Nelze spustit Mozilla Firefox, IE, WMP, PowerDVD

Zpráva

CATerPILAR · #1 Příspěvek od **CATerPILAR** » 03 lis 2010 18:20

Logfile of random's system information tool 1.08 (written by random/random)
Run by Pepson at 2010-11-03 18:13:58
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 14 GB (43%) free of 33 GB
Total RAM: 3327 MB (83% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:13:59, on 3.11.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Eset\nod32kui.exe
C:\DOCUME~1\Pepson\LOCALS~1\Temp\ctrlAT20.exe
C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe
C:\Program Files\Cyberlink\Shared Files\brs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe
C:\Program Files\Eset\nod32krn.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
H:\HijackThis.exe
C:\Total Commander\TOTALCMD.EXE
C:\Program Files\CyberLink\PowerDVD9\PowerDVD Cinema\PowerDVDCox.exe
C:\WINDOWS\system32\NOTEPAD.EXE
H:\RSIT.exe
C:\Program Files\trend micro\Pepson.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [OSSelectorReinstall] C:\Program Files\Common Files\Acronis\Acronis Disk Director\oss_reinstall.exe
O4 - HKLM\..\Run: [CtrlMod20] C:\DOCUME~1\Pepson\LOCALS~1\Temp\ctrlAT20.exe -m 72 -p"E:"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [RemoteControl9] "C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe"
O4 - HKLM\..\Run: [PDVD9LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD9\Language\Language.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files\Cyberlink\Shared Files\brs.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: PMB Media Check Tool.lnk = C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Vytvoøit mobilní oblíbenou poloku - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipamìti kategorií souèástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: SupportSoft RemoteAssist - Unknown owner - C:\Program Files\Common Files\supportsoft\bin\ssrc.exe (file missing)
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe

--
End of file - 6379 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\1-Click Maintenance.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-11-06 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-11-06 73728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344]
"nod32kui"=C:\Program Files\Eset\nod32kui.exe [2009-08-18 949376]
"OSSelectorReinstall"=C:\Program Files\Common Files\Acronis\Acronis Disk Director\oss_reinstall.exe [2007-03-15 2225208]
"CtrlMod20"=C:\DOCUME~1\Pepson\LOCALS~1\Temp\ctrlAT20.exe [2006-03-31 192512]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]
"RemoteControl9"=C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe [2009-02-16 87336]
"PDVD9LanguageShortcut"=C:\Program Files\CyberLink\PowerDVD9\Language\Language.exe [2008-10-13 50472]
"BDRegion"=C:\Program Files\Cyberlink\Shared Files\brs.exe [2009-02-28 75048]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"H/PC Connection Agent"=C:\Program Files\Microsoft ActiveSync\wcescomm.exe [2006-11-13 1289000]
"Skype"=C:\Program Files\Skype\\Phone\Skype.exe [2010-09-02 13351304]

C:\Documents and Settings\Pepson\Nabídka Start\Programy\Po sputìní
PMB Media Check Tool.lnk - C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2008-07-04 139264]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
WgaLogon.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{93994DE8-8239-4655-B1D1-5F4E91300429}"=C:\PROGRA~1\DVDREG~1\DVDShell.dll [2004-10-09 49152]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SprtListen]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SprtListenPush]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SupportSoft RemoteAssist]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"AutoAdminLogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager"
"C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager"
"C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application"

