Extra 'Tools' menuitem: ASUS Security Protect Manager e-&Wallet - {1009C944-97D5-44A9-9E32-DFF54F498968} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWallet.dll
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\Programy\ICQ\ICQ7.0\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\Programy\ICQ\ICQ7.0\ICQ.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - (no file)
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - (no file)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDow ... rtScan.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O20 - AppInit_DLLs: C:\Windows\System32\APSHook.dll
O23 - Service: Adobe Version Cue CS3 - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate1c9e0e351978c7e) (gupdate1c9e0e351978c7e) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: lxcz_device - - C:\Windows\system32\lxczcoms.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Programy\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe

--
End of file - 11324 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\User_Feed_Synchronization-{6C822274-0538-4957-8D6D-B51BB18961E9}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{074C1DC5-9320-4A9A-947D-C042949C6216}]
ContributeBHO Class - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll [2007-03-16 118784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\ProgramData\LangSoft\WebIE.dll [2010-02-03 520192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2008-10-18 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-10-18 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
ASUS Security Protect Manager - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll [2006-11-21 70928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\ProgramData\LangSoft\WebIE.dll [2010-02-03 520192]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
{517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - Contribute Toolbar - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll [2007-03-16 118784]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
Locked

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ATKOSD2"=C:\Program Files\ATKOSD2\ATKOSD2.exe [2008-01-24 7766016]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-06-13 6183456]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-11-16 1029416]
"ATKMEDIA"=C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [2008-02-01 61440]
"ASUS Screen Saver Protector"=C:\Windows\AsScrPro.exe [2008-08-11 3054136]
"ASUS Camera ScreenSaver"=C:\Windows\AsScrProlog.exe [2008-08-11 47672]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-05-14 2029640]
"CognizanceTS"=C:\PROGRA~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll [2003-12-22 17920]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeUpdater]
C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe [2008-11-09 2356088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe_ID0EYTHM]
C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE [2007-03-20 1884160]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxczbmgr.exe]
C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe [2007-04-19 74672]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files\Programy\Nokia\Nokia PC Suite 7\PCSuite.exe [2008-12-03 1205760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2010-01-14 198160]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USBToolTip]
C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe [2007-02-20 199752]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Cigi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^WinCal – zástupce.lnk]
C:\PROGRA~1\WIF3F6~1\WinCal.exe [2008-01-21 967680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\Windows\System32\APSHook.dll"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2010-04-22 16:42:58 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2010-04-22 16:42:48 ----D---- C:\Users\Cigi\AppData\Roaming\SUPERAntiSpyware.com
2010-04-22 14:46:49 ----D---- C:\Program Files\trend micro
2010-04-22 14:46:22 ----D---- C:\rsit
2010-04-22 11:48:35 ----D---- C:\Avenger
2010-04-21 16:20:45 ----D---- C:\ProgramData\Kaspersky Lab
2010-04-21 08:57:59 ----D---- C:\Windows\temp
2010-04-21 08:46:23 ----D---- C:\$RECYCLE.BIN
2010-04-20 16:13:41 ----D---- C:\ProgramData\PC Tools
2010-04-20 16:13:13 ----AD---- C:\ProgramData\TEMP
2010-04-19 07:30:54 ----D---- C:\Program Files\Lavasoft
2010-04-18 11:42:39 ----D---- C:\Program Files\EA GAMES
2010-04-14 18:55:20 ----A---- C:\Windows\system32\iphlpsvc.dll
2010-04-14 18:51:40 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-04-14 18:51:37 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-04-14 18:51:34 ----A---- C:\Windows\system32\vbscript.dll
2010-04-14 18:50:21 ----A---- C:\Windows\system32\wintrust.dll
2010-04-14 18:50:19 ----A---- C:\Windows\system32\cabview.dll
2010-04-04 13:11:57 ----A---- C:\Windows\system32\mshtml.dll
2010-04-04 13:11:52 ----A---- C:\Windows\system32\ieframe.dll
2010-04-04 13:11:51 ----A---- C:\Windows\system32\iertutil.dll
2010-04-04 13:11:50 ----A---- C:\Windows\system32\urlmon.dll
2010-04-04 13:11:49 ----A---- C:\Windows\system32\wininet.dll
2010-04-04 13:11:49 ----A---- C:\Windows\system32\msfeeds.dll
2010-04-04 13:11:48 ----A---- C:\Windows\system32\occache.dll
2010-04-04 13:11:48 ----A---- C:\Windows\system32\iedkcs32.dll
2010-04-04 13:11:47 ----A---- C:\Windows\system32\mstime.dll
2010-04-04 13:11:44 ----A---- C:\Windows\system32\ieui.dll
2010-04-04 13:11:42 ----A---- C:\Windows\system32\iepeers.dll
2010-04-04 13:11:41 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-04-04 13:11:41 ----A---- C:\Windows\system32\ieUnatt.exe
2010-04-04 13:11:41 ----A---- C:\Windows\system32\iesysprep.dll
2010-04-04 13:11:40 ----A---- C:\Windows\system32\jsproxy.dll
2010-04-04 13:11:39 ----A---- C:\Windows\system32\msfeedssync.exe
2010-04-04 13:11:39 ----A---- C:\Windows\system32\ie4uinit.exe
2010-04-04 13:11:38 ----A---- C:\Windows\system32\iesetup.dll
2010-04-04 13:11:38 ----A---- C:\Windows\system32\iernonce.dll

