Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Problémy s internetem
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Problémy s internetem
jednotka J je vyměnitelný disk, flashka apod. Připojená dnes nebyla v průběhu žádné akce, pouze včera při vyjetí combofixu
firewall byl vypnut vždy, když sem dal vyjet log pomocí combofixu
Jak mám vložit screen z příkazovýho řádku?
nový log po odinsatlování všech použitých prográmků
Logfile of random's system information tool 1.06 (written by random/random)
Run by John at 2010-01-30 15:28:18
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 20 GB (58%) free of 35 GB
Total RAM: 511 MB (13% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:28:31, on 30.1.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
C:\Program Files\TO2SSM\McciTrayApp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Rainlendar2\Rainlendar2.exe
C:\Program Files\Seznam.cz\postak.exe
C:\Program Files\ICQ6.5\ICQ.exe
C:\Program Files\Spybot2\TeaTimer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\internet explorer\iexplore.exe
C:\WINDOWS\system32\svchost.exe
C:\Documents and Settings\John\Local Settings\Temporary Internet Files\Content.IE5\1CVOKJBX\RSIT[1].exe
C:\Program Files\trend micro\John.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (file missing)
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot2\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\listicka.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [preload] C:\Windows\RUNXMLPL.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\FirstStart.exe
O4 - HKLM\..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [TO2SSM_McciTrayApp] C:\Program Files\TO2SSM\McciTrayApp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe -NoStart
O4 - HKCU\..\Run: [Rainlendar2] C:\Program Files\Rainlendar2\Rainlendar2.exe
O4 - HKCU\..\Run: [Seznam Postak] "C:\Program Files\Seznam.cz\postak.exe" -s
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ6.5\ICQ.exe" silent
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot2\TeaTimer.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Hlavní panel ATI CATALYST.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O4 - Global Startup: Akcelerátor spuštění AutoCADu.lnk = C:\Program Files\Common Files\Autodesk Shared\acstart16.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: Start Firewall.lnk = C:\WINDOWS\system32\net.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot2\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot2\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1F831FA2-42FC-11D4-95A6-0080AD30DCE1} (InstaFred) - file://C:\Program Files\AutoCAD 2002 Cz\InstFred.ocx
O16 - DPF: {3190CE28-0B6E-4133-A7D3-87D29CB92120} (ToolbarInetInstall Control) - http://software.seznam.cz/listicka/toolbar.cab
O16 - DPF: {50E43D86-A74D-11D0-98CE-004005249458} (AnimatedGif Control) - https://www.mojebanka.cz/jars/confwiz/MVSGif.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} (Ovládací prvek AcDcToday) - file://C:\Program Files\AutoCAD 2002 Cz\AcDcToday.ocx
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... ader55.cab
O16 - DPF: {AE563723-B4F5-11D4-A415-00108302FDFD} (NOXLATE-BANR) - file://C:\Program Files\AutoCAD 2002 Cz\InstBanr.ocx
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {F281A59C-7B65-11D3-8617-0010830243BD} (Prvek AcPreview) - file://C:\Program Files\AutoCAD 2002 Cz\AcPreview.ocx
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
--
End of file - 11737 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files\Spybot2\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-06-24 256112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2009-06-24 761840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-11 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-10-11 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Lištička - C:\Program Files\Seznam.cz\listicka.dll [2010-01-18 1414808]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll []
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-06-24 256112]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"preload"=C:\Windows\RUNXMLPL.exe [2004-04-20 40960]
"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2005-05-03 344064]
"ATICCC"=C:\Program Files\ATI Technologies\ATI.ACE\cli.exe [2005-05-04 32768]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2006-01-11 577536]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2007-09-28 77824]
"OM_Monitor"=C:\Program Files\OLYMPUS\OLYMPUS Master\FirstStart.exe [2006-05-16 40960]
"OrderReminder"=C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [2006-01-30 98304]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"TO2SSM_McciTrayApp"=C:\Program Files\TO2SSM\McciTrayApp.exe [2008-08-15 1473536]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-10-11 149280]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OM_Monitor"=C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe [2006-05-16 57344]
"Rainlendar2"=C:\Program Files\Rainlendar2\Rainlendar2.exe [2008-08-24 4067328]
"Seznam Postak"=C:\Program Files\Seznam.cz\postak.exe [2010-01-18 448664]
"ICQ"=C:\Program Files\ICQ6.5\ICQ.exe [2009-11-16 172792]
"SpybotSD TeaTimer"=C:\Program Files\Spybot2\TeaTimer.exe [2009-03-05 2260480]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Hlavní panel ATI CATALYST.lnk - C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
Akcelerátor spuštění AutoCADu.lnk - C:\Program Files\Common Files\Autodesk Shared\acstart16.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
Adobe Reader Synchronizer.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
Start Firewall.lnk - C:\WINDOWS\system32\net.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2005-05-04 46080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Sunbelt Software\Personal Firewall\KPF4SS.EXE"="C:\Program Files\Sunbelt Software\Personal Firewall\KPF4SS.EXE:*:Enabled:kpf4ss.exe"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Sunbelt Software\Personal Firewall\KPF4GUI.EXE"="C:\Program Files\Sunbelt Software\Personal Firewall\KPF4GUI.EXE:*:Enabled:Sunbelt Kerio Firewall GUI"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
======File associations======
.scr - open - "C:\WINDOWS\system32\notepad.exe" "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 months======
2010-01-30 15:28:18 ----D---- C:\rsit
2010-01-30 15:07:31 ----SHD---- C:\Recycled
2010-01-30 12:24:28 ----D---- C:\Documents and Settings\John\Data aplikací\Malwarebytes
2010-01-30 12:24:21 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-01-29 19:50:05 ----D---- C:\Program Files\trend micro
2010-01-23 16:05:58 ----D---- C:\Program Files\Spybot2
2010-01-23 16:02:16 ----D---- C:\Program Files\TeaTimer (Spybot - Search & Destroy)
2010-01-23 16:02:16 ----D---- C:\Program Files\SDHelper (Spybot - Search & Destroy)
2010-01-23 16:02:15 ----D---- C:\Program Files\Misc. Support Library (Spybot - Search & Destroy)
2010-01-23 16:02:14 ----D---- C:\Program Files\File Scanner Library (Spybot - Search & Destroy)
2010-01-23 15:58:22 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2010-01-23 15:58:18 ----D---- C:\Program Files\Spybot
2010-01-13 23:25:04 ----HD---- C:\WINDOWS\$NtUninstallKB955759$
2010-01-13 23:24:57 ----HD---- C:\WINDOWS\$NtUninstallKB972270$
2010-01-07 02:46:01 ----D---- C:\Documents and Settings\John\Data aplikací\Nokia Ovi Suite
2010-01-07 02:42:45 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll
2010-01-07 02:42:41 ----HD---- C:\WINDOWS\$NtUninstallWdf01007$
2010-01-07 02:28:43 ----D---- C:\Program Files\PC Connectivity Solution
2010-01-07 02:28:00 ----A---- C:\WINDOWS\system32\wdfcoinstaller01007.dll
2010-01-07 02:28:00 ----A---- C:\WINDOWS\system32\nmwcdcocls.dll
2010-01-07 02:24:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\OviInstallerCache
======List of files/folders modified in the last 1 months======
2010-01-30 14:04:58 ----A---- C:\WINDOWS\NeroDigital.ini
2010-01-30 13:14:40 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-01-30 12:13:02 ----A---- C:\WINDOWS\System.ini
2010-01-13 23:25:08 ----A---- C:\WINDOWS\imsins.BAK
2010-01-07 02:44:22 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-01-05 01:17:46 ----A---- C:\WINDOWS\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-11-25 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 cdrbsdrv;cdrbsdrv; C:\WINDOWS\system32\drivers\cdrbsdrv.sys [2004-03-08 13567]
R1 fwdrv;Firewall Driver; C:\WINDOWS\system32\drivers\fwdrv.sys [2007-02-20 302000]
R1 khips;Kerio HIPS Driver; C:\WINDOWS\system32\drivers\khips.sys [2007-02-20 71088]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-11-25 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-11-25 94160]
R2 irda;Protokol IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2006-01-13 3844288]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-05-04 1133056]
R3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2007-01-24 530861]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2006-10-10 30459]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2007-02-27 868042]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2007-01-24 67960]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2007-10-05 10345]
R3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 NTIDrvr;Upper Class Filter Driver; C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys [2005-04-11 6144]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2005-04-05 33536]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2005-04-05 12928]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
S3 AR5211;Atheros Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2005-01-10 449888]
S3 BCM43XX;Broadcom 802.11 ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2004-12-22 369024]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2006-10-15 149123]
S3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2006-11-28 47907]
S3 C-Dilla;C-Dilla; \??\C:\WINDOWS\system32\drivers\CDANT.SYS []
S3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
S3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 GVCplDrv;GVCplDrv; C:\WINDOWS\system32\drivers\GVCplDrv.sys [2004-05-02 23040]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2009-10-06 17664]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2009-10-06 22016]
S3 NSCIRDA;NSC Infrared Device Driver; C:\WINDOWS\system32\DRIVERS\nscirda.sys [2008-04-13 28672]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RTL8023xp;Realtek RTL8139/810x/8169/8110 all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2004-12-02 70912]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2009-10-06 7936]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2009-10-06 7936]
S3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-01-18 83328]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-05-04 364544]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2007-02-27 266295]
R2 C-DillaSrv;C-DillaSrv; C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE [2001-09-10 32256]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-10-11 153376]
R2 KPF4;Sunbelt Kerio Personal Firewall 4; C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe [2007-02-20 1222192]
R2 McciCMService;McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [2007-10-15 303104]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2005-05-03 516096]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2007-09-23 77944]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-29 182768]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-10-27 657408]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
firewall byl vypnut vždy, když sem dal vyjet log pomocí combofixu
Jak mám vložit screen z příkazovýho řádku?
nový log po odinsatlování všech použitých prográmků
Logfile of random's system information tool 1.06 (written by random/random)
Run by John at 2010-01-30 15:28:18
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 20 GB (58%) free of 35 GB
Total RAM: 511 MB (13% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:28:31, on 30.1.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
C:\Program Files\TO2SSM\McciTrayApp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Rainlendar2\Rainlendar2.exe
C:\Program Files\Seznam.cz\postak.exe
C:\Program Files\ICQ6.5\ICQ.exe
C:\Program Files\Spybot2\TeaTimer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\internet explorer\iexplore.exe
C:\WINDOWS\system32\svchost.exe
C:\Documents and Settings\John\Local Settings\Temporary Internet Files\Content.IE5\1CVOKJBX\RSIT[1].exe
C:\Program Files\trend micro\John.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (file missing)
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot2\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files\Seznam.cz\listicka.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [preload] C:\Windows\RUNXMLPL.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\FirstStart.exe
O4 - HKLM\..\Run: [OrderReminder] C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [TO2SSM_McciTrayApp] C:\Program Files\TO2SSM\McciTrayApp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe -NoStart
O4 - HKCU\..\Run: [Rainlendar2] C:\Program Files\Rainlendar2\Rainlendar2.exe
O4 - HKCU\..\Run: [Seznam Postak] "C:\Program Files\Seznam.cz\postak.exe" -s
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ6.5\ICQ.exe" silent
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot2\TeaTimer.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Hlavní panel ATI CATALYST.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O4 - Global Startup: Akcelerátor spuštění AutoCADu.lnk = C:\Program Files\Common Files\Autodesk Shared\acstart16.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: Start Firewall.lnk = C:\WINDOWS\system32\net.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files\Seznam.cz\listicka.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot2\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot2\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1F831FA2-42FC-11D4-95A6-0080AD30DCE1} (InstaFred) - file://C:\Program Files\AutoCAD 2002 Cz\InstFred.ocx
O16 - DPF: {3190CE28-0B6E-4133-A7D3-87D29CB92120} (ToolbarInetInstall Control) - http://software.seznam.cz/listicka/toolbar.cab
O16 - DPF: {50E43D86-A74D-11D0-98CE-004005249458} (AnimatedGif Control) - https://www.mojebanka.cz/jars/confwiz/MVSGif.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} (Ovládací prvek AcDcToday) - file://C:\Program Files\AutoCAD 2002 Cz\AcDcToday.ocx
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/200 ... ader55.cab
O16 - DPF: {AE563723-B4F5-11D4-A415-00108302FDFD} (NOXLATE-BANR) - file://C:\Program Files\AutoCAD 2002 Cz\InstBanr.ocx
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {F281A59C-7B65-11D3-8617-0010830243BD} (Prvek AcPreview) - file://C:\Program Files\AutoCAD 2002 Cz\AcPreview.ocx
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
--
End of file - 11737 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files\Spybot2\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-06-24 256112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2009-06-24 761840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-11 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-10-11 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Lištička - C:\Program Files\Seznam.cz\listicka.dll [2010-01-18 1414808]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll []
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-06-24 256112]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"preload"=C:\Windows\RUNXMLPL.exe [2004-04-20 40960]
"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2005-05-03 344064]
"ATICCC"=C:\Program Files\ATI Technologies\ATI.ACE\cli.exe [2005-05-04 32768]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2006-01-11 577536]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2007-09-28 77824]
"OM_Monitor"=C:\Program Files\OLYMPUS\OLYMPUS Master\FirstStart.exe [2006-05-16 40960]
"OrderReminder"=C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe [2006-01-30 98304]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"TO2SSM_McciTrayApp"=C:\Program Files\TO2SSM\McciTrayApp.exe [2008-08-15 1473536]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-10-11 149280]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OM_Monitor"=C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe [2006-05-16 57344]
"Rainlendar2"=C:\Program Files\Rainlendar2\Rainlendar2.exe [2008-08-24 4067328]
"Seznam Postak"=C:\Program Files\Seznam.cz\postak.exe [2010-01-18 448664]
"ICQ"=C:\Program Files\ICQ6.5\ICQ.exe [2009-11-16 172792]
"SpybotSD TeaTimer"=C:\Program Files\Spybot2\TeaTimer.exe [2009-03-05 2260480]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Hlavní panel ATI CATALYST.lnk - C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
Akcelerátor spuštění AutoCADu.lnk - C:\Program Files\Common Files\Autodesk Shared\acstart16.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
Adobe Reader Synchronizer.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
Start Firewall.lnk - C:\WINDOWS\system32\net.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2005-05-04 46080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Sunbelt Software\Personal Firewall\KPF4SS.EXE"="C:\Program Files\Sunbelt Software\Personal Firewall\KPF4SS.EXE:*:Enabled:kpf4ss.exe"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Sunbelt Software\Personal Firewall\KPF4GUI.EXE"="C:\Program Files\Sunbelt Software\Personal Firewall\KPF4GUI.EXE:*:Enabled:Sunbelt Kerio Firewall GUI"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
======File associations======
.scr - open - "C:\WINDOWS\system32\notepad.exe" "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 months======
2010-01-30 15:28:18 ----D---- C:\rsit
2010-01-30 15:07:31 ----SHD---- C:\Recycled
2010-01-30 12:24:28 ----D---- C:\Documents and Settings\John\Data aplikací\Malwarebytes
2010-01-30 12:24:21 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2010-01-29 19:50:05 ----D---- C:\Program Files\trend micro
2010-01-23 16:05:58 ----D---- C:\Program Files\Spybot2
2010-01-23 16:02:16 ----D---- C:\Program Files\TeaTimer (Spybot - Search & Destroy)
2010-01-23 16:02:16 ----D---- C:\Program Files\SDHelper (Spybot - Search & Destroy)
2010-01-23 16:02:15 ----D---- C:\Program Files\Misc. Support Library (Spybot - Search & Destroy)
2010-01-23 16:02:14 ----D---- C:\Program Files\File Scanner Library (Spybot - Search & Destroy)
2010-01-23 15:58:22 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2010-01-23 15:58:18 ----D---- C:\Program Files\Spybot
2010-01-13 23:25:04 ----HD---- C:\WINDOWS\$NtUninstallKB955759$
2010-01-13 23:24:57 ----HD---- C:\WINDOWS\$NtUninstallKB972270$
2010-01-07 02:46:01 ----D---- C:\Documents and Settings\John\Data aplikací\Nokia Ovi Suite
2010-01-07 02:42:45 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll
2010-01-07 02:42:41 ----HD---- C:\WINDOWS\$NtUninstallWdf01007$
2010-01-07 02:28:43 ----D---- C:\Program Files\PC Connectivity Solution
2010-01-07 02:28:00 ----A---- C:\WINDOWS\system32\wdfcoinstaller01007.dll
2010-01-07 02:28:00 ----A---- C:\WINDOWS\system32\nmwcdcocls.dll
2010-01-07 02:24:48 ----D---- C:\Documents and Settings\All Users\Data aplikací\OviInstallerCache
======List of files/folders modified in the last 1 months======
2010-01-30 14:04:58 ----A---- C:\WINDOWS\NeroDigital.ini
2010-01-30 13:14:40 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-01-30 12:13:02 ----A---- C:\WINDOWS\System.ini
2010-01-13 23:25:08 ----A---- C:\WINDOWS\imsins.BAK
2010-01-07 02:44:22 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-01-05 01:17:46 ----A---- C:\WINDOWS\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-11-25 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 cdrbsdrv;cdrbsdrv; C:\WINDOWS\system32\drivers\cdrbsdrv.sys [2004-03-08 13567]
R1 fwdrv;Firewall Driver; C:\WINDOWS\system32\drivers\fwdrv.sys [2007-02-20 302000]
R1 khips;Kerio HIPS Driver; C:\WINDOWS\system32\drivers\khips.sys [2007-02-20 71088]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-11-25 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-11-25 94160]
R2 irda;Protokol IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2006-01-13 3844288]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-05-04 1133056]
R3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2007-01-24 530861]
R3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2006-10-10 30459]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2007-02-27 868042]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2007-01-24 67960]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2007-10-05 10345]
R3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 NTIDrvr;Upper Class Filter Driver; C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys [2005-04-11 6144]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2005-04-05 33536]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2005-04-05 12928]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
S3 AR5211;Atheros Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2005-01-10 449888]
S3 BCM43XX;Broadcom 802.11 ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2004-12-22 369024]
S3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2006-10-15 149123]
S3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2006-11-28 47907]
S3 C-Dilla;C-Dilla; \??\C:\WINDOWS\system32\drivers\CDANT.SYS []
S3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
S3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 GVCplDrv;GVCplDrv; C:\WINDOWS\system32\drivers\GVCplDrv.sys [2004-05-02 23040]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2009-10-06 17664]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2009-10-06 22016]
S3 NSCIRDA;NSC Infrared Device Driver; C:\WINDOWS\system32\DRIVERS\nscirda.sys [2008-04-13 28672]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RTL8023xp;Realtek RTL8139/810x/8169/8110 all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys [2004-12-02 70912]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2009-10-06 7936]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2009-10-06 7936]
S3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-01-18 83328]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-05-04 364544]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2007-02-27 266295]
R2 C-DillaSrv;C-DillaSrv; C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE [2001-09-10 32256]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-10-11 153376]
R2 KPF4;Sunbelt Kerio Personal Firewall 4; C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe [2007-02-20 1222192]
R2 McciCMService;McciCMService; C:\Program Files\Common Files\Motive\McciCMService.exe [2007-10-15 303104]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2005-05-03 516096]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 Autodesk Licensing Service;Autodesk Licensing Service; C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2007-09-23 77944]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-29 182768]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-10-27 657408]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Re: Problémy s internetem
Zkoušel jste jiný prohlížeč?
přes přidat/odebrat programy odinstalujte Icq toolbar
Stáhněte SysProt AntiRootkit
http://sites.google.com/site/sysprotantirootkit/
-rozbalte a spusťte
-provedte všechny záložky a vložte logy
přes přidat/odebrat programy odinstalujte Icq toolbar
Stáhněte SysProt AntiRootkit
http://sites.google.com/site/sysprotantirootkit/
-rozbalte a spusťte
-provedte všechny záložky a vložte logy
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Problémy s internetem
Icq toolbar sem v přidat/odebrat programy nenašel. Tato část systému mi od prvního dne po instalaci windovs neukazuje všechny programy, nevím proč
prográmek sem stáhnul, otevřel, ale nevím, jestli správně použil. vždy sem klikl záložku, ale nevím, jestli sem pak měl kliknout na tlačítka "kill" nebo "disable" či jiný podobný, vždy sem nechal jen projet ten sloupec načítání, co běží úplně dole a pak sem překlikl na další záložku. Měl sem dělat ještě něco jinýho? Log je zde
SysProt AntiRootkit v1.0.1.0
by swatkat
******************************************************************************************
******************************************************************************************
Process:
Name: [System Idle Process]
PID: 0
Hidden: No
Window Visible: No
Name: System
PID: 4
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\smss.exe
PID: 764
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\csrss.exe
PID: 1008
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\winlogon.exe
PID: 1040
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\services.exe
PID: 1088
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\lsass.exe
PID: 1100
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\Ati2evxx.exe
PID: 1256
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\svchost.exe
PID: 1288
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\svchost.exe
PID: 1360
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\svchost.exe
PID: 1508
Hidden: No
Window Visible: No
Name: C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
PID: 1540
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\svchost.exe
PID: 1616
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\svchost.exe
PID: 1752
Hidden: No
Window Visible: No
Name: C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PID: 1976
Hidden: No
Window Visible: No
Name: C:\Program Files\Alwil Software\Avast4\ashServ.exe
PID: 2024
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\Ati2evxx.exe
PID: 412
Hidden: No
Window Visible: No
Name: C:\WINDOWS\Explorer.EXE
PID: 532
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\spoolsv.exe
PID: 720
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\Drivers\CDANTSRV.EXE
PID: 180
Hidden: No
Window Visible: No
Name: C:\Program Files\Java\jre6\bin\jqs.exe
PID: 232
Hidden: No
Window Visible: No
Name: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
PID: 344
Hidden: No
Window Visible: No
Name: C:\WINDOWS\SOUNDMAN.EXE
PID: 388
Hidden: No
Window Visible: No
Name: C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PID: 396
Hidden: No
Window Visible: No
Name: C:\Program Files\QuickTime\qttask.exe
PID: 436
Hidden: No
Window Visible: No
Name: C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
PID: 560
Hidden: No
Window Visible: No
Name: C:\Program Files\TO2SSM\McciTrayApp.exe
PID: 888
Hidden: No
Window Visible: No
Name: C:\Program Files\Java\jre6\bin\jusched.exe
PID: 904
Hidden: No
Window Visible: No
Name: C:\Program Files\Rainlendar2\Rainlendar2.exe
PID: 1408
Hidden: No
Window Visible: No
Name: C:\Program Files\Seznam.cz\postak.exe
PID: 1416
Hidden: No
Window Visible: No
Name: C:\Program Files\ICQ6.5\ICQ.exe
PID: 1436
Hidden: No
Window Visible: Yes
Name: C:\Program Files\Spybot2\TeaTimer.exe
PID: 1776
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\ctfmon.exe
PID: 1900
Hidden: No
Window Visible: No
Name: C:\Program Files\Common Files\Motive\McciCMService.exe
PID: 1388
Hidden: No
Window Visible: No
Name: C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PID: 1472
Hidden: No
Window Visible: No
Name: C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PID: 2624
Hidden: No
Window Visible: No
Name: C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PID: 2932
Hidden: No
Window Visible: No
Name: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
PID: 120
Hidden: No
Window Visible: No
Name: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
PID: 1932
Hidden: No
Window Visible: No
Name: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
PID: 1648
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\svchost.exe
PID: 2280
Hidden: No
Window Visible: No
Name: C:\Program Files\Internet Explorer\IEXPLORE.EXE
PID: 2648
Hidden: No
Window Visible: No
Name: C:\Program Files\Internet Explorer\IEXPLORE.EXE
PID: 260
Hidden: No
Window Visible: No
Name: C:\Documents and Settings\John\Plocha\SysProt\SysProt.exe
PID: 2744
Hidden: No
Window Visible: Yes
******************************************************************************************
******************************************************************************************
Kernel Modules:
Module Name: \??\C:\Documents and Settings\John\Plocha\SysProt\SysProtDrv.sys
Service Name: SysProtDrv.sys
Module Base: B7C3B000
Module End: B7C46000
Hidden: No
Module Name: \WINDOWS\system32\ntkrnlpa.exe
Service Name: ---
Module Base: 804D7000
Module End: 806CFF00
Hidden: No
Module Name: \WINDOWS\system32\hal.dll
Service Name: ---
Module Base: 806D0000
Module End: 806F0300
Hidden: No
Module Name: \WINDOWS\system32\KDCOM.DLL
Service Name: ---
Module Base: F899F000
Module End: F89A1000
Hidden: No
Module Name: \WINDOWS\system32\BOOTVID.dll
Service Name: ---
Module Base: F88AF000
Module End: F88B2000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ACPI.sys
Service Name: ACPI
Module Base: F8370000
Module End: F839E000
Hidden: No
Module Name: \WINDOWS\system32\DRIVERS\WMILIB.SYS
Service Name: ---
Module Base: F89A1000
Module End: F89A3000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\pci.sys
Service Name: PCI
Module Base: F835F000
Module End: F8370000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\isapnp.sys
Service Name: isapnp
Module Base: F849F000
Module End: F84A9000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ohci1394.sys
Service Name: ohci1394
Module Base: F84AF000
Module End: F84BF000
Hidden: No
Module Name: \WINDOWS\system32\DRIVERS\1394BUS.SYS
Service Name: ---
Module Base: F84BF000
Module End: F84CD000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\compbatt.sys
Service Name: Compbatt
Module Base: F88B3000
Module End: F88B6000
Hidden: No
Module Name: \WINDOWS\system32\DRIVERS\BATTC.SYS
Service Name: BattC
Module Base: F88B7000
Module End: F88BB000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\pciide.sys
Service Name: PCIIde
Module Base: F8A67000
Module End: F8A68000
Hidden: No
Module Name: \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
Service Name: ---
Module Base: F871F000
Module End: F8726000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\aliide.sys
Service Name: AliIde
Module Base: F89A3000
Module End: F89A5000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\intelide.sys
Service Name: IntelIde
Module Base: F89A5000
Module End: F89A7000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\toside.sys
Service Name: TosIde
Module Base: F89A7000
Module End: F89A9000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\viaide.sys
Service Name: ViaIde
Module Base: F89A9000
Module End: F89AB000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\cmdide.sys
Service Name: CmdIde
Module Base: F89AB000
Module End: F89AD000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\pcmcia.sys
Service Name: Pcmcia
Module Base: F8341000
Module End: F835F000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\MountMgr.sys
Service Name: MountMgr
Module Base: F84CF000
Module End: F84DA000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ftdisk.sys
Service Name: Disk
Module Base: F8322000
Module End: F8341000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ACPIEC.sys
Service Name: ACPIEC
Module Base: F88BB000
Module End: F88BE000
Hidden: No
Module Name: \WINDOWS\system32\DRIVERS\OPRGHDLR.SYS
Service Name: ---
Module Base: F8A68000
Module End: F8A69000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\PartMgr.sys
Service Name: PartMgr
Module Base: F8727000
Module End: F872C000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\VolSnap.sys
Service Name: VolSnap
Module Base: F84DF000
Module End: F84EC000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\cpqarray.sys
Service Name: Cpqarray
Module Base: F88BF000
Module End: F88C3000
Hidden: No
Module Name: \WINDOWS\system32\DRIVERS\SCSIPORT.SYS
Service Name: ScsiPort
Module Base: F830A000
Module End: F8322000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\atapi.sys
Service Name: atapi
Module Base: F82F2000
Module End: F830A000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\aha154x.sys
Service Name: Aha154x
Module Base: F88C3000
Module End: F88C7000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\sparrow.sys
Service Name: Sparrow
Module Base: F872F000
Module End: F8734000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\symc810.sys
Service Name: symc810
Module Base: F88C7000
Module End: F88CB000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\aic78xx.sys
Service Name: aic78xx
Module Base: F84EF000
Module End: F84FD000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\dac960nt.sys
Service Name: dac960nt
Module Base: F88CB000
Module End: F88CF000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ql10wnt.sys
Service Name: Ql10wnt
Module Base: F84FF000
Module End: F8508000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\amsint.sys
Service Name: amsint
Module Base: F88CF000
Module End: F88D2000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\asc.sys
Service Name: asc
Module Base: F8737000
Module End: F873E000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\asc3550.sys
Service Name: asc3550
Module Base: F88D3000
Module End: F88D7000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\mraid35x.sys
Service Name: mraid35x
Module Base: F873F000
Module End: F8744000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\i2omp.sys
Service Name: i2omp
Module Base: F8747000
Module End: F874C000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ini910u.sys
Service Name: ini910u
Module Base: F88D7000
Module End: F88DB000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ql1240.sys
Service Name: ql1240
Module Base: F850F000
Module End: F8519000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\aic78u2.sys
Service Name: aic78u2
Module Base: F851F000
Module End: F852D000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\symc8xx.sys
Service Name: symc8xx
Module Base: F874F000
Module End: F8757000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\sym_hi.sys
Service Name: sym_hi
Module Base: F8757000
Module End: F875E000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\sym_u3.sys
Service Name: sym_u3
Module Base: F875F000
Module End: F8767000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ABP480N5.SYS
Service Name: abp480n5
Module Base: F8767000
Module End: F876D000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\asc3350p.sys
Service Name: asc3350p
Module Base: F876F000
Module End: F8775000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\cd20xrnt.sys
Service Name: cd20xrnt
Module Base: F89AD000
Module End: F89AF000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ultra.sys
Service Name: ultra
Module Base: F852F000
Module End: F8538000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\adpu160m.sys
Service Name: adpu160m
Module Base: F82D9000
Module End: F82F2000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\dpti2o.sys
Service Name: dpti2o
Module Base: F8777000
Module End: F877C000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ql1080.sys
Service Name: ql1080
Module Base: F853F000
Module End: F8549000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ql1280.sys
Service Name: ql1280
Module Base: F854F000
Module End: F855B000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ql12160.sys
Service Name: ql12160
Module Base: F855F000
Module End: F856B000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\perc2.sys
Service Name: perc2
Module Base: F877F000
Module End: F8786000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\perc2hib.sys
Service Name: perc2hib
Module Base: F89AF000
Module End: F89B1000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\hpn.sys
Service Name: hpn
Module Base: F8787000
Module End: F878E000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\cbidf2k.sys
Service Name: cbidf
Module Base: F88DB000
Module End: F88DF000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\dac2w2k.sys
Service Name: dac2w2k
Module Base: F82AD000
Module End: F82D9000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\nvata.sys
Service Name: nvata
Module Base: F8296000
Module End: F82AD000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\disk.sys
Service Name: ---
Module Base: F856F000
Module End: F8578000
Hidden: No
Module Name: \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
Service Name: ---
Module Base: F857F000
Module End: F858C000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\fltmgr.sys
Service Name: FltMgr
Module Base: F8276000
Module End: F8296000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\sr.sys
Service Name: sr
Module Base: F8264000
Module End: F8276000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\PxHelp20.sys
Service Name: PxHelp20
Module Base: F858F000
Module End: F8598000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\Fastfat.sys
Service Name: Fastfat
Module Base: F8240000
Module End: F8264000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\KSecDD.sys
Service Name: KSecDD
Module Base: F8229000
Module End: F8240000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\WudfPf.sys
Service Name: WudfPf
Module Base: F8216000
Module End: F8229000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\NDIS.sys
Service Name: NDIS
Module Base: F81E9000
Module End: F8216000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\sisagp.sys
Service Name: sisagp
Module Base: F859F000
Module End: F85A9000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\viaagp.sys
Service Name: viaagp
Module Base: F85AF000
Module End: F85BA000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\Mup.sys
Service Name: Mup
Module Base: F81CF000
Module End: F81E9000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\gagp30kx.sys
Service Name: gagp30kx
Module Base: F85BF000
Module End: F85CB000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\alim1541.sys
Service Name: alim1541
Module Base: F85CF000
Module End: F85DA000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\amdagp.sys
Service Name: amdagp
Module Base: F85DF000
Module End: F85EA000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\agp440.sys
Service Name: agp440
Module Base: F85EF000
Module End: F85FA000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\agpCPQ.sys
Service Name: agpCPQ
Module Base: F85FF000
Module End: F860A000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\processr.sys
Service Name: Processor
Module Base: F862F000
Module End: F8639000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\usbohci.sys
Service Name: usbohci
Module Base: F87A7000
Module End: F87AC000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\USBPORT.SYS
Service Name: ---
Module Base: F8085000
Module End: F80A9000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\usbehci.sys
Service Name: usbehci
Module Base: F87D7000
Module End: F87DF000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ALCXWDM.SYS
Service Name: ALCXWDM
Module Base: F7CDA000
Module End: F8085000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\portcls.sys
Service Name: ---
Module Base: F7CB6000
Module End: F7CDA000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\drmk.sys
Service Name: ---
Module Base: F863F000
Module End: F864E000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ks.sys
Service Name: ---
Module Base: F7C93000
Module End: F7CB6000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\imapi.sys
Service Name: Imapi
Module Base: F864F000
Module End: F865A000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\cdrbsdrv.SYS
Service Name: cdrbsdrv
Module Base: F896F000
Module End: F8973000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\cdrom.sys
Service Name: Cdrom
Module Base: F865F000
Module End: F866F000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\redbook.sys
Service Name: redbook
Module Base: F866F000
Module End: F867E000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys
Service Name: NTIDrvr
Module Base: F89B5000
Module End: F89B7000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\nic1394.sys
Service Name: NIC1394
Module Base: F867F000
Module End: F868F000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
Service Name: nvnetbus
Module Base: F897B000
Module End: F897F000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\NVNRM.SYS
Service Name: ---
Module Base: F7BB3000
Module End: F7BF3000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\NVSNPU.SYS
Service Name: ---
Module Base: F7B80000
Module End: F7BB3000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
Service Name: ati2mtag
Module Base: F7A5B000
Module End: F7B80000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\VIDEOPRT.SYS
Service Name: ---
Module Base: F7A47000
Module End: F7A5B000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\fdc.sys
Service Name: Fdc
Module Base: F8807000
Module End: F880E000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\serial.sys
Service Name: Serial
Module Base: F868F000
Module End: F869F000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\serenum.sys
Service Name: Serenum
Module Base: F80EF000
Module End: F80F3000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\irsir.sys
Service Name: irsir
Module Base: F8827000
Module End: F882C000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\irenum.sys
Service Name: IRENUM
Module Base: F80E7000
Module End: F80EA000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\parport.sys
Service Name: Parport
Module Base: F7A33000
Module End: F7A47000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\i8042prt.sys
Service Name: i8042prt
Module Base: F869F000
Module End: F86AC000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\mouclass.sys
Service Name: Mouclass
Module Base: F8857000
Module End: F885D000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\kbdclass.sys
Service Name: Kbdclass
Module Base: F8867000
Module End: F886D000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\btkrnl.sys
Service Name: BTKRNL
Module Base: F7963000
Module End: F7A33000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\audstub.sys
Service Name: audstub
Module Base: F8AD5000
Module End: F8AD6000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\rasirda.sys
Service Name: irda
Module Base: F8877000
Module End: F887C000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\TDI.SYS
Service Name: ---
Module Base: F8887000
Module End: F888C000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
Service Name: Rasl2tp
Module Base: F86AF000
Module End: F86BC000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\ndistapi.sys
Service Name: NdisTapi
Module Base: F80B9000
Module End: F80BC000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\ndiswan.sys
Service Name: NdisWan
Module Base: F794C000
Module End: F7963000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\raspppoe.sys
Service Name: RasPppoe
Module Base: F86BF000
Module End: F86CA000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\raspptp.sys
Service Name: PptpMiniport
Module Base: F86CF000
Module End: F86DB000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\psched.sys
Service Name: PSched
Module Base: F7913000
Module End: F7924000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\msgpc.sys
Service Name: Gpc
Module Base: F86DF000
Module End: F86E8000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\ptilink.sys
Service Name: Ptilink
Module Base: F87F7000
Module End: F87FC000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\raspti.sys
Service Name: Raspti
Module Base: F880F000
Module End: F8814000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\hamachi.sys
Service Name: hamachi
Module Base: F8957000
Module End: F895A000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\termdd.sys
Service Name: TermDD
Module Base: F86EF000
Module End: F86F9000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\swenum.sys
Service Name: swenum
Module Base: F89BF000
Module End: F89C1000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\update.sys
Service Name: Update
Module Base: F78B5000
Module End: F7913000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\mssmbios.sys
Service Name: mssmbios
Module Base: F895F000
Module End: F8963000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\btport.sys
Service Name: BTDriver
Module Base: F87AF000
Module End: F87B6000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\btaudio.sys
Service Name: btaudio
Module Base: F7835000
Module End: F78B5000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\NDProxy.SYS
Service Name: NDProxy
Module Base: F86FF000
Module End: F8709000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\usbhub.sys
Service Name: usbhub
Module Base: F870F000
Module End: F871E000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\USBD.SYS
Service Name: ---
Module Base: F89C7000
Module End: F89C9000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
Service Name: NVENETFD
Module Base: F81AF000
Module End: F81B8000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\flpydisk.sys
Service Name: Flpydisk
Module Base: F888F000
Module End: F8894000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\i2omgmt.SYS
Service Name: i2omgmt
Module Base: F80BD000
Module End: F80C0000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\Fs_Rec.SYS
Service Name: Fs_Rec
Module Base: F89CD000
Module End: F89CF000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\Null.SYS
Service Name: Null
Module Base: F8B17000
Module End: F8B18000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\Beep.SYS
Service Name: Beep
Module Base: F89D1000
Module End: F89D3000
Hidden: No
Module Name: C:\WINDOWS\System32\drivers\vga.sys
Service Name: VgaSave
Module Base: F87B7000
Module End: F87BD000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\mnmdd.SYS
Service Name: mnmdd
Module Base: F89D5000
Module End: F89D7000
Hidden: No
Module Name: C:\WINDOWS\System32\DRIVERS\RDPCDD.sys
Service Name: RDPCDD
Module Base: F89D9000
Module End: F89DB000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\fwdrv.sys
Service Name: fwdrv
Module Base: EF5A8000
Module End: EF5F1000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\Msfs.SYS
Service Name: Msfs
Module Base: EF641000
Module End: EF646000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\Npfs.SYS
Service Name: Npfs
Module Base: EF631000
Module End: EF639000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\rasacd.sys
Service Name: RasAcd
Module Base: F7944000
Module End: F7947000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\ipsec.sys
Service Name: IPSec
Module Base: EF595000
Module End: EF5A8000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\tcpip.sys
Service Name: Tcpip
Module Base: EF53C000
Module End: EF595000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\aswTdi.SYS
Service Name: aswTdi
Module Base: F815F000
Module End: F8169000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\ipnat.sys
Service Name: IpNat
Module Base: EF516000
Module End: EF53C000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\wanarp.sys
Service Name: Wanarp
Module Base: F814F000
Module End: F8158000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\netbt.sys
Service Name: NetBT
Module Base: EF4EE000
Module End: EF516000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\arp1394.sys
Service Name: Arp1394
Module Base: F813F000
Module End: F814E000
Hidden: No
Module Name: C:\WINDOWS\System32\drivers\afd.sys
Service Name: AFD
Module Base: EF4A4000
Module End: EF4C6000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\netbios.sys
Service Name: NetBIOS
Module Base: F812F000
Module End: F8138000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\rdbss.sys
Service Name: Rdbss
Module Base: EF479000
Module End: EF4A4000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
Service Name: MRxSmb
Module Base: EF409000
Module End: EF479000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\khips.sys
Service Name: khips
Module Base: F7C83000
Module End: F7C93000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\Fips.SYS
Service Name: Fips
Module Base: F7C73000
Module End: F7C7E000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\aswSP.SYS
Service Name: aswSP
Module Base: EF348000
Module End: EF369000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\Aavmker4.SYS
Service Name: Aavmker4
Module Base: F8817000
Module End: F881C000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\Ntfs.SYS
Service Name: Ntfs
Module Base: EF2BB000
Module End: EF348000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
Service Name: usbstor
Module Base: EF649000
Module End: EF650000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\usbprint.sys
Service Name: usbprint
Module Base: EF629000
Module End: EF630000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\btwusb.sys
Service Name: BTWUSB
Module Base: F77A8000
Module End: F77B8000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\Cdfs.SYS
Service Name: Cdfs
Module Base: EF3C9000
Module End: EF3D9000
Hidden: No
Module Name: \SystemRoot\System32\Drivers\dump_nvata.sys
Service Name: ---
Module Base: EF27C000
Module End: EF293000
Hidden: Yes
Module Name: \SystemRoot\System32\Drivers\dump_WMILIB.SYS
Service Name: ---
Module Base: F8A27000
Module End: F8A29000
Hidden: Yes
Module Name: C:\WINDOWS\System32\drivers\Dxapi.sys
Service Name: ---
Module Base: EF2B7000
Module End: EF2BA000
Hidden: No
Module Name: C:\WINDOWS\System32\watchdog.sys
Service Name: ---
Module Base: F882F000
Module End: F8834000
Hidden: No
Module Name: C:\WINDOWS\System32\drivers\dxgthk.sys
Service Name: ---
Module Base: F8B55000
Module End: F8B56000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys
Service Name: aswFsBlk
Module Base: F87EF000
Module End: F87F7000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\irda.sys
Service Name: ---
Module Base: B8CA2000
Module End: B8CB8000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\ndisuio.sys
Service Name: Ndisuio
Module Base: B8DBC000
Module End: B8DC0000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\aswMon2.SYS
Service Name: aswMon2
Module Base: B8C3C000
Module End: B8C52000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\wdmaud.sys
Service Name: wdmaud
Module Base: B892F000
Module End: B8944000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\sysaudio.sys
Service Name: sysaudio
Module Base: B8D70000
Module End: B8D7F000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\aswRdr.SYS
Service Name: aswRdr
Module Base: B8A2C000
Module End: B8A30000
Hidden: No
Module Name: \SystemRoot\System32\Drivers\hiber_WMILIB.SYS
Service Name: ---
Module Base: F8A15000
Module End: F8A17000
Hidden: Yes
Module Name: C:\WINDOWS\system32\drivers\kmixer.sys
Service Name: kmixer
Module Base: B6CEE000
Module End: B6D19000
Hidden: No
******************************************************************************************
******************************************************************************************
SSDT:
Function Name: ZwClose
Address: EF3506B8
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwCreateFile
Address: EF5C3552
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
Function Name: ZwCreateKey
Address: EF350574
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwCreateProcess
Address: EF5C2A1A
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
Function Name: ZwCreateProcessEx
Address: EF5C2910
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
Function Name: ZwCreateThread
Address: EF5C2F2A
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
Function Name: ZwDeleteFile
Address: EF5C4034
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
Function Name: ZwDeleteKey
Address: EF5BFD54
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
Function Name: ZwDeleteValueKey
Address: EF350A52
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwDuplicateObject
Address: EF35014C
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwLoadDriver
Address: F7C85F4C
Driver Base: F7C83000
Driver End: F7C93000
Driver Name: \SystemRoot\system32\drivers\khips.sys
Function Name: ZwMapViewOfSection
Address: F7C86232
Driver Base: F7C83000
Driver End: F7C93000
Driver Name: \SystemRoot\system32\drivers\khips.sys
Function Name: ZwOpenFile
Address: EF5C3906
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
Function Name: ZwOpenKey
Address: EF35064E
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwOpenProcess
Address: EF35008C
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwOpenThread
Address: EF3500F0
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwQueryValueKey
Address: EF35076E
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwRestoreKey
Address: EF35072E
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwResumeThread
Address: EF5C30DC
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
Function Name: ZwSetInformationFile
Address: EF5C3CE0
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
Function Name: ZwSetValueKey
Address: EF3508AE
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwWriteFile
Address: EF5C3BB2
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
******************************************************************************************
******************************************************************************************
No Kernel Hooks found
******************************************************************************************
******************************************************************************************
No IRP Hooks found
******************************************************************************************
******************************************************************************************
Ports:
Local Address: ACER-1F5ADAF30F:44334
Remote Address: LOCALHOST:1078
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:44334
Remote Address: LOCALHOST:1073
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:12143
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:12119
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:12110
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:12080
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:12025
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:5152
Remote Address: LOCALHOST:4485
Type: TCP
Process: C:\Program Files\Java\jre6\bin\jqs.exe
State: CLOSE_WAIT
Local Address: ACER-1F5ADAF30F:5152
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Java\jre6\bin\jqs.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:4522
Remote Address: LOCALHOST:12080
Type: TCP
Process: [System Idle Process]
State: TIME_WAIT
Local Address: ACER-1F5ADAF30F:1082
Remote Address: LOCALHOST:1080
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1080
Remote Address: LOCALHOST:1082
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1078
Remote Address: LOCALHOST:44334
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1077
Remote Address: LOCALHOST:1075
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1075
Remote Address: LOCALHOST:1077
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1073
Remote Address: LOCALHOST:44334
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1071
Remote Address: LOCALHOST:1030
Type: TCP
Process: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1059
Remote Address: LOCALHOST:1030
Type: TCP
Process: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1046
Remote Address: LOCALHOST:1030
Type: TCP
Process: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1042
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:1033
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:1030
Remote Address: LOCALHOST:1071
Type: TCP
Process: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1030
Remote Address: LOCALHOST:1059
Type: TCP
Process: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1030
Remote Address: LOCALHOST:1046
Type: TCP
Process: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1030
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:4426
Remote Address: A88-221-92-114.DEPLOY.AKAMAITECHNOLOGIES.COM:HTTP
Type: TCP
Process: C:\Program Files\Java\jre6\bin\jusched.exe
State: CLOSE_WAIT
Local Address: ACER-1F5ADAF30F:NETBIOS-SSN
Remote Address: 0.0.0.0:0
Type: TCP
Process: System
State: LISTENING
Local Address: ACER-1F5ADAF30F:44501
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:44334
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:1080
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:1075
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:MICROSOFT-DS
Remote Address: 0.0.0.0:0
Type: TCP
Process: System
State: LISTENING
Local Address: ACER-1F5ADAF30F:EPMAP
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\WINDOWS\System32\svchost.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:3814
Remote Address: NA
Type: UDP
Process: C:\Program Files\Internet Explorer\IEXPLORE.EXE
State: NA
Local Address: ACER-1F5ADAF30F:3782
Remote Address: NA
Type: UDP
Process: C:\Program Files\Internet Explorer\IEXPLORE.EXE
State: NA
Local Address: ACER-1F5ADAF30F:1063
Remote Address: NA
Type: UDP
Process: C:\Program Files\ICQ6.5\ICQ.exe
State: NA
Local Address: ACER-1F5ADAF30F:123
Remote Address: NA
Type: UDP
Process: C:\WINDOWS\System32\svchost.exe
State: NA
Local Address: ACER-1F5ADAF30F:138
Remote Address: NA
Type: UDP
Process: System
State: NA
Local Address: ACER-1F5ADAF30F:NETBIOS-NS
Remote Address: NA
Type: UDP
Process: System
State: NA
Local Address: ACER-1F5ADAF30F:123
Remote Address: NA
Type: UDP
Process: C:\WINDOWS\System32\svchost.exe
State: NA
Local Address: ACER-1F5ADAF30F:44334
Remote Address: NA
Type: UDP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
State: NA
Local Address: ACER-1F5ADAF30F:1081
Remote Address: NA
Type: UDP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: NA
Local Address: ACER-1F5ADAF30F:1079
Remote Address: NA
Type: UDP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: NA
Local Address: ACER-1F5ADAF30F:1076
Remote Address: NA
Type: UDP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: NA
Local Address: ACER-1F5ADAF30F:1074
Remote Address: NA
Type: UDP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: NA
Local Address: ACER-1F5ADAF30F:MICROSOFT-DS
Remote Address: NA
Type: UDP
Process: System
State: NA
Local Address: ACER-1F5ADAF30F:68
Remote Address: NA
Type: UDP
Process: C:\WINDOWS\System32\svchost.exe
State: NA
******************************************************************************************
******************************************************************************************
No hidden files/folders found
prográmek sem stáhnul, otevřel, ale nevím, jestli správně použil. vždy sem klikl záložku, ale nevím, jestli sem pak měl kliknout na tlačítka "kill" nebo "disable" či jiný podobný, vždy sem nechal jen projet ten sloupec načítání, co běží úplně dole a pak sem překlikl na další záložku. Měl sem dělat ještě něco jinýho? Log je zde
SysProt AntiRootkit v1.0.1.0
by swatkat
******************************************************************************************
******************************************************************************************
Process:
Name: [System Idle Process]
PID: 0
Hidden: No
Window Visible: No
Name: System
PID: 4
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\smss.exe
PID: 764
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\csrss.exe
PID: 1008
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\winlogon.exe
PID: 1040
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\services.exe
PID: 1088
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\lsass.exe
PID: 1100
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\Ati2evxx.exe
PID: 1256
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\svchost.exe
PID: 1288
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\svchost.exe
PID: 1360
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\svchost.exe
PID: 1508
Hidden: No
Window Visible: No
Name: C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
PID: 1540
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\svchost.exe
PID: 1616
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\svchost.exe
PID: 1752
Hidden: No
Window Visible: No
Name: C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PID: 1976
Hidden: No
Window Visible: No
Name: C:\Program Files\Alwil Software\Avast4\ashServ.exe
PID: 2024
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\Ati2evxx.exe
PID: 412
Hidden: No
Window Visible: No
Name: C:\WINDOWS\Explorer.EXE
PID: 532
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\spoolsv.exe
PID: 720
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\Drivers\CDANTSRV.EXE
PID: 180
Hidden: No
Window Visible: No
Name: C:\Program Files\Java\jre6\bin\jqs.exe
PID: 232
Hidden: No
Window Visible: No
Name: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
PID: 344
Hidden: No
Window Visible: No
Name: C:\WINDOWS\SOUNDMAN.EXE
PID: 388
Hidden: No
Window Visible: No
Name: C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PID: 396
Hidden: No
Window Visible: No
Name: C:\Program Files\QuickTime\qttask.exe
PID: 436
Hidden: No
Window Visible: No
Name: C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
PID: 560
Hidden: No
Window Visible: No
Name: C:\Program Files\TO2SSM\McciTrayApp.exe
PID: 888
Hidden: No
Window Visible: No
Name: C:\Program Files\Java\jre6\bin\jusched.exe
PID: 904
Hidden: No
Window Visible: No
Name: C:\Program Files\Rainlendar2\Rainlendar2.exe
PID: 1408
Hidden: No
Window Visible: No
Name: C:\Program Files\Seznam.cz\postak.exe
PID: 1416
Hidden: No
Window Visible: No
Name: C:\Program Files\ICQ6.5\ICQ.exe
PID: 1436
Hidden: No
Window Visible: Yes
Name: C:\Program Files\Spybot2\TeaTimer.exe
PID: 1776
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\ctfmon.exe
PID: 1900
Hidden: No
Window Visible: No
Name: C:\Program Files\Common Files\Motive\McciCMService.exe
PID: 1388
Hidden: No
Window Visible: No
Name: C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PID: 1472
Hidden: No
Window Visible: No
Name: C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PID: 2624
Hidden: No
Window Visible: No
Name: C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PID: 2932
Hidden: No
Window Visible: No
Name: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
PID: 120
Hidden: No
Window Visible: No
Name: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
PID: 1932
Hidden: No
Window Visible: No
Name: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
PID: 1648
Hidden: No
Window Visible: No
Name: C:\WINDOWS\System32\svchost.exe
PID: 2280
Hidden: No
Window Visible: No
Name: C:\Program Files\Internet Explorer\IEXPLORE.EXE
PID: 2648
Hidden: No
Window Visible: No
Name: C:\Program Files\Internet Explorer\IEXPLORE.EXE
PID: 260
Hidden: No
Window Visible: No
Name: C:\Documents and Settings\John\Plocha\SysProt\SysProt.exe
PID: 2744
Hidden: No
Window Visible: Yes
******************************************************************************************
******************************************************************************************
Kernel Modules:
Module Name: \??\C:\Documents and Settings\John\Plocha\SysProt\SysProtDrv.sys
Service Name: SysProtDrv.sys
Module Base: B7C3B000
Module End: B7C46000
Hidden: No
Module Name: \WINDOWS\system32\ntkrnlpa.exe
Service Name: ---
Module Base: 804D7000
Module End: 806CFF00
Hidden: No
Module Name: \WINDOWS\system32\hal.dll
Service Name: ---
Module Base: 806D0000
Module End: 806F0300
Hidden: No
Module Name: \WINDOWS\system32\KDCOM.DLL
Service Name: ---
Module Base: F899F000
Module End: F89A1000
Hidden: No
Module Name: \WINDOWS\system32\BOOTVID.dll
Service Name: ---
Module Base: F88AF000
Module End: F88B2000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ACPI.sys
Service Name: ACPI
Module Base: F8370000
Module End: F839E000
Hidden: No
Module Name: \WINDOWS\system32\DRIVERS\WMILIB.SYS
Service Name: ---
Module Base: F89A1000
Module End: F89A3000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\pci.sys
Service Name: PCI
Module Base: F835F000
Module End: F8370000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\isapnp.sys
Service Name: isapnp
Module Base: F849F000
Module End: F84A9000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ohci1394.sys
Service Name: ohci1394
Module Base: F84AF000
Module End: F84BF000
Hidden: No
Module Name: \WINDOWS\system32\DRIVERS\1394BUS.SYS
Service Name: ---
Module Base: F84BF000
Module End: F84CD000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\compbatt.sys
Service Name: Compbatt
Module Base: F88B3000
Module End: F88B6000
Hidden: No
Module Name: \WINDOWS\system32\DRIVERS\BATTC.SYS
Service Name: BattC
Module Base: F88B7000
Module End: F88BB000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\pciide.sys
Service Name: PCIIde
Module Base: F8A67000
Module End: F8A68000
Hidden: No
Module Name: \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
Service Name: ---
Module Base: F871F000
Module End: F8726000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\aliide.sys
Service Name: AliIde
Module Base: F89A3000
Module End: F89A5000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\intelide.sys
Service Name: IntelIde
Module Base: F89A5000
Module End: F89A7000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\toside.sys
Service Name: TosIde
Module Base: F89A7000
Module End: F89A9000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\viaide.sys
Service Name: ViaIde
Module Base: F89A9000
Module End: F89AB000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\cmdide.sys
Service Name: CmdIde
Module Base: F89AB000
Module End: F89AD000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\pcmcia.sys
Service Name: Pcmcia
Module Base: F8341000
Module End: F835F000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\MountMgr.sys
Service Name: MountMgr
Module Base: F84CF000
Module End: F84DA000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ftdisk.sys
Service Name: Disk
Module Base: F8322000
Module End: F8341000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ACPIEC.sys
Service Name: ACPIEC
Module Base: F88BB000
Module End: F88BE000
Hidden: No
Module Name: \WINDOWS\system32\DRIVERS\OPRGHDLR.SYS
Service Name: ---
Module Base: F8A68000
Module End: F8A69000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\PartMgr.sys
Service Name: PartMgr
Module Base: F8727000
Module End: F872C000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\VolSnap.sys
Service Name: VolSnap
Module Base: F84DF000
Module End: F84EC000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\cpqarray.sys
Service Name: Cpqarray
Module Base: F88BF000
Module End: F88C3000
Hidden: No
Module Name: \WINDOWS\system32\DRIVERS\SCSIPORT.SYS
Service Name: ScsiPort
Module Base: F830A000
Module End: F8322000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\atapi.sys
Service Name: atapi
Module Base: F82F2000
Module End: F830A000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\aha154x.sys
Service Name: Aha154x
Module Base: F88C3000
Module End: F88C7000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\sparrow.sys
Service Name: Sparrow
Module Base: F872F000
Module End: F8734000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\symc810.sys
Service Name: symc810
Module Base: F88C7000
Module End: F88CB000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\aic78xx.sys
Service Name: aic78xx
Module Base: F84EF000
Module End: F84FD000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\dac960nt.sys
Service Name: dac960nt
Module Base: F88CB000
Module End: F88CF000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ql10wnt.sys
Service Name: Ql10wnt
Module Base: F84FF000
Module End: F8508000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\amsint.sys
Service Name: amsint
Module Base: F88CF000
Module End: F88D2000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\asc.sys
Service Name: asc
Module Base: F8737000
Module End: F873E000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\asc3550.sys
Service Name: asc3550
Module Base: F88D3000
Module End: F88D7000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\mraid35x.sys
Service Name: mraid35x
Module Base: F873F000
Module End: F8744000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\i2omp.sys
Service Name: i2omp
Module Base: F8747000
Module End: F874C000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ini910u.sys
Service Name: ini910u
Module Base: F88D7000
Module End: F88DB000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ql1240.sys
Service Name: ql1240
Module Base: F850F000
Module End: F8519000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\aic78u2.sys
Service Name: aic78u2
Module Base: F851F000
Module End: F852D000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\symc8xx.sys
Service Name: symc8xx
Module Base: F874F000
Module End: F8757000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\sym_hi.sys
Service Name: sym_hi
Module Base: F8757000
Module End: F875E000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\sym_u3.sys
Service Name: sym_u3
Module Base: F875F000
Module End: F8767000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ABP480N5.SYS
Service Name: abp480n5
Module Base: F8767000
Module End: F876D000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\asc3350p.sys
Service Name: asc3350p
Module Base: F876F000
Module End: F8775000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\cd20xrnt.sys
Service Name: cd20xrnt
Module Base: F89AD000
Module End: F89AF000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ultra.sys
Service Name: ultra
Module Base: F852F000
Module End: F8538000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\adpu160m.sys
Service Name: adpu160m
Module Base: F82D9000
Module End: F82F2000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\dpti2o.sys
Service Name: dpti2o
Module Base: F8777000
Module End: F877C000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ql1080.sys
Service Name: ql1080
Module Base: F853F000
Module End: F8549000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ql1280.sys
Service Name: ql1280
Module Base: F854F000
Module End: F855B000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ql12160.sys
Service Name: ql12160
Module Base: F855F000
Module End: F856B000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\perc2.sys
Service Name: perc2
Module Base: F877F000
Module End: F8786000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\perc2hib.sys
Service Name: perc2hib
Module Base: F89AF000
Module End: F89B1000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\hpn.sys
Service Name: hpn
Module Base: F8787000
Module End: F878E000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\cbidf2k.sys
Service Name: cbidf
Module Base: F88DB000
Module End: F88DF000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\dac2w2k.sys
Service Name: dac2w2k
Module Base: F82AD000
Module End: F82D9000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\nvata.sys
Service Name: nvata
Module Base: F8296000
Module End: F82AD000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\disk.sys
Service Name: ---
Module Base: F856F000
Module End: F8578000
Hidden: No
Module Name: \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
Service Name: ---
Module Base: F857F000
Module End: F858C000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\fltmgr.sys
Service Name: FltMgr
Module Base: F8276000
Module End: F8296000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\sr.sys
Service Name: sr
Module Base: F8264000
Module End: F8276000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\PxHelp20.sys
Service Name: PxHelp20
Module Base: F858F000
Module End: F8598000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\Fastfat.sys
Service Name: Fastfat
Module Base: F8240000
Module End: F8264000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\KSecDD.sys
Service Name: KSecDD
Module Base: F8229000
Module End: F8240000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\WudfPf.sys
Service Name: WudfPf
Module Base: F8216000
Module End: F8229000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\NDIS.sys
Service Name: NDIS
Module Base: F81E9000
Module End: F8216000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\sisagp.sys
Service Name: sisagp
Module Base: F859F000
Module End: F85A9000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\viaagp.sys
Service Name: viaagp
Module Base: F85AF000
Module End: F85BA000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\Mup.sys
Service Name: Mup
Module Base: F81CF000
Module End: F81E9000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\gagp30kx.sys
Service Name: gagp30kx
Module Base: F85BF000
Module End: F85CB000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\alim1541.sys
Service Name: alim1541
Module Base: F85CF000
Module End: F85DA000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\amdagp.sys
Service Name: amdagp
Module Base: F85DF000
Module End: F85EA000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\agp440.sys
Service Name: agp440
Module Base: F85EF000
Module End: F85FA000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\agpCPQ.sys
Service Name: agpCPQ
Module Base: F85FF000
Module End: F860A000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\processr.sys
Service Name: Processor
Module Base: F862F000
Module End: F8639000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\usbohci.sys
Service Name: usbohci
Module Base: F87A7000
Module End: F87AC000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\USBPORT.SYS
Service Name: ---
Module Base: F8085000
Module End: F80A9000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\usbehci.sys
Service Name: usbehci
Module Base: F87D7000
Module End: F87DF000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ALCXWDM.SYS
Service Name: ALCXWDM
Module Base: F7CDA000
Module End: F8085000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\portcls.sys
Service Name: ---
Module Base: F7CB6000
Module End: F7CDA000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\drmk.sys
Service Name: ---
Module Base: F863F000
Module End: F864E000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\ks.sys
Service Name: ---
Module Base: F7C93000
Module End: F7CB6000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\imapi.sys
Service Name: Imapi
Module Base: F864F000
Module End: F865A000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\cdrbsdrv.SYS
Service Name: cdrbsdrv
Module Base: F896F000
Module End: F8973000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\cdrom.sys
Service Name: Cdrom
Module Base: F865F000
Module End: F866F000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\redbook.sys
Service Name: redbook
Module Base: F866F000
Module End: F867E000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys
Service Name: NTIDrvr
Module Base: F89B5000
Module End: F89B7000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\nic1394.sys
Service Name: NIC1394
Module Base: F867F000
Module End: F868F000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
Service Name: nvnetbus
Module Base: F897B000
Module End: F897F000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\NVNRM.SYS
Service Name: ---
Module Base: F7BB3000
Module End: F7BF3000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\NVSNPU.SYS
Service Name: ---
Module Base: F7B80000
Module End: F7BB3000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
Service Name: ati2mtag
Module Base: F7A5B000
Module End: F7B80000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\VIDEOPRT.SYS
Service Name: ---
Module Base: F7A47000
Module End: F7A5B000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\fdc.sys
Service Name: Fdc
Module Base: F8807000
Module End: F880E000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\serial.sys
Service Name: Serial
Module Base: F868F000
Module End: F869F000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\serenum.sys
Service Name: Serenum
Module Base: F80EF000
Module End: F80F3000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\irsir.sys
Service Name: irsir
Module Base: F8827000
Module End: F882C000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\irenum.sys
Service Name: IRENUM
Module Base: F80E7000
Module End: F80EA000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\parport.sys
Service Name: Parport
Module Base: F7A33000
Module End: F7A47000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\i8042prt.sys
Service Name: i8042prt
Module Base: F869F000
Module End: F86AC000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\mouclass.sys
Service Name: Mouclass
Module Base: F8857000
Module End: F885D000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\kbdclass.sys
Service Name: Kbdclass
Module Base: F8867000
Module End: F886D000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\btkrnl.sys
Service Name: BTKRNL
Module Base: F7963000
Module End: F7A33000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\audstub.sys
Service Name: audstub
Module Base: F8AD5000
Module End: F8AD6000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\rasirda.sys
Service Name: irda
Module Base: F8877000
Module End: F887C000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\TDI.SYS
Service Name: ---
Module Base: F8887000
Module End: F888C000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
Service Name: Rasl2tp
Module Base: F86AF000
Module End: F86BC000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\ndistapi.sys
Service Name: NdisTapi
Module Base: F80B9000
Module End: F80BC000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\ndiswan.sys
Service Name: NdisWan
Module Base: F794C000
Module End: F7963000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\raspppoe.sys
Service Name: RasPppoe
Module Base: F86BF000
Module End: F86CA000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\raspptp.sys
Service Name: PptpMiniport
Module Base: F86CF000
Module End: F86DB000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\psched.sys
Service Name: PSched
Module Base: F7913000
Module End: F7924000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\msgpc.sys
Service Name: Gpc
Module Base: F86DF000
Module End: F86E8000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\ptilink.sys
Service Name: Ptilink
Module Base: F87F7000
Module End: F87FC000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\raspti.sys
Service Name: Raspti
Module Base: F880F000
Module End: F8814000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\hamachi.sys
Service Name: hamachi
Module Base: F8957000
Module End: F895A000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\termdd.sys
Service Name: TermDD
Module Base: F86EF000
Module End: F86F9000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\swenum.sys
Service Name: swenum
Module Base: F89BF000
Module End: F89C1000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\update.sys
Service Name: Update
Module Base: F78B5000
Module End: F7913000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\mssmbios.sys
Service Name: mssmbios
Module Base: F895F000
Module End: F8963000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\btport.sys
Service Name: BTDriver
Module Base: F87AF000
Module End: F87B6000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\btaudio.sys
Service Name: btaudio
Module Base: F7835000
Module End: F78B5000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\NDProxy.SYS
Service Name: NDProxy
Module Base: F86FF000
Module End: F8709000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\usbhub.sys
Service Name: usbhub
Module Base: F870F000
Module End: F871E000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\USBD.SYS
Service Name: ---
Module Base: F89C7000
Module End: F89C9000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
Service Name: NVENETFD
Module Base: F81AF000
Module End: F81B8000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\flpydisk.sys
Service Name: Flpydisk
Module Base: F888F000
Module End: F8894000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\i2omgmt.SYS
Service Name: i2omgmt
Module Base: F80BD000
Module End: F80C0000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\Fs_Rec.SYS
Service Name: Fs_Rec
Module Base: F89CD000
Module End: F89CF000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\Null.SYS
Service Name: Null
Module Base: F8B17000
Module End: F8B18000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\Beep.SYS
Service Name: Beep
Module Base: F89D1000
Module End: F89D3000
Hidden: No
Module Name: C:\WINDOWS\System32\drivers\vga.sys
Service Name: VgaSave
Module Base: F87B7000
Module End: F87BD000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\mnmdd.SYS
Service Name: mnmdd
Module Base: F89D5000
Module End: F89D7000
Hidden: No
Module Name: C:\WINDOWS\System32\DRIVERS\RDPCDD.sys
Service Name: RDPCDD
Module Base: F89D9000
Module End: F89DB000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\fwdrv.sys
Service Name: fwdrv
Module Base: EF5A8000
Module End: EF5F1000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\Msfs.SYS
Service Name: Msfs
Module Base: EF641000
Module End: EF646000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\Npfs.SYS
Service Name: Npfs
Module Base: EF631000
Module End: EF639000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\rasacd.sys
Service Name: RasAcd
Module Base: F7944000
Module End: F7947000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\ipsec.sys
Service Name: IPSec
Module Base: EF595000
Module End: EF5A8000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\tcpip.sys
Service Name: Tcpip
Module Base: EF53C000
Module End: EF595000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\aswTdi.SYS
Service Name: aswTdi
Module Base: F815F000
Module End: F8169000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\ipnat.sys
Service Name: IpNat
Module Base: EF516000
Module End: EF53C000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\wanarp.sys
Service Name: Wanarp
Module Base: F814F000
Module End: F8158000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\netbt.sys
Service Name: NetBT
Module Base: EF4EE000
Module End: EF516000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\arp1394.sys
Service Name: Arp1394
Module Base: F813F000
Module End: F814E000
Hidden: No
Module Name: C:\WINDOWS\System32\drivers\afd.sys
Service Name: AFD
Module Base: EF4A4000
Module End: EF4C6000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\netbios.sys
Service Name: NetBIOS
Module Base: F812F000
Module End: F8138000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\rdbss.sys
Service Name: Rdbss
Module Base: EF479000
Module End: EF4A4000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
Service Name: MRxSmb
Module Base: EF409000
Module End: EF479000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\khips.sys
Service Name: khips
Module Base: F7C83000
Module End: F7C93000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\Fips.SYS
Service Name: Fips
Module Base: F7C73000
Module End: F7C7E000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\aswSP.SYS
Service Name: aswSP
Module Base: EF348000
Module End: EF369000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\Aavmker4.SYS
Service Name: Aavmker4
Module Base: F8817000
Module End: F881C000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\Ntfs.SYS
Service Name: Ntfs
Module Base: EF2BB000
Module End: EF348000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
Service Name: usbstor
Module Base: EF649000
Module End: EF650000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\usbprint.sys
Service Name: usbprint
Module Base: EF629000
Module End: EF630000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\btwusb.sys
Service Name: BTWUSB
Module Base: F77A8000
Module End: F77B8000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\Cdfs.SYS
Service Name: Cdfs
Module Base: EF3C9000
Module End: EF3D9000
Hidden: No
Module Name: \SystemRoot\System32\Drivers\dump_nvata.sys
Service Name: ---
Module Base: EF27C000
Module End: EF293000
Hidden: Yes
Module Name: \SystemRoot\System32\Drivers\dump_WMILIB.SYS
Service Name: ---
Module Base: F8A27000
Module End: F8A29000
Hidden: Yes
Module Name: C:\WINDOWS\System32\drivers\Dxapi.sys
Service Name: ---
Module Base: EF2B7000
Module End: EF2BA000
Hidden: No
Module Name: C:\WINDOWS\System32\watchdog.sys
Service Name: ---
Module Base: F882F000
Module End: F8834000
Hidden: No
Module Name: C:\WINDOWS\System32\drivers\dxgthk.sys
Service Name: ---
Module Base: F8B55000
Module End: F8B56000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys
Service Name: aswFsBlk
Module Base: F87EF000
Module End: F87F7000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\irda.sys
Service Name: ---
Module Base: B8CA2000
Module End: B8CB8000
Hidden: No
Module Name: C:\WINDOWS\system32\DRIVERS\ndisuio.sys
Service Name: Ndisuio
Module Base: B8DBC000
Module End: B8DC0000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\aswMon2.SYS
Service Name: aswMon2
Module Base: B8C3C000
Module End: B8C52000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\wdmaud.sys
Service Name: wdmaud
Module Base: B892F000
Module End: B8944000
Hidden: No
Module Name: C:\WINDOWS\system32\drivers\sysaudio.sys
Service Name: sysaudio
Module Base: B8D70000
Module End: B8D7F000
Hidden: No
Module Name: C:\WINDOWS\System32\Drivers\aswRdr.SYS
Service Name: aswRdr
Module Base: B8A2C000
Module End: B8A30000
Hidden: No
Module Name: \SystemRoot\System32\Drivers\hiber_WMILIB.SYS
Service Name: ---
Module Base: F8A15000
Module End: F8A17000
Hidden: Yes
Module Name: C:\WINDOWS\system32\drivers\kmixer.sys
Service Name: kmixer
Module Base: B6CEE000
Module End: B6D19000
Hidden: No
******************************************************************************************
******************************************************************************************
SSDT:
Function Name: ZwClose
Address: EF3506B8
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwCreateFile
Address: EF5C3552
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
Function Name: ZwCreateKey
Address: EF350574
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwCreateProcess
Address: EF5C2A1A
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
Function Name: ZwCreateProcessEx
Address: EF5C2910
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
Function Name: ZwCreateThread
Address: EF5C2F2A
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
Function Name: ZwDeleteFile
Address: EF5C4034
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
Function Name: ZwDeleteKey
Address: EF5BFD54
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
Function Name: ZwDeleteValueKey
Address: EF350A52
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwDuplicateObject
Address: EF35014C
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwLoadDriver
Address: F7C85F4C
Driver Base: F7C83000
Driver End: F7C93000
Driver Name: \SystemRoot\system32\drivers\khips.sys
Function Name: ZwMapViewOfSection
Address: F7C86232
Driver Base: F7C83000
Driver End: F7C93000
Driver Name: \SystemRoot\system32\drivers\khips.sys
Function Name: ZwOpenFile
Address: EF5C3906
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
Function Name: ZwOpenKey
Address: EF35064E
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwOpenProcess
Address: EF35008C
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwOpenThread
Address: EF3500F0
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwQueryValueKey
Address: EF35076E
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwRestoreKey
Address: EF35072E
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwResumeThread
Address: EF5C30DC
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
Function Name: ZwSetInformationFile
Address: EF5C3CE0
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
Function Name: ZwSetValueKey
Address: EF3508AE
Driver Base: EF348000
Driver End: EF369000
Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS
Function Name: ZwWriteFile
Address: EF5C3BB2
Driver Base: EF5A8000
Driver End: EF5F1000
Driver Name: \SystemRoot\system32\drivers\fwdrv.sys
******************************************************************************************
******************************************************************************************
No Kernel Hooks found
******************************************************************************************
******************************************************************************************
No IRP Hooks found
******************************************************************************************
******************************************************************************************
Ports:
Local Address: ACER-1F5ADAF30F:44334
Remote Address: LOCALHOST:1078
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:44334
Remote Address: LOCALHOST:1073
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:12143
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:12119
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:12110
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:12080
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:12025
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:5152
Remote Address: LOCALHOST:4485
Type: TCP
Process: C:\Program Files\Java\jre6\bin\jqs.exe
State: CLOSE_WAIT
Local Address: ACER-1F5ADAF30F:5152
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Java\jre6\bin\jqs.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:4522
Remote Address: LOCALHOST:12080
Type: TCP
Process: [System Idle Process]
State: TIME_WAIT
Local Address: ACER-1F5ADAF30F:1082
Remote Address: LOCALHOST:1080
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1080
Remote Address: LOCALHOST:1082
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1078
Remote Address: LOCALHOST:44334
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1077
Remote Address: LOCALHOST:1075
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1075
Remote Address: LOCALHOST:1077
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1073
Remote Address: LOCALHOST:44334
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1071
Remote Address: LOCALHOST:1030
Type: TCP
Process: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1059
Remote Address: LOCALHOST:1030
Type: TCP
Process: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1046
Remote Address: LOCALHOST:1030
Type: TCP
Process: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1042
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:1033
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:1030
Remote Address: LOCALHOST:1071
Type: TCP
Process: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1030
Remote Address: LOCALHOST:1059
Type: TCP
Process: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1030
Remote Address: LOCALHOST:1046
Type: TCP
Process: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
State: ESTABLISHED
Local Address: ACER-1F5ADAF30F:1030
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:4426
Remote Address: A88-221-92-114.DEPLOY.AKAMAITECHNOLOGIES.COM:HTTP
Type: TCP
Process: C:\Program Files\Java\jre6\bin\jusched.exe
State: CLOSE_WAIT
Local Address: ACER-1F5ADAF30F:NETBIOS-SSN
Remote Address: 0.0.0.0:0
Type: TCP
Process: System
State: LISTENING
Local Address: ACER-1F5ADAF30F:44501
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:44334
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:1080
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:1075
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:MICROSOFT-DS
Remote Address: 0.0.0.0:0
Type: TCP
Process: System
State: LISTENING
Local Address: ACER-1F5ADAF30F:EPMAP
Remote Address: 0.0.0.0:0
Type: TCP
Process: C:\WINDOWS\System32\svchost.exe
State: LISTENING
Local Address: ACER-1F5ADAF30F:3814
Remote Address: NA
Type: UDP
Process: C:\Program Files\Internet Explorer\IEXPLORE.EXE
State: NA
Local Address: ACER-1F5ADAF30F:3782
Remote Address: NA
Type: UDP
Process: C:\Program Files\Internet Explorer\IEXPLORE.EXE
State: NA
Local Address: ACER-1F5ADAF30F:1063
Remote Address: NA
Type: UDP
Process: C:\Program Files\ICQ6.5\ICQ.exe
State: NA
Local Address: ACER-1F5ADAF30F:123
Remote Address: NA
Type: UDP
Process: C:\WINDOWS\System32\svchost.exe
State: NA
Local Address: ACER-1F5ADAF30F:138
Remote Address: NA
Type: UDP
Process: System
State: NA
Local Address: ACER-1F5ADAF30F:NETBIOS-NS
Remote Address: NA
Type: UDP
Process: System
State: NA
Local Address: ACER-1F5ADAF30F:123
Remote Address: NA
Type: UDP
Process: C:\WINDOWS\System32\svchost.exe
State: NA
Local Address: ACER-1F5ADAF30F:44334
Remote Address: NA
Type: UDP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
State: NA
Local Address: ACER-1F5ADAF30F:1081
Remote Address: NA
Type: UDP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: NA
Local Address: ACER-1F5ADAF30F:1079
Remote Address: NA
Type: UDP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: NA
Local Address: ACER-1F5ADAF30F:1076
Remote Address: NA
Type: UDP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: NA
Local Address: ACER-1F5ADAF30F:1074
Remote Address: NA
Type: UDP
Process: C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
State: NA
Local Address: ACER-1F5ADAF30F:MICROSOFT-DS
Remote Address: NA
Type: UDP
Process: System
State: NA
Local Address: ACER-1F5ADAF30F:68
Remote Address: NA
Type: UDP
Process: C:\WINDOWS\System32\svchost.exe
State: NA
******************************************************************************************
******************************************************************************************
No hidden files/folders found
Re: Problémy s internetem
Icq toolbar zkuste odinstalovat v ccleaneru - nástroje - odinstalace
zkoušel jste jiný prohlížeč?
odkdy máte tento problém?
Log jste udělal v pořádku, chtěla jsem pouze tento výpis a nic podezdřelého nevidím.
Stáhněte a uložte na plochu GooredFix
-po staženi spusťte a postupujte podle pokynů
-po ukončení se Vám objeví log, jeho obsah zkopírujte sem (pokud se nezadaři, najdete log na ploše)
Jak to ted vypadá s počítačem?
zkoušel jste jiný prohlížeč?
odkdy máte tento problém?
Log jste udělal v pořádku, chtěla jsem pouze tento výpis a nic podezdřelého nevidím.
Stáhněte a uložte na plochu GooredFix
-po staženi spusťte a postupujte podle pokynů
-po ukončení se Vám objeví log, jeho obsah zkopírujte sem (pokud se nezadaři, najdete log na ploše)
Jak to ted vypadá s počítačem?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Problémy s internetem
icq toolbar sem nenašel ani tam. Mám nainstalován i google toolbar a ten sem tam taky nenašel, takže nevím, jak to s těmahle věcma je. A pokud si dobře vzpomínám, tak icq toolbar sem kdysi myslím zakázal, ale ani už nevím, jak bych ho teď povolil
jiný prohlížeč sem ani nezkoušel, mám nainstalovanou ještě starou mozillu, ale tu využívám jen hodně zřídka
problém se zamrzáním internetu se objevil asi tak před měsícem nebo třemi týdny, víc to nebude
počítač se teď tváří vcelku dobře, inernet asi chodí tak jak by měl, problém je teď možná jen v exploreru, který občas zamrzne a spadne. Pokud by se mi v blízké době stalo, že by zamrznul net, určtě tohle téma zase oživím
log:
GooredFix by jpshortstuff (08.01.10.1)
Log created at 11:44 on 31/01/2010 (John)
Firefox version 2.0.0.20 (cs)
========== GooredScan ==========
========== GooredLog ==========
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd} [09:04 03/10/2007]
talkback@mozilla.org [09:04 03/10/2007]
{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} [08:14 22/10/2007]
{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} [16:42 21/03/2008]
{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} [10:23 22/08/2008]
{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} [17:05 21/01/2009]
{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} [13:16 03/04/2009]
{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} [13:35 28/08/2009]
{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} [12:58 17/11/2009]
{800b5000-a755-47e1-992b-48a1c1357f07} [21:16 25/11/2009]
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{20a82645-c095-46ed-80e3-08825760534b}"="C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\" [20:57 20/08/2009]
"jqs@sun.com"="C:\Program Files\Java\jre6\lib\deploy\jqs\ff" [17:05 21/01/2009]
-=E.O.F=-
jiný prohlížeč sem ani nezkoušel, mám nainstalovanou ještě starou mozillu, ale tu využívám jen hodně zřídka
problém se zamrzáním internetu se objevil asi tak před měsícem nebo třemi týdny, víc to nebude
počítač se teď tváří vcelku dobře, inernet asi chodí tak jak by měl, problém je teď možná jen v exploreru, který občas zamrzne a spadne. Pokud by se mi v blízké době stalo, že by zamrznul net, určtě tohle téma zase oživím
log:
GooredFix by jpshortstuff (08.01.10.1)
Log created at 11:44 on 31/01/2010 (John)
Firefox version 2.0.0.20 (cs)
========== GooredScan ==========
========== GooredLog ==========
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd} [09:04 03/10/2007]
talkback@mozilla.org [09:04 03/10/2007]
{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} [08:14 22/10/2007]
{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} [16:42 21/03/2008]
{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} [10:23 22/08/2008]
{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} [17:05 21/01/2009]
{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} [13:16 03/04/2009]
{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} [13:35 28/08/2009]
{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} [12:58 17/11/2009]
{800b5000-a755-47e1-992b-48a1c1357f07} [21:16 25/11/2009]
[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{20a82645-c095-46ed-80e3-08825760534b}"="C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\" [20:57 20/08/2009]
"jqs@sun.com"="C:\Program Files\Java\jre6\lib\deploy\jqs\ff" [17:05 21/01/2009]
-=E.O.F=-
Re: Problémy s internetem
Ještě posílám výpisy příkazu netstat, první je chvíli potom, co sem odeslal předešou odpověď, druhý je potom, když nechám internet chvíli v klidu a nic nedělám. Na menší počet řádků se myslím nikdy nedostanu
obrázky se tam uložily v opačném pořadí
obrázky se tam uložily v opačném pořadí
- Přílohy
-
- Netstat2.JPG
- (123.46 KiB) Staženo 14 x
-
- Netstat1.JPG
- (217.49 KiB) Staženo 14 x
Re: Problémy s internetem
To by mělo být v pořádku.
Můžete vyzkoušet tu mozillu?
použité programy smažte
Můžete vyzkoušet tu mozillu?
použité programy smažte
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Problémy s internetem
Co přesně bych měl očekávat od vyzkoušení mozilly? Internet tam jede stejně rychle a problém se zamzráním programu nevidím
Re: Problémy s internetem
Přesně to co jste popsal . Takže problém bude v IE.
zkuste kouknout na tohle
http://support.microsoft.com/kb/318378/cs
zkuste kouknout na tohle
http://support.microsoft.com/kb/318378/cs
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Problémy s internetem
Výborný, zdá se, že by to mohlo být v pořádku Moc děkuju za pomoc, zamrzání internetu sice prověří čas, ale vypadá to, že by mohlo být už všechno v pohodě.
Příští víkend nebo někdy jindy bych vás chtěl požádat ještě o zkouknutí výpisu rsit z noťasu, můžu zadat téma přímo s prosbou o vaši pomoc?
Příští víkend nebo někdy jindy bych vás chtěl požádat ještě o zkouknutí výpisu rsit z noťasu, můžu zadat téma přímo s prosbou o vaši pomoc?
Re: Problémy s internetem
Takže přeinstalace IE pomohla?
Není zač, pokud by byl nějaký problém, ozvěte se
Určitě můžete, do předmětu napište - pro Motji - kolegové mi to už nechají
Hezký večer
Není zač, pokud by byl nějaký problém, ozvěte se
Určitě můžete, do předmětu napište - pro Motji - kolegové mi to už nechají
Hezký večer
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Problémy s internetem
Ano, pomohla, explorer se konečně chová tak jak má a nepadá. Mimochodem, doporučejete mi používat i nadále explorer nebo bych měl radši přejít na mozillu? Novou mozillu sem zatím neodzkoušel, ale u exploreru sem zůstal jen kvůli tomu, že mi v určitých věcech víc vyhovoval.
Ještě jednou tedy děkuji za pomoc, já se pak zase ozvu s tím druhým počítačem, případně jiným problémem
Přeji hezký zbytek večera
Ještě jednou tedy děkuji za pomoc, já se pak zase ozvu s tím druhým počítačem, případně jiným problémem
Přeji hezký zbytek večera
Re: Problémy s internetem
Místo IE bych Vám doporučila spíše Mozillu nebo Operu. IE je nejpoužívanější, tudíž je na ni nejvíce útoků
Není zač
Není zač
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.