======List of files/folders created in the last 1 months======

2010-11-03 18:12:53 ----D---- C:\rsit
2010-11-03 18:12:53 ----D---- C:\Program Files\trend micro
2010-11-02 23:04:26 ----D---- C:\Documents and Settings\Pepson\Data aplikací\vlc
2010-11-02 23:03:37 ----D---- C:\Program Files\VideoLAN
2010-11-02 19:48:21 ----D---- C:\Documents and Settings\All Users\Data aplikací\McAfee
2010-11-02 19:48:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\NOS
2010-10-26 21:26:33 ----D---- C:\Valve
2010-10-13 16:32:35 ----A---- C:\WINDOWS\system32\wmpns.dll
2010-10-13 14:20:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2010-10-13 14:20:02 ----HDC---- C:\WINDOWS\$NtUninstallKB2279986$
2010-10-13 14:19:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2010-10-13 14:19:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2010-10-13 14:19:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2010-10-13 14:19:10 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2010-10-13 14:18:18 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2010-10-13 14:15:21 ----HDC---- C:\WINDOWS\$NtUninstallKB981957$
2010-10-13 14:15:11 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2010-10-12 18:55:43 ----D---- C:\Documents and Settings\Pepson\Data aplikací\CyberLink
2010-10-12 18:53:04 ----D---- C:\Documents and Settings\All Users\Data aplikací\CyberLink
2010-10-12 18:52:52 ----D---- C:\Program Files\Common Files\CyberLink
2010-10-12 18:51:27 ----D---- C:\Program Files\CyberLink
2010-10-12 18:50:54 ----A---- C:\WINDOWS\system32\msxml3a.dll
2010-10-12 18:50:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\Temp
2010-10-12 11:50:15 ----A---- C:\WINDOWS\system32\irmon.dll
2010-10-12 11:50:15 ----A---- C:\WINDOWS\system32\drivers\rasirda.sys
2010-10-12 11:50:14 ----A---- C:\WINDOWS\system32\wshirda.dll
2010-10-12 11:50:14 ----A---- C:\WINDOWS\system32\irftp.exe
2010-10-12 11:50:14 ----A---- C:\WINDOWS\system32\drivers\irda.sys
2010-10-12 11:50:12 ----A---- C:\WINDOWS\system32\drivers\irsir.sys
2010-10-11 18:18:23 ----A---- C:\WINDOWS\system32\drivers\cpuz134_x32.sys
2010-10-11 18:18:22 ----D---- C:\Program Files\CPUID
2010-10-09 14:21:11 ----D---- C:\Program Files\Adobe

======List of files/folders modified in the last 1 months======

2010-11-03 18:12:57 ----D---- C:\WINDOWS\Prefetch
2010-11-03 18:12:53 ----RD---- C:\Program Files
2010-11-03 17:37:47 ----D---- C:\Documents and Settings\Pepson\Data aplikací\Skype
2010-11-03 17:28:23 ----D---- C:\WINDOWS\Temp
2010-11-03 16:25:17 ----D---- C:\Documents and Settings\Pepson\Data aplikací\skypePM
2010-11-03 04:10:47 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-11-03 00:27:43 ----A---- C:\WINDOWS\NeroDigital.ini
2010-11-02 23:59:48 ----D---- C:\WINDOWS\system32\CatRoot2
2010-11-02 23:57:11 ----D---- C:\WINDOWS\system32
2010-11-02 23:57:10 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-11-02 23:54:19 ----D---- C:\WINDOWS\system32\config
2010-11-02 23:53:56 ----D---- C:\WINDOWS\system32\wbem
2010-11-02 23:53:55 ----D---- C:\WINDOWS\Registration
2010-11-02 23:53:20 ----D---- C:\Program Files\Mozilla Firefox
2010-11-02 23:52:59 ----D---- C:\WINDOWS\system32\Restore
2010-11-02 22:49:20 ----D---- C:\Program Files\ESET
2010-11-02 17:35:47 ----D---- C:\Program Files\Canon
2010-10-24 13:23:43 ----HD---- C:\WINDOWS\inf
2010-10-13 16:32:37 ----D---- C:\WINDOWS
2010-10-13 16:32:10 ----D---- C:\Program Files\Internet Explorer
2010-10-13 14:20:11 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-10-13 14:20:07 ----HD---- C:\WINDOWS\$hf_mig$
2010-10-13 14:20:05 ----A---- C:\WINDOWS\imsins.BAK
2010-10-13 14:19:57 ----D---- C:\WINDOWS\system32\drivers
2010-10-13 14:19:51 ----D---- C:\WINDOWS\WinSxS
2010-10-13 14:19:42 ----SHD---- C:\WINDOWS\Installer
2010-10-13 14:19:28 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-10-13 14:15:29 ----A---- C:\WINDOWS\system32\MRT.exe
2010-10-12 18:52:52 ----D---- C:\Program Files\Common Files
2010-10-12 18:51:20 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-10-12 12:16:41 ----D---- C:\Documents and Settings\Pepson\Data aplikací\Broad Intelligence
2010-10-12 12:16:10 ----HD---- C:\Program Files\InstallShield Installation Information
2010-10-12 11:50:15 ----D---- C:\WINDOWS\Media
2010-10-12 11:29:07 ----D---- C:\DOS
2010-10-09 14:21:32 ----D---- C:\Program Files\Common Files\Adobe
2010-10-09 14:21:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-10-08 10:01:46 ----RSD---- C:\WINDOWS\assembly
2010-10-08 10:01:28 ----D---- C:\WINDOWS\Microsoft.NET

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2008-07-04 44944]
R0 snapman;Acronis Snapshots Manager; C:\WINDOWS\system32\DRIVERS\snapman.sys [2010-02-14 114048]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-09-04 717296]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-01-18 77696]
R1 nod32drv;nod32drv; C:\WINDOWS\system32\drivers\nod32drv.sys [2009-08-18 15424]
R1 WS2IFSL;Podpùrné prostøedí zprostøedkovatele slueb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2010/10/12 19:53:02]; \??\C:\Program Files\CyberLink\PowerDVD9\000.fcl []
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.5.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2010-04-06 21035]
R2 AMON;AMON; C:\WINDOWS\system32\drivers\amon.sys [2009-08-18 512096]
R2 cpuz134;cpuz134; \??\C:\WINDOWS\system32\drivers\cpuz134_x32.sys []
R2 irda;Protokol IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-07-04 3230720]
R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2008-05-21 93696]
R3 HDAudBus;Ovladaè Microsoft UAA pro sbìrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladaè tøídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-07-16 4747776]
R3 mouhid;Ovladaè myi standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 usbaudio;Ovladaè zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-14 60032]
R3 usbccgp;Obecný nadøazený ovladaè Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 USBSTOR;Ovladaè velkokapacitního pamìového zaøízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbvideo;Zobrazovací zaøízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2008-04-14 121984]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2007-09-20 265856]
S1 ATITool;ATITool Overclocking Utility; C:\WINDOWS\system32\DRIVERS\ATITool.sys [2006-11-10 24064]
S3 a6mfvh96;a6mfvh96; C:\WINDOWS\system32\drivers\a6mfvh96.sys []
S3 ASNDIS5;ASNDIS5 Protocol Driver; \??\C:\WINDOWS\system32\ASNDIS5.SYS []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files\MediaCoder\SysInfo.sys []
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\WINDOWS\system32\DRIVERS\ewdcsc.sys []
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys []
S3 hwusbfake;Huawei DataCard USB Fake; C:\WINDOWS\system32\DRIVERS\ewusbfake.sys []
S3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys []
S3 RT2500USB;ASUS USB Wireless LAN Driver; C:\WINDOWS\system32\DRIVERS\rt2500usb.sys [2004-08-13 140544]
S3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter; C:\WINDOWS\system32\DRIVERS\RTL8192su.sys []
S3 Ser2pl;Prolific Serial port driver; C:\WINDOWS\system32\DRIVERS\ser2pl.sys [2004-06-28 42752]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys []
S3 usb_rndisx;Adaptér USB RNDIS; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2008-04-14 12800]
S3 usbprint;Tøída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladaè skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 VClone;VClone; C:\WINDOWS\system32\DRIVERS\VClone.sys [2009-05-23 29696]
S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek svìtového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-01-18 83328]
S3 ZD1211BU(Atheros);Atheros ZD1211B IEEE 802.11 Wireless LAN Driver (USB)(Atheros); C:\WINDOWS\system32\DRIVERS\zd1211Bu.sys [2008-04-11 722432]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2008-07-04 561152]
R2 IJPLMSVC;PIXMA Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2007-04-13 101528]
R2 Irmon;Sledování infraèerveného pøenosu; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-11-06 153376]
R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2009-08-18 552064]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service; C:\WINDOWS\System32\TUProgSt.exe [2009-11-27 604488]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2008-07-03 593920]
S2 SupportSoft RemoteAssist;SupportSoft RemoteAssist; C:\Program Files\Common Files\supportsoft\bin\ssrc.exe []
S3 aspnet_state;Stavová sluba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2009-11-27 361288]
S3 WMPNetworkSvc;Sluba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

#2 Příspěvek od **Rudy** » 03 lis 2010 18:36

Nevidím nic nebezpečného. Udělejte přesto kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.

CATerPILAR · #3 Příspěvek od **CATerPILAR** » 03 lis 2010 19:39

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Verze databáze: 5035

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

3.11.2010 19:36:51
mbam-log-2010-11-03 (19-36-51).txt

Typ skenu: Rychlý sken
Skenované objekty: 150961
Uplynulý èas: 9 minuta(y), 35 sekunda(y)

Infikované procesy v pamìti: 0
Infikované moduly v pamìti: 0
Infikované klíèe registru: 0
Infikované hodnoty registru: 0
Infikované datové poloky registru: 1
Infikované sloky: 0
Infikované soubory: 0

Infikované procesy v pamìti:
(ádné kodlivé poloky nebyly zjitìny)

Infikované moduly v pamìti:
(ádné kodlivé poloky nebyly zjitìny)

Infikované klíèe registru:
(ádné kodlivé poloky nebyly zjitìny)

Infikované hodnoty registru:
(ádné kodlivé poloky nebyly zjitìny)

Infikované datové poloky registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.

Infikované sloky:
(ádné kodlivé poloky nebyly zjitìny)

Infikované soubory:
(ádné kodlivé poloky nebyly zjitìny)

#4 Příspěvek od **Rudy** » 03 lis 2010 20:13

Položku smažte, ale ve vztahu k vašemu problém je toto nepodstatné. Zkuste obnovu systému k datu, kdy korektgně fungoval, nebo aplikace reinstalujte.

CATerPILAR · #5 Příspěvek od **CATerPILAR** » 03 lis 2010 21:35

Obnovu jsem zkusil jiz vcera, jako prvni vec, bohužel to nepomohlo:( Zkusim je tedy preinstalovat. Diky za tipy.

#6 Příspěvek od **Rudy** » 03 lis 2010 21:50

Nemáte zač!

CATerPILAR · #7 Příspěvek od **CATerPILAR** » 04 lis 2010 09:29

Tak bohuzel po preinstalaci programu porad to same:( Takze asi reinstall, ze?

#8 Příspěvek od **Rudy** » 04 lis 2010 18:17

CATerPILAR píše:Tak bohuzel po preinstalaci programu porad to same:( Takze asi reinstall, ze?

Nejdříve zkuste opravu systému z instal. CD. Pokud tato nepomůže, pak už nic jiného nezbude.

CATerPILAR · #9 Příspěvek od **CATerPILAR** » 05 lis 2010 08:00

Původně jsem si myslel, že to půjde jednodušeji, nicméně po opravě systému z install CD jiz vse funguje, jak má. Děkuji velice za pomoc a hezký den.

#10 Příspěvek od **Rudy** » 05 lis 2010 18:34

Pokud je systém poškozen (což v tomto případě opravdu byl), opravě se nevyhnete. Někdy ale ani oprava nepomůže. Nemáte zač!

VIRY.CZ

Nelze spustit Mozilla Firefox, IE, WMP, PowerDVD

Nelze spustit Mozilla Firefox, IE, WMP, PowerDVD

Re: Nelze spustit Mozilla Firefox, IE, WMP, PowerDVD

Re: Nelze spustit Mozilla Firefox, IE, WMP, PowerDVD

Re: Nelze spustit Mozilla Firefox, IE, WMP, PowerDVD

Re: Nelze spustit Mozilla Firefox, IE, WMP, PowerDVD

Re: Nelze spustit Mozilla Firefox, IE, WMP, PowerDVD

Re: Nelze spustit Mozilla Firefox, IE, WMP, PowerDVD

Re: Nelze spustit Mozilla Firefox, IE, WMP, PowerDVD

Re: Nelze spustit Mozilla Firefox, IE, WMP, PowerDVD

Re: Nelze spustit Mozilla Firefox, IE, WMP, PowerDVD