======List of files/folders modified in the last 1 months======

2010-04-23 19:27:12 ----D---- C:\Windows\System32
2010-04-23 19:27:12 ----D---- C:\Windows\inf
2010-04-23 19:27:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-04-23 19:11:25 ----D---- C:\Windows\system32\LogFiles
2010-04-23 18:45:26 ----SHD---- C:\System Volume Information
2010-04-23 18:35:43 ----A---- C:\Windows\system32\acovcnt.exe
2010-04-23 18:15:03 ----D---- C:\Windows\Tasks
2010-04-23 17:54:59 ----D---- C:\Windows
2010-04-23 17:52:10 ----D---- C:\Program Files\Programy
2010-04-23 17:52:02 ----RD---- C:\Program Files
2010-04-23 17:47:27 ----SHD---- C:\Windows\Installer
2010-04-23 17:47:23 ----D---- C:\Program Files\VistaCodecPack
2010-04-23 17:47:22 ----D---- C:\ProgramData\VistaCodecs
2010-04-23 17:43:05 ----A---- C:\Windows\wininit.ini
2010-04-23 17:37:25 ----A---- C:\Windows\NeroDigital.ini
2010-04-23 16:51:27 ----D---- C:\ProgramData
2010-04-23 16:51:22 ----SD---- C:\Windows\Downloaded Program Files
2010-04-23 16:50:48 ----D---- C:\Windows\Prefetch
2010-04-22 19:05:06 ----D---- C:\Windows\system32\drivers
2010-04-22 19:04:45 ----D---- C:\ProgramData\Lavasoft
2010-04-22 19:04:43 ----DC---- C:\Windows\system32\DRVSTORE
2010-04-22 19:04:37 ----D---- C:\Windows\winsxs
2010-04-22 19:03:52 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-04-22 16:50:33 ----D---- C:\Windows\system32\Tasks
2010-04-22 16:30:15 ----D---- C:\Windows\system32\catroot2
2010-04-22 12:47:53 ----D---- C:\Windows\system32\catroot
2010-04-22 11:53:59 ----D---- C:\Extrahované soubory; Programy
2010-04-22 10:20:37 ----D---- C:\Program Files\Common Files
2010-04-22 06:41:36 ----D---- C:\Program Files\Google
2010-04-21 12:10:10 ----D---- C:\ProgramData\Spybot - Search & Destroy
2010-04-21 08:46:45 ----A---- C:\Windows\system.ini
2010-04-21 08:42:14 ----D---- C:\Windows\system32\config
2010-04-21 08:42:14 ----D---- C:\Boot
2010-04-21 08:33:30 ----D---- C:\Windows\AppPatch
2010-04-21 08:24:25 ----A---- C:\Windows\TRNCOM.INI
2010-04-18 15:17:11 ----D---- C:\Users\Cigi\AppData\Roaming\ICQ
2010-04-18 11:42:32 ----RSD---- C:\Windows\assembly
2010-04-17 20:57:43 ----D---- C:\Windows\Debug
2010-04-17 08:37:52 ----D---- C:\Users\Cigi\AppData\Roaming\Vso
2010-04-16 21:34:56 ----D---- C:\Program Files\OpenOffice.org 3
2010-04-16 21:25:52 ----D---- C:\ProgramData\DriverCure
2010-04-16 21:23:22 ----D---- C:\ProgramData\Skype
2010-04-16 21:16:16 ----D---- C:\drivers
2010-04-14 20:27:57 ----D---- C:\Program Files\Windows Mail
2010-04-14 19:04:34 ----D---- C:\ProgramData\Microsoft Help
2010-04-10 17:05:07 ----D---- C:\Users\Cigi\AppData\Roaming\uTorrent
2010-04-10 12:59:35 ----A---- C:\Windows\level.ini
2010-04-10 11:13:08 ----HD---- C:\Program Files\InstallShield Installation Information
2010-04-10 09:21:45 ----A---- C:\Windows\cdplayer.ini
2010-04-06 19:52:54 ----A---- C:\Windows\system32\mrt.exe
2010-04-04 20:43:49 ----D---- C:\Windows\system32\migration
2010-04-04 20:43:49 ----D---- C:\Program Files\Internet Explorer
2010-03-26 12:25:42 ----D---- C:\Windows\ShellNew
2010-03-24 08:54:35 ----D---- C:\Users\Cigi\AppData\Roaming\dvdcss

