Pro Vyosek
Napsal: 27 úno 2011 13:20
Dobrý deň momentálne som na svojom druhom PC (mam Windows XP) a je na tom dosť zle fungujem len v núdzovom režime, pretože normálne po prihlásení je nehorázne pomalý po čase akonáhle kliknem na ikonu mozila alebo explorer tak automaticky zmrzne úplne stíchne pokúšal som sa dostať do správcu úloh ale neúspešne pretože mi potom ostane len prázdna modrá plocha.
A tu je ten RSIT bez spustenie combofixu ešte:
Logfile of random's system information tool 1.08 (written by random/random)
Run by User at 2011-02-27 13:20:45
Systém Microsoft Windows XP Professional Service Pack 3
System drive H: has 33 GB (14%) free of 238 GB
Total RAM: 1022 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:20:58, on 27.2.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Safe mode with network support
Running processes:
H:\WINDOWS\System32\smss.exe
H:\WINDOWS\system32\winlogon.exe
H:\WINDOWS\system32\services.exe
H:\WINDOWS\system32\lsass.exe
H:\WINDOWS\system32\svchost.exe
H:\WINDOWS\system32\svchost.exe
H:\WINDOWS\Explorer.EXE
H:\WINDOWS\system32\ctfmon.exe
H:\Program Files\Mozilla Firefox\firefox.exe
H:\Documents and Settings\User\My Documents\Preberanie\RSIT.exe
H:\Program Files\trend micro\User.exe
H:\Program Files\Mozilla Firefox\plugin-container.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - H:\Program Files\Dealio Toolbar\SearchSettings.dll (file missing)
R3 - URLSearchHook: PHPNukeEN Toolbar - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - H:\Program Files\PHPNukeEN\tbPHP1.dll
O2 - BHO: Dealio Toolbar - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - H:\Program Files\Dealio Toolbar\IE\4.0.2\dealioToolbarIE.dll (file missing)
O2 - BHO: XTTBPos00 - {055FD26D-3A88-4e15-963D-DC8493744B1D} - H:\PROGRA~1\ICQTOO~1\toolbaru.dll (file missing)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - H:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - H:\Program Files\ConduitEngine\ConduitEngin1.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - H:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - H:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll
O2 - BHO: (no name) - {b23920f4-4c2f-412b-9450-1d7028d5454e} - (no file)
O2 - BHO: PHPNukeEN Toolbar - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - H:\Program Files\PHPNukeEN\tbPHP1.dll
O2 - BHO: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - H:\Program Files\Dealio Toolbar\SearchSettings.dll (file missing)
O3 - Toolbar: Dealio Toolbar - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - H:\Program Files\Dealio Toolbar\IE\4.0.2\dealioToolbarIE.dll (file missing)
O3 - Toolbar: PHPNukeEN Toolbar - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - H:\Program Files\PHPNukeEN\tbPHP1.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - H:\Program Files\ConduitEngine\ConduitEngin1.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - H:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE H:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE H:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [services.exe] H:\WINDOWS\services.exe
O4 - HKLM\..\Run: [StatusClient 2.6] H:\Program Files\Hewlett-Packard\Toolbox\StatusClient\StatusClient.exe /auto
O4 - HKLM\..\Run: [TomcatStartup 2.5] H:\Program Files\Hewlett-Packard\Toolbox\hpbpsttp.exe
O4 - HKLM\..\Run: [HPLJ Config] H:\Program Files\Hewlett-Packard\hp LaserJet 3015_3020_3030_3380\SetConfig.exe -c Direct -p DOT4_001 -pn "" -n 1 -l 1033 -sl 120000
O4 - HKLM\..\Run: [HP Software Update] H:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Z810SysStart] H:\Program Files\Connection Manager\sysctrl.exe
O4 - HKLM\..\Run: [Z810PNP] H:\Program Files\Connection Manager\SamsungPnPServiceManager.exe
O4 - HKLM\..\Run: [mspaint] "H:\WINDOWS\system32\Paint.exe" -autocheck
O4 - HKLM\..\Run: [NokiaMServer] H:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [iTunesHelper] "H:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [DivXUpdate] "H:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [USBToolTip] H:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
O4 - HKLM\..\Run: [QuickTime Task] "H:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [egui] "H:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "H:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "H:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [USB2Check] RUNDLL32.EXE "H:\WINDOWS\system32\PCLECoInst.dll",CheckUSBController
O4 - HKCU\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "H:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [services.exe] H:\WINDOWS\services.exe
O4 - HKCU\..\Run: [swg] "H:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "H:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKCU\..\Run: [BitComet] H:\Program Files\BitComet\BitComet.exe /tray
O4 - HKCU\..\Run: [Z810SysStart] H:\Program Files\Connection Manager\sysctrl.exe
O4 - HKCU\..\Run: [Z810PNP] H:\Program Files\Connection Manager\SamsungPnPServiceManager.exe
O4 - HKCU\..\Run: [Google Update] "H:\Documents and Settings\User\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2009] H:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S
O4 - HKCU\..\Run: [eehl] H:\Documents and Settings\User\Application Data\eehl\eehl.exe
O4 - HKCU\..\Run: [EA Core] "H:\Program Files\Electronic Arts\EADM\Core.exe" -silent
O4 - HKCU\..\Run: [svchosts.exe] H:\Documents and Settings\User\Application Data\Microsoft\svchosts.exe
O4 - HKCU\..\Run: [RegistryBooster] "H:\Program Files\Uniblue\RegistryBooster\launcher.exe" delay 20000
O4 - HKCU\..\Run: [WMPNSCFG] H:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [RGSC] H:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - S-1-5-18 Startup: Adobe Gamma.lnk = H:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: OpenOffice.org 3.0.lnk = H:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: Adobe Gamma.lnk = H:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (User 'Default user')
O4 - .DEFAULT Startup: OpenOffice.org 3.0.lnk = H:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = H:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: OpenOffice.org 3.0.lnk = H:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = H:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = H:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://H:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://H:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - H:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: PartyCasino - {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} - H:\Program Files\PartyGaming\PartyCasino\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyCasino - {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} - H:\Program Files\PartyGaming\PartyCasino\RunApp.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - H:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - H:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - H:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - H:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - H:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - H:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: h:\windows\system32\nwprovau.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {238F6F83-B8B4-11CF-8771-00A024541EE3} (Citrix ICA Client) - http://a516.g.akamai.net/f/516/25175/7d ... o-eula.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://go.divx.com/plugin/DivXBrowserPlugin.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - H:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - H:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - H:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe LM Service - Adobe Systems - H:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - H:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Application Updater - Spigot, Inc. - H:\Program Files\Application Updater\ApplicationUpdater.exe
O23 - Service: Autodesk Licensing Service - Autodesk - H:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Bonjour Service - Apple Inc. - H:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - H:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - H:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - H:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate1ca3af1a336b4e2) (gupdate1ca3af1a336b4e2) - Google Inc. - H:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - H:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - H:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Imapi Helper - Unknown owner - H:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - H:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - H:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - H:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - H:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - H:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - H:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - H:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - H:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - H:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: ServiceLayer - Nokia - H:\Program Files\PC Connectivity Solution\ServiceLayer.exe
--
End of file - 12773 bytes
======Scheduled tasks folder======
H:\WINDOWS\tasks\AppleSoftwareUpdate.job
H:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
H:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
H:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1960408961-413027322-725345543-1003Core.job
H:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1960408961-413027322-725345543-1003UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}]
Dealio Toolbar - H:\Program Files\Dealio Toolbar\IE\4.0.2\dealioToolbarIE.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{055FD26D-3A88-4e15-963D-DC8493744B1D}]
XTTBPos00 Class - H:\PROGRA~1\ICQTOO~1\toolbaru.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - H:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-01-30 62376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - H:\Program Files\ConduitEngine\ConduitEngin1.dll [2011-01-07 3911776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - H:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-12-05 297648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - H:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll [2010-10-26 843832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b23920f4-4c2f-412b-9450-1d7028d5454e}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{dd02a4eb-4afd-4d60-99d8-e67f964ca813}]
PHPNukeEN Toolbar - H:\Program Files\PHPNukeEN\tbPHP1.dll [2011-01-07 3911776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
H:\Program Files\Dealio Toolbar\SearchSettings.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - Dealio Toolbar - H:\Program Files\Dealio Toolbar\IE\4.0.2\dealioToolbarIE.dll []
{dd02a4eb-4afd-4d60-99d8-e67f964ca813} - PHPNukeEN Toolbar - H:\Program Files\PHPNukeEN\tbPHP1.dll [2011-01-07 3911776]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - H:\Program Files\ConduitEngine\ConduitEngin1.dll [2011-01-07 3911776]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - H:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-12-05 297648]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=H:\WINDOWS\system32\NvCpl.dll [2007-04-19 7700480]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=H:\WINDOWS\system32\NvMcTray.dll [2007-04-19 86016]
"RTHDCPL"=H:\WINDOWS\RTHDCPL.EXE [2007-04-12 16132608]
"Alcmtr"=H:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"services.exe"=H:\WINDOWS\services.exe []
"StatusClient 2.6"=H:\Program Files\Hewlett-Packard\Toolbox\StatusClient\StatusClient.exe [2003-10-03 61440]
"TomcatStartup 2.5"=H:\Program Files\Hewlett-Packard\Toolbox\hpbpsttp.exe [2003-07-25 155648]
"HPLJ Config"=H:\Program Files\Hewlett-Packard\hp LaserJet 3015_3020_3030_3380\SetConfig.exe [2003-03-31 28672]
"HP Software Update"=H:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe [2002-12-17 49152]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"Z810SysStart"=H:\Program Files\Connection Manager\sysctrl.exe [2008-09-01 307200]
"Z810PNP"=H:\Program Files\Connection Manager\SamsungPnPServiceManager.exe [2008-09-09 122880]
"mspaint"=H:\WINDOWS\system32\Paint.exe -autocheck []
"NokiaMServer"=H:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"iTunesHelper"=H:\Program Files\iTunes\iTunesHelper.exe [2010-06-15 141624]
"DivXUpdate"=H:\Program Files\DivX\DivX Update\DivXUpdate.exe [2010-06-03 1144104]
"USBToolTip"=H:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe [2007-02-20 199752]
"QuickTime Task"=H:\Program Files\QuickTime\qttask.exe [2010-08-10 421888]
"egui"=H:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2010-08-12 2215064]
"Adobe Reader Speed Launcher"=H:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [2011-01-30 35736]
"Adobe ARM"=H:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-11-10 932288]
"USB2Check"=H:\WINDOWS\system32\PCLECoInst.dll [2006-11-06 81920]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=H:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MSMSGS"=H:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"services.exe"=H:\WINDOWS\services.exe []
"swg"=H:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-04-15 68856]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=H:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2008-02-28 1828136]
"BitComet"=H:\Program Files\BitComet\BitComet.exe /tray []
"Z810SysStart"=H:\Program Files\Connection Manager\sysctrl.exe [2008-09-01 307200]
"Z810PNP"=H:\Program Files\Connection Manager\SamsungPnPServiceManager.exe [2008-09-09 122880]
"Google Update"=H:\Documents and Settings\User\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-09-30 133104]
"Uniblue RegistryBooster 2009"=H:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S []
"eehl"=H:\Documents and Settings\User\Application Data\eehl\eehl.exe []
"EA Core"=H:\Program Files\Electronic Arts\EADM\Core.exe -silent []
""= []
"svchosts.exe"=H:\Documents and Settings\User\Application Data\Microsoft\svchosts.exe []
"RegistryBooster"=H:\Program Files\Uniblue\RegistryBooster\launcher.exe delay 20000 []
"WMPNSCFG"=H:\Program Files\Windows Media Player\WMPNSCFG.exe [2007-01-05 204288]
"RGSC"=H:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent []
H:\Documents and Settings\All Users\Start Menu\Programs\Startup
Adobe Gamma Loader.lnk - H:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
InterVideo WinCinema Manager.lnk - H:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
McAfee Security Scan Plus.lnk - H:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
H:\Documents and Settings\User\Start Menu\Programs\Startup
Adobe Gamma.lnk - H:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
OpenOffice.org 3.0.lnk - H:\Program Files\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
H:\WINDOWS\system32\WgaLogon.dll [2008-09-05 241704]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - H:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
nwprovau
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"H:\Program Files\ICQ6\ICQ.exe"="H:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"H:\Program Files\Hewlett-Packard\Toolbox\jre\bin\javaw.exe"="H:\Program Files\Hewlett-Packard\Toolbox\jre\bin\javaw.exe:*:Enabled:javaw"
"H:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="H:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"H:\Program Files\GameSpy Arcade\Aphex.exe"="H:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade"
"H:\Program Files\Nero\Nero8\Nero ShowTime\ShowTime.exe"="H:\Program Files\Nero\Nero8\Nero ShowTime\ShowTime.exe:*:Enabled:Nero ShowTime"
"H:\Program Files\LimeWire\LimeWire.exe"="H:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"H:\Program Files\BitTornado\btdownloadgui.exe"="H:\Program Files\BitTornado\btdownloadgui.exe:*:Enabled:btdownloadgui"
"H:\Program Files\Bethesda Softworks\BitTornado\btdownloadgui.exe"="H:\Program Files\Bethesda Softworks\BitTornado\btdownloadgui.exe:*:Enabled:btdownloadgui"
"H:\Program Files\BitComet\BitComet.exe"="H:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet - a BitTorrent Client"
"H:\Program Files\uTorrent\uTorrent.exe"="H:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"H:\Program Files\Valve\hl.exe"="H:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"H:\Program Files\Counter-Strike Source\hl2.exe"="H:\Program Files\Counter-Strike Source\hl2.exe:*:Disabled:hl2"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.594\pickup.listchecker.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.594\pickup.listchecker.exe:*:Disabled:pickup.listchecker"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX45.656\pickup.listchecker.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX45.656\pickup.listchecker.exe:*:Enabled:pickup.listchecker"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX63.015\pickup.listchecker.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX63.015\pickup.listchecker.exe:*:Enabled:pickup.listchecker"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.906\pickup.listchecker.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.906\pickup.listchecker.exe:*:Enabled:pickup.listchecker"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.203\pickup.listchecker.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.203\pickup.listchecker.exe:*:Enabled:pickup.listchecker"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX03.500\pickup.listchecker.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX03.500\pickup.listchecker.exe:*:Enabled:pickup.listchecker"
"H:\Program Files\ICQ6.5\ICQ.exe"="H:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.609\pickup.listchecker.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.609\pickup.listchecker.exe:*:Enabled:pickup.listchecker"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.313\pickup.listchecker.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.313\pickup.listchecker.exe:*:Enabled:pickup.listchecker"
"H:\Program Files\Warcraft III\Warcraft III\war3.exe"="H:\Program Files\Warcraft III\Warcraft III\war3.exe:*:Enabled:Warcraft III"
"H:\Program Files\Warcraft III\Warcraft III.exe"="H:\Program Files\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"H:\Program Files\Warcraft III\ftinst.tmp\Warcraft III.exe"="H:\Program Files\Warcraft III\ftinst.tmp\Warcraft III.exe:*:Enabled:Warcraft III"
"H:\Program Files\Messenger\msmsgs.exe"="H:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"H:\Program Files\Garena\Garena.exe"="H:\Program Files\Garena\Garena.exe:*:Enabled:Garena"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.531\pickup.listchecker.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.531\pickup.listchecker.exe:*:Disabled:pickup.listchecker"
"H:\Documents and Settings\User\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.dll"="H:\Documents and Settings\User\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.dll:*:Enabled:Google Talk Plugin"
"H:\Documents and Settings\User\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe"="H:\Documents and Settings\User\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe:*:Enabled:Google Talk Plugin"
"H:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe"="H:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe:*:Enabled:BF1942"
"H:\Program Files\Warcraft III\Warcraft III\Warcraft III.exe"="H:\Program Files\Warcraft III\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"H:\Program Files\Valve\hltv.exe"="H:\Program Files\Valve\hltv.exe:*:Enabled:HLTV Launcher"
"H:\Program Files\Counter-Strike 1.6\hl.exe"="H:\Program Files\Counter-Strike 1.6\hl.exe:*:Enabled:Half-Life Launcher"
"H:\Documents and Settings\User\My Documents\Downloads\Counter-Strike 1.6 + Half-Life\hl.exe"="H:\Documents and Settings\User\My Documents\Downloads\Counter-Strike 1.6 + Half-Life\hl.exe:*:Enabled:Half-Life Launcher"
"H:\Program Files\Valve\toto_smazte\hltv.exe"="H:\Program Files\Valve\toto_smazte\hltv.exe:*:Enabled:HLTV Launcher"
"H:\Program Files\Steam\Steam.exe"="H:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"H:\Program Files\Garena\Garena Host Bot v1.0\GarenaHostBot.exe"="H:\Program Files\Garena\Garena Host Bot v1.0\GarenaHostBot.exe:*:Enabled:Garena Host Bot - advanced hosting bot for garena"
"H:\Program Files\Garena\Garena Host Bot v1.0\ghost.exe"="H:\Program Files\Garena\Garena Host Bot v1.0\ghost.exe:*:Enabled:ghost"
"H:\Program Files\PFPortChecker\PFPortChecker.exe"="H:\Program Files\PFPortChecker\PFPortChecker.exe:*:Enabled:PFPortchecker by portforward.com helps check if your ports are properly forwarded."
"H:\WINDOWS\system32\PnkBstrA.exe"="H:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"H:\WINDOWS\system32\PnkBstrB.exe"="H:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"H:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe"="H:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe:*:Enabled:Nokia Ovi Suite 2"
"H:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe"="H:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process "
"H:\Documents and Settings\User\My Documents\Preberanie\MeGa Garena ExP hacK.exe"="H:\Documents and Settings\User\My Documents\Preberanie\MeGa Garena ExP hacK.exe:*:Enabled:MeGa Garena ExP hacK"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX05.875\Garena HostEdition\Garena.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX05.875\Garena HostEdition\Garena.exe:*:Enabled:Garena"
"H:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe"="H:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe:*:Enabled:Nexon Game Manager"
"H:\Program Files\Combat Arms EU\CombatArms.exe"="H:\Program Files\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"H:\Program Files\Combat Arms EU\Engine.exe"="H:\Program Files\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"
"H:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe"="H:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe:*:Enabled:NEXON_EU_Downloader_Engine"
"H:\Nexon\Combat Arms EU\CombatArms.exe"="H:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"H:\Nexon\Combat Arms EU\Engine.exe"="H:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"
"H:\Program Files\Bonjour\mDNSResponder.exe"="H:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour Service"
"H:\Program Files\iTunes\iTunes.exe"="H:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"H:\Program Files\Skype\Plugin Manager\skypePM.exe"="H:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"H:\Program Files\Pinnacle\Studio 14\Programs\RM.exe"="H:\Program Files\Pinnacle\Studio 14\Programs\RM.exe:*:Enabled:Render Manager"
"H:\Program Files\Pinnacle\Studio 14\Programs\Studio.exe"="H:\Program Files\Pinnacle\Studio 14\Programs\Studio.exe:*:Enabled:Studio"
"H:\Program Files\Pinnacle\Studio 14\Programs\umi.exe"="H:\Program Files\Pinnacle\Studio 14\Programs\umi.exe:*:Enabled:umi"
"H:\Program Files\Garena HostBot\GarenaHostBot.exe"="H:\Program Files\Garena HostBot\GarenaHostBot.exe:*:Enabled:Garena Host Bot - advanced hosting bot for garena"
"H:\Program Files\Garena HostBot\ghost.exe"="H:\Program Files\Garena HostBot\ghost.exe:*:Enabled:ghost"
"H:\Program Files\Opera\opera.exe"="H:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"H:\Program Files\Goiceasoft Studios\Counter Strike 1.8 Goiceasoft\cstrike.exe"="H:\Program Files\Goiceasoft Studios\Counter Strike 1.8 Goiceasoft\cstrike.exe:*:Enabled:CS 1.8 Goiceasoft"
"H:\Program Files\www.Cstr1k3rs.uCoz.Com\CarbonCS v1.1\cstrike.exe"="H:\Program Files\www.Cstr1k3rs.uCoz.Com\CarbonCS v1.1\cstrike.exe:*:Enabled:CarbonCS v1.1"
"H:\Program Files\Pando Networks\Media Booster\PMB.exe"="H:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"H:\Riot Games\League of Legends\air\LolClient.exe"="H:\Riot Games\League of Legends\air\LolClient.exe:*:Enabled:League of Legends Lobby"
"H:\Riot Games\League of Legends\game\League of Legends.exe"="H:\Riot Games\League of Legends\game\League of Legends.exe:*:Enabled:League of Legends Game Client"
"H:\Program Files\Skype\Phone\Skype.exe"="H:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"H:\Program Files\Combat Arms EU\CombatArms.exe"="H:\Program Files\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"H:\Program Files\Combat Arms EU\Engine.exe"="H:\Program Files\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"
"H:\Nexon\Combat Arms EU\CombatArms.exe"="H:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"H:\Nexon\Combat Arms EU\Engine.exe"="H:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"
"H:\Program Files\Pando Networks\Media Booster\PMB.exe"="H:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
======File associations======
.scr - open - H:\WINDOWS\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 months======
2011-02-27 13:20:45 ----D---- H:\rsit
2011-02-27 13:20:45 ----D---- H:\Program Files\trend micro
2011-02-27 13:13:13 ----D---- H:\WINDOWS\CSC
2011-02-26 08:31:44 ----D---- H:\Documents and Settings\User\Application Data\LolClient
2011-02-26 08:13:15 ----A---- H:\WINDOWS\system32\XAudio2_2.dll
2011-02-26 08:13:15 ----A---- H:\WINDOWS\system32\XAPOFX1_1.dll
2011-02-26 08:13:12 ----A---- H:\WINDOWS\system32\D3DCompiler_39.dll
2011-02-26 08:00:55 ----D---- H:\Riot Games
2011-02-25 23:16:33 ----D---- H:\Documents and Settings\All Users\Application Data\PMB Files
2011-02-25 23:15:56 ----D---- H:\Program Files\Pando Networks
2011-02-25 07:52:23 ----HDC---- H:\WINDOWS\$NtUninstallKB971029$
2011-02-09 03:11:11 ----HDC---- H:\WINDOWS\$NtUninstallKB2478971$
2011-02-09 03:10:57 ----HDC---- H:\WINDOWS\$NtUninstallKB2485376$
2011-02-09 03:10:37 ----HDC---- H:\WINDOWS\$NtUninstallKB2479628$
2011-02-09 03:09:53 ----HDC---- H:\WINDOWS\$NtUninstallKB2483185$
2011-02-09 03:03:54 ----HDC---- H:\WINDOWS\$NtUninstallKB2476687$
2011-02-09 03:03:12 ----HDC---- H:\WINDOWS\$NtUninstallKB2482017$
2011-02-09 03:02:01 ----HDC---- H:\WINDOWS\$NtUninstallKB2478960$
2011-02-09 03:01:31 ----HDC---- H:\WINDOWS\$NtUninstallKB2393802$
======List of files/folders modified in the last 1 months======
2011-02-27 13:20:45 ----RD---- H:\Program Files
2011-02-27 13:13:37 ----A---- H:\WINDOWS\ntbtlog.txt
2011-02-27 13:13:13 ----D---- H:\WINDOWS
2011-02-27 13:11:09 ----D---- H:\WINDOWS\Temp
2011-02-27 13:08:46 ----D---- H:\Program Files\Connection Manager
2011-02-27 13:03:45 ----D---- H:\WINDOWS\Prefetch
2011-02-27 12:24:09 ----D---- H:\Program Files\Warcraft III
2011-02-27 08:33:30 ----D---- H:\Program Files\Garena
2011-02-27 07:57:02 ----D---- H:\WINDOWS\system32\CatRoot2
2011-02-26 22:38:28 ----A---- H:\WINDOWS\SchedLgU.Txt
2011-02-26 21:45:51 ----D---- H:\Documents and Settings\User\Application Data\Skype
2011-02-26 20:55:35 ----SHD---- H:\WINDOWS\Installer
2011-02-26 20:55:22 ----D---- H:\Documents and Settings\All Users\Application Data\Skype
2011-02-26 08:13:16 ----D---- H:\WINDOWS\system32
2011-02-26 08:13:15 ----HD---- H:\WINDOWS\inf
2011-02-26 08:12:56 ----D---- H:\WINDOWS\system32\DirectX
2011-02-26 08:00:53 ----HD---- H:\Program Files\InstallShield Installation Information
2011-02-25 07:52:27 ----RSHDC---- H:\WINDOWS\system32\dllcache
2011-02-25 07:49:27 ----HD---- H:\WINDOWS\$hf_mig$
2011-02-19 12:56:26 ----SHD---- H:\Config.Msi
2011-02-19 12:56:24 ----D---- H:\Documents and Settings\User\Application Data\Mozilla
2011-02-18 21:24:41 ----A---- H:\WINDOWS\NeroDigital.ini
2011-02-15 10:57:06 ----D---- H:\Documents and Settings\User\Application Data\skypePM
2011-02-12 15:21:44 ----D---- H:\Program Files\Mozilla Firefox
2011-02-09 03:11:20 ----A---- H:\WINDOWS\imsins.BAK
2011-02-09 03:04:29 ----A---- H:\WINDOWS\system32\MRT.exe
2011-02-09 03:02:59 ----D---- H:\Documents and Settings\All Users\Application Data\Microsoft Help
2011-02-09 03:01:57 ----A---- H:\WINDOWS\iis6.BAK
2011-01-30 16:40:30 ----D---- H:\Documents and Settings\User\Application Data\uTorrent
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 a347scsi;a347scsi; H:\WINDOWS\System32\Drivers\a347scsi.sys [2004-04-30 5248]
R0 PxHelp20;PxHelp20; H:\WINDOWS\system32\DRIVERS\PxHelp20.sys [2010-06-10 45648]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); H:\WINDOWS\System32\drivers\sfdrv01.sys [2005-08-10 50688]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); H:\WINDOWS\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sfsync03;StarForce Protection Synchronization Driver (version 3.x); H:\WINDOWS\System32\drivers\sfsync03.sys [2005-10-13 35328]
R0 sptd;sptd; H:\WINDOWS\System32\Drivers\sptd.sys [2010-03-30 691696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; H:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-01-18 77696]
R1 epfwtdir;epfwtdir; H:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2010-08-03 95896]
R3 appliandMP;appliandMP; H:\WINDOWS\system32\DRIVERS\appliand.sys [2010-06-24 28256]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; H:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; H:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Microsoft HID Class Driver; H:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 MarvinBus;Pinnacle Marvin Bus; H:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]
R3 mouhid;Mouse HID Driver; H:\WINDOWS\system32\DRIVERS\mouhid.sys [2007-07-27 12160]
R3 Pfc;Padus ASPI Shell; H:\WINDOWS\system32\drivers\pfc.sys [2003-09-19 10368]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; H:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-03-01 90496]
R3 usbstor;USB Mass Storage Driver; H:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; H:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S0 a347bus;a347bus; H:\WINDOWS\system32\DRIVERS\a347bus.sys [2004-04-30 160640]
S1 ehdrv;ehdrv; H:\WINDOWS\system32\DRIVERS\ehdrv.sys [2010-07-29 115008]
S1 intelppm;Intel Processor Driver; H:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
S1 kbdhid;Keyboard HID Driver; H:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14592]
S2 eamon;eamon; H:\WINDOWS\system32\DRIVERS\eamon.sys [2010-08-04 140752]
S2 Hardlock;Hardlock; \??\H:\WINDOWS\system32\drivers\hardlock.sys []
S2 NwlnkIpx;NWLink IPX/SPX/NetBIOS Compatible Transport Protocol; H:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-13 88320]
S2 NwlnkNb;NWLink NetBIOS; H:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2007-07-27 63232]
S2 NwlnkSpx;NWLink SPX/SPXII Protocol; H:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2007-07-27 55936]
S3 appliand;Applian Network Service; H:\WINDOWS\system32\DRIVERS\appliand.sys [2010-06-24 28256]
S3 BthEnum;Bluetooth Enumerator Service; H:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); H:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Bluetooth Port Driver; H:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-13 272128]
S3 BTHUSB;Bluetooth Radio USB Driver; H:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 CCDECODE;Closed Caption Decoder; H:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-07-09 16384]
S3 DCamUSBEMPIA;Dazzle DVC Video Device; H:\WINDOWS\system32\DRIVERS\emDevice.sys [2005-12-21 100957]
S3 dot4;MS IEEE-1284.4 Driver; H:\WINDOWS\system32\DRIVERS\Dot4.sys [2008-04-13 206976]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; H:\WINDOWS\system32\DRIVERS\Dot4Prt.sys [2001-08-17 12928]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; H:\WINDOWS\system32\DRIVERS\dot4usb.sys [2001-08-17 23808]
S3 EagleNT;EagleNT; \??\H:\WINDOWS\system32\drivers\EagleNT.sys []
S3 emAudio;Dazzle DVC Audio Device; H:\WINDOWS\system32\drivers\emAudio.sys [2006-12-12 22528]
S3 FiltUSBEMPIA;USB Device Lower Filter; H:\WINDOWS\system32\DRIVERS\emFilter.sys [2005-12-21 5245]
S3 GarenaPEngine;GarenaPEngine; \??\H:\DOCUME~1\User\LOCALS~1\Temp\SVQCD0.tmp []
S3 gdrv;gdrv; \??\H:\WINDOWS\gdrv.sys []
S3 GGSAFERDriver;GGSAFER Driver; \??\H:\Program Files\Garena\safedrv.sys []
S3 hamachi;Hamachi Network Interface; H:\WINDOWS\system32\DRIVERS\hamachi.sys [2008-01-01 25280]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); H:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-04-23 4402176]
S3 MPE;BDA MPE Filter; H:\WINDOWS\system32\DRIVERS\MPE.sys [2004-07-09 15104]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; H:\WINDOWS\system32\drivers\MSTEE.sys [2002-12-11 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; H:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-07-09 83968]
S3 NdisIP;Microsoft TV/Video Connection; H:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-07-09 10112]
S3 nm;Network Monitor Driver; H:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
S3 nmwcd;Nokia USB Phone Parent; H:\WINDOWS\system32\drivers\ccdcmb.sys [2010-01-21 18048]
S3 nmwcdc;Nokia USB Generic; H:\WINDOWS\system32\drivers\ccdcmbo.sys [2009-12-30 22016]
S3 NuidFltr;NUID filter driver; H:\WINDOWS\system32\DRIVERS\NuidFltr.sys [2009-05-09 14736]
S3 nv;nv; H:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-04-19 3988384]
S3 NWRDR;NetWare Rdr; H:\WINDOWS\system32\DRIVERS\nwrdr.sys [2008-04-13 163584]
S3 pccsmcfd;PCCS Mode Change Filter Driver; H:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); H:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 ScanUSBEMPIA;USB Still Image Capture Device; H:\WINDOWS\system32\DRIVERS\emScan.sys [2005-12-21 4493]
S3 scrcap;scrcap; H:\WINDOWS\system32\DRIVERS\scrcap.sys []
S3 SLIP;BDA Slip De-Framer; H:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-07-09 10880]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); H:\WINDOWS\system32\DRIVERS\sscdbus.sys [2008-02-22 87936]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; H:\WINDOWS\system32\DRIVERS\sscdmdfl.sys [2008-02-22 14976]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; H:\WINDOWS\system32\DRIVERS\sscdmdm.sys [2008-02-22 114304]
S3 sscdserd;SAMSUNG Mobile Modem Diagnostic Serial Port (WDM); H:\WINDOWS\system32\DRIVERS\sscdserd.sys [2008-02-22 94336]
S3 StillCam;Still Serial Digital Camera Driver; H:\WINDOWS\system32\DRIVERS\serscan.sys [2001-08-17 6784]
S3 streamip;BDA IPSink; H:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-07-09 14976]
S3 upperdev;upperdev; H:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2009-12-30 7936]
S3 usb_rndisx;USB RNDIS Adapter; H:\WINDOWS\system32\DRIVERS\usb8023x.sys [2008-04-13 12800]
S3 USBAAPL;Apple Mobile USB Driver; H:\WINDOWS\System32\Drivers\usbaapl.sys [2010-04-19 41984]
S3 usbccgp;Microsoft USB Generic Parent Driver; H:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbscan;USB Scanner Driver; H:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;USB Modem Driver; H:\WINDOWS\system32\DRIVERS\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; H:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2009-12-30 7936]
S3 wceusbsh;Windows CE USB Serial Host Driver; H:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672]
S3 Wdf01000;Wdf01000; H:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; H:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;World Standard Teletext Codec; H:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-07-09 18688]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; H:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-01-18 83328]
S4 WS2IFSL;Prostredie podpory poskytovateľa služby Windows Socket 2.0 Non-IFS Service; H:\WINDOWS\System32\drivers\ws2ifsl.sys [2007-07-27 12032]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
S2 Apple Mobile Device;Apple Mobile Device; H:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-06-10 144176]
S2 Application Updater;Application Updater; H:\Program Files\Application Updater\ApplicationUpdater.exe [2010-01-08 380928]
S2 Bonjour Service;Bonjour Service; H:\Program Files\Bonjour\mDNSResponder.exe [2010-05-18 345376]
S2 BthServ;Bluetooth Support Service; H:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 ekrn;ESET Service; H:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2010-08-12 810144]
S2 gupdate1ca3af1a336b4e2;Služba Google Update (gupdate1ca3af1a336b4e2); H:\Program Files\Google\Update\GoogleUpdate.exe [2009-09-21 133104]
S2 MDM;Machine Debug Manager; H:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
S2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; H:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2008-02-18 877864]
S2 NVSvc;NVIDIA Display Driver Service; H:\WINDOWS\system32\nvsvc32.exe [2007-04-19 159810]
S2 NWCWorkstation;Client Service for NetWare; H:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 NwSapAgent;SAP Agent; H:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; H:\WINDOWS\system32\IoctlSvc.exe [2006-12-19 81920]
S2 PnkBstrA;PnkBstrA; H:\WINDOWS\system32\PnkBstrA.exe [2008-03-24 66872]
S2 PnkBstrB;PnkBstrB; H:\WINDOWS\system32\PnkBstrB.exe [2010-04-04 189248]
S2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; H:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 Adobe LM Service;Adobe LM Service; H:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2009-08-06 72704]
S3 aspnet_state;ASP.NET State Service; H:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 Autodesk Licensing Service;Autodesk Licensing Service; H:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2010-03-30 85096]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; H:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; H:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2010-08-12 33584]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; H:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-11-06 654848]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; h:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; H:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-26 182768]
S3 IDriverT;InstallDriver Table Manager; H:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; H:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Imapi Helper;Imapi Helper; H:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe []
S3 iPod Service;iPod Service; H:\Program Files\iPod\bin\iPodService.exe [2010-06-15 540472]
S3 McComponentHostService;McAfee Security Scan Component Host Service; H:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
S3 NMIndexingService;NMIndexingService; H:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-02-28 529704]
S3 odserv;Microsoft Office Diagnostics Service; H:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; H:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Pml Driver HPZ12;Pml Driver HPZ12; H:\WINDOWS\system32\HPZipm12.exe [2003-10-22 65536]
S3 ServiceLayer;ServiceLayer; H:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-01-26 652800]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; H:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; H:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
A tu je ten RSIT bez spustenie combofixu ešte:
Logfile of random's system information tool 1.08 (written by random/random)
Run by User at 2011-02-27 13:20:45
Systém Microsoft Windows XP Professional Service Pack 3
System drive H: has 33 GB (14%) free of 238 GB
Total RAM: 1022 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:20:58, on 27.2.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Safe mode with network support
Running processes:
H:\WINDOWS\System32\smss.exe
H:\WINDOWS\system32\winlogon.exe
H:\WINDOWS\system32\services.exe
H:\WINDOWS\system32\lsass.exe
H:\WINDOWS\system32\svchost.exe
H:\WINDOWS\system32\svchost.exe
H:\WINDOWS\Explorer.EXE
H:\WINDOWS\system32\ctfmon.exe
H:\Program Files\Mozilla Firefox\firefox.exe
H:\Documents and Settings\User\My Documents\Preberanie\RSIT.exe
H:\Program Files\trend micro\User.exe
H:\Program Files\Mozilla Firefox\plugin-container.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - H:\Program Files\Dealio Toolbar\SearchSettings.dll (file missing)
R3 - URLSearchHook: PHPNukeEN Toolbar - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - H:\Program Files\PHPNukeEN\tbPHP1.dll
O2 - BHO: Dealio Toolbar - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - H:\Program Files\Dealio Toolbar\IE\4.0.2\dealioToolbarIE.dll (file missing)
O2 - BHO: XTTBPos00 - {055FD26D-3A88-4e15-963D-DC8493744B1D} - H:\PROGRA~1\ICQTOO~1\toolbaru.dll (file missing)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - H:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - H:\Program Files\ConduitEngine\ConduitEngin1.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - H:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - H:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll
O2 - BHO: (no name) - {b23920f4-4c2f-412b-9450-1d7028d5454e} - (no file)
O2 - BHO: PHPNukeEN Toolbar - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - H:\Program Files\PHPNukeEN\tbPHP1.dll
O2 - BHO: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - H:\Program Files\Dealio Toolbar\SearchSettings.dll (file missing)
O3 - Toolbar: Dealio Toolbar - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - H:\Program Files\Dealio Toolbar\IE\4.0.2\dealioToolbarIE.dll (file missing)
O3 - Toolbar: PHPNukeEN Toolbar - {dd02a4eb-4afd-4d60-99d8-e67f964ca813} - H:\Program Files\PHPNukeEN\tbPHP1.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - H:\Program Files\ConduitEngine\ConduitEngin1.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - H:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE H:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE H:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [services.exe] H:\WINDOWS\services.exe
O4 - HKLM\..\Run: [StatusClient 2.6] H:\Program Files\Hewlett-Packard\Toolbox\StatusClient\StatusClient.exe /auto
O4 - HKLM\..\Run: [TomcatStartup 2.5] H:\Program Files\Hewlett-Packard\Toolbox\hpbpsttp.exe
O4 - HKLM\..\Run: [HPLJ Config] H:\Program Files\Hewlett-Packard\hp LaserJet 3015_3020_3030_3380\SetConfig.exe -c Direct -p DOT4_001 -pn "" -n 1 -l 1033 -sl 120000
O4 - HKLM\..\Run: [HP Software Update] H:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [Z810SysStart] H:\Program Files\Connection Manager\sysctrl.exe
O4 - HKLM\..\Run: [Z810PNP] H:\Program Files\Connection Manager\SamsungPnPServiceManager.exe
O4 - HKLM\..\Run: [mspaint] "H:\WINDOWS\system32\Paint.exe" -autocheck
O4 - HKLM\..\Run: [NokiaMServer] H:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [iTunesHelper] "H:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [DivXUpdate] "H:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [USBToolTip] H:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
O4 - HKLM\..\Run: [QuickTime Task] "H:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [egui] "H:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "H:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "H:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [USB2Check] RUNDLL32.EXE "H:\WINDOWS\system32\PCLECoInst.dll",CheckUSBController
O4 - HKCU\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "H:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [services.exe] H:\WINDOWS\services.exe
O4 - HKCU\..\Run: [swg] "H:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "H:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKCU\..\Run: [BitComet] H:\Program Files\BitComet\BitComet.exe /tray
O4 - HKCU\..\Run: [Z810SysStart] H:\Program Files\Connection Manager\sysctrl.exe
O4 - HKCU\..\Run: [Z810PNP] H:\Program Files\Connection Manager\SamsungPnPServiceManager.exe
O4 - HKCU\..\Run: [Google Update] "H:\Documents and Settings\User\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2009] H:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S
O4 - HKCU\..\Run: [eehl] H:\Documents and Settings\User\Application Data\eehl\eehl.exe
O4 - HKCU\..\Run: [EA Core] "H:\Program Files\Electronic Arts\EADM\Core.exe" -silent
O4 - HKCU\..\Run: [svchosts.exe] H:\Documents and Settings\User\Application Data\Microsoft\svchosts.exe
O4 - HKCU\..\Run: [RegistryBooster] "H:\Program Files\Uniblue\RegistryBooster\launcher.exe" delay 20000
O4 - HKCU\..\Run: [WMPNSCFG] H:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [RGSC] H:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] H:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - S-1-5-18 Startup: Adobe Gamma.lnk = H:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (User 'SYSTEM')
O4 - S-1-5-18 Startup: OpenOffice.org 3.0.lnk = H:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: Adobe Gamma.lnk = H:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (User 'Default user')
O4 - .DEFAULT Startup: OpenOffice.org 3.0.lnk = H:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = H:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: OpenOffice.org 3.0.lnk = H:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = H:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = H:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://H:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://H:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - H:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: PartyCasino - {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} - H:\Program Files\PartyGaming\PartyCasino\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyCasino - {B4B52284-A248-4c51-9F7C-F0A0C67FCC9D} - H:\Program Files\PartyGaming\PartyCasino\RunApp.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - H:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - H:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - H:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - H:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - H:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - H:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: h:\windows\system32\nwprovau.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {238F6F83-B8B4-11CF-8771-00A024541EE3} (Citrix ICA Client) - http://a516.g.akamai.net/f/516/25175/7d ... o-eula.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://go.divx.com/plugin/DivXBrowserPlugin.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://icq.oberon-media.com/Gameshell/G ... meHost.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - H:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - H:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - H:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe LM Service - Adobe Systems - H:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - H:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Application Updater - Spigot, Inc. - H:\Program Files\Application Updater\ApplicationUpdater.exe
O23 - Service: Autodesk Licensing Service - Autodesk - H:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Bonjour Service - Apple Inc. - H:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - H:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - H:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - H:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate1ca3af1a336b4e2) (gupdate1ca3af1a336b4e2) - Google Inc. - H:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - H:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - H:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Imapi Helper - Unknown owner - H:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - H:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - H:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - H:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - H:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - H:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - H:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - H:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - H:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - H:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: ServiceLayer - Nokia - H:\Program Files\PC Connectivity Solution\ServiceLayer.exe
--
End of file - 12773 bytes
======Scheduled tasks folder======
H:\WINDOWS\tasks\AppleSoftwareUpdate.job
H:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
H:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
H:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1960408961-413027322-725345543-1003Core.job
H:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1960408961-413027322-725345543-1003UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}]
Dealio Toolbar - H:\Program Files\Dealio Toolbar\IE\4.0.2\dealioToolbarIE.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{055FD26D-3A88-4e15-963D-DC8493744B1D}]
XTTBPos00 Class - H:\PROGRA~1\ICQTOO~1\toolbaru.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - H:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-01-30 62376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - H:\Program Files\ConduitEngine\ConduitEngin1.dll [2011-01-07 3911776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - H:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-12-05 297648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - H:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll [2010-10-26 843832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b23920f4-4c2f-412b-9450-1d7028d5454e}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{dd02a4eb-4afd-4d60-99d8-e67f964ca813}]
PHPNukeEN Toolbar - H:\Program Files\PHPNukeEN\tbPHP1.dll [2011-01-07 3911776]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
H:\Program Files\Dealio Toolbar\SearchSettings.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - Dealio Toolbar - H:\Program Files\Dealio Toolbar\IE\4.0.2\dealioToolbarIE.dll []
{dd02a4eb-4afd-4d60-99d8-e67f964ca813} - PHPNukeEN Toolbar - H:\Program Files\PHPNukeEN\tbPHP1.dll [2011-01-07 3911776]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - H:\Program Files\ConduitEngine\ConduitEngin1.dll [2011-01-07 3911776]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - H:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-12-05 297648]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=H:\WINDOWS\system32\NvCpl.dll [2007-04-19 7700480]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=H:\WINDOWS\system32\NvMcTray.dll [2007-04-19 86016]
"RTHDCPL"=H:\WINDOWS\RTHDCPL.EXE [2007-04-12 16132608]
"Alcmtr"=H:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"services.exe"=H:\WINDOWS\services.exe []
"StatusClient 2.6"=H:\Program Files\Hewlett-Packard\Toolbox\StatusClient\StatusClient.exe [2003-10-03 61440]
"TomcatStartup 2.5"=H:\Program Files\Hewlett-Packard\Toolbox\hpbpsttp.exe [2003-07-25 155648]
"HPLJ Config"=H:\Program Files\Hewlett-Packard\hp LaserJet 3015_3020_3030_3380\SetConfig.exe [2003-03-31 28672]
"HP Software Update"=H:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe [2002-12-17 49152]
"BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent []
"Z810SysStart"=H:\Program Files\Connection Manager\sysctrl.exe [2008-09-01 307200]
"Z810PNP"=H:\Program Files\Connection Manager\SamsungPnPServiceManager.exe [2008-09-09 122880]
"mspaint"=H:\WINDOWS\system32\Paint.exe -autocheck []
"NokiaMServer"=H:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"iTunesHelper"=H:\Program Files\iTunes\iTunesHelper.exe [2010-06-15 141624]
"DivXUpdate"=H:\Program Files\DivX\DivX Update\DivXUpdate.exe [2010-06-03 1144104]
"USBToolTip"=H:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe [2007-02-20 199752]
"QuickTime Task"=H:\Program Files\QuickTime\qttask.exe [2010-08-10 421888]
"egui"=H:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2010-08-12 2215064]
"Adobe Reader Speed Launcher"=H:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [2011-01-30 35736]
"Adobe ARM"=H:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-11-10 932288]
"USB2Check"=H:\WINDOWS\system32\PCLECoInst.dll [2006-11-06 81920]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=H:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MSMSGS"=H:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"services.exe"=H:\WINDOWS\services.exe []
"swg"=H:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-04-15 68856]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=H:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2008-02-28 1828136]
"BitComet"=H:\Program Files\BitComet\BitComet.exe /tray []
"Z810SysStart"=H:\Program Files\Connection Manager\sysctrl.exe [2008-09-01 307200]
"Z810PNP"=H:\Program Files\Connection Manager\SamsungPnPServiceManager.exe [2008-09-09 122880]
"Google Update"=H:\Documents and Settings\User\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-09-30 133104]
"Uniblue RegistryBooster 2009"=H:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S []
"eehl"=H:\Documents and Settings\User\Application Data\eehl\eehl.exe []
"EA Core"=H:\Program Files\Electronic Arts\EADM\Core.exe -silent []
""= []
"svchosts.exe"=H:\Documents and Settings\User\Application Data\Microsoft\svchosts.exe []
"RegistryBooster"=H:\Program Files\Uniblue\RegistryBooster\launcher.exe delay 20000 []
"WMPNSCFG"=H:\Program Files\Windows Media Player\WMPNSCFG.exe [2007-01-05 204288]
"RGSC"=H:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent []
H:\Documents and Settings\All Users\Start Menu\Programs\Startup
Adobe Gamma Loader.lnk - H:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
InterVideo WinCinema Manager.lnk - H:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
McAfee Security Scan Plus.lnk - H:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
H:\Documents and Settings\User\Start Menu\Programs\Startup
Adobe Gamma.lnk - H:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
OpenOffice.org 3.0.lnk - H:\Program Files\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
H:\WINDOWS\system32\WgaLogon.dll [2008-09-05 241704]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - H:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
nwprovau
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"H:\Program Files\ICQ6\ICQ.exe"="H:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6"
"H:\Program Files\Hewlett-Packard\Toolbox\jre\bin\javaw.exe"="H:\Program Files\Hewlett-Packard\Toolbox\jre\bin\javaw.exe:*:Enabled:javaw"
"H:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="H:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"H:\Program Files\GameSpy Arcade\Aphex.exe"="H:\Program Files\GameSpy Arcade\Aphex.exe:*:Enabled:GameSpy Arcade"
"H:\Program Files\Nero\Nero8\Nero ShowTime\ShowTime.exe"="H:\Program Files\Nero\Nero8\Nero ShowTime\ShowTime.exe:*:Enabled:Nero ShowTime"
"H:\Program Files\LimeWire\LimeWire.exe"="H:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"H:\Program Files\BitTornado\btdownloadgui.exe"="H:\Program Files\BitTornado\btdownloadgui.exe:*:Enabled:btdownloadgui"
"H:\Program Files\Bethesda Softworks\BitTornado\btdownloadgui.exe"="H:\Program Files\Bethesda Softworks\BitTornado\btdownloadgui.exe:*:Enabled:btdownloadgui"
"H:\Program Files\BitComet\BitComet.exe"="H:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet - a BitTorrent Client"
"H:\Program Files\uTorrent\uTorrent.exe"="H:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"H:\Program Files\Valve\hl.exe"="H:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"H:\Program Files\Counter-Strike Source\hl2.exe"="H:\Program Files\Counter-Strike Source\hl2.exe:*:Disabled:hl2"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.594\pickup.listchecker.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.594\pickup.listchecker.exe:*:Disabled:pickup.listchecker"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX45.656\pickup.listchecker.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX45.656\pickup.listchecker.exe:*:Enabled:pickup.listchecker"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX63.015\pickup.listchecker.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX63.015\pickup.listchecker.exe:*:Enabled:pickup.listchecker"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.906\pickup.listchecker.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.906\pickup.listchecker.exe:*:Enabled:pickup.listchecker"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.203\pickup.listchecker.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.203\pickup.listchecker.exe:*:Enabled:pickup.listchecker"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX03.500\pickup.listchecker.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX03.500\pickup.listchecker.exe:*:Enabled:pickup.listchecker"
"H:\Program Files\ICQ6.5\ICQ.exe"="H:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.609\pickup.listchecker.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.609\pickup.listchecker.exe:*:Enabled:pickup.listchecker"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.313\pickup.listchecker.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.313\pickup.listchecker.exe:*:Enabled:pickup.listchecker"
"H:\Program Files\Warcraft III\Warcraft III\war3.exe"="H:\Program Files\Warcraft III\Warcraft III\war3.exe:*:Enabled:Warcraft III"
"H:\Program Files\Warcraft III\Warcraft III.exe"="H:\Program Files\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"H:\Program Files\Warcraft III\ftinst.tmp\Warcraft III.exe"="H:\Program Files\Warcraft III\ftinst.tmp\Warcraft III.exe:*:Enabled:Warcraft III"
"H:\Program Files\Messenger\msmsgs.exe"="H:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"H:\Program Files\Garena\Garena.exe"="H:\Program Files\Garena\Garena.exe:*:Enabled:Garena"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.531\pickup.listchecker.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX00.531\pickup.listchecker.exe:*:Disabled:pickup.listchecker"
"H:\Documents and Settings\User\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.dll"="H:\Documents and Settings\User\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.dll:*:Enabled:Google Talk Plugin"
"H:\Documents and Settings\User\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe"="H:\Documents and Settings\User\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe:*:Enabled:Google Talk Plugin"
"H:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe"="H:\Program Files\EA GAMES\Battlefield 1942\BF1942.exe:*:Enabled:BF1942"
"H:\Program Files\Warcraft III\Warcraft III\Warcraft III.exe"="H:\Program Files\Warcraft III\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"H:\Program Files\Valve\hltv.exe"="H:\Program Files\Valve\hltv.exe:*:Enabled:HLTV Launcher"
"H:\Program Files\Counter-Strike 1.6\hl.exe"="H:\Program Files\Counter-Strike 1.6\hl.exe:*:Enabled:Half-Life Launcher"
"H:\Documents and Settings\User\My Documents\Downloads\Counter-Strike 1.6 + Half-Life\hl.exe"="H:\Documents and Settings\User\My Documents\Downloads\Counter-Strike 1.6 + Half-Life\hl.exe:*:Enabled:Half-Life Launcher"
"H:\Program Files\Valve\toto_smazte\hltv.exe"="H:\Program Files\Valve\toto_smazte\hltv.exe:*:Enabled:HLTV Launcher"
"H:\Program Files\Steam\Steam.exe"="H:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"H:\Program Files\Garena\Garena Host Bot v1.0\GarenaHostBot.exe"="H:\Program Files\Garena\Garena Host Bot v1.0\GarenaHostBot.exe:*:Enabled:Garena Host Bot - advanced hosting bot for garena"
"H:\Program Files\Garena\Garena Host Bot v1.0\ghost.exe"="H:\Program Files\Garena\Garena Host Bot v1.0\ghost.exe:*:Enabled:ghost"
"H:\Program Files\PFPortChecker\PFPortChecker.exe"="H:\Program Files\PFPortChecker\PFPortChecker.exe:*:Enabled:PFPortchecker by portforward.com helps check if your ports are properly forwarded."
"H:\WINDOWS\system32\PnkBstrA.exe"="H:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"H:\WINDOWS\system32\PnkBstrB.exe"="H:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"H:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe"="H:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe:*:Enabled:Nokia Ovi Suite 2"
"H:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe"="H:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process "
"H:\Documents and Settings\User\My Documents\Preberanie\MeGa Garena ExP hacK.exe"="H:\Documents and Settings\User\My Documents\Preberanie\MeGa Garena ExP hacK.exe:*:Enabled:MeGa Garena ExP hacK"
"H:\Documents and Settings\User\Local Settings\Temp\Rar$EX05.875\Garena HostEdition\Garena.exe"="H:\Documents and Settings\User\Local Settings\Temp\Rar$EX05.875\Garena HostEdition\Garena.exe:*:Enabled:Garena"
"H:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe"="H:\Documents and Settings\All Users\Application Data\NexonEU\NGM\NGM.exe:*:Enabled:Nexon Game Manager"
"H:\Program Files\Combat Arms EU\CombatArms.exe"="H:\Program Files\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"H:\Program Files\Combat Arms EU\Engine.exe"="H:\Program Files\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"
"H:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe"="H:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe:*:Enabled:NEXON_EU_Downloader_Engine"
"H:\Nexon\Combat Arms EU\CombatArms.exe"="H:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"H:\Nexon\Combat Arms EU\Engine.exe"="H:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"
"H:\Program Files\Bonjour\mDNSResponder.exe"="H:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour Service"
"H:\Program Files\iTunes\iTunes.exe"="H:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"H:\Program Files\Skype\Plugin Manager\skypePM.exe"="H:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"H:\Program Files\Pinnacle\Studio 14\Programs\RM.exe"="H:\Program Files\Pinnacle\Studio 14\Programs\RM.exe:*:Enabled:Render Manager"
"H:\Program Files\Pinnacle\Studio 14\Programs\Studio.exe"="H:\Program Files\Pinnacle\Studio 14\Programs\Studio.exe:*:Enabled:Studio"
"H:\Program Files\Pinnacle\Studio 14\Programs\umi.exe"="H:\Program Files\Pinnacle\Studio 14\Programs\umi.exe:*:Enabled:umi"
"H:\Program Files\Garena HostBot\GarenaHostBot.exe"="H:\Program Files\Garena HostBot\GarenaHostBot.exe:*:Enabled:Garena Host Bot - advanced hosting bot for garena"
"H:\Program Files\Garena HostBot\ghost.exe"="H:\Program Files\Garena HostBot\ghost.exe:*:Enabled:ghost"
"H:\Program Files\Opera\opera.exe"="H:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"H:\Program Files\Goiceasoft Studios\Counter Strike 1.8 Goiceasoft\cstrike.exe"="H:\Program Files\Goiceasoft Studios\Counter Strike 1.8 Goiceasoft\cstrike.exe:*:Enabled:CS 1.8 Goiceasoft"
"H:\Program Files\www.Cstr1k3rs.uCoz.Com\CarbonCS v1.1\cstrike.exe"="H:\Program Files\www.Cstr1k3rs.uCoz.Com\CarbonCS v1.1\cstrike.exe:*:Enabled:CarbonCS v1.1"
"H:\Program Files\Pando Networks\Media Booster\PMB.exe"="H:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"H:\Riot Games\League of Legends\air\LolClient.exe"="H:\Riot Games\League of Legends\air\LolClient.exe:*:Enabled:League of Legends Lobby"
"H:\Riot Games\League of Legends\game\League of Legends.exe"="H:\Riot Games\League of Legends\game\League of Legends.exe:*:Enabled:League of Legends Game Client"
"H:\Program Files\Skype\Phone\Skype.exe"="H:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"H:\Program Files\Combat Arms EU\CombatArms.exe"="H:\Program Files\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"H:\Program Files\Combat Arms EU\Engine.exe"="H:\Program Files\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"
"H:\Nexon\Combat Arms EU\CombatArms.exe"="H:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"H:\Nexon\Combat Arms EU\Engine.exe"="H:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"
"H:\Program Files\Pando Networks\Media Booster\PMB.exe"="H:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
======File associations======
.scr - open - H:\WINDOWS\system32\notepad.exe "%1"
.scr - install -
.scr - config -
======List of files/folders created in the last 1 months======
2011-02-27 13:20:45 ----D---- H:\rsit
2011-02-27 13:20:45 ----D---- H:\Program Files\trend micro
2011-02-27 13:13:13 ----D---- H:\WINDOWS\CSC
2011-02-26 08:31:44 ----D---- H:\Documents and Settings\User\Application Data\LolClient
2011-02-26 08:13:15 ----A---- H:\WINDOWS\system32\XAudio2_2.dll
2011-02-26 08:13:15 ----A---- H:\WINDOWS\system32\XAPOFX1_1.dll
2011-02-26 08:13:12 ----A---- H:\WINDOWS\system32\D3DCompiler_39.dll
2011-02-26 08:00:55 ----D---- H:\Riot Games
2011-02-25 23:16:33 ----D---- H:\Documents and Settings\All Users\Application Data\PMB Files
2011-02-25 23:15:56 ----D---- H:\Program Files\Pando Networks
2011-02-25 07:52:23 ----HDC---- H:\WINDOWS\$NtUninstallKB971029$
2011-02-09 03:11:11 ----HDC---- H:\WINDOWS\$NtUninstallKB2478971$
2011-02-09 03:10:57 ----HDC---- H:\WINDOWS\$NtUninstallKB2485376$
2011-02-09 03:10:37 ----HDC---- H:\WINDOWS\$NtUninstallKB2479628$
2011-02-09 03:09:53 ----HDC---- H:\WINDOWS\$NtUninstallKB2483185$
2011-02-09 03:03:54 ----HDC---- H:\WINDOWS\$NtUninstallKB2476687$
2011-02-09 03:03:12 ----HDC---- H:\WINDOWS\$NtUninstallKB2482017$
2011-02-09 03:02:01 ----HDC---- H:\WINDOWS\$NtUninstallKB2478960$
2011-02-09 03:01:31 ----HDC---- H:\WINDOWS\$NtUninstallKB2393802$
======List of files/folders modified in the last 1 months======
2011-02-27 13:20:45 ----RD---- H:\Program Files
2011-02-27 13:13:37 ----A---- H:\WINDOWS\ntbtlog.txt
2011-02-27 13:13:13 ----D---- H:\WINDOWS
2011-02-27 13:11:09 ----D---- H:\WINDOWS\Temp
2011-02-27 13:08:46 ----D---- H:\Program Files\Connection Manager
2011-02-27 13:03:45 ----D---- H:\WINDOWS\Prefetch
2011-02-27 12:24:09 ----D---- H:\Program Files\Warcraft III
2011-02-27 08:33:30 ----D---- H:\Program Files\Garena
2011-02-27 07:57:02 ----D---- H:\WINDOWS\system32\CatRoot2
2011-02-26 22:38:28 ----A---- H:\WINDOWS\SchedLgU.Txt
2011-02-26 21:45:51 ----D---- H:\Documents and Settings\User\Application Data\Skype
2011-02-26 20:55:35 ----SHD---- H:\WINDOWS\Installer
2011-02-26 20:55:22 ----D---- H:\Documents and Settings\All Users\Application Data\Skype
2011-02-26 08:13:16 ----D---- H:\WINDOWS\system32
2011-02-26 08:13:15 ----HD---- H:\WINDOWS\inf
2011-02-26 08:12:56 ----D---- H:\WINDOWS\system32\DirectX
2011-02-26 08:00:53 ----HD---- H:\Program Files\InstallShield Installation Information
2011-02-25 07:52:27 ----RSHDC---- H:\WINDOWS\system32\dllcache
2011-02-25 07:49:27 ----HD---- H:\WINDOWS\$hf_mig$
2011-02-19 12:56:26 ----SHD---- H:\Config.Msi
2011-02-19 12:56:24 ----D---- H:\Documents and Settings\User\Application Data\Mozilla
2011-02-18 21:24:41 ----A---- H:\WINDOWS\NeroDigital.ini
2011-02-15 10:57:06 ----D---- H:\Documents and Settings\User\Application Data\skypePM
2011-02-12 15:21:44 ----D---- H:\Program Files\Mozilla Firefox
2011-02-09 03:11:20 ----A---- H:\WINDOWS\imsins.BAK
2011-02-09 03:04:29 ----A---- H:\WINDOWS\system32\MRT.exe
2011-02-09 03:02:59 ----D---- H:\Documents and Settings\All Users\Application Data\Microsoft Help
2011-02-09 03:01:57 ----A---- H:\WINDOWS\iis6.BAK
2011-01-30 16:40:30 ----D---- H:\Documents and Settings\User\Application Data\uTorrent
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 a347scsi;a347scsi; H:\WINDOWS\System32\Drivers\a347scsi.sys [2004-04-30 5248]
R0 PxHelp20;PxHelp20; H:\WINDOWS\system32\DRIVERS\PxHelp20.sys [2010-06-10 45648]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); H:\WINDOWS\System32\drivers\sfdrv01.sys [2005-08-10 50688]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); H:\WINDOWS\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sfsync03;StarForce Protection Synchronization Driver (version 3.x); H:\WINDOWS\System32\drivers\sfsync03.sys [2005-10-13 35328]
R0 sptd;sptd; H:\WINDOWS\System32\Drivers\sptd.sys [2010-03-30 691696]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; H:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-01-18 77696]
R1 epfwtdir;epfwtdir; H:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2010-08-03 95896]
R3 appliandMP;appliandMP; H:\WINDOWS\system32\DRIVERS\appliand.sys [2010-06-24 28256]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; H:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; H:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Microsoft HID Class Driver; H:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 MarvinBus;Pinnacle Marvin Bus; H:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]
R3 mouhid;Mouse HID Driver; H:\WINDOWS\system32\DRIVERS\mouhid.sys [2007-07-27 12160]
R3 Pfc;Padus ASPI Shell; H:\WINDOWS\system32\drivers\pfc.sys [2003-09-19 10368]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; H:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-03-01 90496]
R3 usbstor;USB Mass Storage Driver; H:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; H:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S0 a347bus;a347bus; H:\WINDOWS\system32\DRIVERS\a347bus.sys [2004-04-30 160640]
S1 ehdrv;ehdrv; H:\WINDOWS\system32\DRIVERS\ehdrv.sys [2010-07-29 115008]
S1 intelppm;Intel Processor Driver; H:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
S1 kbdhid;Keyboard HID Driver; H:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14592]
S2 eamon;eamon; H:\WINDOWS\system32\DRIVERS\eamon.sys [2010-08-04 140752]
S2 Hardlock;Hardlock; \??\H:\WINDOWS\system32\drivers\hardlock.sys []
S2 NwlnkIpx;NWLink IPX/SPX/NetBIOS Compatible Transport Protocol; H:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-13 88320]
S2 NwlnkNb;NWLink NetBIOS; H:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2007-07-27 63232]
S2 NwlnkSpx;NWLink SPX/SPXII Protocol; H:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2007-07-27 55936]
S3 appliand;Applian Network Service; H:\WINDOWS\system32\DRIVERS\appliand.sys [2010-06-24 28256]
S3 BthEnum;Bluetooth Enumerator Service; H:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); H:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Bluetooth Port Driver; H:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-13 272128]
S3 BTHUSB;Bluetooth Radio USB Driver; H:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 CCDECODE;Closed Caption Decoder; H:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-07-09 16384]
S3 DCamUSBEMPIA;Dazzle DVC Video Device; H:\WINDOWS\system32\DRIVERS\emDevice.sys [2005-12-21 100957]
S3 dot4;MS IEEE-1284.4 Driver; H:\WINDOWS\system32\DRIVERS\Dot4.sys [2008-04-13 206976]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; H:\WINDOWS\system32\DRIVERS\Dot4Prt.sys [2001-08-17 12928]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; H:\WINDOWS\system32\DRIVERS\dot4usb.sys [2001-08-17 23808]
S3 EagleNT;EagleNT; \??\H:\WINDOWS\system32\drivers\EagleNT.sys []
S3 emAudio;Dazzle DVC Audio Device; H:\WINDOWS\system32\drivers\emAudio.sys [2006-12-12 22528]
S3 FiltUSBEMPIA;USB Device Lower Filter; H:\WINDOWS\system32\DRIVERS\emFilter.sys [2005-12-21 5245]
S3 GarenaPEngine;GarenaPEngine; \??\H:\DOCUME~1\User\LOCALS~1\Temp\SVQCD0.tmp []
S3 gdrv;gdrv; \??\H:\WINDOWS\gdrv.sys []
S3 GGSAFERDriver;GGSAFER Driver; \??\H:\Program Files\Garena\safedrv.sys []
S3 hamachi;Hamachi Network Interface; H:\WINDOWS\system32\DRIVERS\hamachi.sys [2008-01-01 25280]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); H:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-04-23 4402176]
S3 MPE;BDA MPE Filter; H:\WINDOWS\system32\DRIVERS\MPE.sys [2004-07-09 15104]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; H:\WINDOWS\system32\drivers\MSTEE.sys [2002-12-11 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; H:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-07-09 83968]
S3 NdisIP;Microsoft TV/Video Connection; H:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-07-09 10112]
S3 nm;Network Monitor Driver; H:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
S3 nmwcd;Nokia USB Phone Parent; H:\WINDOWS\system32\drivers\ccdcmb.sys [2010-01-21 18048]
S3 nmwcdc;Nokia USB Generic; H:\WINDOWS\system32\drivers\ccdcmbo.sys [2009-12-30 22016]
S3 NuidFltr;NUID filter driver; H:\WINDOWS\system32\DRIVERS\NuidFltr.sys [2009-05-09 14736]
S3 nv;nv; H:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-04-19 3988384]
S3 NWRDR;NetWare Rdr; H:\WINDOWS\system32\DRIVERS\nwrdr.sys [2008-04-13 163584]
S3 pccsmcfd;PCCS Mode Change Filter Driver; H:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); H:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 ScanUSBEMPIA;USB Still Image Capture Device; H:\WINDOWS\system32\DRIVERS\emScan.sys [2005-12-21 4493]
S3 scrcap;scrcap; H:\WINDOWS\system32\DRIVERS\scrcap.sys []
S3 SLIP;BDA Slip De-Framer; H:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-07-09 10880]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); H:\WINDOWS\system32\DRIVERS\sscdbus.sys [2008-02-22 87936]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; H:\WINDOWS\system32\DRIVERS\sscdmdfl.sys [2008-02-22 14976]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; H:\WINDOWS\system32\DRIVERS\sscdmdm.sys [2008-02-22 114304]
S3 sscdserd;SAMSUNG Mobile Modem Diagnostic Serial Port (WDM); H:\WINDOWS\system32\DRIVERS\sscdserd.sys [2008-02-22 94336]
S3 StillCam;Still Serial Digital Camera Driver; H:\WINDOWS\system32\DRIVERS\serscan.sys [2001-08-17 6784]
S3 streamip;BDA IPSink; H:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-07-09 14976]
S3 upperdev;upperdev; H:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2009-12-30 7936]
S3 usb_rndisx;USB RNDIS Adapter; H:\WINDOWS\system32\DRIVERS\usb8023x.sys [2008-04-13 12800]
S3 USBAAPL;Apple Mobile USB Driver; H:\WINDOWS\System32\Drivers\usbaapl.sys [2010-04-19 41984]
S3 usbccgp;Microsoft USB Generic Parent Driver; H:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbscan;USB Scanner Driver; H:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;USB Modem Driver; H:\WINDOWS\system32\DRIVERS\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; H:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2009-12-30 7936]
S3 wceusbsh;Windows CE USB Serial Host Driver; H:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672]
S3 Wdf01000;Wdf01000; H:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; H:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;World Standard Teletext Codec; H:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-07-09 18688]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; H:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-01-18 83328]
S4 WS2IFSL;Prostredie podpory poskytovateľa služby Windows Socket 2.0 Non-IFS Service; H:\WINDOWS\System32\drivers\ws2ifsl.sys [2007-07-27 12032]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
S2 Apple Mobile Device;Apple Mobile Device; H:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-06-10 144176]
S2 Application Updater;Application Updater; H:\Program Files\Application Updater\ApplicationUpdater.exe [2010-01-08 380928]
S2 Bonjour Service;Bonjour Service; H:\Program Files\Bonjour\mDNSResponder.exe [2010-05-18 345376]
S2 BthServ;Bluetooth Support Service; H:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 ekrn;ESET Service; H:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2010-08-12 810144]
S2 gupdate1ca3af1a336b4e2;Služba Google Update (gupdate1ca3af1a336b4e2); H:\Program Files\Google\Update\GoogleUpdate.exe [2009-09-21 133104]
S2 MDM;Machine Debug Manager; H:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
S2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; H:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2008-02-18 877864]
S2 NVSvc;NVIDIA Display Driver Service; H:\WINDOWS\system32\nvsvc32.exe [2007-04-19 159810]
S2 NWCWorkstation;Client Service for NetWare; H:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 NwSapAgent;SAP Agent; H:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; H:\WINDOWS\system32\IoctlSvc.exe [2006-12-19 81920]
S2 PnkBstrA;PnkBstrA; H:\WINDOWS\system32\PnkBstrA.exe [2008-03-24 66872]
S2 PnkBstrB;PnkBstrB; H:\WINDOWS\system32\PnkBstrB.exe [2010-04-04 189248]
S2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; H:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 Adobe LM Service;Adobe LM Service; H:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2009-08-06 72704]
S3 aspnet_state;ASP.NET State Service; H:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 Autodesk Licensing Service;Autodesk Licensing Service; H:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe [2010-03-30 85096]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; H:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; H:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2010-08-12 33584]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; H:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-11-06 654848]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; h:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; H:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-26 182768]
S3 IDriverT;InstallDriver Table Manager; H:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; H:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Imapi Helper;Imapi Helper; H:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe []
S3 iPod Service;iPod Service; H:\Program Files\iPod\bin\iPodService.exe [2010-06-15 540472]
S3 McComponentHostService;McAfee Security Scan Component Host Service; H:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
S3 NMIndexingService;NMIndexingService; H:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-02-28 529704]
S3 odserv;Microsoft Office Diagnostics Service; H:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; H:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Pml Driver HPZ12;Pml Driver HPZ12; H:\WINDOWS\system32\HPZipm12.exe [2003-10-22 65536]
S3 ServiceLayer;ServiceLayer; H:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-01-26 652800]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; H:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; H:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Tam toho je 
.