VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Avast našel Win32:Jeefo

https://forum.viry.cz:443/viewtopic.php?t=101909

Stránka 3 z 7

Re: Avast našel Win32:Jeefo

Napsal: 15 čer 2010 18:38
od vaclavka83
Je tam asi 80 exe spouštěcích souborů. Bohužel nejdou názvy okopírovat.

Re: Avast našel Win32:Jeefo

Napsal: 15 čer 2010 18:48
od Caroprd111
Obrázek Následující soubor/y otestujte na http://www.virustotal.com/cs/
c:\windows\system32\lsass.exe
c:\windows\system32\spoolsv.exe
c:\windows\system32\svchost.exe
c:\windows\system32\winlogon.exe
c:\windows\explorer.exe
c:\windows\system32\services.exe

(Soubor/y nehledejte, jenom vložíte tučně označenou cestu, v případě hlášky "Soubor již byl testován" dejte otestovat znovu. Výsledek analýzy sem v podobě odkazu vložte.)


Obrázek Stáhněte http://www.sophos.com/support/cleaners/jeefogui.com
  • Spusťte, poté potvrďte licenční podmínky kliknutím na "Accept".
  • Zobrazí se hlavní okno programu, klikněte na "Start Scan".
  • Po dokončení skenu sem vložte log C:\resolve.log

Re: Avast našel Win32:Jeefo

Napsal: 15 čer 2010 19:14
od vaclavka83
http://www.virustotal.com/cs/analisis/7 ... 1276624809
http://www.virustotal.com/cs/analisis/b ... 1276625083
http://www.virustotal.com/cs/analisis/d ... 1276625184
http://www.virustotal.com/cs/analisis/f ... 1276625316
http://www.virustotal.com/cs/analisis/0 ... 1276625434
http://www.virustotal.com/cs/analisis/f ... 1276625597

Re: Avast našel Win32:Jeefo

Napsal: 15 čer 2010 19:18
od Caroprd111
OK, ještě http://www.sophos.com/support/cleaners/jeefogui.com

Re: Avast našel Win32:Jeefo

Napsal: 15 čer 2010 19:18
od vaclavka83
RESOLVE Version 1.04
Copyright (c) 2003, Sophos Plc, www.sophos.com

System disinfection for W32/Jeefo

Data Version 1.00, Plugin Version 1.01

System scan started at 20:17 on 15 June 2010

Checking for W32/Jeefo in memory

W32/Jeefo was not found active in memory

Checking for files affected by W32/Jeefo

Scanning C:


Scanning D:


Scanning C:


Scanning D:


System scan finished at 20:17 on 15 June 2010

Infected processes found : 0
Processes terminated or disinfected : 0
Infected files found : 0
Infected files deleted : 0

Re: Avast našel Win32:Jeefo

Napsal: 15 čer 2010 19:44
od Caroprd111
Udělejte screen truhly Avastu.

Re: Avast našel Win32:Jeefo

Napsal: 17 čer 2010 14:40
od vaclavka83
Kterým programem mám udělat screen? Když to dám do malování. Tak mi to nejde sem vložit.

Re: Avast našel Win32:Jeefo

Napsal: 17 čer 2010 20:54
od motji
Dobrý večer, záskok za kolegu :)

Musíte to pak někam uploadnout a teprve pak to sem vložit linkem, třeba sem
http://www.imageshack.us/

Re: Avast našel Win32:Jeefo

Napsal: 18 čer 2010 14:11
od vaclavka83
http://www.ulozto.cz/5130442/screen-1.rtf
http://www.ulozto.cz/5130441/screen-2.rtf
http://www.ulozto.cz/5130440/screen-3.rtf
Bude to stačit takto? Na ten imageshack jdou vkládat jenom fotky.

Re: Avast našel Win32:Jeefo

Napsal: 18 čer 2010 16:53
od motji
To jsou soubory, které napadl vir, pravděpodobně Vám některé programy nešli spustit a tak jste je musel/a přeinstalovat.
Můžete je smazat.

Teď to vypadá s počítačem jak?

Re: Avast našel Win32:Jeefo

Napsal: 18 čer 2010 17:25
od vaclavka83
Jde o to, že mi nejde na PC spustit téměř nic. Je nějaký způsob ty soubory vyléčit. A vrátit je na původní umístění? Než je všechny znova složitě instalovat a nastavovat atd... To už by asi bylo rychlejší format HDD a reinstal Windows. Jinak se počítač neseká. Vypadá stabilně.

