VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Olmarik

https://forum.viry.cz:443/viewtopic.php?t=98714

Stránka 1 z 1

Olmarik

Napsal: 09 bře 2010 17:24
od LubckoX
zdarec, pravdepodobne mám v PC dost zavazny vírus, nejdu mi mechaniky dokonca ani virtualne, mrznme mi PC a dokonca mi pravdepodobne zmizli nejake priecinky, neviem ci sa to bude dat nejak odstranit pretoze je v operacnej pamati : 5. 3. 2010 9:36:15 Kontrola při startu soubor \\?\globalroot\systemroot\system32\UACesiwexvkyx.dll Win32/Olmarik.KI trojský kůň
Ako je v karantene ale uz sa rozsiril na počet 314 kusov , Prosím vVás ako sa to dá vyliečit alebo odstranit alebo podobne,,
Dal by som sem aj logy , ale neviem kde ich mam hladat a o čo sa jedna,,,,, Dikes :?: :?: :?:

Re: Olmarik

Napsal: 09 bře 2010 17:36
od LubckoX
tak neda sa mi napalit ani v nudzovom a nemam ani moznost napalit na druhom pc,,,, a taktiez ma napadlo ze sa mi neda spravit ani defragmentacia, a ani analyza,,,,

a tu su tie logy :

Logfile of random's system information tool 1.06 (written by random/random)
Run by Administrator at 2010-03-09 17:33:11
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 1 GB (0%) free of 238 GB
Total RAM: 2046 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:33:22, on 9. 3. 2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\Ati2evxx.exe
C:\windows\system32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\system32\svchost.exe
C:\windows\system32\Ati2evxx.exe
C:\windows\system32\spoolsv.exe
C:\windows\Explorer.EXE
C:\windows\System32\svchost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\windows\RTHDCPL.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\windows\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
c:\progra~1\common~1\instal~1\update~1\isuspm.exe
C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\agent.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\ICQ6.5\ICQ.exe
C:\Documents and Settings\Administrator\Plocha\RSIT.exe
C:\Program Files\trend micro\Administrator.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.daemon-search.com/startpage
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedi ... t=&gc=1&q=
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedi ... t=&gc=1&q=
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://toolbar.ask.com/toolbarv/askRedi ... &gc=1&q=%s
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.yahoo.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
R3 - URLSearchHook: DefaultSearchHook Class - {C94E154B-1459-4A47-966B-4B843BEFC7DB} - C:\Program Files\AskSearch\bin\DefaultSearch.dll
R3 - URLSearchHook: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfre0.dll
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_0_1.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (file missing)
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O2 - BHO: XBTBPos00 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll
O3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_0_1.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfre0.dll
O3 - Toolbar: Fast Browser Search - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\windows\system32\ctfmon.exe
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [RegCom32] C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\vip.exe
O4 - HKCU\..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Aktualizovat ESET licenci.lnk = C:\Program Files\ESET\MiNODLogin\MiNODLogin.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informácií - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: crypt - C:\windows\
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\windows\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate1c9a0cbf69e0088) (gupdate1c9a0cbf69e0088) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 10095 bytes

======Scheduled tasks folder======

C:\windows\tasks\AppleSoftwareUpdate.job
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\windows\tasks\Norton Security Scan for Administrator.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
Yahoo! Companion BHO - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_0_1.dll [2005-04-13 327748]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - C:\Program Files\AskBarDis\bar\bin\askBar.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-04-04 312928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-11-15 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-11-15 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetIM Toolbar Helper - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-10-19 1345336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}]
XBTBPos00 Class - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll [2009-08-13 2602368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - &Yahoo! Companion - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_0_1.dll [2005-04-13 327748]
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetIM Toolbar for Internet Explorer - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-10-19 1345336]
{ecdee021-0d17-467f-a1ff-c7a115230949} - free-downloads.net Toolbar - C:\Program Files\free-downloads.net\tbfre0.dll [2009-12-31 2094616]
{1BB22D38-A411-4B13-A746-C2A4F4EC7344} - Fast Browser Search - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll [2009-08-13 2602368]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-11-24 953800]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
"RTHDCPL"=C:\windows\RTHDCPL.EXE [2007-09-19 16844800]
"Alcmtr"=C:\windows\ALCMTR.EXE [2005-05-03 69632]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2007-10-10 36352]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2009-04-04 198160]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-06-16 221184]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-11-15 149280]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-05-14 2029640]
"SweetIM"=C:\Program Files\SweetIM\Messenger\SweetIM.exe [2009-10-20 111928]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-09-04 935288]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\windows\system32\ctfmon.exe [2008-04-14 15360]
"ares"=C:\Program Files\Ares\Ares.exe -h []
"RegCom32"=C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\vip.exe []
"EA Core"=C:\Program Files\Electronic Arts\EADM\Core.exe -silent []
"Driver Updater"= []
"Skype"=C:\Program Files\Skype\\Phone\Skype.exe [2009-10-09 25623336]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Aktualizovat ESET licenci.lnk - C:\Program Files\ESET\MiNODLogin\MiNODLogin.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\windows\system32\Ati2evxx.dll [2007-12-21 122880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
WgaLogon.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, digeste.dll, digiwet.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdauxservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdcoreservice]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Winamp Remote\bin\Orb.exe"="C:\Program Files\Winamp Remote\bin\Orb.exe:*:Enabled:Orb"
"C:\Program Files\Winamp Remote\bin\OrbTray.exe"="C:\Program Files\Winamp Remote\bin\OrbTray.exe:*:Enabled:OrbTray"
"C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe"="C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe:*:Enabled:Orb Stream Client"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe"="C:\Program Files\TrackMania Nations ESWC\TmNationsESWC.exe:*:Enabled:TmNationsESWC"
"C:\Program Files\Wolfenstein - Enemy Territory\ET.exe"="C:\Program Files\Wolfenstein - Enemy Territory\ET.exe:*:Enabled:ET"
"C:\Documents and Settings\Administrator\Local Settings\Temp\Rar$EX03.719\racer\tracked.exe"="C:\Documents and Settings\Administrator\Local Settings\Temp\Rar$EX03.719\racer\tracked.exe:*:Enabled:tracked"
"C:\Documents and Settings\Administrator\Local Settings\Temp\Rar$EX05.016\racer\racer.exe"="C:\Documents and Settings\Administrator\Local Settings\Temp\Rar$EX05.016\racer\racer.exe:*:Enabled:racer"
"C:\Program Files\Codemasters\DiRT Demo\DiRTDemo.exe"="C:\Program Files\Codemasters\DiRT Demo\DiRTDemo.exe:*:Enabled:DiRT Demo Executable"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Ares\Ares.exe"="C:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows"
"C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Chat Republic Games\Superstar Racing\ChatRepublicPlayer.exe"="C:\Documents and Settings\Administrator\Local Settings\Data aplikací\Chat Republic Games\Superstar Racing\ChatRepublicPlayer.exe:*:Enabled:Chat Republic Games Player"
"C:\Program Files\Capcom\MotoGP 08\Launcher.exe"="C:\Program Files\Capcom\MotoGP 08\Launcher.exe:*:Enabled:MotoGP 08"
"C:\Documents and Settings\Administrator\Plocha\hry\life for speed\LFSspotter.exe"="C:\Documents and Settings\Administrator\Plocha\hry\life for speed\LFSspotter.exe:*:Enabled:LFSspotter"
"C:\Documents and Settings\Administrator\Plocha\hry\life for speed\LFS.exe"="C:\Documents and Settings\Administrator\Plocha\hry\life for speed\LFS.exe:*:Enabled:LFS"
"C:\Documents and Settings\Administrator\Plocha\rolecaster tycon\rct1-c\rct.exe"="C:\Documents and Settings\Administrator\Plocha\rolecaster tycon\rct1-c\rct.exe:*:Enabled:rct"
"C:\Program Files\Truck_Racing_By_Renault_Trucks\Bin\RTR.exe"="C:\Program Files\Truck_Racing_By_Renault_Trucks\Bin\RTR.exe:*:Enabled:Truck Racing by Renault Trucks"
"C:\Documents and Settings\Administrator\Plocha\taxi\Super Taxi Driver by pashtyx\STD2006.exe"="C:\Documents and Settings\Administrator\Plocha\taxi\Super Taxi Driver by pashtyx\STD2006.exe:*:Enabled:STD2006"
"C:\WINDOWS\system32\drivers\svchost.exe"="C:\WINDOWS\system32\drivers\svchost.exe:*:Disabled:WinRAR archiver"
"C:\Documents and Settings\Administrator\Plocha\nascar\Nascar Thunder 2004\Image\NASCAR_Thunder_2004.exe"="C:\Documents and Settings\Administrator\Plocha\nascar\Nascar Thunder 2004\Image\NASCAR_Thunder_2004.exe:*:Enabled:NASCAR Thunder TM 2004"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\TrackMania United\TmUnited.exe"="C:\Program Files\TrackMania United\TmUnited.exe:*:Enabled:TmUnited"
"C:\Program Files\Ubisoft\Tom Clancy's H.A.W.X\HAWX.exe"="C:\Program Files\Ubisoft\Tom Clancy's H.A.W.X\HAWX.exe:*:Enabled:Tom Clancy's H.A.W.X"
"C:\Program Files\Ubisoft\Tom Clancy's H.A.W.X\HAWX_dx10.exe"="C:\Program Files\Ubisoft\Tom Clancy's H.A.W.X\HAWX_dx10.exe:*:Enabled:Tom Clancy's H.A.W.X"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Disabled:Firefox"
"C:\Program Files\Microsoft Games\Microsoft Flight Simulator X\fsx.exe"="C:\Program Files\Microsoft Games\Microsoft Flight Simulator X\fsx.exe:*:Disabled:Microsoft Flight Simulator®"
"C:\Program Files\Electronic Arts\EADM\Core.exe"="C:\Program Files\Electronic Arts\EADM\Core.exe:*:Disabled:EA Download Manager"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab Setup Files\Kaspersky Internet Security 2009\Czech\setup.exe"="C:\Documents and Settings\All Users\Data aplikací\Kaspersky Lab Setup Files\Kaspersky Internet Security 2009\Czech\setup.exe:*:Disabled:Kaspersky Internet Security 2009 Setup"
"C:\Program Files\TmNationsForever\TmForever.exe"="C:\Program Files\TmNationsForever\TmForever.exe:*:Enabled:TmForever"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{07afb246-f098-11de-bfc8-001d7daeb359}]
shell\Auto\command - D:\launcher.exe
shell\AutoRun\command - C:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL launcher.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4ce05196-1626-11de-bd31-001d7daeb359}]
shell\AutoRun\command - J:\FarCryAutoCD.exe


======List of files/folders created in the last 3 months======

2010-03-11 10:00:46 ----HDC---- C:\windows\$NtUninstallKB968389$
2010-03-10 17:26:10 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Apple Computer
2010-03-10 17:25:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
2010-03-10 17:25:46 ----D---- C:\Program Files\Bonjour
2010-03-10 17:25:27 ----D---- C:\Program Files\QuickTime
2010-03-10 17:25:27 ----D---- C:\Documents and Settings\All Users\Data aplikací\Apple Computer
2010-03-10 17:25:18 ----D---- C:\Program Files\Apple Software Update
2010-03-10 17:25:03 ----D---- C:\Program Files\Common Files\Apple
2010-03-10 17:25:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Apple
2010-03-10 16:10:49 ----D---- C:\Program Files\Truck Dismount
2010-03-09 17:33:11 ----D---- C:\rsit
2010-03-09 17:33:11 ----D---- C:\Program Files\trend micro
2010-03-09 16:36:40 ----HDC---- C:\windows\$NtUninstallKB960859$
2010-03-09 16:35:58 ----HDC---- C:\windows\$NtUninstallKB971657$
2010-03-09 16:35:55 ----HDC---- C:\windows\$NtUninstallKB971557$
2010-03-09 16:35:51 ----HDC---- C:\windows\$NtUninstallKB956744$
2010-03-09 16:35:47 ----HDC---- C:\windows\$NtUninstallKB973869$
2010-03-09 16:35:44 ----HDC---- C:\windows\$NtUninstallKB973507$
2010-03-09 16:35:40 ----HDC---- C:\windows\$NtUninstallKB973354$
2010-03-09 16:35:34 ----HDC---- C:\windows\$NtUninstallKB973540_WM9$
2010-03-09 16:34:33 ----HDC---- C:\windows\$NtUninstallKB973815$
2010-03-08 12:52:40 ----A---- C:\windows\system32\xvidvfw.dll
2010-03-07 20:04:22 ----D---- C:\Program Files\ValuSoft
2010-03-07 20:03:50 ----A---- C:\windows\system32\dxtmeta2.dll
2010-03-06 10:07:07 ----D---- C:\Program Files\Euro Truck Simulator
2010-03-03 19:54:07 ----HDC---- C:\windows\$NtUninstallKB961118$
2010-03-02 20:25:00 ----D---- C:\windows\system32\XPSViewer
2010-03-02 20:24:57 ----D---- C:\Program Files\MSBuild
2010-03-02 20:24:56 ----D---- C:\windows\system32\en-US
2010-03-02 20:24:53 ----D---- C:\Program Files\Reference Assemblies
2010-03-02 20:24:34 ----N---- C:\windows\system32\xpssvcs.dll
2010-03-02 20:24:34 ----N---- C:\windows\system32\xpsshhdr.dll
2010-03-02 20:24:34 ----N---- C:\windows\system32\prntvpt.dll
2010-03-02 20:24:34 ----D---- C:\2a6879238afa1987322c84
2010-02-28 15:30:07 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Babylonia
2010-02-28 07:38:00 ----A---- C:\windows\cdplayer.ini
2010-02-27 08:21:57 ----D---- C:\Documents and Settings\Administrator\Data aplikací\BeachPartyCraze
2010-02-25 16:22:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\GameXzone
2010-02-25 16:22:12 ----D---- C:\Program Files\MyPlayCity.com
2010-02-23 16:59:55 ----HDC---- C:\windows\$NtUninstallKB972260$
2010-02-22 14:48:58 ----D---- C:\Program Files\ZModeler
2010-02-16 12:44:22 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Off Road
2010-02-16 12:43:24 ----D---- C:\Program Files\Xplosiv
2010-02-15 11:46:08 ----D---- C:\Program Files\Managed DirectX (0901)
2010-02-15 11:44:22 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Games
2010-02-15 11:44:22 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Microsoft Games
2010-02-14 21:11:22 ----D---- C:\Program Files\MPMAN
2010-02-13 13:55:09 ----D---- C:\Program Files\SimTractor 4.0
2010-02-13 11:08:29 ----D---- C:\Program Files\Jowood
2010-02-12 12:46:38 ----A---- C:\windows\system32\d3dx10_41.dll
2010-02-12 12:46:38 ----A---- C:\windows\system32\D3DCompiler_41.dll
2010-02-12 12:46:37 ----A---- C:\windows\system32\XAudio2_4.dll
2010-02-12 12:46:37 ----A---- C:\windows\system32\XAPOFX1_3.dll
2010-02-12 12:46:37 ----A---- C:\windows\system32\xactengine3_4.dll
2010-02-12 12:46:37 ----A---- C:\windows\system32\D3DX9_41.dll
2010-02-12 12:46:33 ----A---- C:\windows\system32\X3DAudio1_6.dll
2010-02-12 12:46:07 ----HD---- C:\windows\msdownld.tmp
2010-02-11 14:47:39 ----D---- C:\Program Files\Global Star Software
2010-02-09 20:51:41 ----HDC---- C:\windows\$NtUninstallKB973346$
2010-02-09 20:51:37 ----HDC---- C:\windows\$NtUninstallKB971633$
2010-02-09 20:49:48 ----HDC---- C:\windows\$NtUninstallKB961371$
2010-02-05 07:43:50 ----D---- C:\Program Files\Mafia
2010-02-01 17:48:03 ----D---- C:\Program Files\Common Files\Akamai
2010-01-29 17:31:04 ----D---- C:\Program Files\Kurierservice – Die Simulation
2010-01-27 06:02:03 ----D---- C:\Program Files\models
2010-01-27 06:02:03 ----D---- C:\Program Files\maps
2010-01-25 15:02:49 ----D---- C:\Program Files\F1 2009 Delux 2.0
2010-01-24 18:52:54 ----D---- C:\069712728a6b1bbebae20370b12af1
2010-01-20 17:01:14 ----SHD---- C:\Config.Msi
2010-01-19 17:04:09 ----HDC---- C:\windows\$NtUninstallKB961501$
2010-01-19 17:04:01 ----HDC---- C:\windows\$NtUninstallKB969897$
2010-01-19 17:03:56 ----HDC---- C:\windows\$NtUninstallKB969898$
2010-01-19 17:00:27 ----HDC---- C:\windows\$NtUninstallKB970238$
2010-01-19 17:00:23 ----HDC---- C:\windows\$NtUninstallKB968537$
2010-01-12 18:45:10 ----D---- C:\Documents and Settings\All Users\Data aplikací\TmForever
2010-01-12 18:41:27 ----D---- C:\Program Files\TmNationsForever
2010-01-10 10:46:06 ----D---- C:\Program Files\Sega
2010-01-07 09:15:33 ----D---- C:\Program Files\ABCgames Cheater
2010-01-06 16:44:41 ----D---- C:\Program Files\7-Zip
2010-01-06 14:43:29 ----D---- C:\Program Files\Creative
2010-01-06 14:43:29 ----A---- C:\windows\system32\eax.dll
2010-01-06 14:22:39 ----N---- C:\windows\system32\MafiaSetup.exe
2009-12-30 19:12:51 ----D---- C:\Program Files\Aircraft
2009-12-26 14:47:51 ----D---- C:\Program Files\Yamicsoft
2009-12-25 19:07:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\Trymedia
2009-12-23 19:10:29 ----A---- C:\windows\system32\muweb.dll
2009-12-23 19:10:29 ----A---- C:\windows\system32\mucltui.dll.mui
2009-12-23 19:10:29 ----A---- C:\windows\system32\mucltui.dll
2009-12-23 19:10:04 ----D---- C:\Program Files\Microsoft Silverlight
2009-12-23 18:12:10 ----D---- C:\Program Files\DAEMON Tools Lite
2009-12-22 19:46:57 ----D---- C:\Program Files\Common Files\DirectX
2009-12-20 13:39:30 ----D---- C:\Flight Simulator 2000
2009-12-19 13:54:04 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Talkback
2009-12-19 13:53:53 ----D---- C:\Program Files\Mozilla Sunbird
2009-12-17 14:14:28 ----D---- C:\Program Files\RealFlight G4 Demo
2009-12-17 14:14:28 ----D---- C:\Program Files\Common Files\KnifeEdge
2009-12-16 07:46:17 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Capcom
2009-12-15 15:54:03 ----A---- C:\windows\system32\wmpns.dll
2009-12-12 19:14:36 ----HD---- C:\windows\PIF
2009-12-11 20:07:18 ----A---- C:\windows\UNWISE.EXE
2009-12-11 19:35:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\Symantec
2009-12-11 19:35:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\Norton
2009-12-11 19:35:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\NortonInstaller
2009-12-11 19:34:31 ----D---- C:\windows\system32\Adobe

======List of files/folders modified in the last 3 months======

2010-03-11 10:00:50 ----A---- C:\windows\imsins.BAK
2010-03-10 08:46:49 ----HD---- C:\windows\$hf_mig$
2010-03-09 17:33:11 ----RD---- C:\Program Files
2010-03-09 17:25:29 ----D---- C:\Documents and Settings\Administrator\Data aplikací\ICQ
2010-03-09 17:00:48 ----D---- C:\Program Files\Mozilla Firefox
2010-03-09 16:35:42 ----D---- C:\Program Files\Outlook Express
2010-03-09 15:50:25 ----D---- C:\windows\Temp
2010-03-09 15:50:25 ----D---- C:\windows\system32
2010-03-09 15:44:39 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Skype
2010-03-08 20:17:01 ----A---- C:\windows\SchedLgU.Txt
2010-03-08 19:13:52 ----A---- C:\windows\wincmd.ini
2010-03-07 20:04:52 ----A---- C:\windows\system32\OggDSuninst.exe
2010-03-06 20:53:53 ----SHD---- C:\windows\CSC
2010-03-06 16:51:06 ----D---- C:\windows\system32\Macromed
2010-03-06 10:09:36 ----D---- C:\windows\Prefetch
2010-03-05 10:11:31 ----D---- C:\windows\Microsoft.NET
2010-03-03 19:59:01 ----A---- C:\windows\Zmodeler.ini
2010-03-03 19:54:17 ----D---- C:\windows\system32\CatRoot
2010-03-03 16:27:39 ----D---- C:\windows\system32\CatRoot2
2010-03-02 20:24:41 ----D---- C:\windows\system32\spool
2010-03-02 15:22:01 ----D---- C:\Downloads
2010-02-23 17:47:38 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2010-02-22 14:48:58 ----D---- C:\WINDOWS
2010-02-14 21:11:30 ----SHD---- C:\windows\Installer
2010-02-06 18:13:36 ----RSD---- C:\windows\Fonts
2010-02-04 15:52:10 ----A---- C:\windows\ntbtlog.txt
2010-02-01 17:48:03 ----D---- C:\Program Files\Common Files
2010-01-29 17:36:42 ----HD---- C:\Program Files\InstallShield Installation Information
2010-01-25 16:18:22 ----D---- C:\windows\system32\drivers
2010-01-25 06:19:59 ----D---- C:\Games
2010-01-24 18:57:19 ----A---- C:\windows\system32\wrap_oal.dll
2010-01-24 18:57:19 ----A---- C:\windows\system32\OpenAL32.dll
2010-01-19 17:02:05 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-01-14 13:54:00 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Mozilla
2010-01-12 18:43:43 ----D---- C:\windows\system32\DirectX
2010-01-08 19:20:47 ----HD---- C:\windows\inf
2010-01-04 17:13:50 ----D---- C:\Documents and Settings\Administrator\Data aplikací\Adobe
2010-01-04 07:34:09 ----D---- C:\Documents and Settings\Administrator\Data aplikací\skypePM
2009-12-31 16:02:54 ----D---- C:\Program Files\Windows Media Player
2009-12-31 16:02:50 ----D---- C:\windows\Help
2009-12-30 19:00:12 ----D---- C:\Program Files\Bus-Simulator 2008
2009-12-30 12:37:50 ----D---- C:\Program Files\ICQ6.5
2009-12-23 18:12:43 ----D---- C:\Program Files\DAEMON Tools Toolbar
2009-12-23 18:12:01 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2009-12-23 17:56:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2009-12-23 17:51:40 ----D---- C:\Program Files\Common Files\Adobe
2009-12-18 14:06:22 ----D---- C:\Program Files\1C Company
2009-12-18 14:05:44 ----D---- C:\Program Files\Common Files\Ahead
2009-12-18 14:04:59 ----D---- C:\Program Files\Opera
2009-12-16 15:54:52 ----A---- C:\windows\NeroDigital.ini
2009-12-15 20:44:55 ----SD---- C:\windows\Downloaded Program Files
2009-12-15 20:07:35 ----A---- C:\windows\system32\CmdLineExt.dll
2009-12-12 20:18:31 ----DC---- C:\windows\system32\DRVSTORE
2009-12-12 20:16:23 ----D---- C:\Program Files\The Saboteur
2009-12-11 19:35:35 ----SD---- C:\windows\Tasks

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AvgAsCln;AVG Anti-Spyware Clean Driver; C:\windows\System32\DRIVERS\AvgAsCln.sys [2006-09-05 3968]
R1 ehdrv;ehdrv; C:\windows\system32\DRIVERS\ehdrv.sys [2009-05-14 107256]
R1 epfwtdi;epfwtdi; C:\windows\system32\DRIVERS\epfwtdi.sys [2009-05-14 55768]
R1 intelppm;Řadič procesoru Intel; C:\windows\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\windows\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 eamon;eamon; C:\windows\system32\DRIVERS\eamon.sys [2009-05-14 114472]
R2 epfw;epfw; C:\windows\system32\DRIVERS\epfw.sys [2009-05-14 133000]
R3 ati2mtag;ati2mtag; C:\windows\system32\DRIVERS\ati2mtag.sys [2007-12-21 2843136]
R3 Epfwndis;Eset Personal Firewall; C:\windows\system32\DRIVERS\Epfwndis.sys [2009-05-14 33096]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\windows\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\windows\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RtkHDAud.sys [2007-09-19 4617728]
R3 mouhid;Ovladač myši standardu HID; C:\windows\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\windows\system32\DRIVERS\Rtenicxp.sys [2007-09-19 101504]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\windows\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\windows\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\windows\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\windows\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 a2wygp5a;a2wygp5a; C:\windows\system32\drivers\a2wygp5a.sys []
S3 a4r07q92;a4r07q92; C:\windows\system32\drivers\a4r07q92.sys []
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 usbaudio;Ovladač zvukové karty USB (WDM); C:\windows\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\windows\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 WpdUsb;WpdUsb; C:\windows\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\windows\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\windows\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Akamai;Akamai NetSession Interface; C:\windows\System32\svchost.exe [2008-04-14 14336]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-07-09 144712]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\windows\system32\Ati2evxx.exe [2007-12-21 512000]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-05-14 731840]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-11-15 153376]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\windows\system32\svchost.exe [2008-04-14 14336]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2007-12-20 593920]
S2 gupdate1c9a0cbf69e0088;Služba Google Update (gupdate1c9a0cbf69e0088); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-03-09 133104]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-05-14 20680]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 sdAuxService;PC Tools Auxiliary Service; C:\Program Files\Spyware Doctor\pctsAuxs.exe [2009-01-07 348752]
S3 sdCoreService;PC Tools Security Service; C:\Program Files\Spyware Doctor\pctsSvc.exe [2009-01-21 1095560]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz