Zamrzani PC-Prosim o kontrolu RSIT logu
Napsal: 03 led 2010 11:49
Dobry den, posledni dobou se mi casto stava, ze mi zamrza pc- pri prohlizeni internetu, prehravani hudby, prohlizeni obrazku- proste zamrza jak se mu chce a pak mi nezbyva nic jineho nez tvrdej restart. Kdyz mi PC zamrzne tak muzu pohybovat kurzorem mysi, ale to je asi tak vse, na nic jineho comp nereaguje. Nekde sem se docetl, ze by to mohl byt vir v ramkach, ale nevim. A proto se obracim na Vas s zadosti o radu ci pomoc. Prikladam cerstvy log z RSIT. Dekuji predem za jakoukoliv radu.
Logfile of random's system information tool 1.06 (written by random/random)
Run by zBosS at 2010-01-03 11:41:45
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 71 GB (71%) free of 100 GB
Total RAM: 3326 MB (85% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:41:48, on 3.1.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Opera\opera.exe
C:\Documents and Settings\zBosS\Plocha\RSIT.exe
C:\Program Files\trend micro\zBosS.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2014090
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.lge.com/products/mobile/mobi ... CTG1000439
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: FlashGetBHO - {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} - C:\Documents and Settings\zBosS\Data aplikací\FlashGetBHO\FlashGetBHO3.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\isuspm.exe -startup
O4 - HKCU\..\Run: [Advanced SystemCare 3] "C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe" /startup
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Download All by FlashGet3 - C:\Documents and Settings\zBosS\Data aplikací\FlashGetBHO\GetAllUrl.htm
O8 - Extra context menu item: Download by FlashGet3 - C:\Documents and Settings\zBosS\Data aplikací\FlashGetBHO\GetUrl.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{3C764991-8A9D-4A67-ADD8-3D12F79F19AD}: NameServer = 10.255.255.10,10.255.255.20
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Dragon Age: Origins - Content Updater (DAUpdaterSvc) - BioWare - G:\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
--
End of file - 5927 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\AWC AutoSweep.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0}]
FlashGetBHO - C:\Documents and Settings\zBosS\Data aplikací\FlashGetBHO\FlashGetBHO3.dll [2009-08-10 353840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-04-23 937416]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SmcService"=C:\PROGRA~1\Sygate\SPF\smc.exe [2005-03-05 2573536]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-04-13 69632]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-08-20 16384512]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-11-04 98304]
"ISUSPM Startup"=c:\progra~1\common~1\instal~1\update~1\isuspm.exe [2004-04-17 196608]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 3"=C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe [2009-04-30 2329936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-11-04 155648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\uTorrent\utorrent.exe"="D:\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\TeamViewer\Version4\TeamViewer.exe"="C:\Program Files\TeamViewer\Version4\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"G:\Red Alert 3\Data\ra3_1.0.game"="G:\Red Alert 3\Data\ra3_1.0.game:*:Disabled:Command & Conquer™ Red Alert™ 3"
"$INSTDIR\FlvDetector.exe"="C:\Program Files\FlashGet Network\FlashGet 3\FlvDetector.exe:*:Enabled:FGFlvDetector"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"G:\Dragon Age\bin_ship\daorigins.exe"="G:\Dragon Age\bin_ship\daorigins.exe:*:Enabled:Dragon Age Origins Game"
"G:\Dragon Age\DAOriginsLauncher.exe"="G:\Dragon Age\DAOriginsLauncher.exe:*:Enabled:Dragon Age Origins Launcher"
"G:\Dragon Age\bin_ship\daupdatersvc.service.exe"="G:\Dragon Age\bin_ship\daupdatersvc.service.exe:*:Enabled:Dragon Age Origins Updater"
"G:\Borderlands\Binaries\Borderlands.exe"="G:\Borderlands\Binaries\Borderlands.exe:*:Disabled:Borderlands"
"G:\James Cameron's AVATAR - THE GAME (Demo)\bin\AvatarDemo.exe"="G:\James Cameron's AVATAR - THE GAME (Demo)\bin\AvatarDemo.exe:*:Enabled:James Cameron's AVATAR(tm): THE GAME (Demo)"
"G:\Colin McRae DiRT 2\dirt2_game.exe"="G:\Colin McRae DiRT 2\dirt2_game.exe:*:Disabled:DiRT2 Executable"
"G:\Neverwinter Nights 2\nwn2main.exe"="G:\Neverwinter Nights 2\nwn2main.exe:*:Enabled:Neverwinter Nights 2 Main"
"G:\Neverwinter Nights 2\nwn2main_amdxp.exe"="G:\Neverwinter Nights 2\nwn2main_amdxp.exe:*:Enabled:Neverwinter Nights 2 AMD"
"G:\Neverwinter Nights 2\nwupdate.exe"="G:\Neverwinter Nights 2\nwupdate.exe:*:Enabled:Neverwinter Nights 2 Updater"
"G:\Neverwinter Nights 2\nwn2server.exe"="G:\Neverwinter Nights 2\nwn2server.exe:*:Enabled:Neverwinter Nights 2 Server"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
======List of files/folders created in the last 1 months======
2010-01-03 00:16:24 ----DC---- C:\Program Files\trend micro
2010-01-03 00:16:21 ----DC---- C:\rsit
2010-01-03 00:09:08 ----SHDC---- C:\RECYCLER
2010-01-03 00:07:20 ----AC---- C:\ComboFix.txt
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\zip.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\SWXCACLS.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\SWSC.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\SWREG.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\sed.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\PEV.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\NIRCMD.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\MBR.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\grep.exe
2010-01-02 23:12:47 ----DC---- C:\Program Files\DriveSitter
2009-12-31 14:25:11 ----DC---- C:\Documents and Settings\All Users\Data aplikací\TreeCardGames
2009-12-31 14:25:10 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\SolSuite
2009-12-31 14:22:48 ----DC---- C:\Program Files\SolSuite
2009-12-17 10:19:07 ----DC---- C:\Program Files\MSBuild
2009-12-17 10:16:50 ----DC---- C:\WINDOWS\system32\XPSViewer
2009-12-17 10:16:48 ----DC---- C:\WINDOWS\system32\en-us
2009-12-17 10:16:26 ----DC---- C:\Program Files\Reference Assemblies
2009-12-17 10:12:28 ----DC---- C:\Documents and Settings\All Users\Data aplikací\ATI
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\Oemdspif.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\atitvo32.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\ATIODCLI.exe
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\atimpc32.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\ATIDEMGX.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\aticalrt.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\aticaldd.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\ati2edxx.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\amdpcom32.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ativcoxx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atipdlxx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atiok3x2.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atioglxx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ATIODE.exe
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atikvmag.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atiiiexx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ATIDDC.DLL
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\aticalcl.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atibtmon.exe
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atiadlxx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\Ati2mdxx.exe
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ati2evxx.exe
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ati2evxx.dll
2009-12-17 10:09:43 ----DC---- C:\Program Files\ATI
2009-12-17 10:05:08 ----DC---- C:\WINDOWS\system32\URTTemp
2009-12-17 09:51:18 ----AC---- C:\WINDOWS\WININIT.INI
2009-12-10 16:04:03 ----DC---- C:\WINDOWS\ap0_NEW_08D1127F
2009-12-09 12:02:45 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2009-12-09 12:02:42 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2009-12-09 12:02:29 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2009-12-09 12:02:26 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2009-12-09 12:02:21 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2009-12-08 10:31:24 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Codemasters
======List of files/folders modified in the last 1 months======
2010-01-03 11:24:40 ----DC---- C:\WINDOWS\system32
2010-01-03 11:24:40 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-01-03 11:23:24 ----DC---- C:\WINDOWS\Temp
2010-01-03 00:47:17 ----AC---- C:\WINDOWS\SchedLgU.Txt
2010-01-03 00:47:16 ----DC---- C:\WINDOWS\system32\CatRoot2
2010-01-03 00:16:24 ----RDC---- C:\Program Files
2010-01-03 00:06:25 ----DC---- C:\WINDOWS
2010-01-03 00:06:25 ----AC---- C:\WINDOWS\system.ini
2010-01-03 00:05:22 ----DC---- C:\WINDOWS\system32\drivers
2010-01-03 00:05:22 ----DC---- C:\WINDOWS\AppPatch
2010-01-03 00:05:19 ----DC---- C:\Program Files\Common Files
2010-01-02 23:59:03 ----DC---- C:\WINDOWS\Prefetch
2010-01-02 21:11:45 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\uTorrent
2009-12-31 12:26:05 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\CopyToDvd
2009-12-31 12:21:33 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\Vso
2009-12-28 18:32:30 ----SHDC---- C:\WINDOWS\Installer
2009-12-28 18:32:06 ----DC---- C:\Program Files\Google
2009-12-23 16:12:47 ----HDC---- C:\WINDOWS\inf
2009-12-23 16:12:47 ----DC---- C:\WINDOWS\system32\DirectX
2009-12-23 16:12:35 ----RSDC---- C:\WINDOWS\assembly
2009-12-22 10:55:34 ----DC---- C:\WINDOWS\Logs
2009-12-19 12:03:32 ----HDC---- C:\Program Files\InstallShield Installation Information
2009-12-18 11:55:39 ----DC---- C:\WINDOWS\Microsoft.NET
2009-12-17 18:00:38 ----DC---- C:\WINDOWS\WinSxS
2009-12-17 11:31:54 ----DC---- C:\WINDOWS\system32\config
2009-12-17 10:45:57 ----RSDC---- C:\WINDOWS\Fonts
2009-12-17 10:42:10 ----DC---- C:\WINDOWS\Registration
2009-12-17 10:19:42 ----DC---- C:\WINDOWS\system32\mui
2009-12-17 10:19:40 ----DC---- C:\WINDOWS\system32\cs-cz
2009-12-17 10:10:21 ----DC---- C:\Program Files\ATI Technologies
2009-12-17 10:10:06 ----DC---- C:\WINDOWS\system32\dllcache
2009-12-17 10:09:57 ----DC---- C:\WINDOWS\system32\CatRoot
2009-12-17 10:09:55 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-12-17 10:06:28 ----DC---- C:\Program Files\Common Files\Microsoft Shared
2009-12-17 10:06:22 ----DC---- C:\Program Files\Internet Explorer
2009-12-17 10:06:20 ----DC---- C:\WINDOWS\pchealth
2009-12-17 09:51:44 ----DC---- C:\Program Files\Common Files\ATI Technologies
2009-12-16 17:09:20 ----AC---- C:\WINDOWS\system32\winsock.dll
2009-12-16 12:46:01 ----SDC---- C:\WINDOWS\Tasks
2009-12-12 17:05:36 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\BITS
2009-12-11 11:49:11 ----DC---- C:\WINDOWS\Debug
2009-12-10 15:02:52 ----SDC---- C:\WINDOWS\Downloaded Program Files
2009-12-10 14:54:31 ----DC---- C:\Program Files\AMD
2009-12-10 14:54:30 ----RSHC---- C:\boot.ini
2009-12-09 12:02:44 ----AC---- C:\WINDOWS\imsins.BAK
2009-12-09 12:02:33 ----DC---- C:\WINDOWS\ie8updates
2009-12-09 12:02:31 ----HDC---- C:\WINDOWS\$hf_mig$
2009-12-08 19:09:50 ----SDC---- C:\Documents and Settings\zBosS\Data aplikací\Microsoft
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-18 43008]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2007-08-07 25160]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2004-05-05 4228]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R1 wpsdrvnt;wpsdrvnt; \??\C:\WINDOWS\system32\drivers\wpsdrvnt.sys []
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-09-15 94160]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-10-16 281760]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-10-16 25888]
R2 wg3n;SyGate for NT, wg3n; C:\WINDOWS\SYSTEM32\Drivers\wg3n.sys [2004-10-15 14568]
R2 wg4n;SyGate for NT, wg4n; C:\WINDOWS\SYSTEM32\Drivers\wg4n.sys [2004-10-15 14568]
R2 wg5n;SyGate for NT, wg5n; C:\WINDOWS\SYSTEM32\Drivers\wg5n.sys [2004-10-15 14568]
R2 wg6n;SyGate for NT, wg6n; C:\WINDOWS\SYSTEM32\Drivers\wg6n.sys [2004-10-15 14568]
R3 AmdLLD;AMD Low Level Device Driver; C:\WINDOWS\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 AnyDVD;AnyDVD; C:\WINDOWS\System32\Drivers\AnyDVD.sys [2008-03-19 97600]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-11-04 4423168]
R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2009-04-01 93184]
R3 ElbyDelay;ElbyDelay; C:\WINDOWS\System32\Drivers\ElbyDelay.sys [2007-02-16 11984]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-08-28 4609024]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 Pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\Pcouffin.sys [2009-11-20 47360]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-05-31 96896]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
S3 catchme;catchme; \??\C:\DOCUME~1\zBosS\LOCALS~1\Temp\catchme.sys []
S3 ENTECH;ENTECH; \??\C:\WINDOWS\system32\DRIVERS\ENTECH.sys []
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 a347bus;a347bus; C:\WINDOWS\system32\DRIVERS\a347bus.sys [2004-04-30 160640]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-10-18 721904]
S4 vsdatant;vsdatant; C:\WINDOWS\system32\drivers\vsdatant.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-11-04 602112]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 SmcService;Sygate Personal Firewall; C:\Program Files\Sygate\SPF\smc.exe [2005-03-05 2573536]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-11-13 135664]
S2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater; G:\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-07-26 25832]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Logfile of random's system information tool 1.06 (written by random/random)
Run by zBosS at 2010-01-03 11:41:45
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 71 GB (71%) free of 100 GB
Total RAM: 3326 MB (85% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:41:48, on 3.1.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Opera\opera.exe
C:\Documents and Settings\zBosS\Plocha\RSIT.exe
C:\Program Files\trend micro\zBosS.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2014090
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.lge.com/products/mobile/mobi ... CTG1000439
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: FlashGetBHO - {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} - C:\Documents and Settings\zBosS\Data aplikací\FlashGetBHO\FlashGetBHO3.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\isuspm.exe -startup
O4 - HKCU\..\Run: [Advanced SystemCare 3] "C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe" /startup
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Download All by FlashGet3 - C:\Documents and Settings\zBosS\Data aplikací\FlashGetBHO\GetAllUrl.htm
O8 - Extra context menu item: Download by FlashGet3 - C:\Documents and Settings\zBosS\Data aplikací\FlashGetBHO\GetUrl.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{3C764991-8A9D-4A67-ADD8-3D12F79F19AD}: NameServer = 10.255.255.10,10.255.255.20
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Dragon Age: Origins - Content Updater (DAUpdaterSvc) - BioWare - G:\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
--
End of file - 5927 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\AWC AutoSweep.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0}]
FlashGetBHO - C:\Documents and Settings\zBosS\Data aplikací\FlashGetBHO\FlashGetBHO3.dll [2009-08-10 353840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll [2009-04-23 937416]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SmcService"=C:\PROGRA~1\Sygate\SPF\smc.exe [2005-03-05 2573536]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-04-13 69632]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-08-20 16384512]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-11-04 98304]
"ISUSPM Startup"=c:\progra~1\common~1\instal~1\update~1\isuspm.exe [2004-04-17 196608]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 3"=C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe [2009-04-30 2329936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-11-04 155648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\uTorrent\utorrent.exe"="D:\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\TeamViewer\Version4\TeamViewer.exe"="C:\Program Files\TeamViewer\Version4\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"G:\Red Alert 3\Data\ra3_1.0.game"="G:\Red Alert 3\Data\ra3_1.0.game:*:Disabled:Command & Conquer™ Red Alert™ 3"
"$INSTDIR\FlvDetector.exe"="C:\Program Files\FlashGet Network\FlashGet 3\FlvDetector.exe:*:Enabled:FGFlvDetector"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"G:\Dragon Age\bin_ship\daorigins.exe"="G:\Dragon Age\bin_ship\daorigins.exe:*:Enabled:Dragon Age Origins Game"
"G:\Dragon Age\DAOriginsLauncher.exe"="G:\Dragon Age\DAOriginsLauncher.exe:*:Enabled:Dragon Age Origins Launcher"
"G:\Dragon Age\bin_ship\daupdatersvc.service.exe"="G:\Dragon Age\bin_ship\daupdatersvc.service.exe:*:Enabled:Dragon Age Origins Updater"
"G:\Borderlands\Binaries\Borderlands.exe"="G:\Borderlands\Binaries\Borderlands.exe:*:Disabled:Borderlands"
"G:\James Cameron's AVATAR - THE GAME (Demo)\bin\AvatarDemo.exe"="G:\James Cameron's AVATAR - THE GAME (Demo)\bin\AvatarDemo.exe:*:Enabled:James Cameron's AVATAR(tm): THE GAME (Demo)"
"G:\Colin McRae DiRT 2\dirt2_game.exe"="G:\Colin McRae DiRT 2\dirt2_game.exe:*:Disabled:DiRT2 Executable"
"G:\Neverwinter Nights 2\nwn2main.exe"="G:\Neverwinter Nights 2\nwn2main.exe:*:Enabled:Neverwinter Nights 2 Main"
"G:\Neverwinter Nights 2\nwn2main_amdxp.exe"="G:\Neverwinter Nights 2\nwn2main_amdxp.exe:*:Enabled:Neverwinter Nights 2 AMD"
"G:\Neverwinter Nights 2\nwupdate.exe"="G:\Neverwinter Nights 2\nwupdate.exe:*:Enabled:Neverwinter Nights 2 Updater"
"G:\Neverwinter Nights 2\nwn2server.exe"="G:\Neverwinter Nights 2\nwn2server.exe:*:Enabled:Neverwinter Nights 2 Server"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
======List of files/folders created in the last 1 months======
2010-01-03 00:16:24 ----DC---- C:\Program Files\trend micro
2010-01-03 00:16:21 ----DC---- C:\rsit
2010-01-03 00:09:08 ----SHDC---- C:\RECYCLER
2010-01-03 00:07:20 ----AC---- C:\ComboFix.txt
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\zip.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\SWXCACLS.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\SWSC.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\SWREG.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\sed.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\PEV.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\NIRCMD.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\MBR.exe
2010-01-03 00:03:25 ----AC---- C:\WINDOWS\grep.exe
2010-01-02 23:12:47 ----DC---- C:\Program Files\DriveSitter
2009-12-31 14:25:11 ----DC---- C:\Documents and Settings\All Users\Data aplikací\TreeCardGames
2009-12-31 14:25:10 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\SolSuite
2009-12-31 14:22:48 ----DC---- C:\Program Files\SolSuite
2009-12-17 10:19:07 ----DC---- C:\Program Files\MSBuild
2009-12-17 10:16:50 ----DC---- C:\WINDOWS\system32\XPSViewer
2009-12-17 10:16:48 ----DC---- C:\WINDOWS\system32\en-us
2009-12-17 10:16:26 ----DC---- C:\Program Files\Reference Assemblies
2009-12-17 10:12:28 ----DC---- C:\Documents and Settings\All Users\Data aplikací\ATI
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\Oemdspif.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\atitvo32.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\ATIODCLI.exe
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\atimpc32.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\ATIDEMGX.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\aticalrt.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\aticaldd.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\ati2edxx.dll
2009-12-17 10:09:56 ----AC---- C:\WINDOWS\system32\amdpcom32.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ativcoxx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atipdlxx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atiok3x2.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atioglxx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ATIODE.exe
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atikvmag.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atiiiexx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ATIDDC.DLL
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\aticalcl.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atibtmon.exe
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\atiadlxx.dll
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\Ati2mdxx.exe
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ati2evxx.exe
2009-12-17 10:09:55 ----AC---- C:\WINDOWS\system32\ati2evxx.dll
2009-12-17 10:09:43 ----DC---- C:\Program Files\ATI
2009-12-17 10:05:08 ----DC---- C:\WINDOWS\system32\URTTemp
2009-12-17 09:51:18 ----AC---- C:\WINDOWS\WININIT.INI
2009-12-10 16:04:03 ----DC---- C:\WINDOWS\ap0_NEW_08D1127F
2009-12-09 12:02:45 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2009-12-09 12:02:42 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2009-12-09 12:02:29 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2009-12-09 12:02:26 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2009-12-09 12:02:21 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2009-12-08 10:31:24 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Codemasters
======List of files/folders modified in the last 1 months======
2010-01-03 11:24:40 ----DC---- C:\WINDOWS\system32
2010-01-03 11:24:40 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-01-03 11:23:24 ----DC---- C:\WINDOWS\Temp
2010-01-03 00:47:17 ----AC---- C:\WINDOWS\SchedLgU.Txt
2010-01-03 00:47:16 ----DC---- C:\WINDOWS\system32\CatRoot2
2010-01-03 00:16:24 ----RDC---- C:\Program Files
2010-01-03 00:06:25 ----DC---- C:\WINDOWS
2010-01-03 00:06:25 ----AC---- C:\WINDOWS\system.ini
2010-01-03 00:05:22 ----DC---- C:\WINDOWS\system32\drivers
2010-01-03 00:05:22 ----DC---- C:\WINDOWS\AppPatch
2010-01-03 00:05:19 ----DC---- C:\Program Files\Common Files
2010-01-02 23:59:03 ----DC---- C:\WINDOWS\Prefetch
2010-01-02 21:11:45 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\uTorrent
2009-12-31 12:26:05 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\CopyToDvd
2009-12-31 12:21:33 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\Vso
2009-12-28 18:32:30 ----SHDC---- C:\WINDOWS\Installer
2009-12-28 18:32:06 ----DC---- C:\Program Files\Google
2009-12-23 16:12:47 ----HDC---- C:\WINDOWS\inf
2009-12-23 16:12:47 ----DC---- C:\WINDOWS\system32\DirectX
2009-12-23 16:12:35 ----RSDC---- C:\WINDOWS\assembly
2009-12-22 10:55:34 ----DC---- C:\WINDOWS\Logs
2009-12-19 12:03:32 ----HDC---- C:\Program Files\InstallShield Installation Information
2009-12-18 11:55:39 ----DC---- C:\WINDOWS\Microsoft.NET
2009-12-17 18:00:38 ----DC---- C:\WINDOWS\WinSxS
2009-12-17 11:31:54 ----DC---- C:\WINDOWS\system32\config
2009-12-17 10:45:57 ----RSDC---- C:\WINDOWS\Fonts
2009-12-17 10:42:10 ----DC---- C:\WINDOWS\Registration
2009-12-17 10:19:42 ----DC---- C:\WINDOWS\system32\mui
2009-12-17 10:19:40 ----DC---- C:\WINDOWS\system32\cs-cz
2009-12-17 10:10:21 ----DC---- C:\Program Files\ATI Technologies
2009-12-17 10:10:06 ----DC---- C:\WINDOWS\system32\dllcache
2009-12-17 10:09:57 ----DC---- C:\WINDOWS\system32\CatRoot
2009-12-17 10:09:55 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-12-17 10:06:28 ----DC---- C:\Program Files\Common Files\Microsoft Shared
2009-12-17 10:06:22 ----DC---- C:\Program Files\Internet Explorer
2009-12-17 10:06:20 ----DC---- C:\WINDOWS\pchealth
2009-12-17 09:51:44 ----DC---- C:\Program Files\Common Files\ATI Technologies
2009-12-16 17:09:20 ----AC---- C:\WINDOWS\system32\winsock.dll
2009-12-16 12:46:01 ----SDC---- C:\WINDOWS\Tasks
2009-12-12 17:05:36 ----DC---- C:\Documents and Settings\zBosS\Data aplikací\BITS
2009-12-11 11:49:11 ----DC---- C:\WINDOWS\Debug
2009-12-10 15:02:52 ----SDC---- C:\WINDOWS\Downloaded Program Files
2009-12-10 14:54:31 ----DC---- C:\Program Files\AMD
2009-12-10 14:54:30 ----RSHC---- C:\boot.ini
2009-12-09 12:02:44 ----AC---- C:\WINDOWS\imsins.BAK
2009-12-09 12:02:33 ----DC---- C:\WINDOWS\ie8updates
2009-12-09 12:02:31 ----HDC---- C:\WINDOWS\$hf_mig$
2009-12-08 19:09:50 ----SDC---- C:\Documents and Settings\zBosS\Data aplikací\Microsoft
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-18 43008]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2007-08-07 25160]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2004-05-05 4228]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R1 wpsdrvnt;wpsdrvnt; \??\C:\WINDOWS\system32\drivers\wpsdrvnt.sys []
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-09-15 94160]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2009-10-16 281760]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2009-10-16 25888]
R2 wg3n;SyGate for NT, wg3n; C:\WINDOWS\SYSTEM32\Drivers\wg3n.sys [2004-10-15 14568]
R2 wg4n;SyGate for NT, wg4n; C:\WINDOWS\SYSTEM32\Drivers\wg4n.sys [2004-10-15 14568]
R2 wg5n;SyGate for NT, wg5n; C:\WINDOWS\SYSTEM32\Drivers\wg5n.sys [2004-10-15 14568]
R2 wg6n;SyGate for NT, wg6n; C:\WINDOWS\SYSTEM32\Drivers\wg6n.sys [2004-10-15 14568]
R3 AmdLLD;AMD Low Level Device Driver; C:\WINDOWS\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 AnyDVD;AnyDVD; C:\WINDOWS\System32\Drivers\AnyDVD.sys [2008-03-19 97600]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-11-04 4423168]
R3 AtiHdmiService;ATI Function Driver for HDMI Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2009-04-01 93184]
R3 ElbyDelay;ElbyDelay; C:\WINDOWS\System32\Drivers\ElbyDelay.sys [2007-02-16 11984]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-08-28 4609024]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 Pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\Pcouffin.sys [2009-11-20 47360]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-05-31 96896]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Ovladač Miniport otevřeného hostitelského řadiče Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
S3 catchme;catchme; \??\C:\DOCUME~1\zBosS\LOCALS~1\Temp\catchme.sys []
S3 ENTECH;ENTECH; \??\C:\WINDOWS\system32\DRIVERS\ENTECH.sys []
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 a347bus;a347bus; C:\WINDOWS\system32\DRIVERS\a347bus.sys [2004-04-30 160640]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
S4 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2009-10-18 721904]
S4 vsdatant;vsdatant; C:\WINDOWS\system32\drivers\vsdatant.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-11-04 602112]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 SmcService;Sygate Personal Firewall; C:\Program Files\Sygate\SPF\smc.exe [2005-03-05 2573536]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-11-13 135664]
S2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater; G:\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-07-26 25832]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------