Re: Avast našel Win32:Jeefo

Napsal: 18 čer 2010 20:41
od Caroprd111
Zdravím :)

Nevěřím tomu, že by se nám povedlo soubory vyléčit. Navíc je možné, že by se při léčení infekce znovu rozšířila a mohla by zbořit systém. Doporučuji zazálohovat důležitá data. Pokud to není nutné, tak nezálohujte soubory typu .exe .scr .com .html .htm. Poté provést pomalý formát disku.

Obrázek Pokud bude nutné zazálohovat nějaký spustitelný soubor, tak postupujte podle následujícího návodu.
  • Daný soubor otestujte antivirem, pokud to půjde, tak na http://www.virustotal.com/cs/
  • Pokud soubor není nakažený, tak ho ihned zararujte a zaheslujte.
  • Pokud je soubor nakažený, tak se ho antivirem pokuste vyléčit. Pokud se soubor podaří vyléčit, tak ho ihned zararujte a zaheslujte. Pokud to bude možné, tak archív otestujte na http://www.virustotal.com/cs/
  • Jestliže soubor nepůjde vyléčit, tak ho smažte.

Obrázek Poznámky:

Re: Avast našel Win32:Jeefo

Napsal: 19 čer 2010 05:19
od vaclavka83
Mockrát vám děkuji za vaše rady. Nějak se to pokusim vyřešit. Ještě nevím jestli reinstal celého OS nebo jenom programů. Až to někdy dodělám tak sem vložím log pro kontrolu. Jinak mockrát děkuji za pomoc.

Re: Avast našel Win32:Jeefo

Napsal: 19 čer 2010 11:56
od Caroprd111
Nemáte zač, pak se ozvěte. :)

Re: Avast našel Win32:Jeefo

Napsal: 20 čer 2010 14:48
od vaclavka83
Dobrý den. Nakonec sem nepřeinstalovával celý OS, ale jenom všechny programy. Narazil sem na pár problémů které popíši později. Ted přikládám log z rsit.
Logfile of random's system information tool 1.07 (written by random/random)
Run by Miluji Tě at 2010-06-20 15:40:39
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 15 GB (37%) free of 40 GB
Total RAM: 3326 MB (79% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:40:45, on 20.6.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\System32\snmp.exe
C:\PROGRA~1\SPYWAR~1\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\Program Files\Tiskarna\ScanSoft\OmniPageSE4\OpwareSE4.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\RTHDCPL.EXE
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\WINDOWS\PixArt\PAC7302\Monitor.exe
C:\Genius\ioCentre\gTaskBar.exe
C:\WINDOWS\Mixer.exe
C:\Genius\ioCentre\gMouseTask.exe
C:\Genius\ioCentre\gKbdTask.exe
C:\Genius\ioCentre\gAutoPan.exe
C:\Genius\ioCentre\gAutoScroll.exe
C:\Genius\ioCentre\gZoom.exe
C:\Genius\ioCentre\gMGlass.exe
C:\Genius\ioCentre\gIMMgm.exe
C:\Genius\ioCentre\gDeskMgm.exe
C:\Genius\ioCentre\gTaskSwitch.exe
C:\Program Files\Cyberlink\Shared Files\brs.exe
C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Samsung Multimedia Keyboard\gpkbd.exe
C:\Program Files\ATI Tray Tools\atitray.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\PROGRA~1\FREEDO~1\fdm.exe
C:\Documents and Settings\Miluji Tě\Plocha\RSIT.exe
C:\Program Files\trend micro\Miluji Tě.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\Tiskarna\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [PAC7302_Monitor] C:\WINDOWS\PixArt\PAC7302\Monitor.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.3\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ioCentre] C:\Genius\ioCentre\gTaskBar.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [CmPCIaudio] RunDll32 CMICNFG3.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [BDRegion] C:\Program Files\Cyberlink\Shared Files\brs.exe
O4 - HKLM\..\Run: [RemoteControl8] "C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe"
O4 - HKLM\..\Run: [PDVD8LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: ATI Tray Tools.lnk = C:\Program Files\ATI Tray Tools\atitray.exe
O4 - Startup: _uninst_setup_9.0.0.722_15.06.2010_17-38.exe.lnk = ?
O4 - Global Startup: Samsung Multimedia Keyboard.lnk = ?
O8 - Extra context menu item: Stáhnout Free Download Managerem - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stáhnout video Free Download Managerem - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Stáhnout vybrané Free Download Managerem - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Stáhnout vše Free Download Managerem - file://C:\Program Files\Free Download Manager\dlall.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 5177877609
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE (file missing)
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Prime95 Service - Unknown owner - C:\Program Files\Prime95\prime95.exe (file missing)
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\PROGRA~1\SPYWAR~1\sp_rsser.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Unknown owner - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (file missing)