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2009-05-14 107256]
R1 SBRE;SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys [2010-04-19 95024]
R1 SSHDRV76;SSHDRV76; \??\C:\Windows\system32\drivers\SSHDRV76.sys [2009-10-16 53760]
R2 ASMMAP;ASMMAP; \??\C:\Program Files\ATKGFNEX\ASMMAP.sys [2007-07-24 13880]
R2 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys [2009-05-14 114472]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2009-05-14 133000]
R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2009-05-14 38240]
R2 ghaio;ghaio; \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [2007-08-03 20936]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2008-02-16 46592]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-07-30 43008]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-07-30 38400]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2008-03-21 1203776]
R3 ATSWPDRV;AuthenTec TruePrint USB Driver (SwipeSensor); C:\Windows\system32\DRIVERS\ATSwpDrv.sys [2007-06-17 146824]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-21 14208]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2009-05-14 33096]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-06-13 2152344]
R3 itecir;ITECIR Infrared Receiver; C:\Windows\system32\DRIVERS\itecir.sys [2007-12-19 54784]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2008-06-03 15928]
R3 MarvinBus;Pinnacle Marvin Bus; C:\Windows\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\Windows\system32\drivers\MODEMCSA.sys [2008-01-21 18432]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2006-12-15 7680]
R3 NETw5v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit ; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-05-20 3663360]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2009-11-12 66664]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-11-21 11515752]
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2008-08-29 47360]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2009-12-20 234016]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-21 88576]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2008-05-13 1772544]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-11-16 195760]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2009-10-14 10064]
S1 eusk2par;EUTRON SmartKey Parallel Driver; \??\C:\Windows\system32\Drivers\eusk2par.sys [2004-11-18 24786]
S2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys []
S3 AVerAF15;AVerMedia BDA Digital Tuner; C:\Windows\System32\Drivers\AVerAF15.sys [2007-12-28 281984]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2008-01-21 19456]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2008-04-29 220160]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2008-04-29 29184]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2008-03-17 81960]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\drivers\btwavdt.sys [2008-03-17 100392]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2008-01-29 29736]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2008-03-17 17320]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Programy\EVEREST Ultimate Edition\kerneld.wnt [2009-05-25 26736]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2009-02-06 55280]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2008-09-15 17664]
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2008-09-15 22016]
S3 PCANDIS4;PCANDIS4 NDIS Protocol Driver; \??\C:\Windows\system32\PCANDIS4.SYS []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2008-01-21 49664]
S3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2006-11-02 1010560]
S3 SymIMMP;SymIMMP; C:\Windows\system32\DRIVERS\SymIM.sys []
S3 TfNetMon;TfNetMon; \??\C:\Windows\system32\drivers\TfNetMon.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2008-09-15 8064]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-21 35328]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2008-01-21 28160]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2008-09-15 8064]
S3 usbvideo;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys []
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-21 39936]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2006-11-02 194048]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
S4 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-04-19 717296]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-21 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2008-03-18 13312]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-07-09 144712]
R2 ASBroker;Logon Session Broker; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 ASChannel;Local Communication Channel; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 ASLDRService;ASLDR Service; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [2007-10-03 94208]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-08-08 94208]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2008-04-10 518696]
R2 Diskeeper;Diskeeper; C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe [2007-10-16 1094936]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-05-14 731840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-03-18 73728]
R2 lxcz_device;lxcz_device; C:\Windows\system32\lxczcoms.exe [2007-04-19 537520]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-05-15 935208]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-11-20 122984]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2010-02-27 75064]
R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2007-07-24 185632]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
R2 spmgr;spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [2007-08-03 125496]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-07-10 98840]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2009-11-17 1021256]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 1533808]
S2 gupdate1c9e0e351978c7e;Služba Google Update (gupdate1c9e0e351978c7e); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-05-30 133104]
S3 Adobe Version Cue CS3;Adobe Version Cue CS3; C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe [2007-03-20 153792]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-05-14 20680]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-03-31 655624]
S3 fsssvc;Windows Live Zabezpečení rodiny; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-02-06 533360]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2009-07-13 542496]
S3 NBService;NBService; C:\Program Files\Programy\Nero 7\Nero BackItUp\NBService.exe [2007-04-13 792112]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-05-16 271920]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-11-11 620544]
S3 TuneUp.Defrag;@C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2009-12-10 435016]

-----------------EOF-----------------
Všechny časy jsou v UTC+01:00
Stránka 2 z 5

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz