Preventivka - Velmi pomale PC

Zpráva

Yaxamp · #1 Příspěvek od **Yaxamp** » 06 črc 2010 11:21

Dobry den, poprosil by som o kontrolu logu, pocitac bol vyse 5 rokov bez vacsej udrzby ci preinstalovania OS, uz pri 2 aplikaciach je nesmierne pomaly.

Logfile of random's system information tool 1.07 (written by random/random)
Run by Pertáš at 2010-07-06 12:12:53
Systém Microsoft Windows XP Home Edition Service Pack 2
System drive D: has 4 GB (9%) free of 40 GB
Total RAM: 1023 MB (44% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:13:00, on 6.7.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\IM In Style\Style.exe
D:\WINDOWS\Logi_MwX.Exe
D:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
D:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
D:\WINDOWS\SOUNDMAN.EXE
D:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe
D:\Program Files\Cyberlink\Shared files\brs.exe
D:\WINDOWS\system32\RUNDLL32.EXE
D:\Program Files\Carbonite\CarbonitePreinstaller.exe
D:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe
D:\Program Files\VIA\RAID\raid_tool.exe
C:\MediaSource5\MtdAcqu.exe
D:\Program Files\Messenger\msmsgs.exe
D:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\DAEMON Tools Lite\DTLite.exe
D:\Program Files\Creative\Software Update 3\SoftAuto.exe
D:\Documents and Settings\Pertáš\Application Data\MSA\mscjm.exe
D:\WINDOWS\system32\rundll32.exe
E:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
D:\Program Files\Application Updater\ApplicationUpdater.exe
D:\WINDOWS\system32\CTsvcCDA.exe
D:\Program Files\Creative\Shared Files\CTDevSrv.exe
D:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
D:\Program Files\ICQ6Toolbar\ICQ Service.exe
D:\WINDOWS\system32\nvsvc32.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\wscntfy.exe
D:\Documents and Settings\Pertáš\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Pertáš\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Pertáš\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\WINDOWS\system32\wuauclt.exe
D:\Documents and Settings\Pertáš\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Pertáš\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Pertáš\My Documents\Downloads\RSIT.exe
D:\Program Files\trend micro\Pertáš.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2418376
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedi ... t=&gc=1&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://minisearch.startnow.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://minisearch.startnow.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.startnow.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://minisearch.startnow.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://minisearch.startnow.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedi ... t=&gc=1&q=
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://minisearch.startnow.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://toolbar.ask.com/toolbarv/askRedi ... &gc=1&q=%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = http://www.web--search.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = .pac;.jvs;.js
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - D:\Program Files\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL (file missing)
R3 - URLSearchHook: (no name) - {D73F49B6-B51B-4d32-A3B7-BD04B8342F53} - D:\Program Files\MorpheusBar\SrchAstt\1.bin\MBSRCAS.DLL (file missing)
R3 - URLSearchHook: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - D:\Program Files\BearShare applications\BearShare MediaBar\MediaBar.dll (file missing)
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: DefaultSearchHook Class - {C94E154B-1459-4A47-966B-4B843BEFC7DB} - D:\Program Files\AskSearch\bin\DefaultSearch.dll
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: PageRage Toolbar - {9565115d-c7d6-46d3-bd63-b67b481a4368} - D:\Program Files\PageRage\tbPag0.dll
R3 - URLSearchHook: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - D:\Program Files\Dealio Toolbar\SearchSettings.dll
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - D:\Program Files\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL (file missing)
O2 - BHO: Dealio Toolbar - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - D:\Program Files\Dealio Toolbar\IE\4.0.2\dealioToolbarIE.dll
O2 - BHO: MySearch Search Assistant BHO - {04079851-5845-4dea-848C-3ECD647AA554} - D:\Program Files\MySearch\SrchAstt\1.bin\MYSRCHAS.DLL (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - D:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL (file missing)
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - D:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: MPEG Support Dll - {57A70350-87D9-4EA2-B3AC-C1C1B5296035} - D:\WINDOWS\system32\mpegcore.dll (file missing)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - E:\PROGRA~1\MICROS~1\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: PageRage Toolbar - {9565115d-c7d6-46d3-bd63-b67b481a4368} - D:\Program Files\PageRage\tbPag0.dll
O2 - BHO: (no name) - {D73F49B1-B51B-4d32-A3B7-BD04B8342F53} - D:\Program Files\MorpheusBar\SrchAstt\1.bin\MBSRCAS.DLL (file missing)
O2 - BHO: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - D:\Program Files\Dealio Toolbar\SearchSettings.dll
O2 - BHO: XBTP02634 - {F97DA966-F09D-4cab-BF29-75A0026986EA} - D:\PROGRA~1\BEARSH~1\BEARSH~2\MediaBar.dll (file missing)
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - D:\Program Files\Yontoo Layers Client\YontooIEClient.dll
O3 - Toolbar: My &Web Search - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - D:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL (file missing)
O3 - Toolbar: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - D:\Program Files\BearShare applications\BearShare MediaBar\MediaBar.dll (file missing)
O3 - Toolbar: (no name) - {3BB63FD4-3C00-44D7-94A9-5DE211900DEF} - (no file)
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - D:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: PageRage Toolbar - {9565115d-c7d6-46d3-bd63-b67b481a4368} - D:\Program Files\PageRage\tbPag0.dll
O3 - Toolbar: Dealio Toolbar - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - D:\Program Files\Dealio Toolbar\IE\4.0.2\dealioToolbarIE.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - D:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [WhenUSave] "D:\Program Files\Save\Save.exe"
O4 - HKLM\..\Run: [Style] D:\Program Files\IM In Style\Style.exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NeroFilterCheck] D:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [mouseElf] D:\PROGRA~1\GENIUS~1\GNETMOUS.EXE
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [doesplatformcoolaxis] D:\Documents and Settings\All Users\Application Data\third dart does platform\barb show.exe
O4 - HKLM\..\Run: [CloneCDTray] "D:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [AVG7_CC] D:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [AceGain LiveUpdate] D:\Program Files\AceGain\LiveUpdate\LiveUpdate.exe
O4 - HKLM\..\Run: [ISUSPM Startup] D:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "D:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [VirtualCloneDrive] "D:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] D:\PROGRA~1\MYWEBS~1\bar\2.bin\mwsoemon.exe
O4 - HKLM\..\Run: [GrooveMonitor] "E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SearchSettings] D:\Program Files\Dealio Toolbar\SearchSettings.exe
O4 - HKLM\..\Run: [RemoteControl10] "D:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [BDRegion] D:\Program Files\Cyberlink\Shared files\brs.exe
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "D:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [SwitchBoard] D:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "D:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE D:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [CarboniteSetupLite] "D:\Program Files\Carbonite\CarbonitePreinstaller.exe" /preinstalled /showonfirst /reshowat=900
O4 - HKLM\..\Run: [MaxMenuMgr] "D:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe"
O4 - HKLM\..\Run: [RaidTool] D:\Program Files\VIA\RAID\raid_tool.exe
O4 - HKCU\..\Run: [MtdAcqu] "C:\MediaSource5\MtdAcqu.exe" /s
O4 - HKCU\..\Run: [MSMSGS] "D:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [CTSyncU.exe] "D:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [audioheart] D:\DOCUME~1\PERT~1\APPLIC~1\MFCDCU~1\part road knob.exe
O4 - HKCU\..\Run: [ICQ] "D:\Program Files\ICQ6\ICQ.exe" silent
O4 - HKCU\..\Run: [CTRegRun] D:\WINDOWS\CTRegRun.EXE
O4 - HKCU\..\Run: [Google Update] "D:\Documents and Settings\Pertáš\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [SoftAuto.exe] "D:\Program Files\Creative\Software Update 3\SoftAuto.exe"
O4 - HKCU\..\Run: [mscjm.exe] D:\Documents and Settings\Pertáš\Application Data\MSA\mscjm.exe
O4 - HKCU\..\Run: [p2papp50] rundll32.exe "D:\Documents and Settings\Pertáš\Local Settings\Application Data\p2papp50\p2papp50.dll", DllInit
O4 - HKCU\..\Run: [mscjm] d:\documents and settings\pertáš\application data\msa\mscjm.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] D:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [RunNarrator] Narrator.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [RunNarrator] Narrator.exe (User 'Default user')
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = E:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Startup: WarRun.lnk = D:\Program Files\WarRun\WarRun.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Mountit.lnk = D:\Program Files\Roxio\WinOnCD 6\MountIt.exe
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - D:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm
O8 - Extra context menu item: &ICQ Toolbar Search - res://D:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredi ... jhtml?p=ZN
O8 - Extra context menu item: E&xport to Microsoft Excel - res://E:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - D:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - D:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: eBay - Homepage - {EF79EAC5-3452-4E02-B8BD-BA4C89F1AC7A} - D:\Program Files\IrfanView\Ebay\Ebay.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\MSMSGS.EXE
O16 - DPF: {4509DCBD-8B00-43B4-A843-45C4A1F7FC3D} (VacPro.slov_ver3) - http://ocx2.advnt01.com/dialer/slov_ver3.CAB
O16 - DPF: {53B8B406-42E4-4DD3-96E7-9DEC8CEB3DD8} (ICQVideoControl Class) - http://xtraz.icq.com/xtraz/activex/ICQVideoControl.cab
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697516} (NsvPlayX Control) - http://www.ntcast.com/tv/nsvplayx_vp6_mp3.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - E:\PROGRA~1\MICROS~1\Office12\GR99D3~1.DLL
O20 - AppInit_DLLs: pushow63.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - D:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - D:\WINDOWS\System32\browseui.dll
O23 - Service: Application Updater - Spigot, Inc. - D:\Program Files\Application Updater\ApplicationUpdater.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - D:\PROGRA~1\ALWILS~1\Avast4\ashMaiSv.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - Unknown owner - D:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe (file missing)
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - Unknown owner - D:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe (file missing)
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - D:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: CT Device Query service (CTDevice_Srv) - Creative Technology Ltd - D:\Program Files\Creative\Shared Files\CTDevSrv.exe
O23 - Service: Creative Centrale Media Server (CTUPnPSv) - Creative Technology Ltd - D:\Program Files\Creative\Creative Centrale\CTUPnPSv.exe
O23 - Service: Seagate Service (FreeAgentGoNext Service) - Seagate Technology LLC - D:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
O23 - Service: ICQ Service - Unknown owner - D:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: ISEXEng - Unknown owner - D:\WINDOWS\System32\angelex.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - D:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - D:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O24 - Desktop Component 0: (no name) - http://www.topwallpapers.com/gif/freewa ... enus_p.jpg
O24 - Desktop Component 1: (no name) - http://www.topwallpapers.com/gif/freewa ... mids_p.jpg
O24 - Desktop Component 2: (no name) - http://jackass.ulie.nl/_downloads/downl ... 24x768.jpg

--
End of file - 16955 bytes

======Scheduled tasks folder======

D:\WINDOWS\tasks\AppleSoftwareUpdate.job
D:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-507921405-1123561945-725345543-1004Core.job
D:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-507921405-1123561945-725345543-1004UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00A6FAF1-072E-44cf-8957-5838F569A31D}]
MyWebSearch Search Assistant BHO - D:\Program Files\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}]
Dealio Toolbar - D:\Program Files\Dealio Toolbar\IE\4.0.2\dealioToolbarIE.dll [2009-12-28 700416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{04079851-5845-4dea-848C-3ECD647AA554}]
MySearch Search Assistant BHO - D:\Program Files\MySearch\SrchAstt\1.bin\MYSRCHAS.DLL []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-12-18 59032]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{07B18EA1-A523-4961-B6BB-170DE4475CCA}]
mwsBar BHO - D:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - D:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-08-26 279944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{57A70350-87D9-4EA2-B3AC-C1C1B5296035}]
MPEG Support Dll - D:\WINDOWS\system32\mpegcore.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - E:\PROGRA~1\MICROS~1\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - D:\Program Files\Java\jre1.6.0_01\bin\ssv.dll [2007-03-14 501400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9565115d-c7d6-46d3-bd63-b67b481a4368}]
PageRage Toolbar - D:\Program Files\PageRage\tbPag0.dll [2010-05-24 2393184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D73F49B1-B51B-4d32-A3B7-BD04B8342F53}]
D:\Program Files\MorpheusBar\SrchAstt\1.bin\MBSRCAS.DLL []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
D:\Program Files\Dealio Toolbar\SearchSettings.dll [2009-12-28 1109504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F97DA966-F09D-4cab-BF29-75A0026986EA}]
XBTP02634 Class - D:\PROGRA~1\BEARSH~1\BEARSH~2\MediaBar.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]
Yontoo Layers - D:\Program Files\Yontoo Layers Client\YontooIEClient.dll [2009-12-16 194912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{07B18EA9-A523-4961-B6BB-170DE4475CCA} - My &Web Search - D:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL []
{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - BearShare MediaBar - D:\Program Files\BearShare applications\BearShare MediaBar\MediaBar.dll []
{3BB63FD4-3C00-44D7-94A9-5DE211900DEF}
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Ask Toolbar - D:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-08-26 279944]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2008-06-12 958712]
{9565115d-c7d6-46d3-bd63-b67b481a4368} - PageRage Toolbar - D:\Program Files\PageRage\tbPag0.dll [2010-05-24 2393184]
{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - Dealio Toolbar - D:\Program Files\Dealio Toolbar\IE\4.0.2\dealioToolbarIE.dll [2009-12-28 700416]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - D:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"WhenUSave"=D:\Program Files\Save\Save.exe []
"Style"=D:\Program Files\IM In Style\Style.exe [2004-01-11 125440]
"nwiz"=nwiz.exe /install []
"NvCplDaemon"=D:\WINDOWS\system32\NvCpl.dll [2006-11-17 7700480]
"NeroFilterCheck"=D:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"mouseElf"=D:\PROGRA~1\GENIUS~1\GNETMOUS.EXE [2003-05-13 163840]
"Logitech Utility"=D:\WINDOWS\Logi_MwX.Exe [2003-12-17 19968]
"doesplatformcoolaxis"=D:\Documents and Settings\All Users\Application Data\third dart does platform\barb show.exe []
"CloneCDTray"=D:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2005-05-19 57344]
"AVG7_CC"=D:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP []
"AceGain LiveUpdate"=D:\Program Files\AceGain\LiveUpdate\LiveUpdate.exe []
"ISUSPM Startup"=D:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [2004-06-16 221184]
"ISUSScheduler"=D:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"VirtualCloneDrive"=D:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2006-04-29 94208]
"MyWebSearch Email Plugin"=D:\PROGRA~1\MYWEBS~1\bar\2.bin\mwsoemon.exe []
"pdfSaver3"= []
"GrooveMonitor"=E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"SoundMan"=D:\WINDOWS\SOUNDMAN.EXE [2006-01-11 577536]
"SearchSettings"=D:\Program Files\Dealio Toolbar\SearchSettings.exe [2009-12-28 974848]
"RemoteControl10"=D:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe [2010-02-03 87336]
"BDRegion"=D:\Program Files\Cyberlink\Shared files\brs.exe [2010-03-13 75048]
"AdobeAAMUpdater-1.0"=D:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-05-18 500208]
"SwitchBoard"=D:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=D:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"NvMediaCenter"=D:\WINDOWS\system32\NvMcTray.dll [2006-11-17 86016]
"KernelFaultCheck"=D:\WINDOWS\system32\dumprep 0 -k []
"CarboniteSetupLite"=D:\Program Files\Carbonite\CarbonitePreinstaller.exe [2009-08-04 318096]
"MaxMenuMgr"=D:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe [2009-09-25 185640]
"RaidTool"=D:\Program Files\VIA\RAID\raid_tool.exe [2004-10-11 589824]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MtdAcqu"=C:\MediaSource5\MtdAcqu.exe [2006-03-08 278528]
"MSMSGS"=D:\Program Files\Messenger\msmsgs.exe [2003-04-14 1491216]
"CTSyncU.exe"=D:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe [2006-04-28 692224]
"CTFMON.EXE"=D:\WINDOWS\system32\ctfmon.exe [2004-08-04 15360]
"audioheart"=D:\DOCUME~1\PERT~1\APPLIC~1\MFCDCU~1\part road knob.exe []
"ICQ"=D:\Program Files\ICQ6\ICQ.exe silent []
"CTRegRun"=D:\WINDOWS\CTRegRun.EXE [1999-10-10 41984]
"Google Update"=D:\Documents and Settings\Pertáš\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-01-10 135664]
"DAEMON Tools Lite"=D:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"SoftAuto.exe"=D:\Program Files\Creative\Software Update 3\SoftAuto.exe [2008-08-13 405504]
"AdobeBridge"= []
"mscjm.exe"=D:\Documents and Settings\Pertáš\Application Data\MSA\mscjm.exe [2010-07-03 10240]
"p2papp50"=D:\Documents and Settings\Pertáš\Local Settings\Application Data\p2papp50\p2papp50.dll [2010-06-17 69632]
"mscjm"=d:\documents and settings\pertáš\application data\msa\mscjm.exe [2010-07-03 10240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IncrediMail]
D:\Program Files\IncrediMail\bin\IncMail.exe [2004-12-26 188459]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
D:\Program Files\QuickTime\qttask.exe -atboottime []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
E:\Valve\Steam\\Steam.exe -silent []

D:\Documents and Settings\All Users\Start Menu\Programs\Startup
Adobe Reader Speed Launch.lnk - D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
Mountit.lnk - D:\Program Files\Roxio\WinOnCD 6\MountIt.exe

D:\Documents and Settings\Pertáš\Start Menu\Programs\Startup
OneNote 2007 Screen Clipper and Launcher.lnk - E:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
WarRun.lnk - D:\Program Files\WarRun\WarRun.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="pushow63.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
D:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - D:\WINDOWS\system32\upnpui.dll [2004-08-04 239616]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - D:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=E:\PROGRA~1\MICROS~1\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"zbnadlndkuxuqbgrgtraTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLUA"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0x95000000

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\Valve\Steam\Steam.exe"="D:\Valve\Steam\Steam.exe:*:Enabled:Steam"
"D:\Valve\Steam\SteamApps\igorkisac\counter-strike\hl.exe"="D:\Valve\Steam\SteamApps\igorkisac\counter-strike\hl.exe:*:Enabled:Half-Life Launcher"
"E:\games\Need For Speed Underground\Speed.exe"="E:\games\Need For Speed Underground\Speed.exe:*:Enabled:Speed"
"D:\Program Files\Messenger\msmsgs.exe"="D:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"D:\Program Files\IncrediMail\bin\IMApp.exe"="D:\Program Files\IncrediMail\bin\IMApp.exe:*:Enabled:IncrediMail"
"D:\Program Files\IncrediMail\bin\IncMail.exe"="D:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail"
"D:\Program Files\IncrediMail\bin\ImpCnt.exe"="D:\Program Files\IncrediMail\bin\ImpCnt.exe:*:Enabled:IncrediMail"
"E:\games\Warcraft III\Frozen Throne.exe"="E:\games\Warcraft III\Frozen Throne.exe:*:Enabled:Warcraft III - Ledový trůn"
"D:\Program Files\Kazaa\kazaa.exe"="D:\Program Files\Kazaa\kazaa.exe:*:Enabled:Kazaa"
"D:\Documents and Settings\Pertáš\Local Settings\Temp\~osD8.tmp\ossproxy.exe"="D:\Documents and Settings\Pertáš\Local Settings\Temp\~osD8.tmp\ossproxy.exe:*:Enabled:ossproxy.exe"
"D:\Program Files\Logitech\Desktop Messenger\8876480\Program\backWeb-8876480.exe"="D:\Program Files\Logitech\Desktop Messenger\8876480\Program\backWeb-8876480.exe:*:Enabled:backWeb-8876480"
"D:\Documents and Settings\Pertáš\Local Settings\Temp\~os5.tmp\ossproxy.exe"="D:\Documents and Settings\Pertáš\Local Settings\Temp\~os5.tmp\ossproxy.exe:*:Enabled:ossproxy.exe"
"d:\windows\system32\rk.exe"="d:\windows\system32\rk.exe:*:Enabled:rk.exe"
"D:\Documents and Settings\Pertáš\Local Settings\Temp\~os7.tmp\ossproxy.exe"="D:\Documents and Settings\Pertáš\Local Settings\Temp\~os7.tmp\ossproxy.exe:*:Enabled:ossproxy.exe"
"D:\Program Files\Common Files\AOL\1126095761\ee\AOLServiceHost.exe"="D:\Program Files\Common Files\AOL\1126095761\ee\AOLServiceHost.exe:*:Enabled:AOL Services"
"D:\Program Files\AIM\aim.exe"="D:\Program Files\AIM\aim.exe:*:Enabled:AOL Instant Messenger"
"D:\Program Files\Common Files\AOL\Loader\aolload.exe"="D:\Program Files\Common Files\AOL\Loader\aolload.exe:*:Enabled:AOL Loader"
"D:\Program Files\MSN Messenger\msnmsgr.exe"="D:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:MSN Messenger 7.5"
"d:\windows\system32\rlvknlg.exe"="d:\windows\system32\rlvknlg.exe:*:Enabled:rlvknlg.exe"
"D:\Program Files\LimeWire\LimeWire.exe"="D:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"D:\Program Files\Morpheus\Morpheus.exe"="D:\Program Files\Morpheus\Morpheus.exe:*:Enabled:Morpheus"
"D:\WINDOWS\system32\sm.exe"="D:\WINDOWS\system32\sm.exe:*:Enabled:enable"
"D:\WINDOWS\system32\dd.exe"="D:\WINDOWS\system32\dd.exe:*:Enabled:enable"
"D:\WINDOWS\system32\lnwin.exe"="D:\WINDOWS\system32\lnwin.exe:*:Enabled:enable"
"D:\WINDOWS\system32\adirss.exe"="D:\WINDOWS\system32\adirss.exe:*:Enabled:enable"
"D:\Program Files\BearShare Applications\BearShare\BearShare.exe"="D:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare"
"C:\Westwood\SUN\PATCHGET.DAT"="C:\Westwood\SUN\PATCHGET.DAT:*:Enabled:patchgrabber"
"C:\Westwood\SUN\Game.exe"="C:\Westwood\SUN\Game.exe:*:Enabled:Main executable for Tiberian Sun"
"D:\Program Files\AOL\Active Virus Shield\avp.exe"="D:\Program Files\AOL\Active Virus Shield\avp.exe:*:Disabled:Active Virus Shield"
"E:\Valve\Steam\steamapps\igorkisac\counter-strike\hl.exe"="E:\Valve\Steam\steamapps\igorkisac\counter-strike\hl.exe:*:Enabled:Half-Life Launcher"
"E:\games\Warcraft III\Warcraft III.exe"="E:\games\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"C:\World of Warcraft\BackgroundDownloader.exe"="C:\World of Warcraft\BackgroundDownloader.exe:*:Enabled:Blizzard Downloader"
"D:\Program Files\GameHouse\BounceOut\BounceOut.exe"="D:\Program Files\GameHouse\BounceOut\BounceOut.exe:*:Disabled:Super Bounce Out!"
"E:\KnightsAndMerchants\KaM_1024.exe"="E:\KnightsAndMerchants\KaM_1024.exe:*:Enabled:KaM_1024"
"E:\Km TPR\KM_TPR.exe"="E:\Km TPR\KM_TPR.exe:*:Enabled:KM_TPR"
"D:\Program Files\ICQLite\ICQLite.exe"="D:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite"
"D:\Documents and Settings\Pertáš\Desktop\anime-supreme-mirc-20070227\[a-S]mIRC\mirc.exe"="D:\Documents and Settings\Pertáš\Desktop\anime-supreme-mirc-20070227\[a-S]mIRC\mirc.exe:*:Enabled:mIRC"
"D:\Program Files\BitTorrent\bittorrent.exe"="D:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
"D:\Program Files\Opera\Opera.exe"="D:\Program Files\Opera\Opera.exe:*:Enabled:Opera Internet Browser"
"E:\Half-Life 2\hl2.exe"="E:\Half-Life 2\hl2.exe:*:Enabled:hl2"
"E:\games\Cossacks European Wars\dmcr.exe"="E:\games\Cossacks European Wars\dmcr.exe:*:Enabled:dmcr"
"D:\WINDOWS\system32\dplaysvr.exe"="D:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"E:\Valve\Steam\Steam.exe"="E:\Valve\Steam\Steam.exe:*:Disabled:Steam"
"E:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="E:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"E:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="E:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"E:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="E:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"D:\Documents and Settings\Pertáš\Desktop\GHostOne1.4.194\Ghost11\GHostOne.exe"="D:\Documents and Settings\Pertáš\Desktop\GHostOne1.4.194\Ghost11\GHostOne.exe:*:Enabled:Ghost One - frontend for ghost++"
"E:\uTorrent\uTorrent.exe"="E:\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"D:\Program Files\Garena\Garena.exe"="D:\Program Files\Garena\Garena.exe:*:Enabled:Garena"
"E:\World of Warcraft Trial\WoW-3.1.2.9926-to-3.2.0.10194-enGB-Trial-downloader.exe"="E:\World of Warcraft Trial\WoW-3.1.2.9926-to-3.2.0.10194-enGB-Trial-downloader.exe:*:Enabled:Blizzard Downloader"
"D:\Documents and Settings\Pertáš\Desktop\GHostOne1.6.241\GHostOne\GHostOne.exe"="D:\Documents and Settings\Pertáš\Desktop\GHostOne1.6.241\GHostOne\GHostOne.exe:*:Enabled:GHost One - advanced hosting bot"
"D:\Documents and Settings\Pertáš\Desktop\GHostOne\GHostOne\GHostOne.exe"="D:\Documents and Settings\Pertáš\Desktop\GHostOne\GHostOne\GHostOne.exe:*:Enabled:GHost One - advanced hosting bot"
"D:\Documents and Settings\Pertáš\Desktop\GHostOne\GHostOne\ghost.exe"="D:\Documents and Settings\Pertáš\Desktop\GHostOne\GHostOne\ghost.exe:*:Enabled:ghost"
"E:\World of Warcraft\Launcher.exe"="E:\World of Warcraft\Launcher.exe:*:Enabled:Launcher.exe"
"E:\KaM - The Peasants Rebellion\KaM - The Peasants Rebellion\KaM - The Peasants Rebellion\KM_TPR.EXE"="E:\KaM - The Peasants Rebellion\KaM - The Peasants Rebellion\KaM - The Peasants Rebellion\KM_TPR.EXE:*:Enabled:KM_TPR"
"D:\Documents and Settings\All Users\Documents\Knights And Merchants\KaM_1024.exe"="D:\Documents and Settings\All Users\Documents\Knights And Merchants\KaM_1024.exe:*:Enabled:KaM_1024"
"E:\games\Knights And Merchants\KaM_1024.exe"="E:\games\Knights And Merchants\KaM_1024.exe:*:Enabled:KaM_1024"
"E:\KaM - The Peasants Rebellion\KM_TPR.EXE"="E:\KaM - The Peasants Rebellion\KM_TPR.EXE:*:Enabled:KM_TPR"
"D:\Program Files\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe"="D:\Program Files\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe:*:Enabled:CyberLink PowerDVD 10.0"
"E:\Anno 1701\Anno1701.exe"="E:\Anno 1701\Anno1701.exe:*:Enabled:Anno 1701"
"D:\Program Files\QIP Infium\infium.exe"="D:\Program Files\QIP Infium\infium.exe:*:Enabled:QIP Infium"
"D:\Program Files\Pando Networks\Media Booster\PMB.exe"="D:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"D:\Riot Games\League of Legends\air\LolClient.exe"="D:\Riot Games\League of Legends\air\LolClient.exe:*:Enabled:League of Legends Lobby"
"D:\Riot Games\League of Legends\game\League of Legends.exe"="D:\Riot Games\League of Legends\game\League of Legends.exe:*:Enabled:League of Legends Game Client"
"D:\Documents and Settings\Pertáš\Local Settings\Temp\Rar$EX02.515\teamspeak3-server_win32\ts3server_win32.exe"="D:\Documents and Settings\Pertáš\Local Settings\Temp\Rar$EX02.515\teamspeak3-server_win32\ts3server_win32.exe:*:Enabled:TeamSpeak 3 Server"
"D:\Documents and Settings\Pertáš\My Documents\Downloads\teamspeak3-server_win32-3.0.0-beta25\teamspeak3-server_win32\ts3server_win32.exe"="D:\Documents and Settings\Pertáš\My Documents\Downloads\teamspeak3-server_win32-3.0.0-beta25\teamspeak3-server_win32\ts3server_win32.exe:*:Enabled:TeamSpeak 3 Server"
"D:\Program Files\Skype\Phone\Skype.exe"="D:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\Program Files\Common Files\AOL\1126095761\ee\AOLServiceHost.exe"="D:\Program Files\Common Files\AOL\1126095761\ee\AOLServiceHost.exe:*:Enabled:AOL Services"
"D:\Program Files\Common Files\AOL\Loader\aolload.exe"="D:\Program Files\Common Files\AOL\Loader\aolload.exe:*:Enabled:AOL Loader"
"D:\Program Files\AIM\aim.exe"="D:\Program Files\AIM\aim.exe:*:Enabled:AOL Instant Messenger"
"D:\Program Files\MSN Messenger\msnmsgr.exe"="D:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:MSN Messenger 7.5"
"D:\Program Files\Pando Networks\Media Booster\PMB.exe"="D:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{33b55972-dc6c-11d8-9534-8d14b3f27914}]
shell\AutoRun\command - H:\Setup.exe

======File associations======

.reg - open - "regedit.exe" "%1"

======List of files/folders created in the last 1 months======

2010-07-06 12:12:53 ----D---- D:\rsit
2010-07-06 12:12:53 ----D---- D:\Program Files\trend micro
2010-07-06 11:47:35 ----D---- D:\Program Files\VIA
2010-07-06 11:31:47 ----D---- D:\Program Files\Belarc
2010-07-06 00:32:37 ----D---- D:\Documents and Settings\All Users\Application Data\Seagate
2010-07-06 00:32:36 ----D---- D:\Program Files\Seagate
2010-07-06 00:23:11 ----D---- D:\Program Files\Carbonite
2010-07-05 02:19:32 ----D---- D:\Program Files\Auslogics
2010-07-05 02:10:14 ----D---- D:\Program Files\Defraggler
2010-07-05 02:02:40 ----D---- D:\Documents and Settings\Pertáš\Application Data\Auslogics
2010-07-03 16:54:05 ----D---- D:\Documents and Settings\Pertáš\Application Data\MSA
2010-07-03 12:43:06 ----D---- D:\Program Files\TeamSpeak 3 Client
2010-07-03 12:40:09 ----D---- D:\Documents and Settings\All Users\Application Data\boost_interprocess
2010-06-29 01:38:35 ----SHD---- D:\found.000
2010-06-13 09:38:17 ----HDC---- D:\WINDOWS\$NtUninstallKB980218$
2010-06-13 09:37:49 ----HDC---- D:\WINDOWS\$NtUninstallKB980195$
2010-06-13 09:36:18 ----HDC---- D:\WINDOWS\$NtUninstallKB979559$
2010-06-13 09:29:49 ----HDC---- D:\WINDOWS\$NtUninstallKB978695_WM9$
2010-06-13 09:29:44 ----HDC---- D:\WINDOWS\$NtUninstallKB979482$
2010-06-13 09:29:30 ----HDC---- D:\WINDOWS\$NtUninstallKB975562$
2010-06-13 09:22:19 ----HDC---- D:\WINDOWS\$NtUninstallKB982381$
2010-06-10 19:27:17 ----A---- D:\WINDOWS\IE4 Error Log.txt

======List of files/folders modified in the last 1 months======

2010-07-06 12:12:53 ----AD---- D:\Program Files
2010-07-06 12:12:39 ----D---- D:\WINDOWS\Prefetch
2010-07-06 11:53:57 ----D---- D:\WINDOWS\Temp
2010-07-06 11:53:54 ----D---- D:\WINDOWS
2010-07-06 11:48:52 ----A---- D:\WINDOWS\SchedLgU.Txt
2010-07-06 11:48:01 ----SHD---- D:\WINDOWS\Installer
2010-07-06 11:48:01 ----HD---- D:\Config.Msi
2010-07-06 11:47:59 ----HD---- D:\WINDOWS\inf
2010-07-06 11:47:59 ----D---- D:\WINDOWS\system32\drivers
2010-07-06 11:47:58 ----D---- D:\WINDOWS\system32\CatRoot
2010-07-06 11:47:57 ----D---- D:\WINDOWS\system32\CatRoot2
2010-07-06 11:31:42 ----D---- D:\WINDOWS\system32
2010-07-06 10:05:07 ----A---- D:\WINDOWS\NeroDigital.ini
2010-07-06 00:32:54 ----HD---- D:\Program Files\InstallShield Installation Information
2010-07-05 22:01:57 ----D---- D:\Program Files\Mozilla Firefox
2010-07-04 02:32:15 ----D---- D:\Documents and Settings\Pertáš\Application Data\Skype
2010-06-30 10:21:54 ----D---- D:\Documents and Settings\All Users\Application Data\Blizzard Entertainment
2010-06-27 19:11:30 ----D---- D:\WINDOWS\Microsoft.NET
2010-06-27 19:11:26 ----RSD---- D:\WINDOWS\assembly
2010-06-27 13:23:26 ----D---- D:\Program Files\Opera
2010-06-27 13:16:50 ----AC---- D:\WINDOWS\system32\PerfStringBackup.INI
2010-06-27 13:16:28 ----D---- D:\WINDOWS\WinSxS
2010-06-22 22:59:31 ----D---- D:\Documents and Settings\Pertáš\Application Data\uTorrent
2010-06-13 09:38:26 ----A---- D:\WINDOWS\imsins.BAK
2010-06-13 09:38:20 ----RSHDC---- D:\WINDOWS\system32\dllcache
2010-06-13 09:37:40 ----HD---- D:\WINDOWS\$hf_mig$
2010-06-13 09:22:26 ----D---- D:\Program Files\Internet Explorer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 archlp;archlp; D:\WINDOWS\system32\drivers\archlp.sys [2009-06-03 131584]
R1 BANTExt;Belarc SMBios Access; D:\WINDOWS\System32\Drivers\BANTExt.sys [2008-02-27 3840]
R1 Cdr4_XP;Cdr4_XP; D:\WINDOWS\system32\drivers\Cdr4_XP.sys [2006-05-19 2432]
R1 Cdralw2k;Cdralw2k; D:\WINDOWS\system32\drivers\Cdralw2k.sys [2006-05-19 2560]
R1 cdrbsdrv;cdrbsdrv; D:\WINDOWS\system32\drivers\cdrbsdrv.sys [2004-03-08 13567]
R1 intelppm;Intel Processor Driver; D:\WINDOWS\System32\DRIVERS\intelppm.sys [2004-08-04 36096]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/05/03 23:52:59]; \??\D:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl []
R2 atksgt;atksgt; D:\WINDOWS\system32\DRIVERS\atksgt.sys [2007-01-12 271360]
R2 ElbyCDIO;ElbyCDIO Driver; D:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2006-04-22 8064]
R2 lirsgt;lirsgt; D:\WINDOWS\system32\DRIVERS\lirsgt.sys [2007-01-12 18048]
R2 SVKP;SVKP; \??\D:\WINDOWS\System32\SVKP.sys []
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); D:\WINDOWS\system32\drivers\ALCXWDM.SYS [2006-02-08 3846016]
R3 ElbyCDFL;ElbyCDFL; D:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2005-05-03 27392]
R3 ElbyDelay;ElbyDelay; D:\WINDOWS\System32\Drivers\ElbyDelay.sys [2005-04-12 4608]
R3 FETND5BV;VIA Rhine-Family Fast Ethernet Adapter Driver Service; D:\WINDOWS\system32\DRIVERS\fetnd5bv.sys [2004-12-16 42496]
R3 HidUsb;Microsoft HID Class Driver; D:\WINDOWS\System32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 mouhid;Mouse HID Driver; D:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 MxlW2k;MxlW2k; D:\WINDOWS\system32\drivers\MxlW2k.sys [2008-03-08 28352]
R3 nv;nv; D:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2006-11-17 3994688]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; D:\WINDOWS\System32\DRIVERS\usbehci.sys [2004-08-04 26624]
R3 usbhub;USB2 Enabled Hub; D:\WINDOWS\System32\DRIVERS\usbhub.sys [2004-08-04 57600]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; D:\WINDOWS\System32\DRIVERS\usbuhci.sys [2004-08-04 20480]
S1 Avg7Core;AVG7 Kernel; D:\WINDOWS\System32\Drivers\avg7core.sys []
S1 Avg7RsW;AVG7 Wrap Driver; D:\WINDOWS\System32\Drivers\avg7rsw.sys []
S1 Avg7RsXP;AVG7 Rezident Driver; D:\WINDOWS\System32\Drivers\avg7rsxp.sys []
S1 AvgClean;AVG7 Clean Driver; D:\WINDOWS\system32\drivers\avgclean.sys []
S1 kbdhid;Keyboard HID Driver; D:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-04 14848]
S2 wincom32;wincom32; \??\D:\WINDOWS\system32\wincom32.sys []
S2 zntport;NTPort Library Driver; \??\D:\WINDOWS\system32\zntport.sys []
S3 a9cub5ok;a9cub5ok; D:\WINDOWS\system32\drivers\a9cub5ok.sys []
S3 ALCXSENS;Service for WDM 3D Audio Driver; D:\WINDOWS\system32\drivers\ALCXSENS.SYS []
S3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; D:\WINDOWS\System32\DRIVERS\fetnd5.sys [2001-08-17 27165]
S3 GarenaPEngine;GarenaPEngine; \??\D:\DOCUME~1\PERT~1\LOCALS~1\Temp\YPI76.tmp []
S3 genmcmn;Scroll Mouse Driver; D:\WINDOWS\system32\DRIVERS\gmfiltr.sys [2003-01-29 7894]
S3 GMSIPCI;GMSIPCI; \??\F:\INSTALL\GMSIPCI.SYS []
S3 GTFFBUS;GT FF BUS; D:\WINDOWS\system32\DRIVERS\gtffbus.sys [2006-01-25 16000]
S3 GTMMDMUSB;GT M 3G+ USB MDM; D:\WINDOWS\system32\DRIVERS\gtmmdmusb.sys [2006-02-01 25472]
S3 GTMNDISIRPXP;GT M 3G+ IRP NDIS; D:\WINDOWS\system32\DRIVERS\Gtm51Irp.sys [2006-02-01 102784]
S3 GTMSERUSB;GT M 3G+ USB SER; D:\WINDOWS\system32\DRIVERS\gtmserusb.sys [2006-02-01 21760]
S3 GTPTSER;GT PT SER; D:\WINDOWS\system32\DRIVERS\gtptser.sys [2006-01-25 8064]
S3 GTSCSER;GT SC SER; D:\WINDOWS\system32\DRIVERS\gtscser.sys [2005-12-09 19328]
S3 GtVUsb;GlobeTrotter 3G+ Viper Filter Service; D:\WINDOWS\system32\DRIVERS\GtVUsb.sys [2005-12-22 5120]
S3 hamachi;Hamachi Network Interface; D:\WINDOWS\system32\DRIVERS\hamachi.sys [2006-06-29 10578]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; D:\WINDOWS\system32\DRIVERS\HPZid412.sys [2004-06-21 51088]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; D:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2004-06-21 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; D:\WINDOWS\system32\DRIVERS\HPZius12.sys [2004-06-21 21744]
S3 huadio;huadio; \??\c:\huadio.tmp []
S3 L8042pr2;Logitech PS/2 Mouse Filter Driver; D:\WINDOWS\System32\DRIVERS\L8042pr2.Sys [2003-12-17 51729]
S3 LHidFlt2;Logitech HID/USB Mouse Filter Driver; D:\WINDOWS\System32\DRIVERS\LHidFlt2.Sys [2003-12-17 25505]
S3 LHidUsbK;Logitech SetPoint USB Receiver Device Driver; D:\WINDOWS\System32\Drivers\LHidUsbK.Sys []
S3 LMouFlt2;Logitech Mouse Class Filter Driver; D:\WINDOWS\System32\DRIVERS\LMouFlt2.Sys [2003-12-17 70801]
S3 LMouKE;Logitech SetPoint Mouse Filter Driver; D:\WINDOWS\system32\DRIVERS\LMouKE.Sys []
S3 LUsbKbd;Logitech SetPoint USB Keyboard Filter; D:\WINDOWS\System32\Drivers\LUsbKbd.Sys []
S3 nm;Network Monitor Driver; D:\WINDOWS\system32\DRIVERS\NMnt.sys [2004-08-04 40320]
S3 oUltraf;oUltraf; \??\D:\DOCUME~1\PERT~1\LOCALS~1\Temp\oUltraf.sys []
S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\D:\WINDOWS\system32\PCAMPR5.SYS []
S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\D:\WINDOWS\system32\PCANDIS5.SYS []
S3 usbccgp;Microsoft USB Generic Parent Driver; D:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-04 31616]
S3 usbprint;Microsoft USB PRINTER Class; D:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-04 25856]
S3 usbscan;USB Scanner Driver; D:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-04 15104]
S3 USBSTOR;USB Mass Storage Driver; D:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]
S3 WINIO;WINIO; \??\D:\Program Files\aspeeder\winio.sys []
S3 WpdUsb;WpdUsb; D:\WINDOWS\System32\Drivers\wpdusb.sys [2006-10-18 38528]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; D:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; D:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; D:\WINDOWS\system32\drivers\IntelIde.sys []
S4 WS2IFSL;Prostredie podpory poskytovateľa služby Windows Socket 2.0 Non-IFS Service; D:\WINDOWS\System32\drivers\ws2ifsl.sys [2003-03-31 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Application Updater;Application Updater; D:\Program Files\Application Updater\ApplicationUpdater.exe [2009-12-28 380928]
R2 Creative Service for CDROM Access;Creative Service for CDROM Access; D:\WINDOWS\system32\CTsvcCDA.exe [1999-12-12 44032]
R2 CTDevice_Srv;CT Device Query service; D:\Program Files\Creative\Shared Files\CTDevSrv.exe [2007-04-02 61440]
R2 FreeAgentGoNext Service;Seagate Service; D:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe [2009-09-25 189736]
R2 ICQ Service;ICQ Service; D:\Program Files\ICQ6Toolbar\ICQ Service.exe [2008-06-10 222456]
R2 NVSvc;NVIDIA Display Driver Service; D:\WINDOWS\system32\nvsvc32.exe [2006-11-17 159811]
S2 Avg7Alrt;AVG7 Alert Manager Server; D:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe []
S2 Avg7UpdSvc;AVG7 Update Service; D:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe []
S2 ISEXEng;ISEXEng; D:\WINDOWS\System32\angelex.exe []
S3 aspnet_state;ASP.NET State Service; D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 avast! Mail Scanner;avast! Mail Scanner; D:\PROGRA~1\ALWILS~1\Avast4\ashMaiSv.exe [2009-09-15 254040]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 CTUPnPSv;Creative Centrale Media Server; D:\Program Files\Creative\Creative Centrale\CTUPnPSv.exe [2008-05-21 64000]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; D:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; D:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; E:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; D:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; D:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Pml Driver HPZ12;Pml Driver HPZ12; D:\WINDOWS\system32\HPZipm12.exe [2004-03-18 65536]
S3 SwitchBoard;SwitchBoard; D:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; D:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; D:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

#2 Příspěvek od **JaRon** » 06 črc 2010 11:24

no dost hrozne

odinstaluj AVG7 - je uplne nanic
vycisti PC s MBAM + CureIT - potom vloz log RSIT

Yaxamp · #3 Příspěvek od **Yaxamp** » 06 črc 2010 16:05

Yaxamp · #4 Příspěvek od **Yaxamp** » 06 črc 2010 16:17

Edit

Logfile of random's system information tool 1.07 (written by random/random)
Run by Pertáš at 2010-07-06 17:18:51
Systém Microsoft Windows XP Home Edition Service Pack 2
System drive D: has 4 GB (9%) free of 40 GB
Total RAM: 1023 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:18:55, on 6.7.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\IM In Style\Style.exe
D:\WINDOWS\Logi_MwX.Exe
D:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
D:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
D:\WINDOWS\SOUNDMAN.EXE
D:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe
D:\Program Files\Cyberlink\Shared files\brs.exe
D:\WINDOWS\system32\RUNDLL32.EXE
D:\Program Files\Carbonite\CarbonitePreinstaller.exe
D:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe
D:\Program Files\VIA\RAID\raid_tool.exe
C:\MediaSource5\MtdAcqu.exe
D:\Program Files\Messenger\msmsgs.exe
D:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\DAEMON Tools Lite\DTLite.exe
D:\Program Files\Creative\Software Update 3\SoftAuto.exe
E:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
D:\Program Files\Application Updater\ApplicationUpdater.exe
D:\WINDOWS\system32\CTsvcCDA.exe
D:\Program Files\Creative\Shared Files\CTDevSrv.exe
D:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
D:\Program Files\ICQ6Toolbar\ICQ Service.exe
D:\WINDOWS\system32\nvsvc32.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\wscntfy.exe
D:\Documents and Settings\Pertáš\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Pertáš\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Pertáš\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Pertáš\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\WINDOWS\system32\wuauclt.exe
D:\Documents and Settings\Pertáš\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
D:\Documents and Settings\Pertáš\My Documents\Downloads\RSIT.exe
D:\Program Files\trend micro\Pertáš.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2418376
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedi ... t=&gc=1&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://minisearch.startnow.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://minisearch.startnow.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.startnow.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://minisearch.startnow.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://minisearch.startnow.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://toolbar.ask.com/toolbarv/askRedi ... t=&gc=1&q=
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://minisearch.startnow.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://toolbar.ask.com/toolbarv/askRedi ... &gc=1&q=%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = http://www.web--search.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = .pac;.jvs;.js
R3 - URLSearchHook: (no name) - {D73F49B6-B51B-4d32-A3B7-BD04B8342F53} - D:\Program Files\MorpheusBar\SrchAstt\1.bin\MBSRCAS.DLL (file missing)
R3 - URLSearchHook: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - D:\Program Files\BearShare applications\BearShare MediaBar\MediaBar.dll (file missing)
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: DefaultSearchHook Class - {C94E154B-1459-4A47-966B-4B843BEFC7DB} - D:\Program Files\AskSearch\bin\DefaultSearch.dll
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: PageRage Toolbar - {9565115d-c7d6-46d3-bd63-b67b481a4368} - D:\Program Files\PageRage\tbPag0.dll
R3 - URLSearchHook: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - D:\Program Files\Dealio Toolbar\SearchSettings.dll
O2 - BHO: Dealio Toolbar - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - D:\Program Files\Dealio Toolbar\IE\4.0.2\dealioToolbarIE.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - D:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - E:\PROGRA~1\MICROS~1\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: PageRage Toolbar - {9565115d-c7d6-46d3-bd63-b67b481a4368} - D:\Program Files\PageRage\tbPag0.dll
O2 - BHO: (no name) - {D73F49B1-B51B-4d32-A3B7-BD04B8342F53} - D:\Program Files\MorpheusBar\SrchAstt\1.bin\MBSRCAS.DLL (file missing)
O2 - BHO: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - D:\Program Files\Dealio Toolbar\SearchSettings.dll
O2 - BHO: XBTP02634 - {F97DA966-F09D-4cab-BF29-75A0026986EA} - D:\PROGRA~1\BEARSH~1\BEARSH~2\MediaBar.dll (file missing)
O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - D:\Program Files\Yontoo Layers Client\YontooIEClient.dll
O3 - Toolbar: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - D:\Program Files\BearShare applications\BearShare MediaBar\MediaBar.dll (file missing)
O3 - Toolbar: (no name) - {3BB63FD4-3C00-44D7-94A9-5DE211900DEF} - (no file)
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - D:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: PageRage Toolbar - {9565115d-c7d6-46d3-bd63-b67b481a4368} - D:\Program Files\PageRage\tbPag0.dll
O3 - Toolbar: Dealio Toolbar - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - D:\Program Files\Dealio Toolbar\IE\4.0.2\dealioToolbarIE.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - D:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [WhenUSave] "D:\Program Files\Save\Save.exe"
O4 - HKLM\..\Run: [Style] D:\Program Files\IM In Style\Style.exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NeroFilterCheck] D:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [mouseElf] D:\PROGRA~1\GENIUS~1\GNETMOUS.EXE
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [doesplatformcoolaxis] D:\Documents and Settings\All Users\Application Data\third dart does platform\barb show.exe
O4 - HKLM\..\Run: [CloneCDTray] "D:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [AVG7_CC] D:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [AceGain LiveUpdate] D:\Program Files\AceGain\LiveUpdate\LiveUpdate.exe
O4 - HKLM\..\Run: [ISUSPM Startup] D:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "D:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [VirtualCloneDrive] "D:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [GrooveMonitor] "E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SearchSettings] D:\Program Files\Dealio Toolbar\SearchSettings.exe
O4 - HKLM\..\Run: [RemoteControl10] "D:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [BDRegion] D:\Program Files\Cyberlink\Shared files\brs.exe
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "D:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [SwitchBoard] D:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "D:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE D:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [CarboniteSetupLite] "D:\Program Files\Carbonite\CarbonitePreinstaller.exe" /preinstalled /showonfirst /reshowat=900
O4 - HKLM\..\Run: [MaxMenuMgr] "D:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe"
O4 - HKLM\..\Run: [RaidTool] D:\Program Files\VIA\RAID\raid_tool.exe
O4 - HKCU\..\Run: [MtdAcqu] "C:\MediaSource5\MtdAcqu.exe" /s
O4 - HKCU\..\Run: [MSMSGS] "D:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [CTSyncU.exe] "D:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [audioheart] D:\DOCUME~1\PERT~1\APPLIC~1\MFCDCU~1\part road knob.exe
O4 - HKCU\..\Run: [ICQ] "D:\Program Files\ICQ6\ICQ.exe" silent
O4 - HKCU\..\Run: [CTRegRun] D:\WINDOWS\CTRegRun.EXE
O4 - HKCU\..\Run: [Google Update] "D:\Documents and Settings\Pertáš\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [SoftAuto.exe] "D:\Program Files\Creative\Software Update 3\SoftAuto.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] D:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [RunNarrator] Narrator.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [RunNarrator] Narrator.exe (User 'Default user')
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = E:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Startup: WarRun.lnk = D:\Program Files\WarRun\WarRun.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Mountit.lnk = D:\Program Files\Roxio\WinOnCD 6\MountIt.exe
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - D:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm
O8 - Extra context menu item: &ICQ Toolbar Search - res://D:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: E&xport to Microsoft Excel - res://E:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - D:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - D:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Program Files\ICQLite\ICQLite.exe (file missing)
O9 - Extra button: eBay - Homepage - {EF79EAC5-3452-4E02-B8BD-BA4C89F1AC7A} - D:\Program Files\IrfanView\Ebay\Ebay.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\MSMSGS.EXE
O16 - DPF: {4509DCBD-8B00-43B4-A843-45C4A1F7FC3D} (VacPro.slov_ver3) - http://ocx2.advnt01.com/dialer/slov_ver3.CAB
O16 - DPF: {53B8B406-42E4-4DD3-96E7-9DEC8CEB3DD8} (ICQVideoControl Class) - http://xtraz.icq.com/xtraz/activex/ICQVideoControl.cab
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697516} (NsvPlayX Control) - http://www.ntcast.com/tv/nsvplayx_vp6_mp3.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - E:\PROGRA~1\MICROS~1\Office12\GR99D3~1.DLL
O20 - AppInit_DLLs: pushow63.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - D:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - D:\WINDOWS\System32\browseui.dll
O23 - Service: Application Updater - Spigot, Inc. - D:\Program Files\Application Updater\ApplicationUpdater.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - D:\PROGRA~1\ALWILS~1\Avast4\ashMaiSv.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - Unknown owner - D:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe (file missing)
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - Unknown owner - D:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe (file missing)
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - D:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: CT Device Query service (CTDevice_Srv) - Creative Technology Ltd - D:\Program Files\Creative\Shared Files\CTDevSrv.exe
O23 - Service: Creative Centrale Media Server (CTUPnPSv) - Creative Technology Ltd - D:\Program Files\Creative\Creative Centrale\CTUPnPSv.exe
O23 - Service: Seagate Service (FreeAgentGoNext Service) - Seagate Technology LLC - D:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
O23 - Service: ICQ Service - Unknown owner - D:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: ISEXEng - Unknown owner - D:\WINDOWS\System32\angelex.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - D:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - D:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O24 - Desktop Component 0: (no name) - http://www.topwallpapers.com/gif/freewa ... enus_p.jpg
O24 - Desktop Component 1: (no name) - http://www.topwallpapers.com/gif/freewa ... mids_p.jpg
O24 - Desktop Component 2: (no name) - http://jackass.ulie.nl/_downloads/downl ... 24x768.jpg

--
End of file - 15489 bytes

======Scheduled tasks folder======

D:\WINDOWS\tasks\AppleSoftwareUpdate.job
D:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-507921405-1123561945-725345543-1004Core.job
D:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-507921405-1123561945-725345543-1004UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}]
Dealio Toolbar - D:\Program Files\Dealio Toolbar\IE\4.0.2\dealioToolbarIE.dll [2009-12-28 700416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-12-18 59032]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
AskBar BHO - D:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-08-26 279944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - E:\PROGRA~1\MICROS~1\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - D:\Program Files\Java\jre1.6.0_01\bin\ssv.dll [2007-03-14 501400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9565115d-c7d6-46d3-bd63-b67b481a4368}]
PageRage Toolbar - D:\Program Files\PageRage\tbPag0.dll [2010-05-24 2393184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D73F49B1-B51B-4d32-A3B7-BD04B8342F53}]
D:\Program Files\MorpheusBar\SrchAstt\1.bin\MBSRCAS.DLL []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
D:\Program Files\Dealio Toolbar\SearchSettings.dll [2009-12-28 1109504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F97DA966-F09D-4cab-BF29-75A0026986EA}]
XBTP02634 Class - D:\PROGRA~1\BEARSH~1\BEARSH~2\MediaBar.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]
Yontoo Layers - D:\Program Files\Yontoo Layers Client\YontooIEClient.dll [2009-12-16 194912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - BearShare MediaBar - D:\Program Files\BearShare applications\BearShare MediaBar\MediaBar.dll []
{3BB63FD4-3C00-44D7-94A9-5DE211900DEF}
{3041d03e-fd4b-44e0-b742-2d9b88305f98} - Ask Toolbar - D:\Program Files\AskBarDis\bar\bin\askBar.dll [2008-08-26 279944]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - D:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2008-06-12 958712]
{9565115d-c7d6-46d3-bd63-b67b481a4368} - PageRage Toolbar - D:\Program Files\PageRage\tbPag0.dll [2010-05-24 2393184]
{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - Dealio Toolbar - D:\Program Files\Dealio Toolbar\IE\4.0.2\dealioToolbarIE.dll [2009-12-28 700416]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - D:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"WhenUSave"=D:\Program Files\Save\Save.exe []
"Style"=D:\Program Files\IM In Style\Style.exe [2004-01-11 125440]
"nwiz"=nwiz.exe /install []
"NvCplDaemon"=D:\WINDOWS\system32\NvCpl.dll [2006-11-17 7700480]
"NeroFilterCheck"=D:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"mouseElf"=D:\PROGRA~1\GENIUS~1\GNETMOUS.EXE [2003-05-13 163840]
"Logitech Utility"=D:\WINDOWS\Logi_MwX.Exe [2003-12-17 19968]
"doesplatformcoolaxis"=D:\Documents and Settings\All Users\Application Data\third dart does platform\barb show.exe []
"CloneCDTray"=D:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2005-05-19 57344]
"AVG7_CC"=D:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP []
"AceGain LiveUpdate"=D:\Program Files\AceGain\LiveUpdate\LiveUpdate.exe []
"ISUSPM Startup"=D:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [2004-06-16 221184]
"ISUSScheduler"=D:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"VirtualCloneDrive"=D:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2006-04-29 94208]
"pdfSaver3"= []
"GrooveMonitor"=E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"SoundMan"=D:\WINDOWS\SOUNDMAN.EXE [2006-01-11 577536]
"SearchSettings"=D:\Program Files\Dealio Toolbar\SearchSettings.exe [2009-12-28 974848]
"RemoteControl10"=D:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe [2010-02-03 87336]
"BDRegion"=D:\Program Files\Cyberlink\Shared files\brs.exe [2010-03-13 75048]
"AdobeAAMUpdater-1.0"=D:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-05-18 500208]
"SwitchBoard"=D:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=D:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"NvMediaCenter"=D:\WINDOWS\system32\NvMcTray.dll [2006-11-17 86016]
"KernelFaultCheck"=D:\WINDOWS\system32\dumprep 0 -k []
"CarboniteSetupLite"=D:\Program Files\Carbonite\CarbonitePreinstaller.exe [2009-08-04 318096]
"MaxMenuMgr"=D:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe [2009-09-25 185640]
"RaidTool"=D:\Program Files\VIA\RAID\raid_tool.exe [2004-10-11 589824]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MtdAcqu"=C:\MediaSource5\MtdAcqu.exe [2006-03-08 278528]
"MSMSGS"=D:\Program Files\Messenger\msmsgs.exe [2003-04-14 1491216]
"CTSyncU.exe"=D:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe [2006-04-28 692224]
"CTFMON.EXE"=D:\WINDOWS\system32\ctfmon.exe [2004-08-04 15360]
"audioheart"=D:\DOCUME~1\PERT~1\APPLIC~1\MFCDCU~1\part road knob.exe []
"ICQ"=D:\Program Files\ICQ6\ICQ.exe silent []
"CTRegRun"=D:\WINDOWS\CTRegRun.EXE [1999-10-10 41984]
"Google Update"=D:\Documents and Settings\Pertáš\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-01-10 135664]
"DAEMON Tools Lite"=D:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"SoftAuto.exe"=D:\Program Files\Creative\Software Update 3\SoftAuto.exe [2008-08-13 405504]
"AdobeBridge"= []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IncrediMail]
D:\Program Files\IncrediMail\bin\IncMail.exe [2004-12-26 188459]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
D:\Program Files\QuickTime\qttask.exe -atboottime []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
E:\Valve\Steam\\Steam.exe -silent []

D:\Documents and Settings\All Users\Start Menu\Programs\Startup
Adobe Reader Speed Launch.lnk - D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
Mountit.lnk - D:\Program Files\Roxio\WinOnCD 6\MountIt.exe

D:\Documents and Settings\Pertáš\Start Menu\Programs\Startup
OneNote 2007 Screen Clipper and Launcher.lnk - E:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
WarRun.lnk - D:\Program Files\WarRun\WarRun.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="pushow63.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
D:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - D:\WINDOWS\system32\upnpui.dll [2004-08-04 239616]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - D:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=E:\PROGRA~1\MICROS~1\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"zbnadlndkuxuqbgrgtraTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLUA"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=0x95000000

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\Valve\Steam\Steam.exe"="D:\Valve\Steam\Steam.exe:*:Enabled:Steam"
"D:\Valve\Steam\SteamApps\igorkisac\counter-strike\hl.exe"="D:\Valve\Steam\SteamApps\igorkisac\counter-strike\hl.exe:*:Enabled:Half-Life Launcher"
"E:\games\Need For Speed Underground\Speed.exe"="E:\games\Need For Speed Underground\Speed.exe:*:Enabled:Speed"
"D:\Program Files\Messenger\msmsgs.exe"="D:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"D:\Program Files\IncrediMail\bin\IMApp.exe"="D:\Program Files\IncrediMail\bin\IMApp.exe:*:Enabled:IncrediMail"
"D:\Program Files\IncrediMail\bin\IncMail.exe"="D:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail"
"D:\Program Files\IncrediMail\bin\ImpCnt.exe"="D:\Program Files\IncrediMail\bin\ImpCnt.exe:*:Enabled:IncrediMail"
"E:\games\Warcraft III\Frozen Throne.exe"="E:\games\Warcraft III\Frozen Throne.exe:*:Enabled:Warcraft III - Ledový trůn"
"D:\Program Files\Kazaa\kazaa.exe"="D:\Program Files\Kazaa\kazaa.exe:*:Enabled:Kazaa"
"D:\Documents and Settings\Pertáš\Local Settings\Temp\~osD8.tmp\ossproxy.exe"="D:\Documents and Settings\Pertáš\Local Settings\Temp\~osD8.tmp\ossproxy.exe:*:Enabled:ossproxy.exe"
"D:\Program Files\Logitech\Desktop Messenger\8876480\Program\backWeb-8876480.exe"="D:\Program Files\Logitech\Desktop Messenger\8876480\Program\backWeb-8876480.exe:*:Enabled:backWeb-8876480"
"D:\Documents and Settings\Pertáš\Local Settings\Temp\~os5.tmp\ossproxy.exe"="D:\Documents and Settings\Pertáš\Local Settings\Temp\~os5.tmp\ossproxy.exe:*:Enabled:ossproxy.exe"
"d:\windows\system32\rk.exe"="d:\windows\system32\rk.exe:*:Enabled:rk.exe"
"D:\Documents and Settings\Pertáš\Local Settings\Temp\~os7.tmp\ossproxy.exe"="D:\Documents and Settings\Pertáš\Local Settings\Temp\~os7.tmp\ossproxy.exe:*:Enabled:ossproxy.exe"
"D:\Program Files\Common Files\AOL\1126095761\ee\AOLServiceHost.exe"="D:\Program Files\Common Files\AOL\1126095761\ee\AOLServiceHost.exe:*:Enabled:AOL Services"
"D:\Program Files\AIM\aim.exe"="D:\Program Files\AIM\aim.exe:*:Enabled:AOL Instant Messenger"
"D:\Program Files\Common Files\AOL\Loader\aolload.exe"="D:\Program Files\Common Files\AOL\Loader\aolload.exe:*:Enabled:AOL Loader"
"D:\Program Files\MSN Messenger\msnmsgr.exe"="D:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:MSN Messenger 7.5"
"d:\windows\system32\rlvknlg.exe"="d:\windows\system32\rlvknlg.exe:*:Enabled:rlvknlg.exe"
"D:\Program Files\LimeWire\LimeWire.exe"="D:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"D:\Program Files\Morpheus\Morpheus.exe"="D:\Program Files\Morpheus\Morpheus.exe:*:Enabled:Morpheus"
"D:\WINDOWS\system32\sm.exe"="D:\WINDOWS\system32\sm.exe:*:Enabled:enable"
"D:\WINDOWS\system32\dd.exe"="D:\WINDOWS\system32\dd.exe:*:Enabled:enable"
"D:\WINDOWS\system32\lnwin.exe"="D:\WINDOWS\system32\lnwin.exe:*:Enabled:enable"
"D:\WINDOWS\system32\adirss.exe"="D:\WINDOWS\system32\adirss.exe:*:Enabled:enable"
"D:\Program Files\BearShare Applications\BearShare\BearShare.exe"="D:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare"
"C:\Westwood\SUN\PATCHGET.DAT"="C:\Westwood\SUN\PATCHGET.DAT:*:Enabled:patchgrabber"
"C:\Westwood\SUN\Game.exe"="C:\Westwood\SUN\Game.exe:*:Enabled:Main executable for Tiberian Sun"
"D:\Program Files\AOL\Active Virus Shield\avp.exe"="D:\Program Files\AOL\Active Virus Shield\avp.exe:*:Disabled:Active Virus Shield"
"E:\Valve\Steam\steamapps\igorkisac\counter-strike\hl.exe"="E:\Valve\Steam\steamapps\igorkisac\counter-strike\hl.exe:*:Enabled:Half-Life Launcher"
"E:\games\Warcraft III\Warcraft III.exe"="E:\games\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"C:\World of Warcraft\BackgroundDownloader.exe"="C:\World of Warcraft\BackgroundDownloader.exe:*:Enabled:Blizzard Downloader"
"D:\Program Files\GameHouse\BounceOut\BounceOut.exe"="D:\Program Files\GameHouse\BounceOut\BounceOut.exe:*:Disabled:Super Bounce Out!"
"E:\KnightsAndMerchants\KaM_1024.exe"="E:\KnightsAndMerchants\KaM_1024.exe:*:Enabled:KaM_1024"
"E:\Km TPR\KM_TPR.exe"="E:\Km TPR\KM_TPR.exe:*:Enabled:KM_TPR"
"D:\Program Files\ICQLite\ICQLite.exe"="D:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite"
"D:\Documents and Settings\Pertáš\Desktop\anime-supreme-mirc-20070227\[a-S]mIRC\mirc.exe"="D:\Documents and Settings\Pertáš\Desktop\anime-supreme-mirc-20070227\[a-S]mIRC\mirc.exe:*:Enabled:mIRC"
"D:\Program Files\BitTorrent\bittorrent.exe"="D:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
"D:\Program Files\Opera\Opera.exe"="D:\Program Files\Opera\Opera.exe:*:Enabled:Opera Internet Browser"
"E:\Half-Life 2\hl2.exe"="E:\Half-Life 2\hl2.exe:*:Enabled:hl2"
"E:\games\Cossacks European Wars\dmcr.exe"="E:\games\Cossacks European Wars\dmcr.exe:*:Enabled:dmcr"
"D:\WINDOWS\system32\dplaysvr.exe"="D:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"E:\Valve\Steam\Steam.exe"="E:\Valve\Steam\Steam.exe:*:Disabled:Steam"
"E:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="E:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"E:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="E:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"E:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="E:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"D:\Documents and Settings\Pertáš\Desktop\GHostOne1.4.194\Ghost11\GHostOne.exe"="D:\Documents and Settings\Pertáš\Desktop\GHostOne1.4.194\Ghost11\GHostOne.exe:*:Enabled:Ghost One - frontend for ghost++"
"E:\uTorrent\uTorrent.exe"="E:\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"D:\Program Files\Garena\Garena.exe"="D:\Program Files\Garena\Garena.exe:*:Enabled:Garena"
"E:\World of Warcraft Trial\WoW-3.1.2.9926-to-3.2.0.10194-enGB-Trial-downloader.exe"="E:\World of Warcraft Trial\WoW-3.1.2.9926-to-3.2.0.10194-enGB-Trial-downloader.exe:*:Enabled:Blizzard Downloader"
"D:\Documents and Settings\Pertáš\Desktop\GHostOne1.6.241\GHostOne\GHostOne.exe"="D:\Documents and Settings\Pertáš\Desktop\GHostOne1.6.241\GHostOne\GHostOne.exe:*:Enabled:GHost One - advanced hosting bot"
"D:\Documents and Settings\Pertáš\Desktop\GHostOne\GHostOne\GHostOne.exe"="D:\Documents and Settings\Pertáš\Desktop\GHostOne\GHostOne\GHostOne.exe:*:Enabled:GHost One - advanced hosting bot"
"D:\Documents and Settings\Pertáš\Desktop\GHostOne\GHostOne\ghost.exe"="D:\Documents and Settings\Pertáš\Desktop\GHostOne\GHostOne\ghost.exe:*:Enabled:ghost"
"E:\World of Warcraft\Launcher.exe"="E:\World of Warcraft\Launcher.exe:*:Enabled:Launcher.exe"
"E:\KaM - The Peasants Rebellion\KaM - The Peasants Rebellion\KaM - The Peasants Rebellion\KM_TPR.EXE"="E:\KaM - The Peasants Rebellion\KaM - The Peasants Rebellion\KaM - The Peasants Rebellion\KM_TPR.EXE:*:Enabled:KM_TPR"
"D:\Documents and Settings\All Users\Documents\Knights And Merchants\KaM_1024.exe"="D:\Documents and Settings\All Users\Documents\Knights And Merchants\KaM_1024.exe:*:Enabled:KaM_1024"
"E:\games\Knights And Merchants\KaM_1024.exe"="E:\games\Knights And Merchants\KaM_1024.exe:*:Enabled:KaM_1024"
"E:\KaM - The Peasants Rebellion\KM_TPR.EXE"="E:\KaM - The Peasants Rebellion\KM_TPR.EXE:*:Enabled:KM_TPR"
"D:\Program Files\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe"="D:\Program Files\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe:*:Enabled:CyberLink PowerDVD 10.0"
"E:\Anno 1701\Anno1701.exe"="E:\Anno 1701\Anno1701.exe:*:Enabled:Anno 1701"
"D:\Program Files\QIP Infium\infium.exe"="D:\Program Files\QIP Infium\infium.exe:*:Enabled:QIP Infium"
"D:\Program Files\Pando Networks\Media Booster\PMB.exe"="D:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"D:\Riot Games\League of Legends\air\LolClient.exe"="D:\Riot Games\League of Legends\air\LolClient.exe:*:Enabled:League of Legends Lobby"
"D:\Riot Games\League of Legends\game\League of Legends.exe"="D:\Riot Games\League of Legends\game\League of Legends.exe:*:Enabled:League of Legends Game Client"
"D:\Documents and Settings\Pertáš\Local Settings\Temp\Rar$EX02.515\teamspeak3-server_win32\ts3server_win32.exe"="D:\Documents and Settings\Pertáš\Local Settings\Temp\Rar$EX02.515\teamspeak3-server_win32\ts3server_win32.exe:*:Enabled:TeamSpeak 3 Server"
"D:\Documents and Settings\Pertáš\My Documents\Downloads\teamspeak3-server_win32-3.0.0-beta25\teamspeak3-server_win32\ts3server_win32.exe"="D:\Documents and Settings\Pertáš\My Documents\Downloads\teamspeak3-server_win32-3.0.0-beta25\teamspeak3-server_win32\ts3server_win32.exe:*:Enabled:TeamSpeak 3 Server"
"D:\Program Files\Skype\Phone\Skype.exe"="D:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\Program Files\Common Files\AOL\1126095761\ee\AOLServiceHost.exe"="D:\Program Files\Common Files\AOL\1126095761\ee\AOLServiceHost.exe:*:Enabled:AOL Services"
"D:\Program Files\Common Files\AOL\Loader\aolload.exe"="D:\Program Files\Common Files\AOL\Loader\aolload.exe:*:Enabled:AOL Loader"
"D:\Program Files\AIM\aim.exe"="D:\Program Files\AIM\aim.exe:*:Enabled:AOL Instant Messenger"
"D:\Program Files\MSN Messenger\msnmsgr.exe"="D:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:MSN Messenger 7.5"
"D:\Program Files\Pando Networks\Media Booster\PMB.exe"="D:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{33b55972-dc6c-11d8-9534-8d14b3f27914}]
shell\AutoRun\command - H:\Setup.exe

======List of files/folders created in the last 1 months======

2010-07-06 12:30:28 ----D---- D:\Documents and Settings\Pertáš\Application Data\Malwarebytes
2010-07-06 12:30:20 ----D---- D:\Documents and Settings\All Users\Application Data\Malwarebytes
2010-07-06 12:30:19 ----D---- D:\Program Files\Malwarebytes' Anti-Malware
2010-07-06 12:12:53 ----D---- D:\rsit
2010-07-06 12:12:53 ----D---- D:\Program Files\trend micro
2010-07-06 11:47:35 ----D---- D:\Program Files\VIA
2010-07-06 11:31:47 ----D---- D:\Program Files\Belarc
2010-07-06 00:32:37 ----D---- D:\Documents and Settings\All Users\Application Data\Seagate
2010-07-06 00:32:36 ----D---- D:\Program Files\Seagate
2010-07-06 00:23:11 ----D---- D:\Program Files\Carbonite
2010-07-05 02:19:32 ----D---- D:\Program Files\Auslogics
2010-07-05 02:10:14 ----D---- D:\Program Files\Defraggler
2010-07-05 02:02:40 ----D---- D:\Documents and Settings\Pertáš\Application Data\Auslogics
2010-07-03 16:54:05 ----D---- D:\Documents and Settings\Pertáš\Application Data\MSA
2010-07-03 12:43:06 ----D---- D:\Program Files\TeamSpeak 3 Client
2010-07-03 12:40:09 ----D---- D:\Documents and Settings\All Users\Application Data\boost_interprocess
2010-06-29 01:38:35 ----SHD---- D:\found.000
2010-06-13 09:38:17 ----HDC---- D:\WINDOWS\$NtUninstallKB980218$
2010-06-13 09:37:49 ----HDC---- D:\WINDOWS\$NtUninstallKB980195$
2010-06-13 09:36:18 ----HDC---- D:\WINDOWS\$NtUninstallKB979559$
2010-06-13 09:29:49 ----HDC---- D:\WINDOWS\$NtUninstallKB978695_WM9$
2010-06-13 09:29:44 ----HDC---- D:\WINDOWS\$NtUninstallKB979482$
2010-06-13 09:29:30 ----HDC---- D:\WINDOWS\$NtUninstallKB975562$
2010-06-13 09:22:19 ----HDC---- D:\WINDOWS\$NtUninstallKB982381$
2010-06-10 19:27:17 ----A---- D:\WINDOWS\IE4 Error Log.txt

======List of files/folders modified in the last 1 months======

2010-07-06 17:18:38 ----D---- D:\WINDOWS\Prefetch
2010-07-06 17:10:44 ----D---- D:\WINDOWS\Temp
2010-07-06 17:09:54 ----D---- D:\WINDOWS\system32\drivers
2010-07-06 17:09:11 ----A---- D:\WINDOWS\SchedLgU.Txt
2010-07-06 16:55:12 ----AD---- D:\Program Files
2010-07-06 16:55:11 ----D---- D:\WINDOWS\system32
2010-07-06 16:55:11 ----D---- D:\WINDOWS
2010-07-06 12:32:52 ----D---- D:\WINDOWS\system32\CatRoot2
2010-07-06 11:48:01 ----SHD---- D:\WINDOWS\Installer
2010-07-06 11:48:01 ----HD---- D:\Config.Msi
2010-07-06 11:47:59 ----HD---- D:\WINDOWS\inf
2010-07-06 11:47:58 ----D---- D:\WINDOWS\system32\CatRoot
2010-07-06 10:05:07 ----A---- D:\WINDOWS\NeroDigital.ini
2010-07-06 00:32:54 ----HD---- D:\Program Files\InstallShield Installation Information
2010-07-05 22:01:57 ----D---- D:\Program Files\Mozilla Firefox
2010-07-04 02:32:15 ----D---- D:\Documents and Settings\Pertáš\Application Data\Skype
2010-06-30 10:21:54 ----D---- D:\Documents and Settings\All Users\Application Data\Blizzard Entertainment
2010-06-27 19:11:30 ----D---- D:\WINDOWS\Microsoft.NET
2010-06-27 19:11:26 ----RSD---- D:\WINDOWS\assembly
2010-06-27 13:23:26 ----D---- D:\Program Files\Opera
2010-06-27 13:16:50 ----AC---- D:\WINDOWS\system32\PerfStringBackup.INI
2010-06-27 13:16:28 ----D---- D:\WINDOWS\WinSxS
2010-06-22 22:59:31 ----D---- D:\Documents and Settings\Pertáš\Application Data\uTorrent
2010-06-13 09:38:26 ----A---- D:\WINDOWS\imsins.BAK
2010-06-13 09:38:20 ----RSHDC---- D:\WINDOWS\system32\dllcache
2010-06-13 09:37:40 ----HD---- D:\WINDOWS\$hf_mig$
2010-06-13 09:22:26 ----D---- D:\Program Files\Internet Explorer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 archlp;archlp; D:\WINDOWS\system32\drivers\archlp.sys [2009-06-03 131584]
R1 BANTExt;Belarc SMBios Access; D:\WINDOWS\System32\Drivers\BANTExt.sys [2008-02-27 3840]
R1 Cdr4_XP;Cdr4_XP; D:\WINDOWS\system32\drivers\Cdr4_XP.sys [2006-05-19 2432]
R1 Cdralw2k;Cdralw2k; D:\WINDOWS\system32\drivers\Cdralw2k.sys [2006-05-19 2560]
R1 cdrbsdrv;cdrbsdrv; D:\WINDOWS\system32\drivers\cdrbsdrv.sys [2004-03-08 13567]
R1 intelppm;Intel Processor Driver; D:\WINDOWS\System32\DRIVERS\intelppm.sys [2004-08-04 36096]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/05/03 23:52:59]; \??\D:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl []
R2 atksgt;atksgt; D:\WINDOWS\system32\DRIVERS\atksgt.sys [2007-01-12 271360]
R2 ElbyCDIO;ElbyCDIO Driver; D:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2006-04-22 8064]
R2 lirsgt;lirsgt; D:\WINDOWS\system32\DRIVERS\lirsgt.sys [2007-01-12 18048]
R2 SVKP;SVKP; \??\D:\WINDOWS\System32\SVKP.sys []
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); D:\WINDOWS\system32\drivers\ALCXWDM.SYS [2006-02-08 3846016]
R3 ElbyCDFL;ElbyCDFL; D:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2005-05-03 27392]
R3 ElbyDelay;ElbyDelay; D:\WINDOWS\System32\Drivers\ElbyDelay.sys [2005-04-12 4608]
R3 FETND5BV;VIA Rhine-Family Fast Ethernet Adapter Driver Service; D:\WINDOWS\system32\DRIVERS\fetnd5bv.sys [2004-12-16 42496]
R3 HidUsb;Microsoft HID Class Driver; D:\WINDOWS\System32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 mouhid;Mouse HID Driver; D:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 MxlW2k;MxlW2k; D:\WINDOWS\system32\drivers\MxlW2k.sys [2008-03-08 28352]
R3 nv;nv; D:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2006-11-17 3994688]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; D:\WINDOWS\System32\DRIVERS\usbehci.sys [2004-08-04 26624]
R3 usbhub;USB2 Enabled Hub; D:\WINDOWS\System32\DRIVERS\usbhub.sys [2004-08-04 57600]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; D:\WINDOWS\System32\DRIVERS\usbuhci.sys [2004-08-04 20480]
S1 Avg7Core;AVG7 Kernel; D:\WINDOWS\System32\Drivers\avg7core.sys []
S1 Avg7RsW;AVG7 Wrap Driver; D:\WINDOWS\System32\Drivers\avg7rsw.sys []
S1 Avg7RsXP;AVG7 Rezident Driver; D:\WINDOWS\System32\Drivers\avg7rsxp.sys []
S1 AvgClean;AVG7 Clean Driver; D:\WINDOWS\system32\drivers\avgclean.sys []
S1 kbdhid;Keyboard HID Driver; D:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-04 14848]
S2 wincom32;wincom32; \??\D:\WINDOWS\system32\wincom32.sys []
S2 zntport;NTPort Library Driver; \??\D:\WINDOWS\system32\zntport.sys []
S3 ALCXSENS;Service for WDM 3D Audio Driver; D:\WINDOWS\system32\drivers\ALCXSENS.SYS []
S3 ar2p6srd;ar2p6srd; D:\WINDOWS\system32\drivers\ar2p6srd.sys []
S3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; D:\WINDOWS\System32\DRIVERS\fetnd5.sys [2001-08-17 27165]
S3 GarenaPEngine;GarenaPEngine; \??\D:\DOCUME~1\PERT~1\LOCALS~1\Temp\YPI76.tmp []
S3 genmcmn;Scroll Mouse Driver; D:\WINDOWS\system32\DRIVERS\gmfiltr.sys [2003-01-29 7894]
S3 GMSIPCI;GMSIPCI; \??\F:\INSTALL\GMSIPCI.SYS []
S3 GTFFBUS;GT FF BUS; D:\WINDOWS\system32\DRIVERS\gtffbus.sys [2006-01-25 16000]
S3 GTMMDMUSB;GT M 3G+ USB MDM; D:\WINDOWS\system32\DRIVERS\gtmmdmusb.sys [2006-02-01 25472]
S3 GTMNDISIRPXP;GT M 3G+ IRP NDIS; D:\WINDOWS\system32\DRIVERS\Gtm51Irp.sys [2006-02-01 102784]
S3 GTMSERUSB;GT M 3G+ USB SER; D:\WINDOWS\system32\DRIVERS\gtmserusb.sys [2006-02-01 21760]
S3 GTPTSER;GT PT SER; D:\WINDOWS\system32\DRIVERS\gtptser.sys [2006-01-25 8064]
S3 GTSCSER;GT SC SER; D:\WINDOWS\system32\DRIVERS\gtscser.sys [2005-12-09 19328]
S3 GtVUsb;GlobeTrotter 3G+ Viper Filter Service; D:\WINDOWS\system32\DRIVERS\GtVUsb.sys [2005-12-22 5120]
S3 hamachi;Hamachi Network Interface; D:\WINDOWS\system32\DRIVERS\hamachi.sys [2006-06-29 10578]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; D:\WINDOWS\system32\DRIVERS\HPZid412.sys [2004-06-21 51088]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; D:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2004-06-21 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; D:\WINDOWS\system32\DRIVERS\HPZius12.sys [2004-06-21 21744]
S3 huadio;huadio; \??\c:\huadio.tmp []
S3 L8042pr2;Logitech PS/2 Mouse Filter Driver; D:\WINDOWS\System32\DRIVERS\L8042pr2.Sys [2003-12-17 51729]
S3 LHidFlt2;Logitech HID/USB Mouse Filter Driver; D:\WINDOWS\System32\DRIVERS\LHidFlt2.Sys [2003-12-17 25505]
S3 LHidUsbK;Logitech SetPoint USB Receiver Device Driver; D:\WINDOWS\System32\Drivers\LHidUsbK.Sys []
S3 LMouFlt2;Logitech Mouse Class Filter Driver; D:\WINDOWS\System32\DRIVERS\LMouFlt2.Sys [2003-12-17 70801]
S3 LMouKE;Logitech SetPoint Mouse Filter Driver; D:\WINDOWS\system32\DRIVERS\LMouKE.Sys []
S3 LUsbKbd;Logitech SetPoint USB Keyboard Filter; D:\WINDOWS\System32\Drivers\LUsbKbd.Sys []
S3 nm;Network Monitor Driver; D:\WINDOWS\system32\DRIVERS\NMnt.sys [2004-08-04 40320]
S3 oUltraf;oUltraf; \??\D:\DOCUME~1\PERT~1\LOCALS~1\Temp\oUltraf.sys []
S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\D:\WINDOWS\system32\PCAMPR5.SYS []
S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\D:\WINDOWS\system32\PCANDIS5.SYS []
S3 usbccgp;Microsoft USB Generic Parent Driver; D:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-04 31616]
S3 usbprint;Microsoft USB PRINTER Class; D:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-04 25856]
S3 usbscan;USB Scanner Driver; D:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-04 15104]
S3 USBSTOR;USB Mass Storage Driver; D:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]
S3 WINIO;WINIO; \??\D:\Program Files\aspeeder\winio.sys []
S3 WpdUsb;WpdUsb; D:\WINDOWS\System32\Drivers\wpdusb.sys [2006-10-18 38528]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; D:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; D:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; D:\WINDOWS\system32\drivers\IntelIde.sys []
S4 WS2IFSL;Prostredie podpory poskytovateľa služby Windows Socket 2.0 Non-IFS Service; D:\WINDOWS\System32\drivers\ws2ifsl.sys [2003-03-31 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Application Updater;Application Updater; D:\Program Files\Application Updater\ApplicationUpdater.exe [2009-12-28 380928]
R2 Creative Service for CDROM Access;Creative Service for CDROM Access; D:\WINDOWS\system32\CTsvcCDA.exe [1999-12-12 44032]
R2 CTDevice_Srv;CT Device Query service; D:\Program Files\Creative\Shared Files\CTDevSrv.exe [2007-04-02 61440]
R2 FreeAgentGoNext Service;Seagate Service; D:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe [2009-09-25 189736]
R2 ICQ Service;ICQ Service; D:\Program Files\ICQ6Toolbar\ICQ Service.exe [2008-06-10 222456]
R2 NVSvc;NVIDIA Display Driver Service; D:\WINDOWS\system32\nvsvc32.exe [2006-11-17 159811]
S2 Avg7Alrt;AVG7 Alert Manager Server; D:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe []
S2 Avg7UpdSvc;AVG7 Update Service; D:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe []
S2 ISEXEng;ISEXEng; D:\WINDOWS\System32\angelex.exe []
S3 aspnet_state;ASP.NET State Service; D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 avast! Mail Scanner;avast! Mail Scanner; D:\PROGRA~1\ALWILS~1\Avast4\ashMaiSv.exe [2009-09-15 254040]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 CTUPnPSv;Creative Centrale Media Server; D:\Program Files\Creative\Creative Centrale\CTUPnPSv.exe [2008-05-21 64000]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; D:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; D:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; E:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; D:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; D:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Pml Driver HPZ12;Pml Driver HPZ12; D:\WINDOWS\system32\HPZipm12.exe [2004-03-18 65536]
S3 SwitchBoard;SwitchBoard; D:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; D:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; D:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

#5 Příspěvek od **JaRon** » 06 črc 2010 17:31

odinstaluj ASKBar + Dealio + IncrediMail
+
vycisti s CCleanerom

VIRY.CZ

Preventivka - Velmi pomale PC

Preventivka - Velmi pomale PC

Re: Preventivka - Velmi pomale PC

Re: Preventivka - Velmi pomale PC

Re: Preventivka - Velmi pomale PC

Re: Preventivka - Velmi pomale PC