--
End of file - 8522 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-1708537768-1123561945-725345543-1004.job
C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-1708537768-1123561945-725345543-1004.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{1A8E86E7-CA55-42CD-A2E6-39BDF2F60382}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-04-04 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-04-12 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-04-12 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"UnlockerAssistant"=C:\Program Files\Unlocker\UnlockerAssistant.exe [2008-05-02 15872]
"OpwareSE4"=C:\Program Files\Tiskarna\ScanSoft\OmniPageSE4\OpwareSE4.exe [2007-02-04 79400]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2010-03-26 19522592]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-05-06 2815192]
"SpywareTerminator"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2010-04-08 2176512]
"PAC7302_Monitor"=C:\WINDOWS\PixArt\PAC7302\Monitor.exe [2007-12-10 323584]
"SSBkgdUpdate"=C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25 210472]
"NeroFilterCheck"=C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [2008-07-09 570664]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.3\Reader\Reader_sl.exe [2010-04-04 36272]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-03-24 952768]
"ioCentre"=C:\Genius\ioCentre\gTaskBar.exe [2006-12-08 241664]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-05-27 413696]
"CmPCIaudio"=RunDll32 CMICNFG3.cpl,CMICtrlWnd []
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"C-Media Mixer"=Mixer.exe /startup []
"BDRegion"=C:\Program Files\Cyberlink\Shared Files\brs.exe [2008-05-19 91432]
"RemoteControl8"=C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe [2008-03-20 83240]
"PDVD8LanguageShortcut"=C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe [2007-12-14 50472]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Samsung Multimedia Keyboard.lnk - C:\Program Files\Samsung Multimedia Keyboard\gpkbd.exe

C:\Documents and Settings\Miluji Tě\Nabídka Start\Programy\Po spuštění
ATI Tray Tools.lnk - C:\Program Files\ATI Tray Tools\atitray.exe
_uninst_setup_9.0.0.722_15.06.2010_17-38.exe.lnk - C:\Documents and Settings\Miluji Tě\Local Settings\temp\_uninst_setup_9.0.0.722_15.06.2010_17-38.exe.bat

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2010-04-07 159744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe"="C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe:*:Enabled:Nero ProductSetup"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Disabled:Microsoft DirectPlay Helper"
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"="C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Enabled:Crawler Spyware Terminator"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"D:\Games\Far Cry2\Far Cry 2\bin\FarCry2.exe"="D:\Games\Far Cry2\Far Cry 2\bin\FarCry2.exe:*:Enabled:Far Cry 2"
"C:\Documents and Settings\Miluji Tě\Local Settings\Temporary Internet Files\Content.IE5\AWBN8Y6G\winbox[1].exe"="C:\Documents and Settings\Miluji Tě\Local Settings\Temporary Internet Files\Content.IE5\AWBN8Y6G\winbox[1].exe:*:Enabled:winbox[1]"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Documents and Settings\Miluji Tě\temp\TeamViewer\Version5\TeamViewer.exe"="C:\Documents and Settings\Miluji Tě\temp\TeamViewer\Version5\TeamViewer.exe:*:Disabled:TeamViewer"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-06-20 15:40:40 ----D---- C:\Program Files\trend micro
2010-06-20 15:40:39 ----D---- C:\rsit
2010-06-20 13:57:57 ----D---- C:\Documents and Settings\Miluji Tě\Data aplikací\OpenOffice.org
2010-06-20 13:53:11 ----D---- C:\Program Files\OpenOffice.org 3
2010-06-20 13:49:00 ----D---- C:\Documents and Settings\Miluji Tě\Data aplikací\Free Download Manager
2010-06-20 13:48:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\FreeDownloadManager.ORG
2010-06-20 13:48:55 ----D---- C:\Program Files\Free Download Manager
2010-06-20 13:24:30 ----D---- C:\Program Files\Common Files\CyberLink
2010-06-20 13:18:15 ----D---- C:\Documents and Settings\All Users\Data aplikací\Temp
2010-06-20 13:16:50 ----D---- C:\Documents and Settings\Miluji Tě\Data aplikací\CyberLink
2010-06-20 13:16:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\CyberLink
2010-06-20 13:15:17 ----D---- C:\Program Files\CyberLink
2010-06-20 13:08:23 ----D---- C:\Program Files\ATI Tray Tools
2010-06-20 10:00:00 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2010-06-20 09:59:07 ----A---- C:\WINDOWS\system32\javaws.exe
2010-06-20 09:59:07 ----A---- C:\WINDOWS\system32\javaw.exe
2010-06-20 09:59:07 ----A---- C:\WINDOWS\system32\java.exe
2010-06-20 09:56:18 ----D---- C:\Program Files\Java
2010-06-20 09:55:54 ----D---- C:\Documents and Settings\Miluji Tě\Data aplikací\Sun
2010-06-20 09:43:08 ----D---- C:\Program Files\microsoft frontpage
2010-06-20 09:25:41 ----D---- C:\Program Files\Common Files\Reallusion
2010-06-20 09:25:37 ----D---- C:\Program Files\Reallusion
2010-06-20 09:25:02 ----D---- C:\Program Files\CrazyTalk CamSuite
2010-06-20 09:03:29 ----A---- C:\WINDOWS\mixerdef.ini
2010-06-20 08:41:09 ----D---- C:\Documents and Settings\Miluji Tě\Data aplikací\Windows Search
2010-06-20 08:34:36 ----HDC---- C:\WINDOWS\$NtUninstallKB971513$
2010-06-20 08:34:25 ----HDC---- C:\WINDOWS\$NtUninstallbasecsp$
2010-06-20 08:33:31 ----D---- C:\WINDOWS\system32\GroupPolicy
2010-06-20 08:33:13 ----HDC---- C:\WINDOWS\$NtUninstallKB915800-v4$
2010-06-20 08:31:20 ----D---- C:\WINDOWS\system32\URTTEMP
2010-06-20 00:55:45 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2010-06-20 00:55:45 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2010-06-20 00:55:44 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2010-06-20 00:55:44 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2010-06-20 00:55:44 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2010-06-20 00:55:43 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2010-06-20 00:55:40 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2010-06-20 00:55:33 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2010-06-19 22:49:02 ----A---- C:\WINDOWS\RtaUpd.exe
2010-06-19 22:30:58 ----A---- C:\WINDOWS\NeroDigital.ini
2010-06-19 21:45:28 ----RA---- C:\WINDOWS\system32\Cmeaupci.exe
2010-06-19 20:42:35 ----A---- C:\WINDOWS\system32\REN91.tmp
2010-06-19 20:42:35 ----A---- C:\WINDOWS\system32\REN90.tmp
2010-06-19 20:37:52 ----A---- C:\WINDOWS\system32\REN86.tmp
2010-06-19 20:37:52 ----A---- C:\WINDOWS\system32\REN85.tmp
2010-06-19 19:22:30 ----D---- C:\WINDOWS\SxsCaPendDel
2010-06-19 19:07:50 ----D---- C:\Genius
2010-06-19 18:42:21 ----D---- C:\Program Files\outlook express
2010-06-19 18:38:50 ----D---- C:\Program Files\PC DUAL SHOCK
2010-06-19 18:36:36 ----D---- C:\Program Files\Samsung Multimedia Keyboard
2010-06-19 17:35:53 ----D---- C:\Program Files\Microsoft Office
2010-06-19 17:35:45 ----D---- C:\Program Files\MSECache
2010-06-19 17:13:37 ----D---- C:\Program Files\CPU-Z
2010-06-19 16:57:00 ----D---- C:\Program Files\ICQ6.5
2010-06-19 12:22:58 ----D---- C:\Program Files\Common Files\Adobe
2010-06-19 12:22:58 ----D---- C:\Program Files\Adobe
2010-06-19 11:52:57 ----A---- C:\WINDOWS\system32\dxdllreg.exe
2010-06-19 10:41:23 ----D---- C:\Program Files\total commander 7.04
2010-06-19 10:41:23 ----D---- C:\Program Files\Total Commander
2010-06-19 10:21:09 ----D---- C:\Program Files\Verdict Free
2010-06-19 10:10:45 ----D---- C:\Documents and Settings\Miluji Tě\Data aplikací\Nero
2010-06-19 10:04:04 ----A---- C:\WINDOWS\system32\MsiExec.exe.log
2010-06-19 10:01:39 ----D---- C:\Program Files\Nero
2010-06-19 10:01:39 ----D---- C:\Program Files\Common Files\Nero
2010-06-19 10:01:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Nero
2010-06-19 09:35:22 ----D---- C:\Program Files\GoldWave
2010-06-19 08:43:34 ----HD---- C:\Documents and Settings\All Users\Data aplikací\CanonBJ
2010-06-19 08:43:21 ----HD---- C:\WINDOWS\system32\CanonIJ Uninstaller Information
2010-06-19 08:43:13 ----A---- C:\WINDOWS\system32\cnco140.dll
2010-06-19 08:43:13 ----A---- C:\WINDOWS\system32\CNCL140.DLL
2010-06-19 08:43:12 ----A---- C:\WINDOWS\system32\CNCI140.DLL
2010-06-19 08:43:12 ----A---- C:\WINDOWS\system32\CNCC140.DLL
2010-06-19 08:43:02 ----HD---- C:\Program Files\CanonBJ
2010-06-19 08:41:42 ----D---- C:\Program Files\Canon
2010-06-19 08:15:43 ----A---- C:\WINDOWS\system32\yv12vfw.dll
2010-06-19 08:15:43 ----A---- C:\WINDOWS\system32\xvidvfw.dll
2010-06-19 08:15:43 ----A---- C:\WINDOWS\system32\xvidcore.dll
2010-06-19 08:15:41 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest
2010-06-19 08:15:41 ----A---- C:\WINDOWS\system32\ff_vfw.dll
2010-06-19 08:15:39 ----D---- C:\Program Files\K-Lite Codec Pack
2010-06-19 07:37:40 ----D---- C:\Program Files\WinRAR 3.8
2010-06-19 07:22:44 ----D---- C:\Program Files\DAEMON Tools Lite
2010-06-19 06:23:48 ----D---- C:\Program Files\Xvid CZ
2010-06-15 17:06:25 ----SHD---- C:\RECYCLER
2010-06-15 15:53:41 ----RASHD---- C:\cmdcons
2010-06-15 15:46:52 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2010-06-14 18:41:58 ----A---- C:\WINDOWS\zip.exe
2010-06-14 18:41:58 ----A---- C:\WINDOWS\SWXCACLS.exe
2010-06-14 18:41:58 ----A---- C:\WINDOWS\SWSC.exe
2010-06-14 18:41:58 ----A---- C:\WINDOWS\SWREG.exe
2010-06-14 18:41:58 ----A---- C:\WINDOWS\sed.exe
2010-06-14 18:41:58 ----A---- C:\WINDOWS\PEV.exe
2010-06-14 18:41:58 ----A---- C:\WINDOWS\NIRCMD.exe
2010-06-14 18:41:58 ----A---- C:\WINDOWS\MBR.exe
2010-06-14 18:41:58 ----A---- C:\WINDOWS\grep.exe
2010-06-14 18:41:41 ----D---- C:\WINDOWS\ERDNT
2010-06-11 15:37:27 ----D---- C:\Program Files\Common Files\DirectX
2010-06-11 15:07:20 ----A---- C:\WINDOWS\system32\Remover.ini
2010-06-11 15:07:20 ----A---- C:\WINDOWS\system32\Remove.exe
2010-06-11 15:07:19 ----A---- C:\WINDOWS\system32\CoInst_071029.dll
2010-06-11 15:07:17 ----A---- C:\WINDOWS\system32\SP7302.INI
2010-06-11 15:07:16 ----D---- C:\WINDOWS\PixArt
2010-06-11 15:07:16 ----D---- C:\Program Files\Common Files\iLook 300
2010-06-09 17:44:07 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2010-06-09 17:43:43 ----HDC---- C:\WINDOWS\$NtUninstallKB979332_WM9L$
2010-06-09 17:41:41 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2010-06-09 17:38:33 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2010-06-09 17:38:21 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2010-06-09 17:35:14 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2010-06-09 17:34:57 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2010-06-06 17:28:29 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2010-06-06 17:28:13 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2010-06-06 17:28:09 ----A---- C:\WINDOWS\game.ini
2010-05-28 18:01:20 ----D---- C:\Program Files\AMD
2010-05-26 21:07:10 ----D---- C:\WINDOWS\Downloaded Installations
2010-05-26 15:32:44 ----A---- C:\GPU-Z Sensor Log.txt
2010-05-25 20:57:35 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2010-05-24 16:15:41 ----D---- C:\Documents and Settings\Miluji Tě\Data aplikací\atitray

======List of files/folders modified in the last 1 months======

2010-06-20 15:40:40 ----RD---- C:\Program Files
2010-06-20 15:38:56 ----D---- C:\Program Files\Mozilla Firefox
2010-06-20 15:38:36 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spyware Terminator
2010-06-20 15:38:31 ----D---- C:\Program Files\Spyware Terminator
2010-06-20 14:30:27 ----D---- C:\WINDOWS\Microsoft.NET
2010-06-20 14:30:08 ----RSD---- C:\WINDOWS\assembly
2010-06-20 14:17:34 ----A---- C:\WINDOWS\system32\sun_debug.txt
2010-06-20 14:17:31 ----A---- C:\WINDOWS\system32\sun_debug1.txt
2010-06-20 14:11:40 ----D---- C:\Documents and Settings\Miluji Tě\Data aplikací\Spyware Terminator
2010-06-20 14:05:06 ----D---- C:\WINDOWS\Debug
2010-06-20 14:00:08 ----D---- C:\WINDOWS
2010-06-20 14:00:06 ----D---- C:\WINDOWS\Temp
2010-06-20 13:54:22 ----SHD---- C:\WINDOWS\Installer
2010-06-20 13:53:26 ----RSD---- C:\WINDOWS\Fonts
2010-06-20 13:26:03 ----N---- C:\WINDOWS\SchedLgU.Txt
2010-06-20 13:24:32 ----D---- C:\WINDOWS\system32
2010-06-20 13:24:30 ----HD---- C:\Program Files\InstallShield Installation Information
2010-06-20 13:24:30 ----D---- C:\Program Files\Common Files
2010-06-20 13:23:05 ----A---- C:\WINDOWS\system32\msxml3a.dll
2010-06-20 13:19:11 ----A---- C:\WINDOWS\system32\msvcr71.dll
2010-06-20 13:10:21 ----D---- C:\Program Files\Actual Earth 3D
2010-06-20 13:02:15 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-06-20 13:02:07 ----HD---- C:\WINDOWS\inf
2010-06-20 13:02:03 ----D---- C:\WINDOWS\system32\CatRoot2
2010-06-20 13:00:59 ----D---- C:\Program Files\Realtek
2010-06-20 12:48:02 ----D---- C:\WINDOWS\system32\drivers
2010-06-20 12:47:58 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-06-20 11:10:44 ----D---- C:\Program Files\ASUS
2010-06-20 09:38:46 ----D---- C:\WINDOWS\WinSxS
2010-06-20 09:23:22 ----A---- C:\WINDOWS\win.ini
2010-06-20 08:59:26 ----D---- C:\WINDOWS\system
2010-06-20 08:54:49 ----D---- C:\WINDOWS\Registration
2010-06-20 08:54:22 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-06-20 08:48:47 ----D---- C:\WINDOWS\system32\cs-cz
2010-06-20 08:44:55 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-06-20 08:44:50 ----D---- C:\WINDOWS\system32\wbem
2010-06-20 08:34:48 ----D---- C:\Program Files\Internet Explorer
2010-06-20 08:34:46 ----D---- C:\WINDOWS\ie8updates
2010-06-20 08:34:45 ----HD---- C:\WINDOWS\$hf_mig$
2010-06-20 08:34:32 ----D---- C:\WINDOWS\security
2010-06-20 08:32:13 ----D---- C:\WINDOWS\system32\mui
2010-06-20 00:55:46 ----D---- C:\WINDOWS\system32\DirectX
2010-06-20 00:53:27 ----D---- C:\WINDOWS\Logs
2010-06-20 00:13:42 ----RSH---- C:\boot.ini
2010-06-19 23:49:44 ----A---- C:\WINDOWS\Ascd_tmp.ini
2010-06-19 23:19:21 ----A---- C:\WINDOWS\Ascd_log.ini
2010-06-19 22:17:39 ----D---- C:\Documents and Settings
2010-06-19 21:45:36 ----A---- C:\WINDOWS\Cmicnfg3.ini.cfl
2010-06-19 21:45:28 ----A---- C:\WINDOWS\Cmicnfg3.ini.imi
2010-06-19 21:36:34 ----SD---- C:\WINDOWS\Tasks
2010-06-19 21:36:08 ----A---- C:\WINDOWS\cdplayer.ini
2010-06-19 21:35:01 ----A---- C:\WINDOWS\system32\rmoc3260.dll
2010-06-19 21:34:52 ----A---- C:\WINDOWS\system32\pndx5032.dll
2010-06-19 21:34:52 ----A---- C:\WINDOWS\system32\pndx5016.dll
2010-06-19 21:34:20 ----A---- C:\WINDOWS\system32\pncrt.dll
2010-06-19 21:15:54 ----D---- C:\Documents and Settings\Miluji Tě\Data aplikací\Zoner
2010-06-19 20:57:39 ----D---- C:\WINDOWS\system32\XPSViewer
2010-06-19 20:49:10 ----SD---- C:\Documents and Settings\Miluji Tě\Data aplikací\Microsoft
2010-06-19 20:43:24 ----D---- C:\Program Files\Common Files\Java
2010-06-19 19:34:46 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-06-19 19:26:10 ----D---- C:\Program Files\QuickTime
2010-06-19 19:25:36 ----D---- C:\Program Files\Apple Software Update
2010-06-19 19:22:31 ----D---- C:\Program Files\Common Files\DivX Shared
2010-06-19 19:21:53 ----D---- C:\Program Files\DivX
2010-06-19 18:13:13 ----A---- C:\WINDOWS\system32\msxml3r.dll
2010-06-19 17:35:53 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-06-19 12:23:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-06-19 11:53:33 ----D---- C:\WINDOWS\RegisteredPackages
2010-06-19 10:48:47 ----A---- C:\WINDOWS\SIERRA.INI
2010-06-19 10:01:37 ----D---- C:\WINDOWS\Cursors
2010-06-19 08:50:39 ----D---- C:\Documents and Settings\Miluji Tě\Data aplikací\Skype
2010-06-19 08:50:24 ----D---- C:\Documents and Settings\Miluji Tě\Data aplikací\skypePM
2010-06-19 08:43:20 ----D---- C:\WINDOWS\twain_32
2010-06-19 08:28:35 ----D---- C:\Documents and Settings\Miluji Tě\Data aplikací\Canon
2010-06-19 07:39:50 ----D---- C:\Documents and Settings\Miluji Tě\Data aplikací\WinRAR
2010-06-19 07:27:26 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2010-06-19 07:27:10 ----D---- C:\WINDOWS\Prefetch
2010-06-19 07:11:42 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2010-06-15 19:18:19 ----SHD---- C:\System Volume Information
2010-06-15 19:18:19 ----D---- C:\WINDOWS\system32\Restore
2010-06-15 17:06:27 ----D---- C:\Documents and Settings\Miluji Tě\Data aplikací\Media Player Classic
2010-06-15 17:06:25 ----D---- C:\WINDOWS\Minidump
2010-06-15 17:05:37 ----D---- C:\Program Files\CCleaner
2010-06-15 15:59:32 ----A---- C:\WINDOWS\system.ini
2010-06-15 15:57:06 ----D---- C:\WINDOWS\AppPatch
2010-06-14 18:50:30 ----D---- C:\WINDOWS\system32\config
2010-06-14 15:02:12 ----D---- C:\WINDOWS\system32\CatRoot
2010-06-13 20:55:57 ----D---- C:\WINDOWS\system32\usmt
2010-06-13 19:43:47 ----D---- C:\WINDOWS\network diagnostic
2010-06-13 19:40:42 ----HDC---- C:\WINDOWS\ie8
2010-06-13 19:38:30 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2010-06-13 19:37:36 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2010-06-13 19:36:54 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-06-13 19:12:25 ----D---- C:\Program Files\Windows Media Player
2010-06-13 19:05:03 ----D---- C:\Program Files\Messenger
2010-06-13 18:33:13 ----D---- C:\Program Files\AMDAGP
2010-06-10 16:23:44 ----D---- C:\Program Files\Common Files\ATI Technologies
2010-06-06 17:28:13 ----D---- C:\WINDOWS\system32\LogFiles
2010-05-28 18:01:22 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-05-28 12:37:36 ----A---- C:\WINDOWS\system32\MRT.exe
2010-05-25 19:45:14 ----D---- C:\Documents and Settings\Miluji Tě\Data aplikací\ATI
2010-05-25 17:53:14 ----D---- C:\Documents and Settings\Miluji Tě\Data aplikací\Help

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-05-06 28880]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-18 43008]
R1 AsIO;AsIO; C:\WINDOWS\system32\drivers\AsIO.sys [2009-08-04 11296]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-05-06 164048]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-05-06 46672]
R1 atitray;atitray; \??\C:\Program Files\ATI Tray Tools\atitray.sys []
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054};{FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}; \??\C:\Program Files\CyberLink\PowerDVD8\000.fcl []
R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [1999-09-10 25244]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-05-06 19024]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-05-06 100432]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2008-08-31 278984]
R2 cpuz132;cpuz132; \??\C:\WINDOWS\system32\drivers\cpuz132_x32.sys []
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2008-08-31 25416]
R3 AmdLLD;AMD Low Level Device Driver; C:\WINDOWS\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-05-06 23376]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2010-04-07 4687872]
R3 CamSuiteVAC;CamSuite Virtual Audio; C:\WINDOWS\system32\DRIVERS\CamSuiteVAC.sys [2008-09-20 37560]
R3 cmpci;C-Media PCI Audio Driver (WDM); C:\WINDOWS\system32\drivers\cmaudio.sys [2002-11-18 377358]
R3 gMouPS2;PS2 Scroll Mouse Device; C:\WINDOWS\system32\DRIVERS\gMouPS2.sys [2006-07-12 17408]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2010-03-26 5883936]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 PAC7302;iLook 300; C:\WINDOWS\system32\DRIVERS\PAC7302.SYS [2009-04-28 461824]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2006-08-15 83200]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 afgzxsp6;afgzxsp6; C:\WINDOWS\system32\drivers\afgzxsp6.sys []
S3 afpg1nkz;afpg1nkz; C:\WINDOWS\system32\drivers\afpg1nkz.sys []
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480]
S3 AMDPCI;AMDPCI; \??\C:\DOCUME~1\MILUJI~1\LOCALS~1\Temp\AMDPCI.sys []
S3 AmdTools;AMD Special Tools Driver; C:\WINDOWS\system32\DRIVERS\AmdTools.sys []
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-14 272128]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 catchme;catchme; \??\C:\DOCUME~1\MILUJI~1\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 cmuda3;C-Media PCI Audio Interface; C:\WINDOWS\system32\drivers\cmudax3.sys [2009-05-20 1872192]
S3 ENTECH;ENTECH; \??\C:\WINDOWS\system32\DRIVERS\ENTECH.sys []
S3 gHidPnp;USB Device Enhanced Function Driver; C:\WINDOWS\System32\Drivers\gHidPnp.Sys [2006-07-14 14848]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800]
S3 MPE;Filtr MPE BDA; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NCHSSVAD;SoundTap Recorder; C:\WINDOWS\system32\drivers\nchssvad.sys [2010-04-16 21120]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 RTCore32;RTCore32; \??\C:\Documents and Settings\Miluji Tě\Plocha\rmclock_230_bin_upd1\RTCore32.sys []
S3 RTHDMIAzAudService;Service for HDMI; C:\WINDOWS\system32\drivers\RtKHDMI.sys []
S3 se58bus;Sony Ericsson Device 088 driver (WDM); C:\WINDOWS\system32\DRIVERS\se58bus.sys [2006-09-05 61536]
S3 se58mdfl;Sony Ericsson Device 088 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\se58mdfl.sys [2006-09-05 9360]
S3 se58mdm;Sony Ericsson Device 088 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\se58mdm.sys [2006-09-05 97088]
S3 se58mgmt;Sony Ericsson Device 088 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\se58mgmt.sys [2006-09-05 88624]
S3 se58nd5;Sony Ericsson Device 088 USB Ethernet Emulation SEMC58 (NDIS); C:\WINDOWS\system32\DRIVERS\se58nd5.sys [2006-09-05 18704]
S3 se58obex;Sony Ericsson Device 088 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\se58obex.sys [2006-09-05 86432]
S3 se58unic;Sony Ericsson Device 088 USB Ethernet Emulation SEMC58 (WDM); C:\WINDOWS\system32\DRIVERS\se58unic.sys [2006-09-05 90800]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 teamviewervpn;TeamViewer VPN Adapter; C:\WINDOWS\system32\DRIVERS\teamviewervpn.sys [2008-01-25 25088]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WFIOCTL;WFIOCTL; \??\C:\Program Files\WinFast\WFTVFM\WFIOCTL.SYS []
S3 WFLR6654;WinFast TV2000 XP Expert (FM1216MK3); C:\WINDOWS\system32\drivers\wfeaglxt.sys []
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2010-04-07 602112]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-05-06 40384]
R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-04-12 153376]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\WINDOWS\system32\IoctlSvc.exe [2006-12-19 81920]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2010-06-13 66872]
R2 SNMP;SNMP; C:\WINDOWS\System32\snmp.exe [2008-04-14 32768]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\PROGRA~1\SPYWAR~1\sp_rsser.exe [2010-04-08 488960]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-05-06 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-05-06 40384]
S2 IJPLMSVC;PIXMA Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE []
S2 Prime95 Service;Prime95 Service; C:\Program Files\Prime95\prime95.exe []
S2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe []
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-06-24 537896]
S3 SNMPTRAP;Zachytávání pro službu SNMP; C:\WINDOWS\System32\snmptrap.exe [2008-04-14 8704]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
Všechny časy jsou v UTC+01:00
Stránka 3 z 7

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz