sshnas21.dll hlásí chybu

[RadeKKK88]

Dobrý den,

prosím o kontrolu logu. Mám Win7. Pc běhá "normálně". Přikládám logy:

děkuji

Avast:

5.1.2010 21:16:56 RadeKKK 2220 Funkce setifaceUpdatePackages() selhala. Návratová hodnota je 0x2000000A, dwRes je 2000000A.
5.1.2010 21:17:07 RadeKKK 3912 Funkce setifaceUpdatePackages() selhala. Návratová hodnota je 0x2000000A, dwRes je 2000000A.
5.1.2010 23:17:53 SYSTEM 1232 AAVM - varování při testování: x_AavmCheckFileDirectEx: http://dl.s11.uloz.to/Ps;Hs;fid=2010422 ... ozen%20Thr (R:\Windows\TEMP\_avast4_\unp50632715.tmp) returning error, 00000084.
17.1.2000 13:44:24 SYSTEM 1340 Funkce setifaceUpdatePackages() selhala. Návratová hodnota je 0x2000001D, dwRes je 2000001D.
30.1.2010 22:52:36 SYSTEM 1292 Virus "Win32:Malware-gen" byl nalezen v souboru "http://chello.tucows.com/files3/videofi ... ofixer.exe".
30.1.2010 23:40:26 SYSTEM 1292 Virus "Win32:MalOb-AJ [Cryp]" byl nalezen v souboru "R:\Windows\SysWOW64\sshnas21.dll".
30.1.2010 23:40:55 SYSTEM 1292 Virus "Win32:MalOb-AJ [Cryp]" byl nalezen v souboru "R:\Windows\SysWOW64\sshnas21.dll".
30.1.2010 23:42:15 SYSTEM 1292 Virus "Win32:MalOb-AJ [Cryp]" byl nalezen v souboru "R:\Windows\SysWOW64\sshnas21.dll".
30.1.2010 23:42:35 SYSTEM 1292 Virus "Win32:MalOb-AJ [Cryp]" byl nalezen v souboru "R:\Windows\SysWOW64\sshnas21.dll".
30.1.2010 23:44:16 RadeKKK 5920 Virus "Win32:MalOb-AJ [Cryp]" byl nalezen v souboru "r:\windows\msa.exe".
31.1.2010 0:05:28 RadeKKK 6004 Virus "Win32:Adloader-AC [Trj]" byl nalezen v souboru "C:\pagefile.sys".
31.1.2010 12:41:45 RadeKKK 6004 Virus "Win32:MalOb-AJ [Cryp]" byl nalezen v souboru "R:\Windows\SysWOW64\sshnas21.dll".







RSIT:


Logfile of random's system information tool 1.06 (written by random/random)
Run by RadeKKK at 2010-02-02 20:54:33
Microsoft Windows 7 Ultimate Service Pack 3
System drive R: has 24 GB (34%) free of 71 GB
Total RAM: 4095 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:55:14, on 2.2.2010
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
R:\Program Files (x86)\Analog Devices\SoundMAX\SoundMAX.exe
R:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
R:\Program Files (x86)\SAMSUNG\Samsung New PC Studio\NPSAgent.exe
R:\Program Files (x86)\ICQ6.5\ICQ.exe
R:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
R:\Program Files\Avast4\ashDisp.exe
R:\Program Files (x86)\ASUS\AI Suite\AiNap\AiNap.exe
R:\Program Files (x86)\ASUS\AI Suite\AiGear3\CpuPowerMonitor.exe
R:\Program Files (x86)\ASUS\GamerOSD\GamerOSD.exe
R:\Program Files (x86)\ASUS\SmartDoctor\SmartDoctor.exe
R:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
R:\Program Files (x86)\ASUS\AI Suite\EnergySaving\PwSave.exe
R:\Program Files (x86)\ASUS\AI Suite\AiSuite.exe
R:\Program Files (x86)\ASUS\AASP\1.00.95\aaCenter.exe
R:\Program Files (x86)\Internet Explorer\iexplore.exe
R:\Program Files (x86)\Internet Explorer\iexplore.exe
R:\Program Files (x86)\Internet Explorer\iexplore.exe
R:\Program Files (x86)\Internet Explorer\iexplore.exe
R:\Users\RadeKKK\Desktop\RSIT.exe
R:\Program Files (x86)\trend micro\RadeKKK.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157


bohužel se mi to nevešlo kvůli omezení do jednoho postu a tak jsem to rozdělil

[RadeKKK88]

RSIT - pokračování


R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - R:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - R:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AL2Spy Class - {DC200356-0864-4F66-8964-5D43A19300F5} - R:\PROGRA~2\AUTOLO~1\AL2DLL.Dll
O4 - HKLM\..\Run: [avast!] "R:\Program Files\Avast4\ashDisp.exe"
O4 - HKLM\..\Run: [Ai Nap] "R:\Program Files (x86)\ASUS\AI Suite\AiNap\AiNap.exe"
O4 - HKLM\..\Run: [QFan Help] "R:\Program Files (x86)\ASUS\AI Suite\QFan3\QFanHelp.exe"
O4 - HKLM\..\Run: [CPU Power Monitor] "R:\Program Files (x86)\ASUS\AI Suite\AiGear3\CpuPowerMonitor.exe"
O4 - HKLM\..\Run: [Cpu Level Up help] "R:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHelp.exe"
O4 - HKLM\..\Run: [ASUSGamerOSD] R:\Program Files (x86)\ASUS\GamerOSD\GamerOSD.exe
O4 - HKLM\..\Run: [SoundMAXPnP] R:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "R:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "R:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [StartCCC] "R:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Sidebar] R:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "R:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [AutoStartNPSAgent] R:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [ICQ] "R:\Program Files (x86)\ICQ6.5\ICQ.exe" silent
O4 - HKCU\..\Run: [LosAlamos] rundll32.exe R:\Windows\system32\sshnas21.dll,AttachConsoleA
O4 - HKCU\..\Run: [BMIMZMHMFM] R:\Users\RadeKKK\AppData\Local\Temp\Mmd.exe
O4 - HKCU\..\Run: [USDownloader] "Z:\Documents\programy a instalace\Rapid downloader\USDownloader.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] R:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] R:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Logitech SetPoint.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://R:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @R:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - R:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - R:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @R:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - R:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - R:\Program Files (x86)\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - R:\Program Files (x86)\ICQ6.5\ICQ.exe
O10 - Unknown file in Winsock LSP: r:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: r:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{3BC6549B-917C-4FD9-A4D4-25BB38218874}: NameServer = 10.0.0.8
O17 - HKLM\System\CS1\Services\Tcpip\..\{3BC6549B-917C-4FD9-A4D4-25BB38218874}: NameServer = 10.0.0.8
O17 - HKLM\System\CS2\Services\Tcpip\..\{3BC6549B-917C-4FD9-A4D4-25BB38218874}: NameServer = 10.0.0.8
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Unknown owner - R:\Windows\system32\AEADISRV.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - R:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - R:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASDR - Unknown owner - R:\Windows\SysWOW64\ASDR.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - R:\Program Files\Avast4\aswUpdSv.exe
O23 - Service: ATK Fast User Switch Service (ATKFUSService) - Unknown owner - R:\Windows\system32\ATKFUSService.exe (file missing)
O23 - Service: avast! Antivirus - ALWIL Software - R:\Program Files\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - R:\Program Files\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - R:\Program Files\Avast4\ashWebSv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - R:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - R:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - R:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - R:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - R:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - R:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - R:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - R:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - R:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - R:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - R:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: ServiceLayer - Nokia. - R:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - R:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - R:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - R:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - R:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - R:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - R:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - R:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - R:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - R:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - R:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10139 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - R:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - R:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DC200356-0864-4F66-8964-5D43A19300F5}]
AL2Spy Class - R:\PROGRA~2\AUTOLO~1\AL2DLL.Dll [2010-01-06 241664]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NPSStartup"= []
"avast!"=R:\Program Files\Avast4\ashDisp.exe [2009-11-25 81000]
"Ai Nap"=R:\Program Files (x86)\ASUS\AI Suite\AiNap\AiNap.exe [2009-07-01 1435136]
"QFan Help"=R:\Program Files (x86)\ASUS\AI Suite\QFan3\QFanHelp.exe [2009-07-01 601088]
"CPU Power Monitor"=R:\Program Files (x86)\ASUS\AI Suite\AiGear3\CpuPowerMonitor.exe [2008-01-09 627200]
"Cpu Level Up help"=R:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHelp.exe [2007-11-30 881152]
"ASUSGamerOSD"=R:\Program Files (x86)\ASUS\GamerOSD\GamerOSD.exe [2009-07-30 380928]
"SoundMAXPnP"=R:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [2010-01-06 1310720]
"Adobe Reader Speed Launcher"=R:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]
"Adobe ARM"=R:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]
"StartCCC"=R:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-02-25 61440]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=R:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]
"DAEMON Tools Lite"=R:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
"AutoStartNPSAgent"=R:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe [2009-12-22 106952]
"ICQ"=R:\Program Files (x86)\ICQ6.5\ICQ.exe [2009-11-16 172792]
"LosAlamos"=R:\Windows\system32\sshnas21.dll,AttachConsoleA []
"BMIMZMHMFM"=R:\Users\RadeKKK\AppData\Local\Temp\Mmd.exe []
"USDownloader"=Z:\Documents\programy a instalace\Rapid downloader\USDownloader.exe [2010-01-29 530432]

R:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Logitech SetPoint.lnk - R:\Program Files\Logitech\SetPoint\SetPoint.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=
"NoActiveDesktopChanges"=
"ForceActiveDesktopOn"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\H]
shell\AutoRun\command - H:\autoverify.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{799fdfef-f244-11de-80d9-001e8c9c749e}]
shell\AutoRun\command - E:\autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9eb492f1-e9b5-11de-9b95-001e8c9c749e}]
shell\AutoRun\command - H:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{aa31e74b-f49f-11de-98cc-001e8c9c749e}]
shell\AutoRun\command - J:\LaunchU3.exe -a


======File associations======

.js - edit - R:\Windows\System32\Notepad.exe %1
.js - open - R:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-02-02 20:51:26 ----D---- R:\Program Files (x86)\trend micro
2010-02-02 20:51:25 ----D---- R:\rsit
2010-01-30 23:17:24 ----D---- R:\Users\RadeKKK\AppData\Roaming\WinAVI
2010-01-30 23:17:18 ----D---- R:\Program Files (x86)\WinAVI Video Converter
2010-01-30 23:15:32 ----D---- R:\Program Files (x86)\WinAVI MP4 Converter
2010-01-30 22:50:11 ----D---- R:\Program Files (x86)\ASF-AVI-RM-WMV Repair
2010-01-30 22:28:16 ----D---- R:\Program Files (x86)\KigoVideoConverter
2010-01-30 22:21:46 ----D---- R:\Users\RadeKKK\AppData\Roaming\Red Kawa
2010-01-30 22:18:05 ----A---- R:\Windows\system32\vbzlib1.dll
2010-01-30 22:18:04 ----D---- R:\Program Files (x86)\DsNET Corp
2010-01-30 22:05:56 ----D---- R:\Users\RadeKKK\AppData\Roaming\Mozilla
2010-01-30 22:05:43 ----D---- R:\Program Files (x86)\Regensoft
2010-01-30 22:05:41 ----D---- R:\Program Files (x86)\AviSynth 2.5
2010-01-30 22:05:36 ----D---- R:\Program Files (x86)\Red Kawa
2010-01-30 22:01:24 ----D---- R:\Users\RadeKKK\AppData\Roaming\BSD
2010-01-30 22:01:17 ----D---- R:\Program Files (x86)\Common Files\BSD
2010-01-30 22:01:08 ----D---- R:\ProgramData\BSD
2010-01-30 22:01:08 ----A---- R:\Windows\bsdsetup.dll
2010-01-29 20:25:39 ----D---- R:\Users\RadeKKK\AppData\Roaming\GHISLER
2010-01-27 21:19:52 ----D---- R:\Program Files (x86)\SpeedFan
2010-01-27 19:52:35 ----A---- R:\Windows\system32\explorer.exe
2010-01-27 19:52:35 ----A---- R:\Windows\explorer.exe
2010-01-25 21:18:57 ----D---- R:\ProgramData\ATI
2010-01-25 21:18:40 ----D---- R:\Program Files (x86)\ATI Technologies
2010-01-25 20:53:41 ----D---- R:\Users\RadeKKK\AppData\Roaming\BSplayer Pro
2010-01-25 20:53:41 ----D---- R:\Users\RadeKKK\AppData\Roaming\BSplayer
2010-01-25 20:53:41 ----D---- R:\Program Files (x86)\Webteh
2010-01-25 20:39:14 ----D---- R:\Users\RadeKKK\AppData\Roaming\Media Player Classic
2010-01-25 20:37:42 ----A---- R:\Windows\iun6002.exe
2010-01-25 20:37:39 ----D---- R:\Windows\system32\languages
2010-01-25 20:37:39 ----D---- R:\Program Files (x86)\Codec Pack - All In 1
2010-01-25 20:37:05 ----A---- R:\Windows\Codec Pack - All In 1 Setup Log.txt
2010-01-25 20:36:39 ----A---- R:\Windows\system32\unrar.dll
2010-01-25 20:36:35 ----D---- R:\Program Files (x86)\K-Lite Codec Pack
2010-01-25 20:28:09 ----D---- R:\Users\RadeKKK\AppData\Roaming\vlc
2010-01-25 17:40:39 ----D---- R:\Program Files (x86)\Common Files\Adobe
2010-01-25 17:40:15 ----D---- R:\Program Files (x86)\Adobe
2010-01-25 17:40:06 ----D---- R:\ProgramData\Adobe
2010-01-25 17:40:05 ----D---- R:\Program Files (x86)\Common Files\Adobe AIR
2010-01-25 17:39:31 ----D---- R:\ProgramData\NOS
2010-01-24 20:44:51 ----D---- R:\ProgramData\InstallShield
2010-01-22 11:57:03 ----D---- R:\Users\RadeKKK\AppData\Roaming\Uniblue
2010-01-22 11:56:58 ----D---- R:\Program Files (x86)\Uniblue
2010-01-22 06:52:49 ----A---- R:\Windows\system32\mshtml.dll
2010-01-22 06:52:48 ----A---- R:\Windows\system32\ieframe.dll
2010-01-22 06:52:47 ----A---- R:\Windows\system32\wininet.dll
2010-01-22 06:52:47 ----A---- R:\Windows\system32\urlmon.dll
2010-01-22 06:52:47 ----A---- R:\Windows\system32\msfeedsbs.dll
2010-01-22 06:52:47 ----A---- R:\Windows\system32\iedkcs32.dll
2010-01-21 00:21:59 ----D---- R:\ProgramData\Futuremark
2010-01-21 00:13:35 ----D---- R:\Users\RadeKKK\AppData\Roaming\PC Suite
2010-01-21 00:13:35 ----D---- R:\ProgramData\PC Suite
2010-01-21 00:11:41 ----D---- R:\Program Files (x86)\MarkAny
2010-01-21 00:11:39 ----D---- R:\Program Files (x86)\PC Connectivity Solution
2010-01-21 00:06:44 ----D---- R:\Windows\system32\Futuremark
2010-01-21 00:06:44 ----D---- R:\Program Files (x86)\Common Files\Futuremark Shared
2010-01-21 00:06:06 ----D---- R:\Windows\system32\AGEIA
2010-01-21 00:06:05 ----D---- R:\Program Files (x86)\AGEIA Technologies
2010-01-21 00:05:52 ----D---- R:\Program Files (x86)\Common Files\Wise Installation Wizard
2010-01-21 00:04:36 ----D---- R:\Program Files (x86)\3DMark Vantage
2010-01-20 23:42:23 ----A---- R:\Windows\system32\MSVCP71.dll
2010-01-20 23:13:43 ----A---- R:\Windows\system32\decdll.dll
2010-01-20 23:13:42 ----D---- R:\Users\RadeKKK\AppData\Roaming\FreeVideoConverter
2010-01-20 23:13:42 ----D---- R:\Program Files (x86)\Free Video Converter
2010-01-20 23:12:29 ----D---- R:\Program Files (x86)\MadZ-iPodVideo-Converter
2010-01-18 22:58:42 ----D---- R:\Program Files (x86)\Common Files\Altova
2010-01-18 22:58:42 ----D---- R:\Program Files (x86)\Altova
2010-01-18 22:58:38 ----D---- R:\ProgramData\Altova
2010-01-18 13:05:14 ----D---- R:\ProgramData\Spybot - Search & Destroy
2010-01-18 13:05:14 ----D---- R:\Program Files (x86)\Spybot - Search & Destroy
2010-01-15 12:50:23 ----A---- R:\Windows\ntbtlog.txt
2010-01-14 17:14:58 ----D---- R:\Program Files (x86)\Winamp Detect
2010-01-14 17:14:56 ----D---- R:\Users\RadeKKK\AppData\Roaming\Winamp
2010-01-14 17:14:56 ----D---- R:\Program Files (x86)\Winamp
2010-01-14 09:42:38 ----D---- R:\Program Files (x86)\DAEMON Tools Lite
2010-01-14 09:27:13 ----D---- R:\ATI
2010-01-14 09:25:42 ----D---- R:\Users\RadeKKK\AppData\Roaming\Logitech
2010-01-14 09:25:36 ----D---- R:\ProgramData\LogiShrd
2010-01-14 09:24:53 ----D---- R:\Program Files (x86)\Common Files\LogiShrd
2010-01-14 09:24:43 ----D---- R:\ProgramData\Logitech
2010-01-14 00:10:48 ----A---- R:\Windows\system32\PerfStringBackup.INI
2010-01-13 17:41:46 ----D---- R:\IrfanView
2010-01-13 05:54:11 ----A---- R:\Windows\system32\t2embed.dll
2010-01-13 05:54:11 ----A---- R:\Windows\system32\fontsub.dll
2010-01-13 00:06:46 ----D---- R:\Users\RadeKKK\AppData\Roaming\dvdcss
2010-01-12 22:43:25 ----D---- R:\Program Files (x86)\VideoLAN
2010-01-10 21:03:01 ----D---- R:\Program Files (x86)\Windows Live SkyDrive
2010-01-10 21:02:50 ----D---- R:\Program Files (x86)\Windows Live
2010-01-10 21:02:30 ----D---- R:\Program Files (x86)\Microsoft SQL Server Compact Edition
2010-01-10 14:22:29 ----A---- R:\Windows\system32\SFFXComm.dll
2010-01-10 14:21:54 ----D---- R:\Users\RadeKKK\AppData\Roaming\InstallShield
2010-01-10 14:19:49 ----D---- R:\ProgramData\SonicFocus
2010-01-10 14:19:47 ----D---- R:\Program Files (x86)\Analog Devices
2010-01-09 21:35:27 ----D---- R:\Program Files (x86)\Mv2Player
2010-01-09 11:47:59 ----D---- R:\Users\RadeKKK\AppData\Roaming\Ubisoft
2010-01-09 11:29:19 ----D---- R:\ProgramData\Ubisoft
2010-01-08 14:07:42 ----D---- R:\Program Files (x86)\Uloz.to Uploader
2010-01-08 00:24:33 ----A---- R:\Windows\system32\XAudio2_5.dll
2010-01-08 00:24:33 ----A---- R:\Windows\system32\xactengine3_5.dll
2010-01-08 00:24:32 ----A---- R:\Windows\system32\d3dx11_42.dll
2010-01-08 00:24:32 ----A---- R:\Windows\system32\d3dx10_42.dll
2010-01-08 00:24:32 ----A---- R:\Windows\system32\d3dcsx_42.dll
2010-01-08 00:24:32 ----A---- R:\Windows\system32\D3DCompiler_42.dll
2010-01-08 00:24:31 ----A---- R:\Windows\system32\D3DX9_42.dll
2010-01-08 00:24:31 ----A---- R:\Windows\system32\D3DX9_41.dll
2010-01-08 00:24:31 ----A---- R:\Windows\system32\d3dx10_41.dll
2010-01-08 00:24:31 ----A---- R:\Windows\system32\D3DCompiler_41.dll
2010-01-08 00:24:30 ----A---- R:\Windows\system32\XAudio2_4.dll
2010-01-08 00:24:30 ----A---- R:\Windows\system32\XAPOFX1_3.dll
2010-01-08 00:24:30 ----A---- R:\Windows\system32\xactengine3_4.dll
2010-01-08 00:24:30 ----A---- R:\Windows\system32\X3DAudio1_6.dll
2010-01-08 00:24:29 ----A---- R:\Windows\system32\D3DX9_40.dll
2010-01-08 00:24:29 ----A---- R:\Windows\system32\d3dx10_40.dll
2010-01-08 00:24:29 ----A---- R:\Windows\system32\D3DCompiler_40.dll
2010-01-08 00:24:28 ----A---- R:\Windows\system32\XAudio2_3.dll
2010-01-08 00:24:28 ----A---- R:\Windows\system32\XAudio2_2.dll
2010-01-08 00:24:28 ----A---- R:\Windows\system32\XAPOFX1_2.dll
2010-01-08 00:24:28 ----A---- R:\Windows\system32\XAPOFX1_1.dll
2010-01-08 00:24:28 ----A---- R:\Windows\system32\xactengine3_3.dll
2010-01-08 00:24:28 ----A---- R:\Windows\system32\X3DAudio1_5.dll
2010-01-08 00:24:27 ----A---- R:\Windows\system32\xactengine3_2.dll
2010-01-08 00:24:27 ----A---- R:\Windows\system32\D3DX9_39.dll
2010-01-08 00:24:27 ----A---- R:\Windows\system32\d3dx10_39.dll
2010-01-08 00:24:27 ----A---- R:\Windows\system32\D3DCompiler_39.dll
2010-01-08 00:24:26 ----A---- R:\Windows\system32\XAudio2_1.dll
2010-01-08 00:24:26 ----A---- R:\Windows\system32\XAPOFX1_0.dll
2010-01-08 00:24:26 ----A---- R:\Windows\system32\xactengine3_1.dll
2010-01-08 00:24:26 ----A---- R:\Windows\system32\X3DAudio1_4.dll
2010-01-08 00:24:25 ----A---- R:\Windows\system32\D3DX9_38.dll
2010-01-08 00:24:25 ----A---- R:\Windows\system32\d3dx10_38.dll
2010-01-08 00:24:25 ----A---- R:\Windows\system32\D3DCompiler_38.dll
2010-01-08 00:23:21 ----D---- R:\Windows\system32\directx
2010-01-07 23:41:44 ----A---- R:\Windows\system32\ATKOSDX32.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\ATKOGL32.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\ATKLUMDISP.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\atkdxtdisp.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\asrussian.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\askorean.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\asjapan.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\ASCHT.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\aschs.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\asgerman.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\asfrench.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\aseng.dll
2010-01-07 23:41:44 ----A---- R:\Windows\nVGA_i2c.dll
2010-01-07 23:41:44 ----A---- R:\Windows\i2c_i.dll
2010-01-07 23:41:44 ----A---- R:\Windows\i2c.dll
2010-01-07 23:41:44 ----A---- R:\Windows\ASMT_CE.dll
2010-01-06 18:39:08 ----D---- R:\Windows\Minidump
2010-01-06 18:16:35 ----D---- R:\Users\RadeKKK\AppData\Roaming\WinRAR
2010-01-06 18:13:46 ----D---- R:\Users\RadeKKK\AppData\Roaming\U3
2010-01-06 18:04:22 ----D---- R:\Program Files (x86)\AutoLogin
2010-01-06 17:21:22 ----A---- R:\Windows\War3Unin.exe
2010-01-06 17:20:18 ----D---- R:\Program Files (x86)\Warcraft III
2010-01-06 15:40:49 ----D---- R:\Program Files (x86)\Marvell
2010-01-06 15:40:23 ----A---- R:\Windows\system32\CSVer.dll
2010-01-06 15:40:00 ----D---- R:\Intel
2010-01-06 15:39:55 ----D---- R:\Program Files (x86)\Intel
2010-01-06 15:33:27 ----D---- R:\Program Files (x86)\Creative
2010-01-06 15:32:37 ----A---- R:\Windows\Language_trs.ini
2010-01-06 11:50:27 ----D---- R:\Users\RadeKKK\AppData\Roaming\ICQ
2010-01-06 11:50:12 ----D---- R:\Program Files (x86)\ICQ6.5
2010-01-05 23:30:59 ----D---- R:\Program Files (x86)\MindSoft
2010-01-05 23:30:42 ----D---- R:\Windows\Downloaded Installations
2010-01-05 23:14:07 ----D---- R:\Program Files (x86)\Common Files\Windows Live
2010-01-05 23:13:38 ----D---- R:\Program Files (x86)\Microsoft
2010-01-05 21:43:25 ----D---- R:\Windows\WindowsMobile
2010-01-05 21:43:05 ----D---- R:\Program Files (x86)\Microsoft Silverlight
2010-01-05 21:24:43 ----A---- R:\Windows\system32\tzres.dll
2010-01-05 21:24:34 ----A---- R:\Windows\system32\msv1_0.dll
2010-01-05 21:24:29 ----D---- R:\Program Files (x86)\MSXML 4.0
2010-01-05 21:13:43 ----A---- R:\Windows\system32\MFC71.dll
2010-01-05 21:13:43 ----A---- R:\Windows\system32\aswBoot.exe
2010-01-05 21:09:08 ----D---- R:\Users\RadeKKK\AppData\Roaming\Macromedia
2010-01-05 21:08:35 ----A---- R:\Windows\system32\wmp.dll
2010-01-05 21:08:35 ----A---- R:\Windows\system32\CertEnroll.dll
2010-01-05 21:08:35 ----A---- R:\Windows\system32\atmfd.dll
2010-01-05 21:08:34 ----A---- R:\Windows\system32\wmploc.DLL
2010-01-05 21:07:07 ----A---- R:\Windows\system32\msasn1.dll
2010-01-05 20:59:56 ----D---- R:\Users\RadeKKK\AppData\Roaming\Adobe
2010-01-05 19:39:49 ----D---- R:\Program Files (x86)\SAMSUNG
2010-01-05 19:39:23 ----D---- R:\Windows\system32\Samsung_USB_Drivers
2010-01-05 19:39:16 ----A---- R:\Windows\system32\FsExService64.Exe
2010-01-05 19:39:11 ----D---- R:\Windows\system32\Macromed
2010-01-05 19:39:11 ----D---- R:\Users\RadeKKK\AppData\Roaming\Samsung
2010-01-05 19:38:14 ----D---- R:\Program Files (x86)\Samsung New PC Studio
2010-01-04 20:40:49 ----A---- R:\Windows\system32\CmdLineExt.dll
2010-01-04 20:40:08 ----RHD---- R:\Users\RadeKKK\AppData\Roaming\SecuROM

======List of files/folders modified in the last 1 months======

2010-02-02 20:54:35 ----D---- R:\Windows\Temp
2010-02-02 20:53:12 ----D---- R:\Windows\System32
2010-02-02 20:53:12 ----D---- R:\Windows\inf
2010-02-02 20:52:48 ----D---- R:\Windows\Prefetch
2010-02-02 20:51:26 ----RD---- R:\Program Files (x86)
2010-02-02 02:41:55 ----SHD---- R:\System Volume Information
2010-02-01 20:36:03 ----D---- R:\Games
2010-01-31 12:42:04 ----D---- R:\Windows\SysWOW64
2010-01-31 09:54:07 ----D---- R:\Windows\Tasks
2010-01-30 23:44:21 ----D---- R:\Windows
2010-01-30 23:40:22 ----D---- R:\Windows\system32\drivers
2010-01-30 23:35:09 ----A---- R:\Windows\win.ini
2010-01-30 23:34:59 ----SHD---- R:\Windows\Installer
2010-01-30 22:02:12 ----SD---- R:\ProgramData\Microsoft
2010-01-30 22:01:17 ----D---- R:\Program Files (x86)\Common Files
2010-01-30 22:01:08 ----HD---- R:\ProgramData
2010-01-27 20:25:22 ----D---- R:\Windows\winsxs
2010-01-27 19:59:25 ----D---- R:\Program Files (x86)\Internet Explorer
2010-01-25 21:18:55 ----RSD---- R:\Windows\assembly
2010-01-25 21:17:56 ----RD---- R:\Program Files
2010-01-25 20:35:23 ----D---- R:\Windows\Downloaded Program Files
2010-01-22 22:43:48 ----SD---- R:\Users\RadeKKK\AppData\Roaming\Microsoft
2010-01-21 00:11:59 ----HD---- R:\Program Files (x86)\InstallShield Installation Information
2010-01-20 23:37:52 ----D---- R:\ProgramData\Microsoft Help
2010-01-14 09:42:16 ----D---- R:\ProgramData\DAEMON Tools Lite
2010-01-11 20:26:29 ----D---- R:\Windows\debug
2010-01-08 00:23:21 ----D---- R:\Windows\Logs
2010-01-07 23:41:44 ----D---- R:\Windows\Help
2010-01-07 23:41:14 ----D---- R:\Program Files (x86)\ASUS
2010-01-06 19:04:01 ----SHD---- R:\$Recycle.Bin
2010-01-06 19:03:57 ----RD---- R:\Users
2010-01-06 15:38:12 ----A---- R:\Windows\system32\AsIO.dll
2010-01-06 15:34:25 ----D---- R:\Program Files (x86)\Common Files\InstallShield
2010-01-06 14:25:07 ----D---- R:\Windows\rescache
2010-01-05 23:24:13 ----D---- R:\Windows\Microsoft.NET
2010-01-05 23:13:42 ----D---- R:\Program Files (x86)\Common Files\microsoft shared
2010-01-05 21:49:45 ----RSD---- R:\Windows\Fonts
2010-01-05 21:49:36 ----D---- R:\Program Files (x86)\Microsoft Works
2010-01-05 21:49:04 ----D---- R:\Program Files (x86)\Common Files\System
2010-01-05 21:28:17 ----D---- R:\Windows\system32\cs-CZ
2010-01-05 21:28:17 ----D---- R:\Windows\ehome
2010-01-05 21:28:17 ----D---- R:\Program Files (x86)\Windows Media Player
2010-01-05 21:23:48 ----D---- R:\Windows\SoftwareDistribution
2010-01-05 21:23:21 ----D---- R:\Windows\AppPatch

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AsIO;AsIO; R:\Windows\SysWow64\drivers\AsIO.sys [2010-01-06 13440]
R1 AsUpIO;AsUpIO; R:\Windows\SysWow64\drivers\AsUpIO.sys [2010-01-06 13368]
R1 aswRdr;aswRdr; R:\Windows\system32\drivers\aswRdr.sys []
R1 aswSP;avast! Self Protection; R:\Windows\system32\drivers\aswSP.sys []
R1 aswTdi;avast! Network Shield Support; R:\Windows\system32\drivers\aswTdi.sys []
R1 blbdrive;blbdrive; R:\Windows\system32\DRIVERS\blbdrive.sys []
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; R:\Windows\system32\drivers\csc.sys []
R1 DfsC;@%systemroot%\system32\drivers\dfsc.sys,-101; R:\Windows\System32\Drivers\dfsc.sys []
R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; R:\Windows\System32\drivers\discache.sys []
R1 EIO64;EIO Driver; R:\Windows\system32\DRIVERS\EIO64.sys []
R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; R:\Windows\system32\drivers\nsiproxy.sys []
R1 RDPENCDD;@%systemroot%\system32\drivers\RDPENCDD.sys,-101; R:\Windows\system32\drivers\rdpencdd.sys []
R1 RDPREFMP;@%systemroot%\system32\drivers\RdpRefMp.sys,-101; R:\Windows\system32\drivers\rdprefmp.sys []
R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; R:\Windows\system32\DRIVERS\tdx.sys []
R1 Wanarpv6;@%systemroot%\system32\rascfg.dll,-32012; R:\Windows\system32\DRIVERS\wanarp.sys []
R1 WfpLwf;WFP Lightweight Filter; R:\Windows\system32\DRIVERS\wfplwf.sys []
R2 aswFsBlk;aswFsBlk; R:\Windows\system32\DRIVERS\aswFsBlk.sys []
R2 aswMonFlt;aswMonFlt; R:\Windows\system32\DRIVERS\aswMonFlt.sys []
R2 lltdio;Link-Layer Topology Discovery Mapper I/O Driver; R:\Windows\system32\DRIVERS\lltdio.sys []
R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; R:\Windows\system32\drivers\luafv.sys []
R2 PEAUTH;PEAUTH; R:\Windows\system32\drivers\peauth.sys []
R2 rspndr;Link-Layer Topology Discovery Responder; R:\Windows\system32\DRIVERS\rspndr.sys []
R2 tcpipreg;TCP/IP Registry Compatibility; R:\Windows\System32\drivers\tcpipreg.sys []
R3 1394ohci;Hostitelský řadič pro rozhraní OHCI standardu 1394; R:\Windows\system32\DRIVERS\1394ohci.sys []
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; R:\Windows\system32\drivers\ADIHdAud.sys []
R3 ASUS;ASUS OC GEAR Device; R:\Windows\System32\Drivers\OC_GEAR_x64.sys []
R3 asusgsb;ASUS Virtual Video Capture Device Driver; R:\Windows\system32\drivers\asusgsb.sys []
R3 atikmdag;atikmdag; R:\Windows\system32\DRIVERS\atikmdag.sys []
R3 atkdisplf;ASUS Kernel Mode Enhanced Driver; R:\Windows\System32\Drivers\atkdisplowfilter.sys []
R3 bowser;@%systemroot%\system32\browser.dll,-102; R:\Windows\system32\DRIVERS\bowser.sys []
R3 CompositeBus;Ovladač rozpoznávacího modulu složené sběrnice; R:\Windows\system32\DRIVERS\CompositeBus.sys []
R3 DXGKrnl;LDDM Graphics Subsystem; R:\Windows\System32\drivers\dxgkrnl.sys []
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; R:\Windows\system32\drivers\HdAudio.sys []
R3 HDAudBus;Ovladač sběrnice Microsoft UAA pro zvuk High Definition Audio; R:\Windows\system32\DRIVERS\HDAudBus.sys []
R3 HidUsb;Ovladač třídy standardu HID Microsoft; R:\Windows\system32\DRIVERS\hidusb.sys []
R3 intelppm;Ovladač procesoru Intel; R:\Windows\system32\DRIVERS\intelppm.sys []
R3 kbdhid;Ovladač klávesnice standardu HID; R:\Windows\system32\DRIVERS\kbdhid.sys []
R3 ksthunk;Kernel Streaming Thunks; R:\Windows\system32\drivers\ksthunk.sys []
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; R:\Windows\system32\DRIVERS\LHidFilt.Sys []
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; R:\Windows\system32\DRIVERS\LMouFilt.Sys []
R3 monitor;Služba ovladače funkce třídy monitorů Microsoft; R:\Windows\system32\DRIVERS\monitor.sys []
R3 mouhid;Ovladač myši standardu HID; R:\Windows\system32\DRIVERS\mouhid.sys []
R3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; R:\Windows\System32\drivers\mpsdrv.sys []
R3 mrxsmb10;@%systemroot%\system32\wkssvc.dll,-1004; R:\Windows\system32\DRIVERS\mrxsmb10.sys []
R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; R:\Windows\system32\DRIVERS\mrxsmb20.sys []
R3 MTsensor;ATK0110 ACPI UTILITY; R:\Windows\system32\DRIVERS\ASACPI.sys []
R3 RasAgileVpn;WAN Miniport (IKEv2); R:\Windows\system32\DRIVERS\AgileVpn.sys []
R3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; R:\Windows\system32\DRIVERS\rassstp.sys []
R3 rdpbus;Remote Desktop Device Redirector Bus Driver; R:\Windows\system32\DRIVERS\rdpbus.sys []
R3 srv2;@%systemroot%\system32\srvsvc.dll,-104; R:\Windows\System32\DRIVERS\srv2.sys []
R3 srvnet;srvnet; R:\Windows\System32\DRIVERS\srvnet.sys []
R3 tunnel;Microsoft Tunnel Miniport Adapter Driver; R:\Windows\system32\DRIVERS\tunnel.sys []
R3 umbus;Ovladač sběrnice UMBus Enumerator; R:\Windows\system32\DRIVERS\umbus.sys []
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; R:\Windows\system32\DRIVERS\usbccgp.sys []
R3 usbehci;Ovladač miniportu vylepšeného hostitelského řadiče Microsoft USB 2.0; R:\Windows\system32\DRIVERS\usbehci.sys []
R3 usbhub;Ovladač standardního rozbočovače USB; R:\Windows\system32\DRIVERS\usbhub.sys []
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; R:\Windows\system32\DRIVERS\USBSTOR.SYS []
R3 usbuhci;Ovladač miniportu univerzálního hostitelského řadiče Microsoft USB; R:\Windows\system32\DRIVERS\usbuhci.sys []
R3 WudfPf;User Mode Driver Frameworks Platform Driver; R:\Windows\system32\drivers\WudfPf.sys []
R3 WUDFRd;WUDFRd; R:\Windows\system32\DRIVERS\WUDFRd.sys []
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller; R:\Windows\system32\DRIVERS\yk62x64.sys []
S3 3xHybr64;SAA713x TV Card Service; R:\Windows\system32\DRIVERS\3xHybr64.sys []
S3 AcpiPmi;ACPI Power Meter Driver; R:\Windows\system32\DRIVERS\acpipmi.sys []
S3 adp94xx;adp94xx; R:\Windows\system32\DRIVERS\adp94xx.sys []
S3 adpahci;adpahci; R:\Windows\system32\DRIVERS\adpahci.sys []
S3 adpu320;adpu320; R:\Windows\system32\DRIVERS\adpu320.sys []
S3 agp440;Intel AGP Bus Filter; R:\Windows\system32\DRIVERS\agp440.sys []
S3 amdide;amdide; R:\Windows\system32\DRIVERS\amdide.sys []
S3 AmdK8;AMD K8 Processor Driver; R:\Windows\system32\DRIVERS\amdk8.sys []
S3 AmdPPM;AMD Processor Driver; R:\Windows\system32\DRIVERS\amdppm.sys []
S3 amdsata;amdsata; R:\Windows\system32\DRIVERS\amdsata.sys []
S3 amdsbs;amdsbs; R:\Windows\system32\DRIVERS\amdsbs.sys []
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; R:\Windows\system32\drivers\appid.sys []
S3 arc;arc; R:\Windows\system32\DRIVERS\arc.sys []
S3 arcsas;arcsas; R:\Windows\system32\DRIVERS\arcsas.sys []
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; R:\Windows\system32\drivers\AtiHdmi.sys []
S3 atillk64;atillk64; \??\R:\Program Files (x86)\ASUS\SmartDoctor\atillk64.sys [2005-10-20 7680]
S3 ay7j6955;ay7j6955; R:\Windows\system32\drivers\ay7j6955.sys []
S3 b06bdrv;Broadcom NetXtreme II VBD; R:\Windows\system32\DRIVERS\bxvbda.sys []
S3 b57nd60a;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; R:\Windows\system32\DRIVERS\b57nd60a.sys []
S3 BrFiltLo;Brother USB Mass-Storage Lower Filter Driver; R:\Windows\system32\DRIVERS\BrFiltLo.sys []
S3 BrFiltUp;Brother USB Mass-Storage Upper Filter Driver; R:\Windows\system32\DRIVERS\BrFiltUp.sys []
S3 Brserid;Brother MFC Serial Port Interface Driver (WDM); R:\Windows\System32\Drivers\Brserid.sys []
S3 BrSerWdm;Brother WDM Serial driver; R:\Windows\System32\Drivers\BrSerWdm.sys []
S3 BrUsbMdm;Brother MFC USB Fax Only Modem; R:\Windows\System32\Drivers\BrUsbMdm.sys []
S3 BrUsbSer;Brother MFC USB Serial WDM Driver; R:\Windows\System32\Drivers\BrUsbSer.sys []
S3 BTHMODEM;Bluetooth Serial Communications Driver; R:\Windows\system32\DRIVERS\bthmodem.sys []
S3 circlass;Consumer IR Devices; R:\Windows\system32\DRIVERS\circlass.sys []
S3 CmBatt;Microsoft ACPI Control Method Battery Driver; R:\Windows\system32\DRIVERS\CmBatt.sys []
S3 cpuz130;cpuz130; \??\R:\Users\RadeKKK\AppData\Local\Temp\cpuz130\cpuz_x64.sys []
S3 ebdrv;Broadcom NetXtreme II 10 GigE VBD; R:\Windows\system32\DRIVERS\evbda.sys []
S3 elxstor;elxstor; R:\Windows\system32\DRIVERS\elxstor.sys []
S3 ENTECH64;ENTECH64; \??\R:\Windows\system32\DRIVERS\ENTECH64.sys []
S3 ErrDev;Microsoft Hardware Error Device Driver; R:\Windows\system32\DRIVERS\errdev.sys []
S3 exfat;exFAT File System Driver; R:\Windows\system32\drivers\exfat.sys []
S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; R:\Windows\system32\drivers\filetrace.sys []
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; R:\Windows\System32\drivers\FsDepends.sys []
S3 fssfltr;FssFltr; R:\Windows\system32\DRIVERS\fssfltr.sys []
S3 gagp30kx;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms; R:\Windows\system32\DRIVERS\gagp30kx.sys []
S3 hcw85cir;Hauppauge Consumer Infrared Receiver; R:\Windows\system32\drivers\hcw85cir.sys []
S3 HidBatt;Ovladač baterie zdroje UPS standardu HID; R:\Windows\system32\DRIVERS\HidBatt.sys []
S3 HidBth;Microsoft Bluetooth HID Miniport; R:\Windows\system32\DRIVERS\hidbth.sys []
S3 HidIr;Microsoft Infrared HID Driver; R:\Windows\system32\DRIVERS\hidir.sys []
S3 HpSAMD;HpSAMD; R:\Windows\system32\DRIVERS\HpSAMD.sys []
S3 iaStorV;iaStorV; R:\Windows\system32\DRIVERS\iaStorV.sys []
S3 iirsp;iirsp; R:\Windows\system32\DRIVERS\iirsp.sys []
S3 intelide;intelide; R:\Windows\system32\DRIVERS\intelide.sys []
S3 IPMIDRV;IPMIDRV; R:\Windows\system32\DRIVERS\IPMIDrv.sys []
S3 isapnp;isapnp; R:\Windows\system32\DRIVERS\isapnp.sys []
S3 iScsiPrt;iScsiPort Driver; R:\Windows\system32\DRIVERS\msiscsi.sys []
S3 LSI_FC;LSI_FC; R:\Windows\system32\DRIVERS\lsi_fc.sys []
S3 LSI_SAS;LSI_SAS; R:\Windows\system32\DRIVERS\lsi_sas.sys []
S3 LSI_SAS2;LSI_SAS2; R:\Windows\system32\DRIVERS\lsi_sas2.sys []
S3 LSI_SCSI;LSI_SCSI; R:\Windows\system32\DRIVERS\lsi_scsi.sys []
S3 megasas;megasas; R:\Windows\system32\DRIVERS\megasas.sys []
S3 MegaSR;MegaSR; R:\Windows\system32\DRIVERS\MegaSR.sys []
S3 mpio;mpio; R:\Windows\system32\DRIVERS\mpio.sys []
S3 msahci;msahci; R:\Windows\system32\DRIVERS\msahci.sys []
S3 msdsm;msdsm; R:\Windows\system32\DRIVERS\msdsm.sys []
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; R:\Windows\System32\drivers\mshidkmdf.sys []
S3 MsRPC;MsRPC; R:\Windows\system32\drivers\MsRPC.sys []
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; R:\Windows\system32\drivers\MSTEE.sys []
S3 MTConfig;Microsoft Input Configuration Driver; R:\Windows\system32\DRIVERS\MTConfig.sys []
S3 NativeWifiP;NativeWiFi Filter; R:\Windows\system32\DRIVERS\nwifi.sys []
S3 NdisCap;NDIS Capture LightWeight Filter; R:\Windows\system32\DRIVERS\ndiscap.sys []
S3 nfrd960;nfrd960; R:\Windows\system32\DRIVERS\nfrd960.sys []
S3 nv_agp;NVIDIA nForce AGP Bus Filter; R:\Windows\system32\DRIVERS\nv_agp.sys []
S3 nvraid;nvraid; R:\Windows\system32\DRIVERS\nvraid.sys []
S3 nvstor;nvstor; R:\Windows\system32\DRIVERS\nvstor.sys []
S3 ohci1394;1394 OHCI Compliant Host Controller (Legacy); R:\Windows\system32\DRIVERS\ohci1394.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; R:\Windows\system32\DRIVERS\pccsmcfdx64.sys []
S3 ql2300;ql2300; R:\Windows\system32\DRIVERS\ql2300.sys []
S3 ql40xx;ql40xx; R:\Windows\system32\DRIVERS\ql40xx.sys []
S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; R:\Windows\system32\drivers\qwavedrv.sys []
S3 s3cap;s3cap; R:\Windows\system32\DRIVERS\vms3cap.sys []
S3 sbp2port;sbp2port; R:\Windows\system32\DRIVERS\sbp2port.sys []
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; R:\Windows\System32\DRIVERS\scfilter.sys []
S3 sermouse;Serial Mouse Driver; R:\Windows\system32\DRIVERS\sermouse.sys []
S3 sffdisk;SFF Storage Class Driver; R:\Windows\system32\DRIVERS\sffdisk.sys []
S3 sffp_mmc;SFF Storage Protocol Driver for MMC; R:\Windows\system32\DRIVERS\sffp_mmc.sys []
S3 sffp_sd;SFF Storage Protocol Driver for SDBus; R:\Windows\system32\DRIVERS\sffp_sd.sys []
S3 SiSRaid2;SiSRaid2; R:\Windows\system32\DRIVERS\SiSRaid2.sys []
S3 SiSRaid4;SiSRaid4; R:\Windows\system32\DRIVERS\sisraid4.sys []
S3 Smb;@%SystemRoot%\system32\tcpipcfg.dll,-50005; R:\Windows\system32\DRIVERS\smb.sys []
S3 stexstor;stexstor; R:\Windows\system32\DRIVERS\stexstor.sys []
S3 storvsc;storvsc; R:\Windows\system32\DRIVERS\storvsc.sys []
S3 TCPIP6;Microsoft IPv6 Protocol Driver; R:\Windows\system32\DRIVERS\tcpip.sys []
S3 TFsExDisk;TFsExDisk; \??\R:\Windows\System32\Drivers\TFsExDisk.sys [2009-08-03 16392]
S3 tssecsrv;@%SystemRoot%\System32\DRIVERS\tssecsrv.sys,-101; R:\Windows\System32\DRIVERS\tssecsrv.sys []
S3 uagp35;Microsoft AGPv3.5 Filter; R:\Windows\system32\DRIVERS\uagp35.sys []
S3 uliagpkx;Uli AGP Bus Filter; R:\Windows\system32\DRIVERS\uliagpkx.sys []
S3 UmPass;Microsoft UMPass Driver; R:\Windows\system32\DRIVERS\umpass.sys []
S3 usb_rndisx;Adaptér USB RNDIS; R:\Windows\system32\DRIVERS\usb8023x.sys []
S3 usbcir;eHome Infrared Receiver (USBCIR); R:\Windows\system32\DRIVERS\usbcir.sys []
S3 usbohci;Microsoft USB Open Host Controller Miniport Driver; R:\Windows\system32\DRIVERS\usbohci.sys []
S3 usbprint;Microsoft USB PRINTER Class; R:\Windows\system32\DRIVERS\usbprint.sys []
S3 vga;vga; R:\Windows\system32\DRIVERS\vgapnp.sys []
S3 vhdmp;vhdmp; R:\Windows\system32\DRIVERS\vhdmp.sys []
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; R:\Windows\system32\DRIVERS\vmbus.sys []
S3 VMBusHID;VMBusHID; R:\Windows\system32\DRIVERS\VMBusHID.sys []
S3 vsmraid;vsmraid; R:\Windows\system32\DRIVERS\vsmraid.sys []
S3 vwifibus;@%SystemRoot%\System32\drivers\vwifibus.sys,-257; R:\Windows\System32\drivers\vwifibus.sys []
S3 WacomPen;Wacom Serial Pen HID Driver; R:\Windows\system32\DRIVERS\wacompen.sys []
S3 Wd;Wd; R:\Windows\system32\DRIVERS\wd.sys []
S3 WIMMount;WIMMount; R:\Windows\system32\drivers\wimmount.sys [2009-07-14 19008]
S3 WINUSB;Ovladač WinUsb; R:\Windows\system32\DRIVERS\WinUSB.SYS []
S3 WmiAcpi;Microsoft Windows Management Interface for ACPI; R:\Windows\system32\DRIVERS\wmiacpi.sys []
S4 crcdisk;Crcdisk Filter Driver; R:\Windows\system32\DRIVERS\crcdisk.sys []
S4 ws2ifsl;@%systemroot%\System32\drivers\ws2ifsl.sys,-1000; R:\Windows\system32\drivers\ws2ifsl.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AEADIFilters;Andrea ADI Filters Service; R:\Windows\system32\AEADISRV.EXE []
R2 AMD External Events Utility;AMD External Events Utility; R:\Windows\system32\atiesrxx.exe []
R2 ASDR;ASDR; R:\Windows\SysWOW64\ASDR.exe [2009-07-27 61440]
R2 aswUpdSv;avast! iAVS4 Control Service; R:\Program Files\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 ATKFUSService;ATK Fast User Switch Service; R:\Windows\system32\ATKFUSService.exe []
R2 AudioEndpointBuilder;@%SystemRoot%\system32\audiosrv.dll,-204; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 avast! Antivirus;avast! Antivirus; R:\Program Files\Avast4\ashServ.exe [2009-11-25 138680]
R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DPS;@%systemroot%\system32\dps.dll,-500; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 gpsvc;@gpapi.dll,-112; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 iphlpsvc;@%SystemRoot%\system32\iphlpsvc.dll,-500; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 MpsSvc;@%SystemRoot%\system32\FirewallAPI.dll,-23090; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 SBSDWSCService;SBSD Security Center Service; R:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
R2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; R:\Windows\system32\sppsvc.exe []
R2 SysMain;@%SystemRoot%\system32\sysmain.dll,-1000; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 UxSms;@%SystemRoot%\system32\dwm.exe,-2000; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 WinDefend;@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 wlidsvc;Windows Live ID Sign-in Assistant; R:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 2297216]
R2 WMPNetworkSvc;@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101; R:\Program Files (x86)\Windows Media Player\wmpnetwk.exe []
R2 WSearch;@%systemroot%\system32\SearchIndexer.exe,-103; R:\Windows\system32\SearchIndexer.exe [2009-07-14 428032]
R2 wudfsvc;@%SystemRoot%\system32\wudfsvc.dll,-1000; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 avast! Mail Scanner;avast! Mail Scanner; R:\Program Files\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; R:\Program Files\Avast4\ashWebSv.exe [2009-11-25 352920]
R3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 netprofm;@%SystemRoot%\system32\netprofm.dll,-202; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 wcncsvc;@%SystemRoot%\system32\wcncsvc.dll,-3; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 WdiServiceHost;@%systemroot%\system32\wdi.dll,-502; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 WinHttpAutoProxySvc;@%SystemRoot%\system32\winhttp.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 WPDBusEnum;@%SystemRoot%\system32\wpdbusenum.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 clr_optimization_v2.0.50727_32;Microsoft .NET Framework NGEN v2.0.50727_X86; R:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2009-06-10 66384]
S3 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64; R:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-06-10 89920]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; R:\Windows\System32\lsass.exe []
S3 ehRecvr;@%SystemRoot%\ehome\ehrecvr.exe,-101; R:\Windows\ehome\ehRecvr.exe [2009-07-14 696832]
S3 ehSched;@%SystemRoot%\ehome\ehsched.exe,-101; R:\Windows\ehome\ehsched.exe [2009-07-14 127488]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; R:\Windows\system32\fxssvc.exe []
S3 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; R:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2009-06-10 42840]
S3 fsssvc;Služba Windows Live Zabezpečení rodiny; R:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
S3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 IDriverT;InstallDriver Table Manager; R:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;@%systemroot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8193; R:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe [2009-06-10 856384]
S3 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 IPBusEnum;@%systemroot%\system32\IPBusEnum.dll,-102; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 KeyIso;@keyiso.dll,-100; R:\Windows\system32\lsass.exe []
S3 KtmRm;@comres.dll,-2946; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 LBTServ;Logitech Bluetooth Service; R:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2009-07-20 160784]
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 odserv;Microsoft Office Diagnostics Service; R:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; R:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; R:\Windows\SysWow64\perfhost.exe [2009-07-14 20992]
S3 pla;@%systemroot%\system32\pla.dll,-500; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SDRSVC;@%SystemRoot%\system32\sdrsvc.dll,-107; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 ServiceLayer;ServiceLayer; R:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; R:\Windows\System32\snmptrap.exe []
S3 sppuinotify;@%SystemRoot%\system32\sppuinotify.dll,-103; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 TBS;@%SystemRoot%\system32\tbssvc.dll,-100; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; R:\Windows\servicing\TrustedInstaller.exe [2009-07-14 194048]
S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; R:\Windows\system32\UI0Detect.exe []
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; R:\Windows\system32\lsass.exe []
S3 vds;@%SystemRoot%\system32\vds.exe,-100; R:\Windows\System32\vds.exe []
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; R:\Windows\system32\wbengine.exe []
S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 WcsPlugInService;@%SystemRoot%\system32\WcsPlugInService.dll,-200; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 Wecsvc;@%SystemRoot%\system32\wecsvc.dll,-200; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 wercplsupport;@%SystemRoot%\System32\wercplsupport.dll,-101; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WerSvc;@%SystemRoot%\System32\wersvc.dll,-100; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WinRM;@%Systemroot%\system32\wsmsvc.dll,-101; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Wlansvc;@%SystemRoot%\System32\wlansvc.dll,-257; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 WPCSvc;@%SystemRoot%\system32\wpcsvc.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 WwanSvc;@%SystemRoot%\System32\wwansvc.dll,-257; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S4 Mcx2Svc;@%SystemRoot%\ehome\ehres.dll,-15501; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S4 NetTcpPortSharing;@%systemroot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8201; R:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2009-06-10 116560]

-----------------EOF-----------------

[motji]

Dobrý večer


Z mého podpisu stahněte Ccleaner
-nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru

záložka čistič
-nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
-po analýze klikněte na Spustit Ccleaner

záložka Registry
-klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy udělat zálohu registrů - nemusíte
-kliknete opravit všechny problémy ok zavřít

Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.


Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

[RadeKKK88]

Děkuji za rychlost.

Po projetí Ccleanerem se po restartu už chybová hláška neobjevuje.

MBAM běžel docela dlouho a zde je log se 4mi "infikovanými" záznamy:


Malwarebytes' Anti-Malware 1.44
Verze databáze: 3681
Windows 6.1.7600
Internet Explorer 8.0.7600.16385

3.2.2010 0:55:19
mbam-log-2010-02-03 (00-55-13).txt

Typ kontroly: Kompletní kontrola (C:\|F:\|R:\|Z:\|)
Zkontrolované objekty: 682248
Uplynulý čas: 1 hour(s), 52 minute(s), 10 second(s)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 3
Infikované hodnoty registru: 0
Infikované datové položky registru: 1
Infikované adresáře: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Nebyly nalezeny žádné škodlivé položky)

Infikované moduly v paměti:
(Nebyly nalezeny žádné škodlivé položky)

Infikované klíče registru:
HKEY_CURRENT_USER\SOFTWARE\BMIMZMHMFM (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Handle (Malware.Trace) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\ROUA3O12PW (Trojan.FakeAlert) -> No action taken.

Infikované hodnoty registru:
(Nebyly nalezeny žádné škodlivé položky)

Infikované datové položky registru:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoActiveDesktopChanges (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> No action taken.

Infikované adresáře:
(Nebyly nalezeny žádné škodlivé položky)

Infikované soubory:
(Nebyly nalezeny žádné škodlivé položky)

[motji]

Vše smažte.
Jak to ted vypadá s počítačem?

Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
-uložte ho na plochu a spustte soubor OTL.exe.
- otevře se okno, v něm zaškrtněte Scan All Users , File Scan,
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

netsvcs
%SYSTEMDRIVE%\*.exe
%SYSTEMDRIVE%\eventlog.dll /s /md5
%SYSTEMDRIVE%\scecli.dll /s /md5
%SYSTEMDRIVE%\netlogon.dll /s /md5
%SYSTEMDRIVE%\cngaudit.dll /s /md5
%SYSTEMDRIVE%\sceclt.dll /s /md5
%SYSTEMDRIVE%\ntelogon.dll /s /md5
%SYSTEMDRIVE%\logevent.dll /s /md5
%SYSTEMDRIVE%\iaStor.sys /s /md5
%SYSTEMDRIVE%\nvstor.sys /s /md5
%SYSTEMDRIVE%\atapi.sys /s /md5
%SYSTEMDRIVE%\IdeChnDr.sys /s /md5
%SYSTEMDRIVE%\viasraid.sys /s /md5
%SYSTEMDRIVE%\AGP440.sys /s /md5
%SYSTEMDRIVE%\vaxscsi.sys /s /md5
%SYSTEMDRIVE%\nvatabus.sys /s /md5
%SYSTEMDRIVE%\viamraid.sys /s /md5
%SYSTEMDRIVE%\nvata.sys /s /md5

-klikněte na tlačítko Run scan.
-proběhne sken a objeví se dva logy, obsah obou vložte zde

[RadeKKK88]

OTL logfile created on: 3.2.2010 11:54:50 - Run 1
OTL by OldTimer - Version 3.1.27.1 Folder = R:\Users\RadeKKK\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 58,00% Memory free
8,00 Gb Paging File | 5,00 Gb Available in Paging File | 65,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = R: | %SystemRoot% = R:\Windows | %ProgramFiles% = R:\Program Files (x86)
Drive C: | 177,82 Gb Total Space | 130,28 Gb Free Space | 73,27% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
Drive F: | 55,06 Gb Total Space | 15,79 Gb Free Space | 28,67% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive R: | 69,25 Gb Total Space | 24,56 Gb Free Space | 35,46% Space Free | Partition Type: NTFS
Drive Z: | 465,76 Gb Total Space | 82,24 Gb Free Space | 17,66% Space Free | Partition Type: NTFS

Computer Name: VIPER
Current User Name: RadeKKK
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010.02.03 11:28:10 | 000,548,864 | ---- | M] (OldTimer Tools) -- R:\Users\RadeKKK\Desktop\OTL.exe
PRC - [2010.02.03 01:35:09 | 001,512,448 | ---- | M] (Michel Krämer) -- R:\Program Files (x86)\Spamihilator\spamihilator.exe
PRC - [2010.01.06 15:38:38 | 000,622,080 | ---- | M] () -- R:\Program Files (x86)\ASUS\AASP\1.00.95\aaCenter.exe
PRC - [2010.01.06 15:32:09 | 001,310,720 | ---- | M] (Analog Devices, Inc.) -- R:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
PRC - [2009.12.22 01:03:32 | 000,106,952 | ---- | M] (Samsung Electronics Co., Ltd.) -- R:\Program Files (x86)\SAMSUNG\Samsung New PC Studio\NPSAgent.exe
PRC - [2009.11.25 00:51:40 | 000,081,000 | ---- | M] (ALWIL Software) -- R:\Program Files\Avast4\ashDisp.exe
PRC - [2009.11.25 00:51:35 | 000,138,680 | ---- | M] (ALWIL Software) -- R:\Program Files\Avast4\ashServ.exe
PRC - [2009.11.25 00:51:21 | 000,254,040 | ---- | M] (ALWIL Software) -- R:\Program Files\Avast4\ashMaiSv.exe
PRC - [2009.11.25 00:48:48 | 000,352,920 | ---- | M] (ALWIL Software) -- R:\Program Files\Avast4\ashWebSv.exe
PRC - [2009.11.25 00:43:56 | 000,018,752 | ---- | M] (ALWIL Software) -- R:\Program Files\Avast4\aswUpdSv.exe
PRC - [2009.11.16 16:36:19 | 000,172,792 | ---- | M] (ICQ, LLC.) -- R:\Program Files (x86)\ICQ6.5\ICQ.exe
PRC - [2009.11.13 07:47:14 | 001,200,128 | ---- | M] (ASUSTeK Inc.) -- R:\Program Files (x86)\ASUS\SmartDoctor\SmartDoctor.exe
PRC - [2009.10.30 12:57:08 | 000,369,200 | ---- | M] (DT Soft Ltd) -- R:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
PRC - [2009.07.30 18:10:04 | 000,380,928 | ---- | M] (ASUSTeK Computer Inc.) -- R:\Program Files (x86)\ASUS\GamerOSD\GamerOSD.exe
PRC - [2009.07.27 11:13:28 | 000,061,440 | ---- | M] () -- R:\Windows\SysWOW64\ASDR.exe
PRC - [2009.07.20 04:00:00 | 000,077,824 | ---- | M] () -- R:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
PRC - [2009.07.01 20:23:52 | 001,435,136 | ---- | M] () -- R:\Program Files (x86)\ASUS\AI Suite\AiNap\AiNap.exe
PRC - [2009.05.18 13:29:16 | 003,866,624 | ---- | M] (Analog Devices, Inc.) -- R:\Program Files (x86)\Analog Devices\SoundMAX\SoundMAX.exe
PRC - [2009.01.26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- R:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2009.01.22 20:43:54 | 001,352,704 | ---- | M] () -- R:\Program Files (x86)\ASUS\AI Suite\EnergySaving\PwSave.exe
PRC - [2008.01.09 10:17:18 | 000,627,200 | ---- | M] () -- R:\Program Files (x86)\ASUS\AI Suite\AiGear3\CpuPowerMonitor.exe


========== Modules (SafeList) ==========

MOD - [2010.02.03 11:28:10 | 000,548,864 | ---- | M] (OldTimer Tools) -- R:\Users\RadeKKK\Desktop\OTL.exe
MOD - [2009.12.19 10:02:55 | 000,977,920 | ---- | M] (Microsoft Corporation) -- R:\Windows\SysWOW64\wininet.dll
MOD - [2009.07.20 04:00:00 | 000,038,912 | ---- | M] (Logitech, Inc.) -- R:\Program Files\Logitech\SetPoint\x86\lgscroll.dll
MOD - [2009.07.14 02:15:36 | 000,022,016 | ---- | M] (Microsoft Corporation) -- R:\Windows\SysWOW64\linkinfo.dll
MOD - [2009.07.14 02:15:21 | 000,828,928 | ---- | M] (Microsoft Corporation) -- R:\Windows\SysWOW64\fontext.dll
MOD - [2009.07.14 02:15:21 | 000,093,696 | ---- | M] (Windows (R) Codename Longhorn DDK provider) -- R:\Windows\SysWOW64\fms.dll
MOD - [2009.07.14 02:15:07 | 000,486,912 | ---- | M] (Microsoft Corporation) -- R:\Windows\SysWOW64\comdlg32.dll
MOD - [2009.07.14 02:09:00 | 000,002,048 | ---- | M] (Microsoft Corporation) -- R:\Windows\SysWOW64\normaliz.dll
MOD - [2009.07.14 02:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- R:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
MOD - [2009.06.10 22:23:11 | 000,632,656 | ---- | M] (Microsoft Corporation) -- R:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_d08a205e442db5b5\msvcr80.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2010.01.06 15:32:09 | 000,111,616 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- R:\Windows\SysNative\AEADISRV.EXE -- (AEADIFilters)
SRV:64bit: - [2009.11.25 00:51:35 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- R:\Program Files\Avast4\ashServ.exe -- (avast! Antivirus)
SRV:64bit: - [2009.11.25 00:51:21 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- R:\Program Files\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV:64bit: - [2009.11.25 00:48:48 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- R:\Program Files\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV:64bit: - [2009.11.25 00:43:56 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- R:\Program Files\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV:64bit: - [2009.08.18 02:36:20 | 000,203,264 | ---- | M] (AMD) [Auto | Running] -- R:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009.07.20 12:36:14 | 000,160,784 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- R:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV:64bit: - [2009.07.14 02:41:59 | 000,229,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysNative\wwansvc.dll -- (WwanSvc)
SRV:64bit: - [2009.07.14 02:41:56 | 000,202,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysNative\wbiosrvc.dll -- (WbioSrvc)
SRV:64bit: - [2009.07.14 02:41:56 | 000,195,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysNative\umrdp.dll -- (UmRdpService)
SRV:64bit: - [2009.07.14 02:41:56 | 000,163,840 | ---- | M] (Microsoft Corporation) [Auto | Running] -- R:\Windows\SysNative\umpo.dll -- (Power)
SRV:64bit: - [2009.07.14 02:41:55 | 000,044,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- R:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:64bit: - [2009.07.14 02:41:54 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysNative\sppuinotify.dll -- (sppuinotify)
SRV:64bit: - [2009.07.14 02:41:54 | 000,029,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysNative\sensrsvc.dll -- (SensrSvc)
SRV:64bit: - [2009.07.14 02:41:53 | 001,361,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysNative\PeerDistSvc.dll -- (PeerDistSvc)
SRV:64bit: - [2009.07.14 02:41:53 | 000,327,168 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysNative\pnrpsvc.dll -- (PNRPsvc)
SRV:64bit: - [2009.07.14 02:41:53 | 000,327,168 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysNative\pnrpsvc.dll -- (p2pimsvc)
SRV:64bit: - [2009.07.14 02:41:53 | 000,187,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysNative\provsvc.dll -- (HomeGroupProvider)
SRV:64bit: - [2009.07.14 02:41:53 | 000,067,072 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- R:\Windows\SysNative\RpcEpMap.dll -- (RpcEptMapper)
SRV:64bit: - [2009.07.14 02:41:53 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysNative\pnrpauto.dll -- (PNRPAutoReg)
SRV:64bit: - [2009.07.14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- R:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 02:41:18 | 000,231,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysNative\ListSvc.dll -- (HomeGroupListener)
SRV:64bit: - [2009.07.14 02:40:54 | 001,127,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysNative\FntCache.dll -- (FontCache)
SRV:64bit: - [2009.07.14 02:40:28 | 000,314,368 | ---- | M] (Microsoft Corporation) [Auto | Running] -- R:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV:64bit: - [2009.07.14 02:40:28 | 000,291,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysNative\defragsvc.dll -- (defragsvc)
SRV:64bit: - [2009.07.14 02:40:24 | 000,689,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- R:\Windows\SysNative\cscsvc.dll -- (CscService)
SRV:64bit: - [2009.07.14 02:40:13 | 000,083,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysNative\bthserv.dll -- (bthserv)
SRV:64bit: - [2009.07.14 02:40:10 | 000,100,864 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- R:\Windows\SysNative\bdesvc.dll -- (BDESVC)
SRV:64bit: - [2009.07.14 02:40:05 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysNative\AxInstSv.dll -- (AxInstSV)
SRV:64bit: - [2009.07.14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2009.07.14 02:40:01 | 000,032,256 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysNative\appidsvc.dll -- (AppIDSvc)
SRV:64bit: - [2009.07.14 02:39:51 | 001,503,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysNative\wbengine.exe -- (wbengine)
SRV:64bit: - [2009.07.14 02:39:28 | 003,524,608 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- R:\Windows\SysNative\sppsvc.exe -- (sppsvc)
SRV:64bit: - [2009.07.14 02:39:11 | 000,689,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysNative\FXSSVC.exe -- (Fax)
SRV:64bit: - [2009.05.06 10:41:52 | 000,062,464 | ---- | M] (ASUSTeK COMPUTER INC.) [Auto | Running] -- R:\Windows\SysNative\ATKFUSService.exe -- (ATKFUSService)
SRV:64bit: - [2009.03.30 17:19:56 | 002,297,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- R:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc)
SRV - [2009.08.05 22:48:42 | 000,704,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe -- (fsssvc)
SRV - [2009.07.27 11:13:28 | 000,061,440 | ---- | M] () [Auto | Running] -- R:\Windows\SysWOW64\ASDR.exe -- (ASDR)
SRV - [2009.07.14 04:20:14 | 000,000,000 | ---D | M] [On_Demand | Stopped] -- R:\Windows\Vss -- (VSS)
SRV - [2009.07.14 04:20:14 | 000,000,000 | ---D | M] [Unknown | Stopped] -- R:\Windows\SysWOW64\Msdtc -- (MSDTC) Služba DTC (Distributed Transaction Coordinator)
SRV - [2009.07.14 02:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\SysWOW64\provsvc.dll -- (HomeGroupProvider)
SRV - [2009.07.14 02:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- R:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV - [2009.07.13 21:30:11 | 000,061,056 | ---- | M] () [On_Demand | Stopped] -- R:\Windows\SysWOW64\wbem\vds.mof -- (vds)
SRV - [2009.06.10 21:39:58 | 000,089,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- R:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_64)
SRV - [2009.01.26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- R:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2008.04.07 09:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- R:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2007.05.31 17:11:54 | 000,443,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- R:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2007.05.31 17:11:46 | 000,225,672 | ---- | M] (Microsoft Corporation) [Auto | Running] -- R:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
SRV - [2005.04.04 00:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- R:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2010.01.14 09:42:49 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] -- R:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010.01.07 23:40:37 | 000,016,384 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | System | Running] -- R:\Windows\SysNative\drivers\EIO64.sys -- (EIO64)
DRV:64bit: - [2010.01.06 15:34:50 | 000,015,416 | ---- | M] () [Kernel | On_Demand | Running] -- R:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV:64bit: - [2010.01.06 15:32:09 | 000,475,136 | ---- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Running] -- R:\Windows\SysNative\drivers\ADIHdAud.sys -- (ADIHdAudAddService)
DRV:64bit: - [2009.11.25 00:50:25 | 000,089,680 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- R:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2009.11.25 00:50:05 | 000,022,096 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- R:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2009.11.25 00:49:56 | 000,065,616 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- R:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2009.11.25 00:49:10 | 000,053,840 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- R:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2009.11.25 00:49:00 | 000,027,216 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- R:\Windows\SysNative\drivers\aswRdr.sys -- (aswRdr)
DRV:64bit: - [2009.09.30 15:34:30 | 000,121,872 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009.09.28 09:22:00 | 000,395,264 | ---- | M] () [Kernel | On_Demand | Running] -- R:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009.08.18 03:48:48 | 006,037,504 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- R:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009.08.05 23:24:16 | 000,061,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2009.08.03 09:22:58 | 000,016,392 | ---- | M] (Teruten Inc) [File_System | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\TFsExDisk.sys -- (TFsExDisk)
DRV:64bit: - [2009.07.14 02:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 02:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- R:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 02:48:04 | 000,153,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- R:\Windows\SysNative\drivers\ksecpkg.sys -- (KSecPkg)
DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 02:48:04 | 000,014,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- R:\Windows\SysNative\drivers\hwpolicy.sys -- (hwpolicy)
DRV:64bit: - [2009.07.14 02:47:49 | 000,055,376 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\fsdepends.sys -- (FsDepends)
DRV:64bit: - [2009.07.14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 02:45:56 | 000,022,096 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\wimmount.sys -- (WIMMount)
DRV:64bit: - [2009.07.14 02:45:55 | 000,217,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\vhdmp.sys -- (vhdmp)
DRV:64bit: - [2009.07.14 02:45:55 | 000,200,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\vmbus.sys -- (vmbus)
DRV:64bit: - [2009.07.14 02:45:55 | 000,046,672 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- R:\Windows\SysNative\drivers\vmstorfl.sys -- (storflt)
DRV:64bit: - [2009.07.14 02:45:55 | 000,036,432 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- R:\Windows\SysNative\drivers\vdrvroot.sys -- (vdrvroot)
DRV:64bit: - [2009.07.14 02:45:55 | 000,034,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\storvsc.sys -- (storvsc)
DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.07.14 02:45:46 | 000,214,096 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- R:\Windows\SysNative\drivers\rdyboost.sys -- (rdyboost)
DRV:64bit: - [2009.07.14 02:45:45 | 000,050,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- R:\Windows\SysNative\drivers\pcw.sys -- (pcw)
DRV:64bit: - [2009.07.14 02:43:14 | 000,460,504 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- R:\Windows\SysNative\drivers\cng.sys -- (CNG)
DRV:64bit: - [2009.07.14 02:43:13 | 000,223,448 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- R:\Windows\SysNative\drivers\fvevol.sys -- (fvevol)
DRV:64bit: - [2009.07.14 01:17:46 | 000,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- R:\Windows\SysNative\drivers\rdpbus.sys -- (rdpbus)
DRV:64bit: - [2009.07.14 01:16:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- R:\Windows\SysNative\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV:64bit: - [2009.07.14 01:10:24 | 000,060,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- R:\Windows\SysNative\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV:64bit: - [2009.07.14 01:09:50 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx)
DRV:64bit: - [2009.07.14 01:09:26 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- R:\Windows\SysNative\drivers\wfplwf.sys -- (WfpLwf)
DRV:64bit: - [2009.07.14 01:08:13 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\ndiscap.sys -- (NdisCap)
DRV:64bit: - [2009.07.14 01:07:21 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\vwifibus.sys -- (vwifibus)
DRV:64bit: - [2009.07.14 01:07:13 | 000,227,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- R:\Windows\SysNative\drivers\1394ohci.sys -- (1394ohci)
DRV:64bit: - [2009.07.14 01:07:00 | 000,350,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- R:\Windows\SysNative\drivers\HdAudio.sys -- (HdAudAddService)
DRV:64bit: - [2009.07.14 01:06:52 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\umpass.sys -- (UmPass)
DRV:64bit: - [2009.07.14 01:06:28 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\winusb.sys -- (WINUSB)
DRV:64bit: - [2009.07.14 01:06:24 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV:64bit: - [2009.07.14 01:05:37 | 000,112,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- R:\Windows\SysNative\drivers\WUDFPf.sys -- (WudfPf)
DRV:64bit: - [2009.07.14 01:02:08 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\MTConfig.sys -- (MTConfig)
DRV:64bit: - [2009.07.14 01:00:34 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- R:\Windows\SysNative\drivers\CompositeBus.sys -- (CompositeBus)
DRV:64bit: - [2009.07.14 01:00:13 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- R:\Windows\SysNative\drivers\beep.sys -- (Beep)
DRV:64bit: - [2009.07.14 00:52:39 | 000,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\appid.sys -- (AppID)
DRV:64bit: - [2009.07.14 00:50:17 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- R:\Windows\SysNative\drivers\scfilter.sys -- (scfilter)
DRV:64bit: - [2009.07.14 00:42:58 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\vms3cap.sys -- (s3cap)
DRV:64bit: - [2009.07.14 00:42:44 | 000,021,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\VMBusHID.sys -- (VMBusHID)
DRV:64bit: - [2009.07.14 00:37:18 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- R:\Windows\SysNative\drivers\discache.sys -- (discache)
DRV:64bit: - [2009.07.14 00:31:06 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\hidbatt.sys -- (HidBatt)
DRV:64bit: - [2009.07.14 00:31:03 | 000,017,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\CmBatt.sys -- (CmBatt)
DRV:64bit: - [2009.07.14 00:27:17 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\acpipmi.sys -- (AcpiPmi)
DRV:64bit: - [2009.07.14 00:24:27 | 000,514,048 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- R:\Windows\SysNative\drivers\csc.sys -- (CSC)
DRV:64bit: - [2009.07.14 00:19:25 | 000,060,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\amdppm.sys -- (AmdPPM)
DRV:64bit: - [2009.06.17 17:54:30 | 000,057,872 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- R:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt)
DRV:64bit: - [2009.06.17 17:54:22 | 000,055,312 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- R:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt)
DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008.09.17 14:14:00 | 000,012,744 | R--- | M] (EnTech Taiwan) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\Entech64.sys -- (ENTECH64)
DRV:64bit: - [2008.07.29 17:20:30 | 000,039,424 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | On_Demand | Running] -- R:\Windows\SysNative\drivers\ATKDispLowFilter.sys -- (atkdisplf)
DRV:64bit: - [2008.07.29 17:20:28 | 000,017,792 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | On_Demand | Running] -- R:\Windows\SysNative\drivers\asusgsb.sys -- (asusgsb)
DRV:64bit: - [2007.09.17 15:53:34 | 000,029,184 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:64bit: - [2007.07.09 09:03:12 | 000,043,008 | ---- | M] (Cypress Semiconductor) [Kernel | On_Demand | Running] -- R:\Windows\SysNative\drivers\OC_GEAR_x64.sys -- (ASUS)
DRV:64bit: - [2007.07.06 20:00:00 | 001,168,384 | ---- | M] (NXP Semiconductors Germany GmbH) [Kernel | On_Demand | Stopped] -- R:\Windows\SysNative\drivers\3xHybr64.sys -- (3xHybr64)
DRV - [2010.01.06 15:38:13 | 000,013,368 | ---- | M] () [Kernel | System | Running] -- R:\Windows\SysWOW64\drivers\AsUpIO.sys -- (AsUpIO)
DRV - [2010.01.06 15:38:12 | 000,013,440 | ---- | M] () [Kernel | System | Running] -- R:\Windows\SysWOW64\drivers\AsIO.sys -- (AsIO)
DRV - [2009.12.15 19:59:38 | 000,000,000 | ---D | M] [Kernel | System | Running] -- R:\Windows\CSC -- (CSC)
DRV - [2009.08.03 09:22:58 | 000,016,392 | ---- | M] (Teruten Inc) [File_System | On_Demand | Stopped] -- R:\Windows\SysWOW64\drivers\TFsExDisk.Sys -- (TFsExDisk)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- R:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2009.07.14 02:16:19 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- R:\Windows\SysWOW64\winusb.dll -- (WINUSB)
DRV - [2009.07.14 02:16:02 | 000,014,336 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- R:\Windows\SysWOW64\netbios.dll -- (NetBIOS)
DRV - [2009.06.10 22:28:14 | 000,001,088 | ---- | M] () [Kernel | On_Demand | Running] -- R:\Windows\SysWOW64\wbem\mpsdrv.mof -- (mpsdrv)
DRV - [2009.06.10 22:15:18 | 000,003,066 | ---- | M] () [Kernel | Boot | Running] -- R:\Windows\SysWOW64\wbem\tcpip.mof -- (Tcpip)
DRV - [2007.02.07 19:27:46 | 000,014,104 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | Boot | Running] -- R:\Windows\SysWOW64\speedfan.sys -- (speedfan)
DRV - [2005.10.20 09:34:02 | 000,007,680 | ---- | M] (Overclocking Tool) [Kernel | On_Demand | Stopped] -- R:\Program Files (x86)\ASUS\SmartDoctor\atillk64.sys -- (atillk64)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = R:\Windows\SysWOW64\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.cz/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = cs
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 21 1F 2C 43 5B 93 CA 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: ([2010.01.27 23:35:11 | 000,377,845 | R--- | M]) - R:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 123fporn.info
O1 - Hosts: 13021 more lines...
O2:64bit: - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - R:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
O2:64bit: - BHO: (Pomocná služba pro přihlášení ke službě Windows Live ID) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - R:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - R:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Pomocná služba pro přihlášení ke službě Windows Live ID) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - R:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (AL2Spy Class) - {DC200356-0864-4F66-8964-5D43A19300F5} - R:\Program Files (x86)\AutoLogin\AL2DLL.Dll (Fineart)
O4:64bit: - HKLM..\Run: [Kernel and Hardware Abstraction Layer] R:\Windows\KHALMNPR.Exe (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [SoundMAX] R:\Program Files (x86)\Analog Devices\SoundMAX\soundmax.exe (Analog Devices, Inc.)
O4:64bit: - HKLM..\Run: [Windows Mobile Device Center] R:\Windows\WindowsMobile\wmdc.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Adobe ARM] R:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] R:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Ai Nap] R:\Program Files (x86)\ASUS\AI Suite\AiNap\AiNap.exe ()
O4 - HKLM..\Run: [ASUSGamerOSD] R:\Program Files (x86)\ASUS\GamerOSD\GamerOSD.exe (ASUSTeK Computer Inc.)
O4 - HKLM..\Run: [avast!] R:\Program Files\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [Cpu Level Up help] R:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHelp.exe ()
O4 - HKLM..\Run: [CPU Power Monitor] R:\Program Files (x86)\ASUS\AI Suite\AiGear3\CpuPowerMonitor.exe ()
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] R:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NPSStartup] File not found
O4 - HKLM..\Run: [QFan Help] R:\Program Files (x86)\ASUS\AI Suite\QFan3\QFanHelp.exe ()
O4 - HKLM..\Run: [SoundMAXPnP] R:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.)
O4 - HKLM..\Run: [StartCCC] R:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [AutoStartNPSAgent] R:\Program Files (x86)\SAMSUNG\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKCU..\Run: [ccleaner] R:\Program Files (x86)\CCleaner\CCleaner.exe (Piriform Ltd)
O4 - HKCU..\Run: [DAEMON Tools Lite] R:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [ICQ] R:\Program Files (x86)\ICQ6.5\ICQ.exe (ICQ, LLC.)
O4 - HKCU..\Run: [USDownloader] Z:\Documents\programy a instalace\Rapid downloader\USDownloader.exe (Tiger grp (www.dimonius.ru))
O4 - Startup: R:\Users\RadeKKK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Spamihilator.lnk = R:\Program Files (x86)\Spamihilator\spamihilator.exe (Michel Krämer)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O9 - Extra Button: @R:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - R:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @R:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - R:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - R:\Program Files (x86)\ICQ6.5\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - R:\Program Files (x86)\ICQ6.5\ICQ.exe (ICQ, LLC.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - R:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - R:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - R:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - R:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O15:64bit: - ..Trusted Domains: 63 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKLM\..Trusted Domains: 63 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKCU\..Trusted Domains: 63 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/ ... ontrol.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.8
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - R:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - R:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - R:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - R:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - Reg Error: Key error. - r:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O30:64bit: - LSA: Security Packages - (pku2u) - R:\Windows\SysNative\pku2u.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (livessp) - R:\Windows\SysNative\livessp.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - R:\Windows\SysWow64\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - R:\Windows\SysWow64\livessp.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{799fdfef-f244-11de-80d9-001e8c9c749e}\Shell - "" = AutoRun
O33 - MountPoints2\{799fdfef-f244-11de-80d9-001e8c9c749e}\Shell\AutoRun\command - "" = E:\autorun.exe -- File not found
O33 - MountPoints2\{9eb492f1-e9b5-11de-9b95-001e8c9c749e}\Shell - "" = AutoRun
O33 - MountPoints2\{9eb492f1-e9b5-11de-9b95-001e8c9c749e}\Shell\AutoRun\command - "" = H:\LaunchU3.exe -- File not found
O33 - MountPoints2\{aa31e74b-f49f-11de-98cc-001e8c9c749e}\Shell - "" = AutoRun
O33 - MountPoints2\{aa31e74b-f49f-11de-98cc-001e8c9c749e}\Shell\AutoRun\command - "" = J:\LaunchU3.exe -- File not found
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\autoverify.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
64bit: O35 - comfile [open] -- "%1" %* File not found
64bit: O35 - exefile [open] -- "%1" %* File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010.02.03 11:28:09 | 000,548,864 | ---- | C] (OldTimer Tools) -- R:\Users\RadeKKK\Desktop\OTL.exe
[2010.02.03 01:38:29 | 000,000,000 | ---D | C] -- R:\ProgramData\Spamihilator
[2010.02.03 01:37:41 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\Spamihilator
[2010.02.03 01:36:39 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Spamihilator
[2010.02.03 01:24:06 | 000,000,000 | ---D | C] -- R:\Program Files\Defraggler
[2010.02.02 22:40:43 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\Malwarebytes
[2010.02.02 22:40:40 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- R:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010.02.02 22:40:39 | 000,022,104 | ---- | C] (Malwarebytes Corporation) -- R:\Windows\SysNative\drivers\mbam.sys
[2010.02.02 22:40:39 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010.02.02 22:40:39 | 000,000,000 | ---D | C] -- R:\ProgramData\Malwarebytes
[2010.02.02 22:34:37 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\CCleaner
[2010.02.02 20:51:26 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\trend micro
[2010.02.02 20:51:25 | 000,000,000 | ---D | C] -- R:\rsit
[2010.01.30 23:34:59 | 000,000,000 | ---D | C] -- R:\Windows\SysNative\appmgmt
[2010.01.30 23:17:24 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\WinAVI
[2010.01.30 23:17:18 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\WinAVI Video Converter
[2010.01.30 23:15:32 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\WinAVI MP4 Converter
[2010.01.30 22:50:11 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\ASF-AVI-RM-WMV Repair
[2010.01.30 22:28:24 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\Documents\KigoVideoConverter
[2010.01.30 22:28:16 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\KigoVideoConverter
[2010.01.30 22:21:46 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\Documents\Red Kawa
[2010.01.30 22:21:46 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\Red Kawa
[2010.01.30 22:18:05 | 000,124,688 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\MSWINSCK.OCX
[2010.01.30 22:18:04 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\DsNET Corp
[2010.01.30 22:05:59 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Local\Geckofx
[2010.01.30 22:05:56 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\Mozilla
[2010.01.30 22:05:43 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\Documents\Regensoft
[2010.01.30 22:05:43 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Regensoft
[2010.01.30 22:05:41 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\AviSynth 2.5
[2010.01.30 22:05:36 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Red Kawa
[2010.01.30 22:01:24 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\BSD
[2010.01.30 22:01:17 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Common Files\BSD
[2010.01.30 22:01:08 | 001,568,768 | ---- | C] (Bootstrap Development, LLC.) -- R:\Windows\bsdsetup.dll
[2010.01.30 22:01:08 | 000,000,000 | ---D | C] -- R:\ProgramData\BSD
[2010.01.29 20:41:49 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Local\GHISLER
[2010.01.29 20:27:58 | 003,520,256 | ---- | C] (Ghisler Software GmbH) -- R:\Users\RadeKKK\Desktop\TOTALCMD.EXE
[2010.01.29 20:25:39 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\GHISLER
[2010.01.27 21:20:04 | 000,737,280 | ---- | C] (CPUID) -- R:\Users\RadeKKK\Desktop\HWMonitor.exe
[2010.01.27 21:19:52 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\SpeedFan
[2010.01.27 19:52:35 | 002,870,272 | ---- | C] (Microsoft Corporation) -- R:\Windows\explorer.exe
[2010.01.27 19:52:35 | 002,614,272 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\explorer.exe
[2010.01.27 19:52:35 | 000,389,632 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\winlogon.exe
[2010.01.25 21:18:57 | 000,000,000 | ---D | C] -- R:\ProgramData\ATI
[2010.01.25 21:18:40 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\ATI Technologies
[2010.01.25 21:17:56 | 000,000,000 | ---D | C] -- R:\Program Files\ATI Technologies
[2010.01.25 20:53:41 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Webteh
[2010.01.25 20:53:41 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\BSplayer Pro
[2010.01.25 20:53:41 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\BSplayer
[2010.01.25 20:39:14 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\Media Player Classic
[2010.01.25 20:37:42 | 000,737,280 | ---- | C] (Indigo Rose Corporation) -- R:\Windows\iun6002.exe
[2010.01.25 20:37:39 | 000,000,000 | ---D | C] -- R:\Windows\SysWow64\languages
[2010.01.25 20:37:39 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Codec Pack - All In 1
[2010.01.25 20:36:35 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\K-Lite Codec Pack
[2010.01.25 20:28:09 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\vlc
[2010.01.25 17:40:39 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Common Files\Adobe
[2010.01.25 17:40:15 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Adobe
[2010.01.25 17:40:06 | 000,000,000 | ---D | C] -- R:\ProgramData\Adobe
[2010.01.25 17:40:05 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Common Files\Adobe AIR
[2010.01.25 17:39:47 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Local\Adobe
[2010.01.25 17:39:31 | 000,000,000 | ---D | C] -- R:\ProgramData\NOS
[2010.01.24 20:44:51 | 000,000,000 | ---D | C] -- R:\ProgramData\InstallShield
[2010.01.22 11:57:03 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\Uniblue
[2010.01.22 11:56:58 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Uniblue
[2010.01.22 06:52:48 | 001,192,960 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\wininet.dll
[2010.01.22 06:52:47 | 000,977,920 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\wininet.dll
[2010.01.22 06:52:47 | 000,445,952 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\iedkcs32.dll
[2010.01.22 06:52:47 | 000,381,440 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\iedkcs32.dll
[2010.01.22 06:52:47 | 000,082,944 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\msfeedsbs.dll
[2010.01.22 06:52:47 | 000,064,512 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\msfeedsbs.dll
[2010.01.21 00:21:59 | 000,000,000 | ---D | C] -- R:\ProgramData\Futuremark
[2010.01.21 00:13:54 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\Documents\My Art
[2010.01.21 00:13:35 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\PC Suite
[2010.01.21 00:13:35 | 000,000,000 | ---D | C] -- R:\ProgramData\PC Suite
[2010.01.21 00:13:01 | 000,066,560 | ---- | C] (Nokia) -- R:\Windows\SysNative\nmwcdclsx64.dll
[2010.01.21 00:12:59 | 000,029,184 | ---- | C] (Nokia) -- R:\Windows\SysNative\drivers\pccsmcfdx64.sys
[2010.01.21 00:12:59 | 000,000,000 | ---D | C] -- R:\Program Files\DIFX
[2010.01.21 00:11:41 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\MarkAny
[2010.01.21 00:11:39 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\PC Connectivity Solution
[2010.01.21 00:10:31 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Local\Downloaded Installations
[2010.01.21 00:06:44 | 000,012,744 | R--- | C] (EnTech Taiwan) -- R:\Windows\SysNative\drivers\Entech64.sys
[2010.01.21 00:06:44 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Common Files\Futuremark Shared
[2010.01.21 00:06:44 | 000,000,000 | ---D | C] -- R:\Windows\SysWow64\Futuremark
[2010.01.21 00:06:06 | 000,000,000 | ---D | C] -- R:\Windows\SysWow64\AGEIA
[2010.01.21 00:06:05 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\AGEIA Technologies
[2010.01.21 00:05:52 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Common Files\Wise Installation Wizard
[2010.01.21 00:04:36 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\3DMark Vantage
[2010.01.20 23:42:37 | 000,000,000 | ---D | C] -- R:\Program Files\DWD
[2010.01.20 23:42:23 | 000,499,712 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\MSVCP71.dll
[2010.01.20 23:13:42 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\FreeVideoConverter
[2010.01.20 23:13:42 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Free Video Converter
[2010.01.20 23:12:29 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\MadZ-iPodVideo-Converter
[2010.01.18 23:02:29 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\Documents\Altova
[2010.01.18 22:58:42 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Common Files\Altova
[2010.01.18 22:58:42 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Altova
[2010.01.18 22:58:38 | 000,000,000 | ---D | C] -- R:\ProgramData\Altova
[2010.01.18 13:05:14 | 000,000,000 | ---D | C] -- R:\ProgramData\Spybot - Search & Destroy
[2010.01.18 13:05:14 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Spybot - Search & Destroy
[2010.01.14 17:14:58 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Winamp Detect
[2010.01.14 17:14:56 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\Winamp
[2010.01.14 17:14:56 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Winamp
[2010.01.14 09:42:38 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\DAEMON Tools Lite
[2010.01.14 09:27:13 | 000,000,000 | ---D | C] -- R:\ATI
[2010.01.14 09:25:42 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\Logitech
[2010.01.14 09:25:36 | 000,000,000 | ---D | C] -- R:\ProgramData\LogiShrd
[2010.01.14 09:24:53 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Common Files\LogiShrd
[2010.01.14 09:24:50 | 000,190,992 | ---- | C] (Broadcom Corporation.) -- R:\Windows\SysNative\BtCoreIf.dll
[2010.01.14 09:24:49 | 000,235,536 | ---- | C] (Logitech, Inc.) -- R:\Windows\SysNative\kemutb.dll
[2010.01.14 09:24:49 | 000,159,248 | ---- | C] (Logitech, Inc.) -- R:\Windows\SysNative\KemWnd.dll
[2010.01.14 09:24:49 | 000,096,272 | ---- | C] (Logitech, Inc.) -- R:\Windows\SysNative\KemXML.dll
[2010.01.14 09:24:48 | 000,235,536 | ---- | C] (Logitech, Inc.) -- R:\Windows\SysNative\KemUtil.dll
[2010.01.14 09:24:43 | 000,000,000 | ---D | C] -- R:\ProgramData\Logitech
[2010.01.14 09:24:40 | 000,000,000 | ---D | C] -- R:\Program Files\Common Files\Logishrd
[2010.01.14 09:24:39 | 000,000,000 | ---D | C] -- R:\Program Files\Logitech
[2010.01.13 22:43:39 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Local\MigWiz
[2010.01.13 17:41:46 | 000,000,000 | ---D | C] -- R:\IrfanView
[2010.01.13 05:54:11 | 000,148,480 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\t2embed.dll
[2010.01.13 05:54:11 | 000,108,544 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\t2embed.dll
[2010.01.13 05:54:11 | 000,100,864 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\fontsub.dll
[2010.01.13 05:54:11 | 000,070,656 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\fontsub.dll
[2010.01.13 00:06:46 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\dvdcss
[2010.01.12 22:43:25 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\VideoLAN
[2010.01.12 10:12:54 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\Desktop\jazz2secret
[2010.01.10 21:03:31 | 000,061,280 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\drivers\fssfltr.sys
[2010.01.10 21:03:31 | 000,000,000 | ---D | C] -- R:\Windows\SysNative\DRVSTORE
[2010.01.10 21:03:30 | 000,000,000 | ---D | C] -- R:\Program Files\Windows Live
[2010.01.10 21:03:01 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Windows Live SkyDrive
[2010.01.10 21:02:50 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Windows Live
[2010.01.10 21:02:30 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Microsoft SQL Server Compact Edition
[2010.01.10 14:22:29 | 000,062,464 | ---- | C] (Sonic Focus, Inc.) -- R:\Windows\SysWow64\SFFXComm.dll
[2010.01.10 14:21:54 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\InstallShield
[2010.01.10 14:19:49 | 000,000,000 | ---D | C] -- R:\ProgramData\SonicFocus
[2010.01.10 14:19:47 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Analog Devices
[2010.01.09 21:35:27 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Mv2Player
[2010.01.09 11:47:59 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\Ubisoft
[2010.01.09 11:29:19 | 000,000,000 | ---D | C] -- R:\ProgramData\Ubisoft
[2010.01.08 14:07:42 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Uloz.to Uploader

[RadeKKK88]

pokračování:


[2010.01.08 00:24:33 | 000,517,960 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\XAudio2_5.dll
[2010.01.08 00:24:33 | 000,515,416 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\XAudio2_5.dll
[2010.01.08 00:24:33 | 000,238,936 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\xactengine3_5.dll
[2010.01.08 00:24:33 | 000,176,968 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\xactengine3_5.dll
[2010.01.08 00:24:32 | 005,554,512 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\d3dcsx_42.dll
[2010.01.08 00:24:32 | 005,501,792 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\d3dcsx_42.dll
[2010.01.08 00:24:32 | 002,582,888 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\D3DCompiler_42.dll
[2010.01.08 00:24:32 | 001,974,616 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\D3DCompiler_42.dll
[2010.01.08 00:24:32 | 000,523,088 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\d3dx10_42.dll
[2010.01.08 00:24:32 | 000,453,456 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\d3dx10_42.dll
[2010.01.08 00:24:32 | 000,285,024 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\d3dx11_42.dll
[2010.01.08 00:24:32 | 000,235,344 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\d3dx11_42.dll
[2010.01.08 00:24:31 | 005,425,496 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\D3DX9_41.dll
[2010.01.08 00:24:31 | 004,178,264 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\D3DX9_41.dll
[2010.01.08 00:24:31 | 002,475,352 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\D3DX9_42.dll
[2010.01.08 00:24:31 | 002,430,312 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\D3DCompiler_41.dll
[2010.01.08 00:24:31 | 001,892,184 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\D3DX9_42.dll
[2010.01.08 00:24:31 | 001,846,632 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\D3DCompiler_41.dll
[2010.01.08 00:24:31 | 000,520,544 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\d3dx10_41.dll
[2010.01.08 00:24:31 | 000,453,456 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\d3dx10_41.dll
[2010.01.08 00:24:30 | 000,521,560 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\XAudio2_4.dll
[2010.01.08 00:24:30 | 000,517,448 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\XAudio2_4.dll
[2010.01.08 00:24:30 | 000,235,352 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\xactengine3_4.dll
[2010.01.08 00:24:30 | 000,174,936 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\xactengine3_4.dll
[2010.01.08 00:24:30 | 000,073,544 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\XAPOFX1_3.dll
[2010.01.08 00:24:30 | 000,069,464 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\XAPOFX1_3.dll
[2010.01.08 00:24:30 | 000,024,920 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\X3DAudio1_6.dll
[2010.01.08 00:24:30 | 000,022,360 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\X3DAudio1_6.dll
[2010.01.08 00:24:29 | 005,631,312 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\D3DX9_40.dll
[2010.01.08 00:24:29 | 004,379,984 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\D3DX9_40.dll
[2010.01.08 00:24:29 | 002,605,920 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\D3DCompiler_40.dll
[2010.01.08 00:24:29 | 002,036,576 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\D3DCompiler_40.dll
[2010.01.08 00:24:29 | 000,519,000 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\d3dx10_40.dll
[2010.01.08 00:24:29 | 000,452,440 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\d3dx10_40.dll
[2010.01.08 00:24:28 | 000,518,480 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\XAudio2_3.dll
[2010.01.08 00:24:28 | 000,514,384 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\XAudio2_3.dll
[2010.01.08 00:24:28 | 000,513,544 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\XAudio2_2.dll
[2010.01.08 00:24:28 | 000,509,448 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\XAudio2_2.dll
[2010.01.08 00:24:28 | 000,235,856 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\xactengine3_3.dll
[2010.01.08 00:24:28 | 000,175,440 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\xactengine3_3.dll
[2010.01.08 00:24:28 | 000,074,576 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\XAPOFX1_2.dll
[2010.01.08 00:24:28 | 000,072,200 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\XAPOFX1_1.dll
[2010.01.08 00:24:28 | 000,070,992 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\XAPOFX1_2.dll
[2010.01.08 00:24:28 | 000,068,616 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\XAPOFX1_1.dll
[2010.01.08 00:24:28 | 000,025,936 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\X3DAudio1_5.dll
[2010.01.08 00:24:28 | 000,023,376 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\X3DAudio1_5.dll
[2010.01.08 00:24:27 | 004,992,520 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\D3DX9_39.dll
[2010.01.08 00:24:27 | 003,851,784 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\D3DX9_39.dll
[2010.01.08 00:24:27 | 001,942,552 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\D3DCompiler_39.dll
[2010.01.08 00:24:27 | 001,493,528 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\D3DCompiler_39.dll
[2010.01.08 00:24:27 | 000,540,688 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\d3dx10_39.dll
[2010.01.08 00:24:27 | 000,467,984 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\d3dx10_39.dll
[2010.01.08 00:24:27 | 000,238,088 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\xactengine3_2.dll
[2010.01.08 00:24:27 | 000,177,672 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\xactengine3_2.dll
[2010.01.08 00:24:26 | 000,511,496 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\XAudio2_1.dll
[2010.01.08 00:24:26 | 000,507,400 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\XAudio2_1.dll
[2010.01.08 00:24:26 | 000,238,088 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\xactengine3_1.dll
[2010.01.08 00:24:26 | 000,177,672 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\xactengine3_1.dll
[2010.01.08 00:24:26 | 000,068,104 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\XAPOFX1_0.dll
[2010.01.08 00:24:26 | 000,065,032 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\XAPOFX1_0.dll
[2010.01.08 00:24:26 | 000,028,168 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\X3DAudio1_4.dll
[2010.01.08 00:24:26 | 000,025,608 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\X3DAudio1_4.dll
[2010.01.08 00:24:25 | 004,991,496 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\D3DX9_38.dll
[2010.01.08 00:24:25 | 003,850,760 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\D3DX9_38.dll
[2010.01.08 00:24:25 | 001,941,528 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\D3DCompiler_38.dll
[2010.01.08 00:24:25 | 001,491,992 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\D3DCompiler_38.dll
[2010.01.08 00:24:25 | 000,540,688 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\d3dx10_38.dll
[2010.01.08 00:24:25 | 000,467,984 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\d3dx10_38.dll
[2010.01.08 00:23:21 | 000,000,000 | ---D | C] -- R:\Windows\SysWow64\directx
[2010.01.08 00:15:46 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\Documents\Dokumenty na RadeKKK - GT-I8000
[2010.01.07 23:41:45 | 005,473,280 | ---- | C] (ASUSTeK COMPUTER INC.) -- R:\Windows\SysNative\ATKOSDX64.dll
[2010.01.07 23:41:45 | 002,207,232 | ---- | C] (ASUSTeK COMPUTER INC.) -- R:\Windows\SysNative\ATKDispCPL.dll
[2010.01.07 23:41:45 | 000,930,272 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\DPInst.exe
[2010.01.07 23:41:45 | 000,150,528 | ---- | C] (ASUSTeK Computer Inc.) -- R:\Windows\SysNative\atkdxtdispx.dll
[2010.01.07 23:41:45 | 000,102,400 | ---- | C] (ASUSTeK Computer Inc.) -- R:\Windows\SysWow64\NetVideo_SBS.ax
[2010.01.07 23:41:45 | 000,080,896 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\devcon.exe
[2010.01.07 23:41:45 | 000,062,464 | ---- | C] (ASUSTeK COMPUTER INC.) -- R:\Windows\SysNative\ATKFUSService.exe
[2010.01.07 23:41:45 | 000,039,424 | ---- | C] (ASUSTeK Computer Inc.) -- R:\Windows\SysNative\ATKDispLowFilter.sys
[2010.01.07 23:41:45 | 000,017,792 | ---- | C] (ASUSTeK Computer Inc.) -- R:\Windows\SysNative\asusgsb.sys
[2010.01.07 23:41:45 | 000,016,896 | ---- | C] (ASUSTeK COMPUTER INC.) -- R:\Windows\SysNative\ATKOGL64.dll
[2010.01.07 23:41:44 | 005,463,552 | ---- | C] (ASUSTeK COMPUTER INC.) -- R:\Windows\SysWow64\ATKOSDX32.dll
[2010.01.07 23:41:44 | 001,335,808 | ---- | C] (ASUSTeK Computer Inc.) -- R:\Windows\SysWow64\ATKLUMDISP.dll
[2010.01.07 23:41:44 | 000,134,144 | ---- | C] (ASUSTeK Computer Inc.) -- R:\Windows\SysWow64\atkdxtdisp.dll
[2010.01.07 23:41:44 | 000,102,400 | ---- | C] (ASMedia Techonology) -- R:\Windows\ASMT_CE.dll
[2010.01.07 23:41:44 | 000,071,680 | ---- | C] (ASMedia Technology) -- R:\Windows\i2c.dll
[2010.01.07 23:41:44 | 000,069,632 | ---- | C] (ASMedia Technology) -- R:\Windows\i2c_i.dll
[2010.01.07 23:41:44 | 000,068,608 | ---- | C] (ASMedia Technology) -- R:\Windows\nVGA_i2c.dll
[2010.01.07 23:41:44 | 000,015,360 | ---- | C] (ASUSTeK COMPUTER INC.) -- R:\Windows\SysWow64\ATKOGL32.dll
[2010.01.07 23:41:44 | 000,000,000 | ---D | C] -- R:\Program Files\ASUS
[2010.01.07 23:40:37 | 000,016,384 | ---- | C] (ASUSTeK Computer Inc.) -- R:\Windows\SysNative\drivers\EIO64.sys
[2010.01.07 18:35:36 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\Documents\NPS
[2010.01.06 18:39:08 | 000,000,000 | ---D | C] -- R:\Windows\Minidump
[2010.01.06 18:24:30 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Local\Diagnostics
[2010.01.06 18:16:35 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\WinRAR
[2010.01.06 18:16:18 | 000,000,000 | ---D | C] -- R:\Program Files\WinRAR
[2010.01.06 18:13:46 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\U3
[2010.01.06 18:04:22 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\AutoLogin
[2010.01.06 17:46:14 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\Desktop\FPManager
[2010.01.06 17:21:22 | 000,139,264 | ---- | C] (Blizzard Entertainment) -- R:\Windows\War3Unin.exe
[2010.01.06 17:20:18 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Warcraft III
[2010.01.06 15:40:49 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Marvell
[2010.01.06 15:40:23 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- R:\Windows\SysWow64\CSVer.dll
[2010.01.06 15:40:00 | 000,000,000 | ---D | C] -- R:\Intel
[2010.01.06 15:39:55 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Intel
[2010.01.06 15:33:27 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Creative
[2010.01.06 11:50:27 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\ICQ
[2010.01.06 11:50:12 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\ICQ6.5
[2010.01.05 23:32:29 | 000,000,000 | ---D | C] -- R:\Program Files\Recuva
[2010.01.05 23:30:59 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\MindSoft
[2010.01.05 23:30:42 | 000,000,000 | ---D | C] -- R:\Windows\Downloaded Installations
[2010.01.05 23:14:07 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Common Files\Windows Live
[2010.01.05 23:13:38 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Microsoft
[2010.01.05 21:43:25 | 000,000,000 | ---D | C] -- R:\Windows\WindowsMobile
[2010.01.05 21:43:05 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Microsoft Silverlight
[2010.01.05 21:24:29 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\MSXML 4.0
[2010.01.05 21:21:55 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Local\Microsoft Corporation
[2010.01.05 21:14:00 | 000,027,216 | ---- | C] (ALWIL Software) -- R:\Windows\SysNative\drivers\aswRdr.sys
[2010.01.05 21:13:59 | 000,097,480 | ---- | C] (ALWIL Software) -- R:\Windows\SysNative\AvastSS.scr
[2010.01.05 21:13:59 | 000,053,840 | ---- | C] (ALWIL Software) -- R:\Windows\SysNative\drivers\aswTdi.sys
[2010.01.05 21:13:58 | 000,089,680 | ---- | C] (ALWIL Software) -- R:\Windows\SysNative\drivers\aswSP.sys
[2010.01.05 21:13:58 | 000,065,616 | ---- | C] (ALWIL Software) -- R:\Windows\SysNative\drivers\aswMonFlt.sys
[2010.01.05 21:13:58 | 000,022,096 | ---- | C] (ALWIL Software) -- R:\Windows\SysNative\drivers\aswFsBlk.sys
[2010.01.05 21:13:43 | 001,280,480 | ---- | C] (ALWIL Software) -- R:\Windows\SysWow64\aswBoot.exe
[2010.01.05 21:13:43 | 001,060,864 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\MFC71.dll
[2010.01.05 21:13:42 | 000,000,000 | ---D | C] -- R:\Program Files\Avast4
[2010.01.05 21:09:08 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\Macromedia
[2010.01.05 21:08:36 | 014,629,376 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\wmp.dll
[2010.01.05 21:08:35 | 011,406,336 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\wmp.dll
[2010.01.05 21:08:35 | 001,975,296 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\CertEnroll.dll
[2010.01.05 21:08:35 | 001,320,960 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\CertEnroll.dll
[2010.01.05 21:08:35 | 000,366,080 | ---- | C] (Adobe Systems Incorporated) -- R:\Windows\SysNative\atmfd.dll
[2010.01.05 21:08:35 | 000,293,888 | ---- | C] (Adobe Systems Incorporated) -- R:\Windows\SysWow64\atmfd.dll
[2010.01.05 21:08:34 | 012,625,920 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\wmploc.DLL
[2010.01.05 21:08:34 | 012,625,408 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysWow64\wmploc.DLL
[2010.01.05 21:07:07 | 000,046,592 | ---- | C] (Microsoft Corporation) -- R:\Windows\SysNative\msasn1.dll
[2010.01.05 20:59:56 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\Adobe
[2010.01.05 19:39:49 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\SAMSUNG
[2010.01.05 19:39:23 | 000,000,000 | ---D | C] -- R:\Windows\SysWow64\Samsung_USB_Drivers
[2010.01.05 19:39:16 | 000,028,624 | ---- | C] (Teruten Inc) -- R:\Windows\SysWow64\FsExService64.Exe
[2010.01.05 19:39:16 | 000,016,392 | ---- | C] (Teruten Inc) -- R:\Windows\SysWow64\drivers\TFsExDisk.Sys
[2010.01.05 19:39:15 | 000,028,624 | ---- | C] (Teruten Inc) -- R:\Windows\SysNative\FsExService64.exe
[2010.01.05 19:39:15 | 000,016,392 | ---- | C] (Teruten Inc) -- R:\Windows\SysNative\drivers\TFsExDisk.sys
[2010.01.05 19:39:11 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\AppData\Roaming\Samsung
[2010.01.05 19:39:11 | 000,000,000 | ---D | C] -- R:\Users\RadeKKK\Documents\My NPS Files
[2010.01.05 19:39:11 | 000,000,000 | ---D | C] -- R:\Windows\SysWow64\Macromed
[2010.01.05 19:38:14 | 000,000,000 | ---D | C] -- R:\Program Files (x86)\Samsung New PC Studio
[2010.01.04 20:40:49 | 000,108,144 | ---- | C] (Sony DADC Austria AG.) -- R:\Windows\SysWow64\CmdLineExt.dll
[2010.01.04 20:40:08 | 000,000,000 | RH-D | C] -- R:\Users\RadeKKK\AppData\Roaming\SecuROM

========== Files - Modified Within 30 Days ==========

[2010.02.03 11:56:12 | 006,553,600 | -HS- | M] () -- R:\Users\RadeKKK\NTUSER.DAT
[2010.02.03 11:28:10 | 000,548,864 | ---- | M] (OldTimer Tools) -- R:\Users\RadeKKK\Desktop\OTL.exe
[2010.02.03 05:27:27 | 000,014,016 | -H-- | M] () -- R:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010.02.03 05:27:27 | 000,014,016 | -H-- | M] () -- R:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010.02.03 01:38:29 | 000,001,095 | ---- | M] () -- R:\Users\RadeKKK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Spamihilator.lnk
[2010.02.03 01:24:06 | 000,001,728 | ---- | M] () -- R:\Users\RadeKKK\Desktop\Defraggler.lnk
[2010.02.02 22:54:18 | 001,454,322 | ---- | M] () -- R:\Windows\SysNative\PerfStringBackup.INI
[2010.02.02 22:54:18 | 000,625,676 | ---- | M] () -- R:\Windows\SysNative\perfh005.dat
[2010.02.02 22:54:18 | 000,609,896 | ---- | M] () -- R:\Windows\SysNative\perfh009.dat
[2010.02.02 22:54:18 | 000,119,794 | ---- | M] () -- R:\Windows\SysNative\perfc005.dat
[2010.02.02 22:54:18 | 000,104,214 | ---- | M] () -- R:\Windows\SysNative\perfc009.dat
[2010.02.02 22:47:29 | 000,000,374 | ---- | M] () -- R:\Windows\SysNative\drivers\etc\hosts.ics
[2010.02.02 22:47:23 | 000,000,006 | -H-- | M] () -- R:\Windows\tasks\SA.DAT
[2010.02.02 22:47:20 | 000,067,584 | --S- | M] () -- R:\Windows\bootstat.dat
[2010.02.02 22:47:14 | 3220,529,152 | -HS- | M] () -- R:\hiberfil.sys
[2010.02.02 22:40:43 | 000,001,013 | ---- | M] () -- R:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.02.02 22:34:37 | 000,001,889 | ---- | M] () -- R:\Users\RadeKKK\Desktop\CCleaner.lnk
[2010.02.02 20:52:18 | 000,781,909 | ---- | M] () -- R:\Users\RadeKKK\Desktop\RSIT.exe
[2010.02.02 07:28:53 | 006,564,162 | -H-- | M] () -- R:\Users\RadeKKK\AppData\Local\IconCache.db
[2010.01.30 23:40:21 | 000,000,000 | ---- | M] () -- R:\Windows\SysWow64\config.nt
[2010.01.30 23:35:09 | 000,000,699 | ---- | M] () -- R:\Windows\win.ini
[2010.01.30 23:17:20 | 000,001,005 | ---- | M] () -- R:\Users\RadeKKK\Desktop\WinAVI Video Converter.lnk
[2010.01.30 23:15:33 | 000,001,067 | ---- | M] () -- R:\Users\RadeKKK\Desktop\WinAVI MP4 Converter.lnk
[2010.01.30 22:57:05 | 356,712,476 | ---- | M] () -- R:\Users\RadeKKK\Desktop\Watch me squirt Pornhub.com.avi
[2010.01.30 22:50:11 | 000,001,027 | ---- | M] () -- R:\Users\RadeKKK\Desktop\ASF-AVI-RM-WMV Repair.lnk
[2010.01.30 22:28:22 | 000,001,047 | ---- | M] () -- R:\Users\Public\Desktop\KigoVideoConverter.lnk
[2010.01.30 22:18:21 | 000,001,994 | ---- | M] () -- R:\Users\Public\Desktop\aTube Catcher.lnk
[2010.01.30 22:05:43 | 000,002,154 | ---- | M] () -- R:\Users\Public\Desktop\YouTube Downloader App.lnk
[2010.01.30 22:05:36 | 000,002,194 | ---- | M] () -- R:\Users\Public\Desktop\PSP Video 9.lnk
[2010.01.30 21:00:51 | 000,004,957 | ---- | M] () -- R:\Users\RadeKKK\Desktop\USDownloader.exe – zástupce.lnk
[2010.01.29 22:23:14 | 000,018,775 | ---- | M] () -- R:\Users\RadeKKK\Desktop\sacred2.docx
[2010.01.28 23:10:21 | 000,035,328 | ---- | M] () -- R:\Users\RadeKKK\Desktop\strukturovany_zivotopis.doc
[2010.01.27 23:35:11 | 000,377,845 | R--- | M] () -- R:\Windows\SysNative\drivers\etc\hosts
[2010.01.27 21:19:53 | 000,001,011 | ---- | M] () -- R:\Users\RadeKKK\Desktop\SpeedFan.lnk
[2010.01.27 21:19:52 | 000,000,045 | ---- | M] () -- R:\Windows\SysWow64\initdebug.nfo
[2010.01.27 21:19:51 | 000,000,000 | ---- | M] () -- R:\Users\RadeKKK\Desktop\initdebug.nfo
[2010.01.25 23:00:52 | 006,329,407 | ---- | M] () -- R:\Users\RadeKKK\Desktop\p75490_f5d8232-4_man.pdf
[2010.01.25 20:40:33 | 000,524,288 | -HS- | M] () -- R:\Users\RadeKKK\NTUSER.DAT{89bc93cd-0921-11df-a413-001e8c9c7753}.TMContainer00000000000000000002.regtrans-ms
[2010.01.25 20:40:33 | 000,524,288 | -HS- | M] () -- R:\Users\RadeKKK\NTUSER.DAT{89bc93cd-0921-11df-a413-001e8c9c7753}.TMContainer00000000000000000001.regtrans-ms
[2010.01.25 20:40:33 | 000,065,536 | -HS- | M] () -- R:\Users\RadeKKK\NTUSER.DAT{89bc93cd-0921-11df-a413-001e8c9c7753}.TM.blf
[2010.01.25 20:37:04 | 000,737,280 | ---- | M] (Indigo Rose Corporation) -- R:\Windows\iun6002.exe
[2010.01.25 17:40:42 | 000,002,018 | ---- | M] () -- R:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010.01.25 16:13:03 | 001,324,279 | ---- | M] () -- R:\Users\RadeKKK\Desktop\AirLive_WLA-9000AP_Manual.pdf
[2010.01.24 23:33:35 | 000,021,514 | ---- | M] () -- R:\Users\RadeKKK\Desktop\IT slovník.docx
[2010.01.22 11:57:01 | 000,001,240 | ---- | M] () -- R:\Users\Public\Desktop\RegistryBooster.lnk
[2010.01.21 00:11:44 | 000,002,162 | ---- | M] () -- R:\Users\Public\Desktop\Samsung New PC Studio.lnk
[2010.01.21 00:06:57 | 000,001,078 | ---- | M] () -- R:\Users\Public\Desktop\3DMark Vantage.lnk
[2010.01.20 23:13:44 | 000,001,145 | ---- | M] () -- R:\Users\RadeKKK\Desktop\Free Video Converter.lnk
[2010.01.18 22:59:00 | 000,003,037 | ---- | M] () -- R:\Users\Public\Desktop\Altova StyleVision.lnk
[2010.01.18 13:08:40 | 000,373,541 | R--- | M] () -- R:\Windows\SysNative\drivers\etc\hosts.20100127-233511.backup
[2010.01.18 13:05:17 | 000,001,262 | ---- | M] () -- R:\Users\RadeKKK\Desktop\Spybot - Search & Destroy.lnk
[2010.01.15 12:04:10 | 009,080,832 | ---- | M] () -- R:\Users\RadeKKK\Desktop\Hotel.mdb
[2010.01.14 09:42:49 | 000,834,544 | ---- | M] () -- R:\Windows\SysNative\drivers\sptd.sys
[2010.01.14 09:25:11 | 000,000,000 | -H-- | M] () -- R:\Windows\SysNative\drivers\Msft_Kernel_LMouFilt_01005.Wdf
[2010.01.14 09:25:11 | 000,000,000 | -H-- | M] () -- R:\Windows\SysNative\drivers\Msft_Kernel_LHidFilt_01005.Wdf
[2010.01.14 09:24:51 | 000,001,751 | ---- | M] () -- R:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Logitech SetPoint.lnk
[2010.01.14 00:10:48 | 001,470,766 | ---- | M] () -- R:\Windows\SysWow64\PerfStringBackup.INI
[2010.01.13 22:41:01 | 000,000,674 | ---- | M] () -- R:\Users\RadeKKK\Desktop\Petra – zástupce.lnk
[2010.01.13 18:33:30 | 000,000,000 | -H-- | M] () -- R:\Users\RadeKKK\Documents\Default.rdp
[2010.01.12 21:39:13 | 000,007,603 | ---- | M] () -- R:\Users\RadeKKK\AppData\Local\resmon.resmoncfg
[2010.01.11 21:04:05 | 000,000,644 | RHS- | M] () -- R:\Users\RadeKKK\ntuser.pol
[2010.01.11 08:44:17 | 000,445,952 | ---- | M] (Microsoft Corporation) -- R:\Windows\SysNative\iedkcs32.dll
[2010.01.11 08:12:38 | 000,381,440 | ---- | M] (Microsoft Corporation) -- R:\Windows\SysWow64\iedkcs32.dll
[2010.01.09 11:12:48 | 000,010,599 | ---- | M] () -- R:\Users\RadeKKK\Desktop\pavel brejcha.xlsx
[2010.01.07 23:40:37 | 000,016,384 | ---- | M] (ASUSTeK Computer Inc.) -- R:\Windows\SysNative\drivers\EIO64.sys
[2010.01.07 16:07:14 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- R:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010.01.07 16:07:06 | 000,022,104 | ---- | M] (Malwarebytes Corporation) -- R:\Windows\SysNative\drivers\mbam.sys
[2010.01.06 20:31:36 | 000,056,434 | ---- | M] () -- R:\Windows\War3Unin.dat
[2010.01.06 20:27:21 | 000,139,264 | ---- | M] (Blizzard Entertainment) -- R:\Windows\War3Unin.exe
[2010.01.06 20:27:21 | 000,002,829 | ---- | M] () -- R:\Windows\War3Unin.pif
[2010.01.06 17:43:27 | 000,822,784 | ---- | M] () -- R:\Users\RadeKKK\Desktop\FORMAT v3110.EXE
[2010.01.06 15:57:34 | 000,862,009 | ---- | M] () -- R:\Windows\MAXIMUS-ASUS-Extreme-1104.zip
[2010.01.06 15:38:22 | 000,053,248 | ---- | M] (Windows XP Bundled build C-Centric Single User) -- R:\Windows\SysWow64\CSVer.dll
[2010.01.06 15:38:13 | 000,013,368 | ---- | M] () -- R:\Windows\SysWow64\drivers\AsUpIO.sys
[2010.01.06 15:38:12 | 000,024,576 | ---- | M] () -- R:\Windows\SysWow64\AsIO.dll
[2010.01.06 15:38:12 | 000,013,440 | ---- | M] () -- R:\Windows\SysWow64\drivers\AsIO.sys
[2010.01.06 15:34:50 | 000,015,416 | ---- | M] () -- R:\Windows\SysNative\drivers\ASACPI.sys
[2010.01.06 15:32:37 | 000,001,769 | ---- | M] () -- R:\Windows\Language_trs.ini
[2010.01.06 15:32:09 | 000,475,136 | ---- | M] (Analog Devices, Inc.) -- R:\Windows\SysNative\drivers\ADIHdAud.sys
[2010.01.06 15:32:09 | 000,428,544 | ---- | M] (Andrea Electronics Corporation) -- R:\Windows\SysNative\AEADIExt.dll
[2010.01.06 15:32:09 | 000,174,592 | ---- | M] (Sonic Focus, Inc.) -- R:\Windows\SysNative\SFProc64.dll
[2010.01.06 15:32:09 | 000,163,840 | ---- | M] (Sonic Focus, Inc.) -- R:\Windows\SysNative\SFCTPL64.dll
[2010.01.06 15:32:09 | 000,161,280 | ---- | M] (Andrea Electronics Corporation) -- R:\Windows\SysNative\AEADIAPO.dll
[2010.01.06 15:32:09 | 000,122,880 | ---- | M] (Sonic Focus, Inc.) -- R:\Windows\SysNative\SFFXCPStr.dll
[2010.01.06 15:32:09 | 000,111,616 | ---- | M] (Andrea Electronics Corporation) -- R:\Windows\SysNative\AEADISRV.EXE
[2010.01.06 15:32:09 | 000,078,848 | ---- | M] (Sonic Focus, Inc.) -- R:\Windows\SysNative\SFSAPO64.dll
[2010.01.06 15:32:09 | 000,078,336 | ---- | M] (Sonic Focus, Inc.) -- R:\Windows\SysNative\SFHAPO64.dll
[2010.01.06 15:32:09 | 000,078,336 | ---- | M] (Sonic Focus, Inc.) -- R:\Windows\SysNative\SFDAPO64.dll
[2010.01.06 15:32:09 | 000,069,120 | ---- | M] (Sonic Focus, Inc.) -- R:\Windows\SysNative\SFComm64.dll
[2010.01.06 15:32:09 | 000,059,392 | ---- | M] (Sonic Focus, Inc.) -- R:\Windows\SysNative\SFMAPO64.dll
[2010.01.06 15:32:09 | 000,056,320 | ---- | M] (Andrea Electronics Corporation) -- R:\Windows\SysNative\AEADIAPR.dll
[2010.01.06 15:32:09 | 000,041,472 | ---- | M] (Analog Devices, Inc.) -- R:\Windows\SysNative\SmaxCo.dll
[2010.01.06 11:01:53 | 000,343,208 | ---- | M] () -- R:\Windows\SysNative\FNTCACHE.DAT
[2010.01.05 23:34:08 | 000,001,662 | ---- | M] () -- R:\Users\RadeKKK\Desktop\Recuva.lnk
[2010.01.05 22:47:50 | 000,084,432 | ---- | M] () -- R:\Users\RadeKKK\AppData\Local\GDIPFONTCACHEV1.DAT
[2010.01.05 22:45:07 | 000,000,922 | ---- | M] () -- R:\Users\RadeKKK\Desktop\Centrum zařízení Windows Mobile.lnk
[2010.01.05 21:59:12 | 000,000,000 | -H-- | M] () -- R:\Windows\SysNative\drivers\Msft_User_WpdRapi2_01_00_00.Wdf
[2010.01.05 21:14:00 | 000,001,662 | ---- | M] () -- R:\Users\Public\Desktop\avast! Antivirus.lnk
[2010.01.04 20:40:49 | 000,108,144 | ---- | M] (Sony DADC Austria AG.) -- R:\Windows\SysWow64\CmdLineExt.dll

========== Files Created - No Company Name ==========

[2010.02.03 01:38:29 | 000,001,095 | ---- | C] () -- R:\Users\RadeKKK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Spamihilator.lnk
[2010.02.03 01:24:06 | 000,001,728 | ---- | C] () -- R:\Users\RadeKKK\Desktop\Defraggler.lnk
[2010.02.02 22:40:43 | 000,001,013 | ---- | C] () -- R:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.02.02 22:34:37 | 000,001,889 | ---- | C] () -- R:\Users\RadeKKK\Desktop\CCleaner.lnk
[2010.02.02 20:52:15 | 000,781,909 | ---- | C] () -- R:\Users\RadeKKK\Desktop\RSIT.exe
[2010.01.30 23:17:20 | 000,001,005 | ---- | C] () -- R:\Users\RadeKKK\Desktop\WinAVI Video Converter.lnk
[2010.01.30 23:15:33 | 000,001,067 | ---- | C] () -- R:\Users\RadeKKK\Desktop\WinAVI MP4 Converter.lnk
[2010.01.30 22:53:46 | 356,712,476 | ---- | C] () -- R:\Users\RadeKKK\Desktop\Watch me squirt Pornhub.com.avi
[2010.01.30 22:50:11 | 000,001,027 | ---- | C] () -- R:\Users\RadeKKK\Desktop\ASF-AVI-RM-WMV Repair.lnk
[2010.01.30 22:28:22 | 000,001,047 | ---- | C] () -- R:\Users\Public\Desktop\KigoVideoConverter.lnk
[2010.01.30 22:18:21 | 000,001,994 | ---- | C] () -- R:\Users\Public\Desktop\aTube Catcher.lnk
[2010.01.30 22:18:05 | 000,073,728 | ---- | C] () -- R:\Windows\SysWow64\vbzlib1.dll
[2010.01.30 22:05:43 | 000,002,154 | ---- | C] () -- R:\Users\Public\Desktop\YouTube Downloader App.lnk
[2010.01.30 22:05:36 | 000,002,194 | ---- | C] () -- R:\Users\Public\Desktop\PSP Video 9.lnk
[2010.01.30 21:00:51 | 000,004,957 | ---- | C] () -- R:\Users\RadeKKK\Desktop\USDownloader.exe – zástupce.lnk
[2010.01.29 20:25:39 | 000,000,545 | ---- | C] () -- R:\Windows\UC.PIF
[2010.01.29 20:25:39 | 000,000,545 | ---- | C] () -- R:\Windows\RAR.PIF
[2010.01.29 20:25:39 | 000,000,545 | ---- | C] () -- R:\Windows\PKZIP.PIF
[2010.01.29 20:25:39 | 000,000,545 | ---- | C] () -- R:\Windows\PKUNZIP.PIF
[2010.01.29 20:25:39 | 000,000,545 | ---- | C] () -- R:\Windows\NOCLOSE.PIF
[2010.01.29 20:25:39 | 000,000,545 | ---- | C] () -- R:\Windows\LHA.PIF
[2010.01.29 20:25:39 | 000,000,545 | ---- | C] () -- R:\Windows\ARJ.PIF
[2010.01.28 14:50:10 | 000,018,775 | ---- | C] () -- R:\Users\RadeKKK\Desktop\sacred2.docx
[2010.01.27 21:19:53 | 000,001,011 | ---- | C] () -- R:\Users\RadeKKK\Desktop\SpeedFan.lnk
[2010.01.27 21:19:51 | 000,000,045 | ---- | C] () -- R:\Windows\SysWow64\initdebug.nfo
[2010.01.27 21:19:51 | 000,000,000 | ---- | C] () -- R:\Users\RadeKKK\Desktop\initdebug.nfo
[2010.01.25 23:00:48 | 006,329,407 | ---- | C] () -- R:\Users\RadeKKK\Desktop\p75490_f5d8232-4_man.pdf
[2010.01.25 20:36:39 | 000,178,176 | ---- | C] () -- R:\Windows\SysWow64\unrar.dll
[2010.01.25 17:40:42 | 000,002,018 | ---- | C] () -- R:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010.01.25 16:13:00 | 001,324,279 | ---- | C] () -- R:\Users\RadeKKK\Desktop\AirLive_WLA-9000AP_Manual.pdf
[2010.01.24 23:33:16 | 000,021,514 | ---- | C] () -- R:\Users\RadeKKK\Desktop\IT slovník.docx
[2010.01.24 20:52:42 | 000,524,288 | -HS- | C] () -- R:\Users\RadeKKK\NTUSER.DAT{89bc93cd-0921-11df-a413-001e8c9c7753}.TMContainer00000000000000000002.regtrans-ms
[2010.01.24 20:52:42 | 000,524,288 | -HS- | C] () -- R:\Users\RadeKKK\NTUSER.DAT{89bc93cd-0921-11df-a413-001e8c9c7753}.TMContainer00000000000000000001.regtrans-ms
[2010.01.24 20:52:42 | 000,065,536 | -HS- | C] () -- R:\Users\RadeKKK\NTUSER.DAT{89bc93cd-0921-11df-a413-001e8c9c7753}.TM.blf
[2010.01.22 17:37:51 | 000,000,200 | ---- | C] () -- R:\Users\RadeKKK\Desktop\Jarni.uklid.s.r.o.2oo8.url
[2010.01.22 17:37:46 | 000,000,144 | ---- | C] () -- R:\Users\RadeKKK\Desktop\Nude wedding orgy - Sexy and Shocking.url
[2010.01.22 17:37:40 | 000,000,134 | ---- | C] () -- R:\Users\RadeKKK\Desktop\Filmy , cracky , češtiny - Filmy CZ.url
[2010.01.22 17:37:05 | 000,009,345 | ---- | C] () -- R:\Users\RadeKKK\Desktop\alkohol sklad.xlsx
[2010.01.22 17:37:02 | 000,051,200 | ---- | C] () -- R:\Users\RadeKKK\Desktop\faktura vody jetřichovice.xls
[2010.01.22 17:36:50 | 000,012,486 | ---- | C] () -- R:\Users\RadeKKK\Desktop\Smlouva o střídání Dominika a výživné.docx
[2010.01.22 11:57:01 | 000,001,240 | ---- | C] () -- R:\Users\Public\Desktop\RegistryBooster.lnk
[2010.01.21 00:11:44 | 000,002,162 | ---- | C] () -- R:\Users\Public\Desktop\Samsung New PC Studio.lnk
[2010.01.21 00:06:57 | 000,001,078 | ---- | C] () -- R:\Users\Public\Desktop\3DMark Vantage.lnk
[2010.01.20 23:13:44 | 000,001,145 | ---- | C] () -- R:\Users\RadeKKK\Desktop\Free Video Converter.lnk
[2010.01.20 23:13:43 | 000,290,816 | ---- | C] () -- R:\Windows\SysWow64\decdll.dll
[2010.01.18 22:59:00 | 000,003,037 | ---- | C] () -- R:\Users\Public\Desktop\Altova StyleVision.lnk
[2010.01.18 13:05:17 | 000,001,262 | ---- | C] () -- R:\Users\RadeKKK\Desktop\Spybot - Search & Destroy.lnk
[2010.01.14 09:25:11 | 000,000,000 | -H-- | C] () -- R:\Windows\SysNative\drivers\Msft_Kernel_LMouFilt_01005.Wdf
[2010.01.14 09:25:11 | 000,000,000 | -H-- | C] () -- R:\Windows\SysNative\drivers\Msft_Kernel_LHidFilt_01005.Wdf
[2010.01.14 09:24:51 | 000,001,751 | ---- | C] () -- R:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Logitech SetPoint.lnk
[2010.01.14 00:10:48 | 001,470,766 | ---- | C] () -- R:\Windows\SysWow64\PerfStringBackup.INI
[2010.01.13 22:41:01 | 000,000,674 | ---- | C] () -- R:\Users\RadeKKK\Desktop\Petra – zástupce.lnk
[2010.01.13 18:33:30 | 000,000,000 | -H-- | C] () -- R:\Users\RadeKKK\Documents\Default.rdp
[2010.01.07 23:41:45 | 000,077,824 | ---- | C] () -- R:\Windows\SysWow64\xvid.ax
[2010.01.07 23:41:45 | 000,010,766 | ---- | C] () -- R:\Windows\SysNative\asusgsb.cat
[2010.01.07 23:41:45 | 000,010,733 | ---- | C] () -- R:\Windows\SysNative\ATKDispLowFilter.cat
[2010.01.07 23:41:45 | 000,002,109 | ---- | C] () -- R:\Windows\SysNative\asusgsb.inf
[2010.01.07 23:41:45 | 000,001,849 | ---- | C] () -- R:\Windows\SysNative\ATKDispLowFilter.inf
[2010.01.07 23:41:44 | 000,053,248 | ---- | C] () -- R:\Windows\SysWow64\asrussian.dll
[2010.01.07 23:41:44 | 000,053,248 | ---- | C] () -- R:\Windows\SysWow64\askorean.dll
[2010.01.07 23:41:44 | 000,053,248 | ---- | C] () -- R:\Windows\SysWow64\asjapan.dll
[2010.01.07 23:41:44 | 000,053,248 | ---- | C] () -- R:\Windows\SysWow64\ASCHT.dll
[2010.01.07 23:41:44 | 000,053,248 | ---- | C] () -- R:\Windows\SysWow64\aschs.dll
[2010.01.07 23:41:44 | 000,053,248 | ---- | C] () -- R:\Windows\SysWow64\asgerman.dll
[2010.01.07 23:41:44 | 000,053,248 | ---- | C] () -- R:\Windows\SysWow64\asfrench.dll
[2010.01.07 23:41:44 | 000,053,248 | ---- | C] () -- R:\Windows\SysWow64\aseng.dll
[2010.01.07 23:41:44 | 000,002,963 | ---- | C] () -- R:\Windows\SysWow64\xvid.inf
[2010.01.06 19:09:34 | 000,000,644 | RHS- | C] () -- R:\Users\RadeKKK\ntuser.pol
[2010.01.06 17:21:23 | 000,056,434 | ---- | C] () -- R:\Windows\War3Unin.dat
[2010.01.06 17:21:23 | 000,002,829 | ---- | C] () -- R:\Windows\War3Unin.pif
[2010.01.06 15:57:34 | 002,097,152 | ---- | C] () -- R:\Windows\MAXIMUS-ASUS-Extreme-1104.ROM
[2010.01.06 15:56:43 | 000,862,009 | ---- | C] () -- R:\Windows\MAXIMUS-ASUS-Extreme-1104.zip
[2010.01.06 15:43:21 | 000,011,832 | ---- | C] () -- R:\Windows\SysWow64\drivers\AsInsHelp64.sys
[2010.01.06 15:43:21 | 000,010,216 | ---- | C] () -- R:\Windows\SysWow64\drivers\AsInsHelp32.sys
[2010.01.06 15:39:26 | 000,013,368 | ---- | C] () -- R:\Windows\SysWow64\drivers\AsUpIO.sys
[2010.01.06 15:32:37 | 000,001,769 | ---- | C] () -- R:\Windows\Language_trs.ini
[2010.01.06 11:46:22 | 000,035,328 | ---- | C] () -- R:\Users\RadeKKK\Desktop\strukturovany_zivotopis.doc
[2010.01.05 23:32:29 | 000,001,662 | ---- | C] () -- R:\Users\RadeKKK\Desktop\Recuva.lnk
[2010.01.05 22:45:06 | 000,000,922 | ---- | C] () -- R:\Users\RadeKKK\Desktop\Centrum zařízení Windows Mobile.lnk
[2010.01.05 21:59:12 | 000,000,000 | -H-- | C] () -- R:\Windows\SysNative\drivers\Msft_User_WpdRapi2_01_00_00.Wdf
[2010.01.05 21:14:00 | 000,001,662 | ---- | C] () -- R:\Users\Public\Desktop\avast! Antivirus.lnk
[2010.01.05 21:13:58 | 000,000,000 | ---- | C] () -- R:\Windows\SysWow64\config.nt
[2010.01.05 21:13:43 | 000,380,928 | ---- | C] () -- R:\Windows\SysWow64\actskin4.ocx
[2009.12.29 18:25:09 | 000,024,576 | ---- | C] () -- R:\Windows\SysWow64\AsIO.dll
[2009.12.29 18:25:09 | 000,013,440 | ---- | C] () -- R:\Windows\SysWow64\drivers\AsIO.sys
[2009.12.15 21:09:44 | 000,007,603 | ---- | C] () -- R:\Users\RadeKKK\AppData\Local\resmon.resmoncfg
[2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- R:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 22:03:59 | 000,364,544 | ---- | C] () -- R:\Windows\SysWow64\msjetoledb40.dll
[2008.05.15 14:19:54 | 000,004,096 | ---- | C] () -- R:\Windows\SysWow64\ViaClassCoInstaller.dll
[2007.10.25 17:26:10 | 000,005,632 | ---- | C] () -- R:\Windows\SysWow64\drivers\StarOpen.sys
[2007.07.23 09:03:32 | 000,053,248 | ---- | C] () -- R:\Windows\SysWow64\AgCPanelTraditionalChinese.dll
[2007.07.23 09:03:32 | 000,053,248 | ---- | C] () -- R:\Windows\SysWow64\AgCPanelSwedish.dll
[2007.07.23 09:03:32 | 000,053,248 | ---- | C] () -- R:\Windows\SysWow64\AgCPanelSpanish.dll
[2007.07.23 09:03:30 | 000,053,248 | ---- | C] () -- R:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll
[2007.07.23 09:03:30 | 000,053,248 | ---- | C] () -- R:\Windows\SysWow64\AgCPanelPortugese.dll
[2007.07.23 09:03:30 | 000,053,248 | ---- | C] () -- R:\Windows\SysWow64\AgCPanelKorean.dll
[2007.07.23 09:03:30 | 000,053,248 | ---- | C] () -- R:\Windows\SysWow64\AgCPanelJapanese.dll
[2007.07.23 09:03:30 | 000,053,248 | ---- | C] () -- R:\Windows\SysWow64\AgCPanelGerman.dll
[2007.07.23 09:03:30 | 000,053,248 | ---- | C] () -- R:\Windows\SysWow64\AgCPanelFrench.dll
[2005.10.14 11:56:50 | 000,921,600 | ---- | C] () -- R:\Windows\SysWow64\VorbisEnc.dll
[2005.10.14 11:56:50 | 000,237,568 | ---- | C] () -- R:\Windows\SysWow64\OggDS.dll
[2005.10.14 11:56:50 | 000,188,416 | ---- | C] () -- R:\Windows\SysWow64\vorbis.dll
[2005.10.14 11:56:50 | 000,045,056 | ---- | C] () -- R:\Windows\SysWow64\ogg.dll
[2005.10.14 11:56:48 | 003,223,552 | ---- | C] () -- R:\Windows\SysWow64\libavcodec.dll
[2005.10.14 11:56:48 | 000,540,672 | ---- | C] () -- R:\Windows\SysWow64\libmplayer.dll
[2005.10.14 11:56:48 | 000,266,240 | ---- | C] () -- R:\Windows\SysWow64\TomsMoComp_ff.dll
[2005.10.14 11:56:48 | 000,094,208 | ---- | C] () -- R:\Windows\SysWow64\libmpeg2_ff.dll
[2005.10.14 11:56:48 | 000,077,824 | ---- | C] () -- R:\Windows\SysWow64\MMSwitch.dll

========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >

< %SYSTEMDRIVE%\eventlog.dll /s /md5 >

< %SYSTEMDRIVE%\scecli.dll /s /md5 >
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- R:\Windows\SysWOW64\scecli.dll
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- R:\Windows\SysWOW64\scecli.dll
[2009.07.14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- R:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- R:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll

< %SYSTEMDRIVE%\netlogon.dll /s /md5 >
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- R:\Windows\SysWOW64\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- R:\Windows\SysWOW64\netlogon.dll
[2009.07.14 02:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- R:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- R:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll

< %SYSTEMDRIVE%\cngaudit.dll /s /md5 >
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- R:\Windows\SysWOW64\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- R:\Windows\SysWOW64\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- R:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- R:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll

< %SYSTEMDRIVE%\sceclt.dll /s /md5 >

< %SYSTEMDRIVE%\ntelogon.dll /s /md5 >

< %SYSTEMDRIVE%\logevent.dll /s /md5 >

< %SYSTEMDRIVE%\iaStor.sys /s /md5 >

< %SYSTEMDRIVE%\nvstor.sys /s /md5 >
[2009.07.14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- R:\Windows\SysWow64\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys
[2009.07.14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- R:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys

< %SYSTEMDRIVE%\atapi.sys /s /md5 >
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- R:\Windows\SysWow64\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- R:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys

< %SYSTEMDRIVE%\IdeChnDr.sys /s /md5 >

< %SYSTEMDRIVE%\viasraid.sys /s /md5 >

< %SYSTEMDRIVE%\AGP440.sys /s /md5 >
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- R:\Windows\SysWow64\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- R:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys

< %SYSTEMDRIVE%\vaxscsi.sys /s /md5 >

< %SYSTEMDRIVE%\nvatabus.sys /s /md5 >

< %SYSTEMDRIVE%\viamraid.sys /s /md5 >

< %SYSTEMDRIVE%\nvata.sys /s /md5 >
< End of report >

[RadeKKK88]

Log extras.txt

OTL Extras logfile created on: 3.2.2010 11:54:50 - Run 1
OTL by OldTimer - Version 3.1.27.1 Folder = R:\Users\RadeKKK\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 58,00% Memory free
8,00 Gb Paging File | 5,00 Gb Available in Paging File | 65,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = R: | %SystemRoot% = R:\Windows | %ProgramFiles% = R:\Program Files (x86)
Drive C: | 177,82 Gb Total Space | 130,28 Gb Free Space | 73,27% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
Drive F: | 55,06 Gb Total Space | 15,79 Gb Free Space | 28,67% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive R: | 69,25 Gb Total Space | 24,56 Gb Free Space | 35,46% Space Free | Partition Type: NTFS
Drive Z: | 465,76 Gb Total Space | 82,24 Gb Free Space | 17,66% Space Free | Partition Type: NTFS

Computer Name: VIPER
Current User Name: RadeKKK
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- R:\Windows\SysWow64\control.exe (Microsoft Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "R:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "R:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "R:\Windows\System32\rundll32.exe" "R:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [AddToPlaylistVLC] -- "R:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "R:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "R:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "R:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "R:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "R:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "R:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [print] -- "R:\Windows\System32\rundll32.exe" "R:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "R:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "R:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [Winamp.Bookmark] -- "R:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "R:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "R:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{19639A51-FCC5-40BA-9F07-D8292A07249B}" = VirtualCom driver
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}" = Centrum zařízení Windows Mobile
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2007
"{92DBCA36-9B41-4DD1-941A-AED149DD37F0}" = Aktualizace ovladače pro aplikaci Centrum zařízení Windows Mobile
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A116AC61-8223-C019-9F66-2FEBA27A9ABE}" = ccc-utility64
"{A6A6319B-4AD7-4699-BB7E-2E0515E5B04E}" = Windows Live Zabezpečení rodiny
"{B0EFB716-085B-4564-8060-212E41F5CE50}" = Pomocník pro přihlášení ke službě Windows Live ID
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{CCC7BD30-07DB-9C0E-9140-3DE62BFF7E93}" = ATI Catalyst Install Manager
"{F3F18612-7B5D-4C05-86C9-AB50F6F71727}" = KhalInstallWrapper
"BC15EA930074932BB2C4B4493C9FD4EA95087D1A" = Balíček ovladače systému Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0)
"Defraggler" = Defraggler
"Recuva" = Recuva
"SAMSUNG Android USB Modem" = SAMSUNG Android USB Modem Software
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software
"SAMSUNG Mobile Modem V2" = SAMSUNG Mobile Modem V2 Software
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"Samsung Mobile phone USB driver Drive" = Samsung Mobile phone USB driver Drive Software
"SAMSUNG Mobile USB Download Driver" = SAMSUNG Mobile USB Download Driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"Samsung Mobile USB Modem Device" = Samsung Mobile USB Modem Device Software
"SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software
"WinRAR archiver" = WinRAR

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{068B46A0-8858-4CEB-80BC-A4AE787A05FC}" = Windows Live Sync
"{08A1400E-E040-1C31-2E90-49ADACDCE8FF}" = Catalyst Control Center Graphics Light
"{18F04681-FCB2-602E-DB5E-302F65268FBE}" = ccc-core-static
"{1D097338-B4FA-4F29-9C43-8D7A970A007E}" = Windows Live Fotogalerie
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Nástroj pro odesílání služby Windows Live
"{22396FF8-97F0-42D1-8120-EA9BAE3F6D81}" = MindSoft Undelete
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{3060F83F-3A04-DCD1-3BC4-35EC73164AF1}" = CCC Help English
"{310BC5E2-31AF-49BB-904D-E71EB93645DC}" = AI Suite
"{3D3AFDE9-A3F1-4F1C-434A-9BC75604CE9D}" = Catalyst Control Center Graphics Full Existing
"{45235788-142C-44BE-8A4D-DDE9A84492E5}" = AGEIA PhysX v7.09.13
"{587178E7-B1DF-494E-9838-FA4DD36E873C}" = ASUSUpdate
"{60DE4033-9503-48D1-A483-7846BD217CA9}" = ICQ6.5
"{6421F085-1FAA-DE13-D02A-CFB412C522A4}" = Acrobat.com
"{662E830F-830E-1644-9469-607CA1814F4F}" = Catalyst Control Center Core Implementation
"{6804F085-58B9-8E92-CB0F-769F730F0185}" = Catalyst Control Center Graphics Previews Common
"{6D14916C-EC29-40FC-8FFB-08A66576BE78}" = Spamihilator 0.9.9.53 (32 bit)
"{7184F382-8A6C-4B85-A3AC-B63734B1E241}" = SAMSUNG Mobile USB Device
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76560C00-0CFB-00F0-31AD-3DDA280032B6}" = Catalyst Control Center InstallProxy
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{791B2FDA-A428-47C6-95D9-56A107C73257}" = OC Gear Driver
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{7F88C9E5-12BD-404F-AC6A-108BAAC9B708}" = ASUS Gamer OSD
"{809D7E6D-915D-4EAD-821F-E13D93F37161}" = ASUS Smart Doctor
"{85E0DA75-0795-4377-B079-CFB9F7C5691F}" = Phone Software Update - Windows Mobile
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8B5D3F44-8150-4471-B093-28BA8A7D67C8}" = Phone Software Update - Windows Mobile
"{8CDA6D95-78B3-B62C-4E25-2E24883749E1}" = Catalyst Control Center Graphics Previews Vista
"{8CFA9151-6404-409A-AF22-4632D04582FD}" = Assassin's Creed
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0405-1000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90AC08E7-FC26-463D-868F-A199143B32F6}" = Altova StyleVision® 2010 Enterprise Edition
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A498D9EB-927B-459B-85D6-DD6EF8C2C564}" = erLT
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3
"{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}" = Microsoft Office Live Add-in 1.4
"{B0490CEE-D5ED-431A-88EB-772D9DB70C0C}" = Windows Live Movie Maker
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{C40C3C3D-97CF-44B5-836C-766E374464B3}" = 3DMark Vantage
"{C69405BB-27AF-4940-B3DA-04910B4DFD23}_is1" = aTube Catcher 1.0
"{CC419DDC-E0F0-4013-B25A-6FA036516F0D}" = Need for Speed™ ProStreet
"{D48818BC-744E-A732-BA1B-59043861F445}" = Catalyst Control Center Graphics Full New
"{D6987225-AECA-91BC-FA4B-9A2D812BF9D3}" = Catalyst Control Center HydraVision Full
"{DD9E3191-A37E-8A0D-D5A6-5D3C5A8AACBF}" = Skins
"{E3F328E4-EB9F-4ABF-8FF3-5AD0472743D8}" = Windows Live Essentials
"{E63E34A7-E552-412B-9E40-FD6FC5227ABA}_is1" = Uniblue RegistryBooster 2010
"{E6D22FE1-AB5F-42CA-9480-6F70B96DDD88}" = Need for Speed™ Undercover
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"ASF-AVI-RM-WMV Repair_is1" = ASF-AVI-RM-WMV Repair 1.83
"avast!" = avast! Antivirus
"AviSynth" = AviSynth 2.5
"BSPlayerf" = BS.Player FREE
"CCleaner" = CCleaner (remove only)
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Free Video Converter_is1" = Free Video Converter V 2.5
"HijackThis" = HijackThis 2.0.2
"InstallShield_{809D7E6D-915D-4EAD-821F-E13D93F37161}" = ASUS Smart Doctor
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"KigoVideoConverter_is1" = KigoVideoConverter 1.1.0
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.6.1 (Standard)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Marvell Miniport Driver" = Marvell Miniport Driver
"MV2Player" = MV2Player (remove only)
"PSP Video 9" = PSP Video 9 5.04
"SpeedFan" = SpeedFan (remove only)
"Totalcmd" = Total Commander (Remove or Repair)
"VLC media player" = VLC media player 1.0.3
"Warcraft III" = Warcraft III
"Winamp" = Winamp
"WinAVI Video Converter 10.0_is1" = WinAVI Video Converter
"WinLiveSuite_Wave3" = Windows Live Essentials
"XStandard" = XStandard
"YouTube Downloader App" = YouTube Downloader App 2.03

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Warcraft III" = Warcraft III: All Products
"Winamp Detect" = Winamp Application Detect

========== Last 10 Event Log Errors ==========

[ Antivirus Events ]
Error - 5.1.2010 18:17:53 | Computer Name = Viper | Source = avast! | ID = 33554522
Description = AAVM - chyba při testování: x_AavmCheckFileDirectEx: avfilesScanReal
of http://dl.s11.uloz.to/Ps;Hs;fid=2010422 ... ozen%20Thr
failed, 00000084.


========== Last 10 Event Log Errors ==========

Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

< End of report >


na počítači již žádná chyba nevyskakuje a běží asi normálně. Při klidu internetem nic neodesílá ani nepřijímá.

[motji]

Spustte OTL
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.cz/
O4 - HKLM..\Run: [Ai Nap] R:\Program Files (x86)\ASUS\AI Suite\AiNap\AiNap.exe ()
O4 - HKLM..\Run: [Cpu Level Up help] R:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHelp.exe ()
O4 - HKLM..\Run: [CPU Power Monitor] R:\Program Files (x86)\ASUS\AI Suite\AiGear3\CpuPowerMonitor.exe ()
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] R:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O13 - gopher Prefix: missing
O15:[b]64bit:[/b] - ..Trusted Domains: 63 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKLM\..Trusted Domains: 63 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O18:[b]64bit:[/b] - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.

:COMMANDS
[Reboot]

-klikněte na tlačítko Run fix.
-Následně se pc restartuje.
- Log vložte zde


Otestujte na http://www.virustotal.com
R:\PROGRA~2\AUTOLO~1\AL2DLL.Dll

[RadeKKK88]

Teď mi došlo - už se mi zřejmě nekouše explorer (dříve se čas od času při načítání na 1 - 2 sec kousl a následně rozeběhl)

log z OTL:

log je až na "druhý pokus", protože jsem na otazku restart pc potvrdil a myslel, že se na ploše vytvořil log pro odeslání. Tohle je tedy log po restartu - omlouvám se za chybu

========== OTL ==========
No active process named explorer.exe was found!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache| /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Ai Nap not found.
File R:\Program Files (x86)\ASUS\AI Suite\AiNap\AiNap.exe not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Cpu Level Up help not found.
File R:\Program Files (x86)\ASUS\AI Suite\CpuLevelUpHelp.exe not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\CPU Power Monitor not found.
File R:\Program Files (x86)\ASUS\AI Suite\AiGear3\CpuPowerMonitor.exe not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Malwarebytes Anti-Malware (reboot) not found.
File R:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
Starting removal of ActiveX control {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
========== COMMANDS ==========

OTL by OldTimer - Version 3.1.27.1 log created on 02032010_193928


log z virustotal.com

Soubor AL2DLL.Dll přijatý 2010.02.03 18:42:59 (UTC)
Současný stav: Čekejte ... Ve frontě Čekání Testování Dokončeno NENALEZENO ZASTAVENO


Výsledek: 0/40 (0%)
Načítám informace ze serveru...
Váš soubor čeká ve frontě na pozici: 2.
Odhadovaný čas začátku mezi 50 a 71 sekundami.
Nezavírejte toto okno dokud nebude test dokončen.
Právě testující program byl je zastaven, probíhá čekání na program.
Za chvíli bude proveden další pokus o otestování souboru.
Pokud budete čekat déle než-li pět minut odešlete Váš soubor znovu.
Váš soubor je nyní testován pomocí VirusTotal,
výsledky budou zobrazeny po dokončení.
Formátované Vytisknout výsledky Váš soubor není platný, nebo neexistuje.
Služba je pozastavena v tuto chvíli, váš soubor čeká na otestování (pozice: ) po nespecifikovanou dobu.
Nyní čekejte na odezvu webu (automatické obnovení), nebo napište email do pole a klikněte na "vyžádat" a systém Vám zašle email s výsledky až bude test hotov. Email:


Antivirus Verze Poslední aktualizace Výsledek
a-squared 4.5.0.50 2010.02.03 -
AhnLab-V3 5.0.0.2 2010.02.03 -
AntiVir 7.9.1.158 2010.02.03 -
Antiy-AVL 2.0.3.7 2010.02.03 -
Authentium 5.2.0.5 2010.02.03 -
Avast 4.8.1351.0 2010.02.02 -
AVG 9.0.0.730 2010.02.03 -
BitDefender 7.2 2010.02.03 -
CAT-QuickHeal 10.00 2010.02.03 -
ClamAV 0.96.0.0-git 2010.02.03 -
Comodo 3807 2010.02.03 -
DrWeb 5.0.1.12222 2010.02.03 -
eSafe 7.0.17.0 2010.02.03 -
eTrust-Vet 35.2.7278 2010.02.03 -
F-Prot 4.5.1.85 2010.02.03 -
F-Secure 9.0.15370.0 2010.02.03 -
Fortinet 4.0.14.0 2010.02.03 -
GData 19 2010.02.03 -
Ikarus T3.1.1.80.0 2010.02.03 -
Jiangmin 13.0.900 2010.02.03 -
K7AntiVirus 7.10.966 2010.02.03 -
Kaspersky 7.0.0.125 2010.02.03 -
McAfee 5881 2010.02.03 -
McAfee+Artemis 5881 2010.02.03 -
McAfee-GW-Edition 6.8.5 2010.02.03 -
Microsoft 1.5406 2010.02.03 -
NOD32 4832 2010.02.03 -
Norman 6.04.03 2010.02.03 -
nProtect 2009.1.8.0 2010.02.03 -
Panda 10.0.2.2 2010.02.03 -
PCTools 7.0.3.5 2010.02.03 -
Prevx 3.0 2010.02.03 -
Rising 22.33.02.04 2010.02.03 -
Sophos 4.50.0 2010.02.03 -
Sunbelt 3.2.1858.2 2010.02.03 -
TheHacker 6.5.1.0.178 2010.02.03 -
TrendMicro 9.120.0.1004 2010.02.03 -
VBA32 3.12.12.1 2010.02.03 -
ViRobot 2010.2.3.2170 2010.02.03 -
VirusBuster 5.0.21.0 2010.02.03 -
Rozšiřující informace
File size: 241664 bytes
MD5...: 2dc1e44887f59ba252a7981086183789
SHA1..: 2812fd4accdb6b684bc68a64a8d68265c19da3cd
SHA256: 74599701228b9e999d009055d5b8015a4b629bce125485cd9cd3f66b2c5becf5
ssdeep: 3072:YkQc1vIjssZZZ+rmFjk5wus6LuYIt+RklZUq2EqcKZfVutj4yzdzNIBM31x
u+tlC:JQc1vKssbjkiusalKYFE4fOzVN91J5Q

PEiD..: -
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0xfb97
timedatestamp.....: 0x45c96c59 (Wed Feb 07 06:06:17 2007)
machinetype.......: 0x14c (I386)

( 5 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x131b4 0x14000 6.11 cbdf3523eb1d1df1de90616be5eb93bc
.rdata 0x15000 0x18c3 0x2000 4.82 bda55e40b18f7902cf150c24603eb2cf
.data 0x17000 0x93f0 0x4000 5.03 8bd00ccb8a6d789eb5dcbc240857b1f1
.rsrc 0x21000 0x1d2e8 0x1e000 6.14 e395c7ae46d12bbbc182e876ba5f5d05
.reloc 0x3f000 0x188c 0x2000 4.18 c54c1cc243036cb299f12b37b4d1d7de

( 8 imports )
> KERNEL32.dll: HeapDestroy, lstrcatA, MapViewOfFile, CreateFileMappingA, GetCurrentThreadId, GetProcAddress, LoadLibraryA, GetSystemDefaultLangID, GetVersion, GetSystemDirectoryA, GetVersionExA, IsDBCSLeadByte, lstrcpynA, lstrcmpiA, LoadLibraryExA, GetLastError, FindResourceA, LoadResource, SizeofResource, FreeLibrary, lstrlenW, MultiByteToWideChar, GetShortPathNameA, InterlockedDecrement, GetTickCount, GetCurrentProcessId, WideCharToMultiByte, InitializeCriticalSection, ReadFile, SetEndOfFile, CreateFileA, SetFilePointer, FlushFileBuffers, SetStdHandle, GetStringTypeW, GetStringTypeA, GetEnvironmentStringsW, GetEnvironmentStrings, FreeEnvironmentStringsW, FreeEnvironmentStringsA, GetStartupInfoA, GetFileType, GetStdHandle, SetHandleCount, TlsGetValue, SetLastError, TlsFree, TlsAlloc, DisableThreadLibraryCalls, TlsSetValue, LeaveCriticalSection, EnterCriticalSection, DeleteCriticalSection, GetOEMCP, InterlockedIncrement, lstrlenA, GetModuleHandleA, GetPrivateProfileStringA, lstrcpyA, GetPrivateProfileIntA, GetModuleFileNameA, GetCurrentProcess, TerminateProcess, WriteFile, CloseHandle, VirtualAlloc, VirtualFree, GetACP, GetCPInfo, GetCommandLineA, RtlUnwind, HeapAlloc, HeapReAlloc, HeapFree, ExitProcess, HeapCreate, LCMapStringA, LCMapStringW
> USER32.dll: GetDC, CreatePopupMenu, MessageBoxA, SendMessageA, IsWindow, SetWindowLongA, CreateWindowExA, GetFocus, EnumChildWindows, RegisterWindowMessageA, wsprintfA, CharNextA, GetClassNameA, ReleaseDC, DestroyMenu, DestroyIcon, PostMessageA, TrackPopupMenu, SetForegroundWindow, AppendMenuA, LoadImageA, IsWindowVisible, GetSysColor, DefWindowProcA, RegisterClassA, FindWindowA, wvsprintfA, FindWindowExW, GetWindowLongA, GetForegroundWindow, DrawIconEx, GetCursorPos, SetTimer, KillTimer
> GDI32.dll: EnumFontFamiliesA, DeleteDC, TextOutA, CreateDCA, DeleteObject, GetTextExtentPoint32A, GetTextExtentPoint32W, SelectObject, SetBkColor, SetTextColor, ExtTextOutA, ExtTextOutW, SetBkMode, TextOutW, Rectangle, CreateFontIndirectA
> ADVAPI32.dll: RegEnumKeyExA, RegQueryValueExA, RegEnumValueA, RegQueryInfoKeyA, RegCloseKey, RegOpenKeyExA, RegDeleteValueA, RegDeleteKeyA, RegCreateKeyExA, RegSetValueExA
> ole32.dll: CoGetMalloc, CoTaskMemAlloc, StringFromIID, CoTaskMemFree, CoTaskMemRealloc, CoCreateInstance
> OLEAUT32.dll: -, -, -, -, -, -, -, -, -, -, -, -
> WINMM.dll: PlaySoundA
> SHLWAPI.dll: StrToIntA

( 4 exports )
DllCanUnloadNow, DllGetClassObject, DllRegisterServer, DllUnregisterServer

RDS...: NSRL Reference Data Set
-
sigcheck:
publisher....: Fineart
copyright....: Copyright 2003
product......: AL2DLL Module
description..: AL2DLL Module
original name: AL2DLL.DLL
internal name: AL2DLL
file version.: 2, 0, 1, 8
comments.....: FLogin
signers......: -
signing date.: -
verified.....: Unsigned

trid..: DirectShow filter (51.8%)
Windows OCX File (31.8%)
Win32 Executable MS Visual C++ (generic) (9.7%)
Windows Screen Saver (3.3%)
Win32 Executable Generic (2.1%)
pdfid.: -

[motji]

Nevadí. Poprosím o nový log ze Rsitu.
Jsou s počítačem ještě nějaké problémy?

[RadeKKK88]

S počítačem si nejsem vědom, že by teď něco bylo - vypadá to dobře (už při každém spuštění používám ccleaner a nainstaloval jsem i spaminhalator). Dříve jsem měl jen avasta a jednou za týden jsem pustil spybot - což zjevně nestačílo - jsem poučenej....

Zase to musím rozdělit do dvou zpráv... limit 60tis znaků je pro mě málo

RSIT log:

Logfile of random's system information tool 1.06 (written by random/random)
Run by RadeKKK at 2010-02-04 00:40:03
Microsoft Windows 7 Ultimate Service Pack 3
System drive R: has 21 GB (30%) free of 71 GB
Total RAM: 4095 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 0:40:50, on 4.2.2010
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
R:\Program Files (x86)\Analog Devices\SoundMAX\SoundMAX.exe
R:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
R:\Program Files (x86)\SAMSUNG\Samsung New PC Studio\NPSAgent.exe
R:\Program Files (x86)\Spamihilator\spamihilator.exe
R:\Program Files (x86)\ASUS\SmartDoctor\SmartDoctor.exe
R:\Program Files\Avast4\ashDisp.exe
R:\Program Files (x86)\ASUS\AI Suite\EnergySaving\PwSave.exe
R:\Program Files (x86)\ASUS\GamerOSD\GamerOSD.exe
R:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
R:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
R:\Program Files (x86)\ASUS\AASP\1.00.95\aaCenter.exe
R:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
R:\Program Files (x86)\ICQ6.5\ICQ.exe
R:\Program Files (x86)\Internet Explorer\iexplore.exe
R:\Program Files (x86)\Internet Explorer\iexplore.exe
R:\Program Files (x86)\Internet Explorer\iexplore.exe
R:\Program Files (x86)\ASUS\AI Suite\AiSuite.exe
R:\Users\RadeKKK\Desktop\RSIT.exe
R:\Program Files (x86)\trend micro\RadeKKK.exe
R:\Program Files (x86)\Winamp\winamp.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - R:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - R:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - R:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AL2Spy Class - {DC200356-0864-4F66-8964-5D43A19300F5} - R:\PROGRA~2\AUTOLO~1\AL2DLL.Dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - R:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - R:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O4 - HKLM\..\Run: [avast!] "R:\Program Files\Avast4\ashDisp.exe"
O4 - HKLM\..\Run: [QFan Help] "R:\Program Files (x86)\ASUS\AI Suite\QFan3\QFanHelp.exe"
O4 - HKLM\..\Run: [ASUSGamerOSD] R:\Program Files (x86)\ASUS\GamerOSD\GamerOSD.exe
O4 - HKLM\..\Run: [SoundMAXPnP] R:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "R:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "R:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [StartCCC] "R:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SweetIM] R:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
O4 - HKCU\..\Run: [Sidebar] R:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "R:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [AutoStartNPSAgent] R:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [ICQ] ~"R:\Program Files (x86)\ICQ6.5\ICQ.exe" silent
O4 - HKCU\..\Run: [USDownloader] "Z:\Documents\programy a instalace\Rapid downloader\USDownloader.exe"
O4 - HKCU\..\Run: [ccleaner] "R:\Program Files (x86)\CCleaner\CCleaner.exe" /AUTO
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] R:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] R:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Spamihilator.lnk = R:\Program Files (x86)\Spamihilator\spamihilator.exe
O4 - Global Startup: Logitech SetPoint.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://R:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @R:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - R:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - R:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @R:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - R:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - R:\Program Files (x86)\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - R:\Program Files (x86)\ICQ6.5\ICQ.exe
O10 - Unknown file in Winsock LSP: r:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: r:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Unknown owner - R:\Windows\system32\AEADISRV.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - R:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - R:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASDR - Unknown owner - R:\Windows\SysWOW64\ASDR.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - R:\Program Files\Avast4\aswUpdSv.exe
O23 - Service: ATK Fast User Switch Service (ATKFUSService) - Unknown owner - R:\Windows\system32\ATKFUSService.exe (file missing)
O23 - Service: avast! Antivirus - ALWIL Software - R:\Program Files\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - R:\Program Files\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - R:\Program Files\Avast4\ashWebSv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - R:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - R:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - R:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - R:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - R:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - R:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - R:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - R:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - R:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - R:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - R:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: ServiceLayer - Nokia. - R:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - R:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - R:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - R:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - R:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - R:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - R:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - R:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - R:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - R:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - R:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9904 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - R:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - R:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DC200356-0864-4F66-8964-5D43A19300F5}]
AL2Spy Class - R:\PROGRA~2\AUTOLO~1\AL2DLL.Dll [2010-01-06 241664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetIM Toolbar Helper - R:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-10-19 1345336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetIM Toolbar for Internet Explorer - R:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-10-19 1345336]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NPSStartup"= []
"avast!"=R:\Program Files\Avast4\ashDisp.exe [2009-11-25 81000]
"QFan Help"=R:\Program Files (x86)\ASUS\AI Suite\QFan3\QFanHelp.exe [2009-07-01 601088]
"ASUSGamerOSD"=R:\Program Files (x86)\ASUS\GamerOSD\GamerOSD.exe [2009-07-30 380928]
"SoundMAXPnP"=R:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [2010-01-06 1310720]
"Adobe Reader Speed Launcher"=R:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]
"Adobe ARM"=R:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]
"StartCCC"=R:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-02-25 61440]
"SweetIM"=R:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [2009-10-20 111928]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=R:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]
"DAEMON Tools Lite"=R:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
"AutoStartNPSAgent"=R:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe [2009-12-22 106952]
"ICQ"=~R:\Program Files (x86)\ICQ6.5\ICQ.exe silent []
"USDownloader"=Z:\Documents\programy a instalace\Rapid downloader\USDownloader.exe [2010-01-29 530432]
"ccleaner"=R:\Program Files (x86)\CCleaner\CCleaner.exe [2008-12-19 1434864]

R:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Logitech SetPoint.lnk - R:\Program Files\Logitech\SetPoint\SetPoint.exe

R:\Users\RadeKKK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Spamihilator.lnk - R:\Program Files (x86)\Spamihilator\spamihilator.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=
"ForceActiveDesktopOn"=
"NoActiveDesktopChanges"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\H]
shell\AutoRun\command - H:\autoverify.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{799fdfef-f244-11de-80d9-001e8c9c749e}]
shell\AutoRun\command - E:\autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9eb492f1-e9b5-11de-9b95-001e8c9c749e}]
shell\AutoRun\command - H:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{aa31e74b-f49f-11de-98cc-001e8c9c749e}]
shell\AutoRun\command - J:\LaunchU3.exe -a


======File associations======

.js - edit - R:\Windows\System32\Notepad.exe %1
.js - open - R:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-02-03 23:13:00 ----D---- R:\ProgramData\SweetIM
2010-02-03 23:13:00 ----D---- R:\Program Files (x86)\SweetIM
2010-02-03 19:57:14 ----D---- R:\ProgramData\Solidshield
2010-02-03 19:32:51 ----D---- R:\_OTL
2010-02-03 12:26:22 ----A---- R:\Windows\system32\d3dx10_40.dll
2010-02-03 12:26:22 ----A---- R:\Windows\system32\D3DCompiler_40.dll
2010-02-03 12:26:21 ----A---- R:\Windows\system32\D3DX9_40.dll
2010-02-03 01:38:29 ----D---- R:\ProgramData\Spamihilator
2010-02-03 01:37:41 ----D---- R:\Users\RadeKKK\AppData\Roaming\Spamihilator
2010-02-03 01:36:39 ----D---- R:\Program Files (x86)\Spamihilator
2010-02-02 22:40:43 ----D---- R:\Users\RadeKKK\AppData\Roaming\Malwarebytes
2010-02-02 22:40:39 ----D---- R:\ProgramData\Malwarebytes
2010-02-02 22:40:39 ----D---- R:\Program Files (x86)\Malwarebytes' Anti-Malware
2010-02-02 22:34:37 ----D---- R:\Program Files (x86)\CCleaner
2010-02-02 20:51:26 ----D---- R:\Program Files (x86)\trend micro
2010-02-02 20:51:25 ----D---- R:\rsit
2010-01-30 23:17:24 ----D---- R:\Users\RadeKKK\AppData\Roaming\WinAVI
2010-01-30 23:17:18 ----D---- R:\Program Files (x86)\WinAVI Video Converter
2010-01-30 23:15:32 ----D---- R:\Program Files (x86)\WinAVI MP4 Converter
2010-01-30 22:50:11 ----D---- R:\Program Files (x86)\ASF-AVI-RM-WMV Repair
2010-01-30 22:28:16 ----D---- R:\Program Files (x86)\KigoVideoConverter
2010-01-30 22:21:46 ----D---- R:\Users\RadeKKK\AppData\Roaming\Red Kawa
2010-01-30 22:18:05 ----A---- R:\Windows\system32\vbzlib1.dll
2010-01-30 22:18:04 ----D---- R:\Program Files (x86)\DsNET Corp
2010-01-30 22:05:56 ----D---- R:\Users\RadeKKK\AppData\Roaming\Mozilla
2010-01-30 22:05:43 ----D---- R:\Program Files (x86)\Regensoft
2010-01-30 22:05:41 ----D---- R:\Program Files (x86)\AviSynth 2.5
2010-01-30 22:05:36 ----D---- R:\Program Files (x86)\Red Kawa
2010-01-30 22:01:24 ----D---- R:\Users\RadeKKK\AppData\Roaming\BSD
2010-01-30 22:01:17 ----D---- R:\Program Files (x86)\Common Files\BSD
2010-01-30 22:01:08 ----D---- R:\ProgramData\BSD
2010-01-30 22:01:08 ----A---- R:\Windows\bsdsetup.dll
2010-01-29 20:25:39 ----D---- R:\Users\RadeKKK\AppData\Roaming\GHISLER
2010-01-27 21:19:52 ----D---- R:\Program Files (x86)\SpeedFan
2010-01-27 19:52:35 ----A---- R:\Windows\system32\explorer.exe
2010-01-27 19:52:35 ----A---- R:\Windows\explorer.exe
2010-01-25 21:18:57 ----D---- R:\ProgramData\ATI
2010-01-25 21:18:40 ----D---- R:\Program Files (x86)\ATI Technologies
2010-01-25 20:53:41 ----D---- R:\Users\RadeKKK\AppData\Roaming\BSplayer Pro
2010-01-25 20:53:41 ----D---- R:\Users\RadeKKK\AppData\Roaming\BSplayer
2010-01-25 20:53:41 ----D---- R:\Program Files (x86)\Webteh
2010-01-25 20:39:14 ----D---- R:\Users\RadeKKK\AppData\Roaming\Media Player Classic
2010-01-25 20:37:42 ----A---- R:\Windows\iun6002.exe
2010-01-25 20:37:39 ----D---- R:\Windows\system32\languages
2010-01-25 20:37:39 ----D---- R:\Program Files (x86)\Codec Pack - All In 1
2010-01-25 20:36:39 ----A---- R:\Windows\system32\unrar.dll
2010-01-25 20:36:35 ----D---- R:\Program Files (x86)\K-Lite Codec Pack
2010-01-25 20:28:09 ----D---- R:\Users\RadeKKK\AppData\Roaming\vlc
2010-01-25 17:40:39 ----D---- R:\Program Files (x86)\Common Files\Adobe
2010-01-25 17:40:15 ----D---- R:\Program Files (x86)\Adobe
2010-01-25 17:40:06 ----D---- R:\ProgramData\Adobe
2010-01-25 17:40:05 ----D---- R:\Program Files (x86)\Common Files\Adobe AIR
2010-01-25 17:39:31 ----D---- R:\ProgramData\NOS
2010-01-24 20:44:51 ----D---- R:\ProgramData\InstallShield
2010-01-22 11:57:03 ----D---- R:\Users\RadeKKK\AppData\Roaming\Uniblue
2010-01-22 11:56:58 ----D---- R:\Program Files (x86)\Uniblue
2010-01-22 06:52:49 ----A---- R:\Windows\system32\mshtml.dll
2010-01-22 06:52:48 ----A---- R:\Windows\system32\ieframe.dll
2010-01-22 06:52:47 ----A---- R:\Windows\system32\wininet.dll
2010-01-22 06:52:47 ----A---- R:\Windows\system32\urlmon.dll
2010-01-22 06:52:47 ----A---- R:\Windows\system32\msfeedsbs.dll
2010-01-22 06:52:47 ----A---- R:\Windows\system32\iedkcs32.dll
2010-01-21 00:21:59 ----D---- R:\ProgramData\Futuremark
2010-01-21 00:13:35 ----D---- R:\Users\RadeKKK\AppData\Roaming\PC Suite
2010-01-21 00:13:35 ----D---- R:\ProgramData\PC Suite
2010-01-21 00:11:41 ----D---- R:\Program Files (x86)\MarkAny
2010-01-21 00:11:39 ----D---- R:\Program Files (x86)\PC Connectivity Solution
2010-01-21 00:06:44 ----D---- R:\Windows\system32\Futuremark
2010-01-21 00:06:44 ----D---- R:\Program Files (x86)\Common Files\Futuremark Shared
2010-01-21 00:06:06 ----D---- R:\Windows\system32\AGEIA
2010-01-21 00:06:05 ----D---- R:\Program Files (x86)\AGEIA Technologies
2010-01-21 00:05:52 ----D---- R:\Program Files (x86)\Common Files\Wise Installation Wizard
2010-01-21 00:04:36 ----D---- R:\Program Files (x86)\3DMark Vantage
2010-01-20 23:42:23 ----A---- R:\Windows\system32\MSVCP71.dll
2010-01-20 23:13:43 ----A---- R:\Windows\system32\decdll.dll
2010-01-20 23:13:42 ----D---- R:\Users\RadeKKK\AppData\Roaming\FreeVideoConverter
2010-01-20 23:13:42 ----D---- R:\Program Files (x86)\Free Video Converter
2010-01-20 23:12:29 ----D---- R:\Program Files (x86)\MadZ-iPodVideo-Converter
2010-01-18 22:58:42 ----D---- R:\Program Files (x86)\Common Files\Altova
2010-01-18 22:58:42 ----D---- R:\Program Files (x86)\Altova
2010-01-18 22:58:38 ----D---- R:\ProgramData\Altova
2010-01-18 13:05:14 ----D---- R:\ProgramData\Spybot - Search & Destroy
2010-01-18 13:05:14 ----D---- R:\Program Files (x86)\Spybot - Search & Destroy
2010-01-14 17:14:58 ----D---- R:\Program Files (x86)\Winamp Detect
2010-01-14 17:14:56 ----D---- R:\Users\RadeKKK\AppData\Roaming\Winamp
2010-01-14 17:14:56 ----D---- R:\Program Files (x86)\Winamp
2010-01-14 09:42:38 ----D---- R:\Program Files (x86)\DAEMON Tools Lite
2010-01-14 09:27:13 ----D---- R:\ATI
2010-01-14 09:25:42 ----D---- R:\Users\RadeKKK\AppData\Roaming\Logitech
2010-01-14 09:25:36 ----D---- R:\ProgramData\LogiShrd
2010-01-14 09:24:53 ----D---- R:\Program Files (x86)\Common Files\LogiShrd
2010-01-14 09:24:43 ----D---- R:\ProgramData\Logitech
2010-01-14 00:10:48 ----A---- R:\Windows\system32\PerfStringBackup.INI
2010-01-13 17:41:46 ----D---- R:\IrfanView
2010-01-13 05:54:11 ----A---- R:\Windows\system32\t2embed.dll
2010-01-13 05:54:11 ----A---- R:\Windows\system32\fontsub.dll
2010-01-13 00:06:46 ----D---- R:\Users\RadeKKK\AppData\Roaming\dvdcss
2010-01-12 22:43:25 ----D---- R:\Program Files (x86)\VideoLAN
2010-01-10 21:03:01 ----D---- R:\Program Files (x86)\Windows Live SkyDrive
2010-01-10 21:02:50 ----D---- R:\Program Files (x86)\Windows Live
2010-01-10 21:02:30 ----D---- R:\Program Files (x86)\Microsoft SQL Server Compact Edition
2010-01-10 14:22:29 ----A---- R:\Windows\system32\SFFXComm.dll
2010-01-10 14:21:54 ----D---- R:\Users\RadeKKK\AppData\Roaming\InstallShield
2010-01-10 14:19:49 ----D---- R:\ProgramData\SonicFocus
2010-01-10 14:19:47 ----D---- R:\Program Files (x86)\Analog Devices
2010-01-09 21:35:27 ----D---- R:\Program Files (x86)\Mv2Player
2010-01-09 11:47:59 ----D---- R:\Users\RadeKKK\AppData\Roaming\Ubisoft
2010-01-09 11:29:19 ----D---- R:\ProgramData\Ubisoft
2010-01-08 14:07:42 ----D---- R:\Program Files (x86)\Uloz.to Uploader
2010-01-08 00:24:33 ----A---- R:\Windows\system32\XAudio2_5.dll
2010-01-08 00:24:33 ----A---- R:\Windows\system32\xactengine3_5.dll
2010-01-08 00:24:32 ----A---- R:\Windows\system32\d3dx11_42.dll
2010-01-08 00:24:32 ----A---- R:\Windows\system32\d3dx10_42.dll
2010-01-08 00:24:32 ----A---- R:\Windows\system32\d3dcsx_42.dll
2010-01-08 00:24:32 ----A---- R:\Windows\system32\D3DCompiler_42.dll
2010-01-08 00:24:31 ----A---- R:\Windows\system32\D3DX9_42.dll
2010-01-08 00:24:31 ----A---- R:\Windows\system32\D3DX9_41.dll
2010-01-08 00:24:31 ----A---- R:\Windows\system32\d3dx10_41.dll
2010-01-08 00:24:31 ----A---- R:\Windows\system32\D3DCompiler_41.dll
2010-01-08 00:24:30 ----A---- R:\Windows\system32\XAudio2_4.dll
2010-01-08 00:24:30 ----A---- R:\Windows\system32\XAPOFX1_3.dll
2010-01-08 00:24:30 ----A---- R:\Windows\system32\xactengine3_4.dll
2010-01-08 00:24:30 ----A---- R:\Windows\system32\X3DAudio1_6.dll
2010-01-08 00:24:28 ----A---- R:\Windows\system32\XAudio2_3.dll
2010-01-08 00:24:28 ----A---- R:\Windows\system32\XAudio2_2.dll
2010-01-08 00:24:28 ----A---- R:\Windows\system32\XAPOFX1_2.dll
2010-01-08 00:24:28 ----A---- R:\Windows\system32\XAPOFX1_1.dll
2010-01-08 00:24:28 ----A---- R:\Windows\system32\xactengine3_3.dll
2010-01-08 00:24:28 ----A---- R:\Windows\system32\X3DAudio1_5.dll
2010-01-08 00:24:27 ----A---- R:\Windows\system32\xactengine3_2.dll
2010-01-08 00:24:27 ----A---- R:\Windows\system32\D3DX9_39.dll
2010-01-08 00:24:27 ----A---- R:\Windows\system32\d3dx10_39.dll
2010-01-08 00:24:27 ----A---- R:\Windows\system32\D3DCompiler_39.dll
2010-01-08 00:24:26 ----A---- R:\Windows\system32\XAudio2_1.dll
2010-01-08 00:24:26 ----A---- R:\Windows\system32\XAPOFX1_0.dll
2010-01-08 00:24:26 ----A---- R:\Windows\system32\xactengine3_1.dll
2010-01-08 00:24:26 ----A---- R:\Windows\system32\X3DAudio1_4.dll
2010-01-08 00:24:25 ----A---- R:\Windows\system32\D3DX9_38.dll
2010-01-08 00:24:25 ----A---- R:\Windows\system32\d3dx10_38.dll
2010-01-08 00:24:25 ----A---- R:\Windows\system32\D3DCompiler_38.dll
2010-01-08 00:23:21 ----D---- R:\Windows\system32\directx
2010-01-07 23:41:44 ----A---- R:\Windows\system32\ATKOSDX32.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\ATKOGL32.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\ATKLUMDISP.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\atkdxtdisp.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\asrussian.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\askorean.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\asjapan.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\ASCHT.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\aschs.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\asgerman.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\asfrench.dll
2010-01-07 23:41:44 ----A---- R:\Windows\system32\aseng.dll
2010-01-07 23:41:44 ----A---- R:\Windows\nVGA_i2c.dll
2010-01-07 23:41:44 ----A---- R:\Windows\i2c_i.dll
2010-01-07 23:41:44 ----A---- R:\Windows\i2c.dll
2010-01-07 23:41:44 ----A---- R:\Windows\ASMT_CE.dll
2010-01-06 18:39:08 ----D---- R:\Windows\Minidump
2010-01-06 18:16:35 ----D---- R:\Users\RadeKKK\AppData\Roaming\WinRAR
2010-01-06 18:13:46 ----D---- R:\Users\RadeKKK\AppData\Roaming\U3
2010-01-06 18:04:22 ----D---- R:\Program Files (x86)\AutoLogin
2010-01-06 17:21:22 ----A---- R:\Windows\War3Unin.exe
2010-01-06 17:20:18 ----D---- R:\Program Files (x86)\Warcraft III
2010-01-06 15:40:49 ----D---- R:\Program Files (x86)\Marvell
2010-01-06 15:40:23 ----A---- R:\Windows\system32\CSVer.dll
2010-01-06 15:40:00 ----D---- R:\Intel
2010-01-06 15:39:55 ----D---- R:\Program Files (x86)\Intel
2010-01-06 15:33:27 ----D---- R:\Program Files (x86)\Creative
2010-01-06 15:32:37 ----A---- R:\Windows\Language_trs.ini
2010-01-06 11:50:27 ----D---- R:\Users\RadeKKK\AppData\Roaming\ICQ
2010-01-06 11:50:12 ----D---- R:\Program Files (x86)\ICQ6.5
2010-01-05 23:30:59 ----D---- R:\Program Files (x86)\MindSoft
2010-01-05 23:30:42 ----D---- R:\Windows\Downloaded Installations
2010-01-05 23:14:07 ----D---- R:\Program Files (x86)\Common Files\Windows Live
2010-01-05 23:13:38 ----D---- R:\Program Files (x86)\Microsoft
2010-01-05 21:43:25 ----D---- R:\Windows\WindowsMobile
2010-01-05 21:43:05 ----D---- R:\Program Files (x86)\Microsoft Silverlight
2010-01-05 21:24:43 ----A---- R:\Windows\system32\tzres.dll
2010-01-05 21:24:34 ----A---- R:\Windows\system32\msv1_0.dll
2010-01-05 21:24:29 ----D---- R:\Program Files (x86)\MSXML 4.0
2010-01-05 21:13:43 ----A---- R:\Windows\system32\MFC71.dll
2010-01-05 21:13:43 ----A---- R:\Windows\system32\aswBoot.exe
2010-01-05 21:09:08 ----D---- R:\Users\RadeKKK\AppData\Roaming\Macromedia
2010-01-05 21:08:35 ----A---- R:\Windows\system32\wmp.dll
2010-01-05 21:08:35 ----A---- R:\Windows\system32\CertEnroll.dll
2010-01-05 21:08:35 ----A---- R:\Windows\system32\atmfd.dll
2010-01-05 21:08:34 ----A---- R:\Windows\system32\wmploc.DLL
2010-01-05 21:07:07 ----A---- R:\Windows\system32\msasn1.dll
2010-01-05 20:59:56 ----D---- R:\Users\RadeKKK\AppData\Roaming\Adobe
2010-01-05 19:39:49 ----D---- R:\Program Files (x86)\SAMSUNG
2010-01-05 19:39:23 ----D---- R:\Windows\system32\Samsung_USB_Drivers
2010-01-05 19:39:16 ----A---- R:\Windows\system32\FsExService64.Exe
2010-01-05 19:39:11 ----D---- R:\Windows\system32\Macromed
2010-01-05 19:39:11 ----D---- R:\Users\RadeKKK\AppData\Roaming\Samsung
2010-01-05 19:38:14 ----D---- R:\Program Files (x86)\Samsung New PC Studio

======List of files/folders modified in the last 1 months======

2010-02-04 00:40:29 ----D---- R:\Windows\Temp
2010-02-04 00:12:24 ----D---- R:\Windows\System32
2010-02-04 00:12:24 ----D---- R:\Windows\inf
2010-02-03 23:13:09 ----SHD---- R:\Windows\Installer
2010-02-03 23:13:05 ----D---- R:\Windows\winsxs
2010-02-03 23:13:00 ----RD---- R:\Program Files (x86)
2010-02-03 23:13:00 ----HD---- R:\ProgramData
2010-02-03 23:12:56 ----SHD---- R:\System Volume Information
2010-02-03 23:12:20 ----D---- R:\Windows\Prefetch
2010-02-03 22:48:19 ----D---- R:\Windows\SysWOW64
2010-02-03 22:48:19 ----D---- R:\Windows\system32\drivers
2010-02-03 19:38:10 ----D---- R:\Windows
2010-02-03 13:39:04 ----A---- R:\Windows\win.ini
2010-02-03 12:26:07 ----RSD---- R:\Windows\assembly
2010-02-03 12:22:21 ----D---- R:\Program Files (x86)\Games
2010-02-03 12:22:20 ----HD---- R:\Program Files (x86)\InstallShield Installation Information
2010-02-03 01:24:06 ----RD---- R:\Program Files
2010-02-02 22:36:06 ----D---- R:\Windows\debug
2010-02-01 20:36:03 ----D---- R:\Games
2010-01-31 09:54:07 ----D---- R:\Windows\Tasks
2010-01-30 22:02:12 ----SD---- R:\ProgramData\Microsoft
2010-01-30 22:01:17 ----D---- R:\Program Files (x86)\Common Files
2010-01-27 19:59:25 ----D---- R:\Program Files (x86)\Internet Explorer
2010-01-25 20:35:23 ----D---- R:\Windows\Downloaded Program Files
2010-01-22 22:43:48 ----SD---- R:\Users\RadeKKK\AppData\Roaming\Microsoft
2010-01-20 23:37:52 ----D---- R:\ProgramData\Microsoft Help
2010-01-14 09:42:16 ----D---- R:\ProgramData\DAEMON Tools Lite
2010-01-08 00:23:21 ----D---- R:\Windows\Logs
2010-01-07 23:41:44 ----D---- R:\Windows\Help
2010-01-07 23:41:14 ----D---- R:\Program Files (x86)\ASUS
2010-01-06 19:04:01 ----SHD---- R:\$Recycle.Bin
2010-01-06 19:03:57 ----RD---- R:\Users
2010-01-06 15:38:12 ----A---- R:\Windows\system32\AsIO.dll
2010-01-06 15:34:25 ----D---- R:\Program Files (x86)\Common Files\InstallShield
2010-01-06 14:25:07 ----D---- R:\Windows\rescache
2010-01-05 23:24:13 ----D---- R:\Windows\Microsoft.NET
2010-01-05 23:13:42 ----D---- R:\Program Files (x86)\Common Files\microsoft shared
2010-01-05 21:49:45 ----RSD---- R:\Windows\Fonts
2010-01-05 21:49:36 ----D---- R:\Program Files (x86)\Microsoft Works
2010-01-05 21:49:04 ----D---- R:\Program Files (x86)\Common Files\System
2010-01-05 21:28:17 ----D---- R:\Windows\system32\cs-CZ
2010-01-05 21:28:17 ----D---- R:\Windows\ehome
2010-01-05 21:28:17 ----D---- R:\Program Files (x86)\Windows Media Player
2010-01-05 21:23:48 ----D---- R:\Windows\SoftwareDistribution
2010-01-05 21:23:21 ----D---- R:\Windows\AppPatch

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AsIO;AsIO; R:\Windows\SysWow64\drivers\AsIO.sys [2010-01-06 13440]
R1 AsUpIO;AsUpIO; R:\Windows\SysWow64\drivers\AsUpIO.sys [2010-01-06 13368]
R1 aswRdr;aswRdr; R:\Windows\system32\drivers\aswRdr.sys []
R1 aswSP;avast! Self Protection; R:\Windows\system32\drivers\aswSP.sys []
R1 aswTdi;avast! Network Shield Support; R:\Windows\system32\drivers\aswTdi.sys []
R1 blbdrive;blbdrive; R:\Windows\system32\DRIVERS\blbdrive.sys []
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; R:\Windows\system32\drivers\csc.sys []
R1 DfsC;@%systemroot%\system32\drivers\dfsc.sys,-101; R:\Windows\System32\Drivers\dfsc.sys []
R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; R:\Windows\System32\drivers\discache.sys []
R1 EIO64;EIO Driver; R:\Windows\system32\DRIVERS\EIO64.sys []
R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; R:\Windows\system32\drivers\nsiproxy.sys []
R1 RDPENCDD;@%systemroot%\system32\drivers\RDPENCDD.sys,-101; R:\Windows\system32\drivers\rdpencdd.sys []
R1 RDPREFMP;@%systemroot%\system32\drivers\RdpRefMp.sys,-101; R:\Windows\system32\drivers\rdprefmp.sys []
R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; R:\Windows\system32\DRIVERS\tdx.sys []
R1 Wanarpv6;@%systemroot%\system32\rascfg.dll,-32012; R:\Windows\system32\DRIVERS\wanarp.sys []
R1 WfpLwf;WFP Lightweight Filter; R:\Windows\system32\DRIVERS\wfplwf.sys []
R2 aswFsBlk;aswFsBlk; R:\Windows\system32\DRIVERS\aswFsBlk.sys []
R2 aswMonFlt;aswMonFlt; R:\Windows\system32\DRIVERS\aswMonFlt.sys []
R2 lltdio;Link-Layer Topology Discovery Mapper I/O Driver; R:\Windows\system32\DRIVERS\lltdio.sys []
R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; R:\Windows\system32\drivers\luafv.sys []
R2 PEAUTH;PEAUTH; R:\Windows\system32\drivers\peauth.sys []
R2 rspndr;Link-Layer Topology Discovery Responder; R:\Windows\system32\DRIVERS\rspndr.sys []
R2 tcpipreg;TCP/IP Registry Compatibility; R:\Windows\System32\drivers\tcpipreg.sys []
R3 1394ohci;Hostitelský řadič pro rozhraní OHCI standardu 1394; R:\Windows\system32\DRIVERS\1394ohci.sys []
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; R:\Windows\system32\drivers\ADIHdAud.sys []
R3 ASUS;ASUS OC GEAR Device; R:\Windows\System32\Drivers\OC_GEAR_x64.sys []
R3 asusgsb;ASUS Virtual Video Capture Device Driver; R:\Windows\system32\drivers\asusgsb.sys []
R3 atikmdag;atikmdag; R:\Windows\system32\DRIVERS\atikmdag.sys []
R3 atkdisplf;ASUS Kernel Mode Enhanced Driver; R:\Windows\System32\Drivers\atkdisplowfilter.sys []
R3 bowser;@%systemroot%\system32\browser.dll,-102; R:\Windows\system32\DRIVERS\bowser.sys []
R3 CompositeBus;Ovladač rozpoznávacího modulu složené sběrnice; R:\Windows\system32\DRIVERS\CompositeBus.sys []
R3 DXGKrnl;LDDM Graphics Subsystem; R:\Windows\System32\drivers\dxgkrnl.sys []
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; R:\Windows\system32\drivers\HdAudio.sys []
R3 HDAudBus;Ovladač sběrnice Microsoft UAA pro zvuk High Definition Audio; R:\Windows\system32\DRIVERS\HDAudBus.sys []
R3 HidUsb;Ovladač třídy standardu HID Microsoft; R:\Windows\system32\DRIVERS\hidusb.sys []
R3 intelppm;Ovladač procesoru Intel; R:\Windows\system32\DRIVERS\intelppm.sys []
R3 kbdhid;Ovladač klávesnice standardu HID; R:\Windows\system32\DRIVERS\kbdhid.sys []
R3 ksthunk;Kernel Streaming Thunks; R:\Windows\system32\drivers\ksthunk.sys []
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; R:\Windows\system32\DRIVERS\LHidFilt.Sys []
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; R:\Windows\system32\DRIVERS\LMouFilt.Sys []
R3 monitor;Služba ovladače funkce třídy monitorů Microsoft; R:\Windows\system32\DRIVERS\monitor.sys []
R3 mouhid;Ovladač myši standardu HID; R:\Windows\system32\DRIVERS\mouhid.sys []
R3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; R:\Windows\System32\drivers\mpsdrv.sys []
R3 mrxsmb10;@%systemroot%\system32\wkssvc.dll,-1004; R:\Windows\system32\DRIVERS\mrxsmb10.sys []
R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; R:\Windows\system32\DRIVERS\mrxsmb20.sys []
R3 MTsensor;ATK0110 ACPI UTILITY; R:\Windows\system32\DRIVERS\ASACPI.sys []
R3 RasAgileVpn;WAN Miniport (IKEv2); R:\Windows\system32\DRIVERS\AgileVpn.sys []
R3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; R:\Windows\system32\DRIVERS\rassstp.sys []
R3 rdpbus;Remote Desktop Device Redirector Bus Driver; R:\Windows\system32\DRIVERS\rdpbus.sys []
R3 srv2;@%systemroot%\system32\srvsvc.dll,-104; R:\Windows\System32\DRIVERS\srv2.sys []
R3 srvnet;srvnet; R:\Windows\System32\DRIVERS\srvnet.sys []
R3 TFsExDisk;TFsExDisk; \??\R:\Windows\System32\Drivers\TFsExDisk.sys [2009-08-03 16392]
R3 tunnel;Microsoft Tunnel Miniport Adapter Driver; R:\Windows\system32\DRIVERS\tunnel.sys []
R3 umbus;Ovladač sběrnice UMBus Enumerator; R:\Windows\system32\DRIVERS\umbus.sys []
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; R:\Windows\system32\DRIVERS\usbccgp.sys []
R3 usbehci;Ovladač miniportu vylepšeného hostitelského řadiče Microsoft USB 2.0; R:\Windows\system32\DRIVERS\usbehci.sys []
R3 usbhub;Ovladač standardního rozbočovače USB; R:\Windows\system32\DRIVERS\usbhub.sys []
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; R:\Windows\system32\DRIVERS\USBSTOR.SYS []
R3 usbuhci;Ovladač miniportu univerzálního hostitelského řadiče Microsoft USB; R:\Windows\system32\DRIVERS\usbuhci.sys []
R3 WudfPf;User Mode Driver Frameworks Platform Driver; R:\Windows\system32\drivers\WudfPf.sys []
R3 WUDFRd;WUDFRd; R:\Windows\system32\DRIVERS\WUDFRd.sys []
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller; R:\Windows\system32\DRIVERS\yk62x64.sys []
S3 3xHybr64;SAA713x TV Card Service; R:\Windows\system32\DRIVERS\3xHybr64.sys []
S3 AcpiPmi;ACPI Power Meter Driver; R:\Windows\system32\DRIVERS\acpipmi.sys []
S3 adp94xx;adp94xx; R:\Windows\system32\DRIVERS\adp94xx.sys []
S3 adpahci;adpahci; R:\Windows\system32\DRIVERS\adpahci.sys []
S3 adpu320;adpu320; R:\Windows\system32\DRIVERS\adpu320.sys []
S3 afr3b1m9;afr3b1m9; R:\Windows\system32\drivers\afr3b1m9.sys []
S3 agp440;Intel AGP Bus Filter; R:\Windows\system32\DRIVERS\agp440.sys []
S3 amdide;amdide; R:\Windows\system32\DRIVERS\amdide.sys []
S3 AmdK8;AMD K8 Processor Driver; R:\Windows\system32\DRIVERS\amdk8.sys []
S3 AmdPPM;AMD Processor Driver; R:\Windows\system32\DRIVERS\amdppm.sys []
S3 amdsata;amdsata; R:\Windows\system32\DRIVERS\amdsata.sys []
S3 amdsbs;amdsbs; R:\Windows\system32\DRIVERS\amdsbs.sys []
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; R:\Windows\system32\drivers\appid.sys []
S3 arc;arc; R:\Windows\system32\DRIVERS\arc.sys []
S3 arcsas;arcsas; R:\Windows\system32\DRIVERS\arcsas.sys []
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; R:\Windows\system32\drivers\AtiHdmi.sys []
S3 atillk64;atillk64; \??\R:\Program Files (x86)\ASUS\SmartDoctor\atillk64.sys [2005-10-20 7680]
S3 b06bdrv;Broadcom NetXtreme II VBD; R:\Windows\system32\DRIVERS\bxvbda.sys []
S3 b57nd60a;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; R:\Windows\system32\DRIVERS\b57nd60a.sys []
S3 BrFiltLo;Brother USB Mass-Storage Lower Filter Driver; R:\Windows\system32\DRIVERS\BrFiltLo.sys []
S3 BrFiltUp;Brother USB Mass-Storage Upper Filter Driver; R:\Windows\system32\DRIVERS\BrFiltUp.sys []
S3 Brserid;Brother MFC Serial Port Interface Driver (WDM); R:\Windows\System32\Drivers\Brserid.sys []
S3 BrSerWdm;Brother WDM Serial driver; R:\Windows\System32\Drivers\BrSerWdm.sys []
S3 BrUsbMdm;Brother MFC USB Fax Only Modem; R:\Windows\System32\Drivers\BrUsbMdm.sys []
S3 BrUsbSer;Brother MFC USB Serial WDM Driver; R:\Windows\System32\Drivers\BrUsbSer.sys []
S3 BTHMODEM;Bluetooth Serial Communications Driver; R:\Windows\system32\DRIVERS\bthmodem.sys []
S3 circlass;Consumer IR Devices; R:\Windows\system32\DRIVERS\circlass.sys []
S3 CmBatt;Microsoft ACPI Control Method Battery Driver; R:\Windows\system32\DRIVERS\CmBatt.sys []
S3 cpuz130;cpuz130; \??\R:\Users\RadeKKK\AppData\Local\Temp\cpuz130\cpuz_x64.sys []
S3 ebdrv;Broadcom NetXtreme II 10 GigE VBD; R:\Windows\system32\DRIVERS\evbda.sys []
S3 elxstor;elxstor; R:\Windows\system32\DRIVERS\elxstor.sys []
S3 ENTECH64;ENTECH64; \??\R:\Windows\system32\DRIVERS\ENTECH64.sys []
S3 ErrDev;Microsoft Hardware Error Device Driver; R:\Windows\system32\DRIVERS\errdev.sys []
S3 exfat;exFAT File System Driver; R:\Windows\system32\drivers\exfat.sys []
S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; R:\Windows\system32\drivers\filetrace.sys []
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; R:\Windows\System32\drivers\FsDepends.sys []
S3 fssfltr;FssFltr; R:\Windows\system32\DRIVERS\fssfltr.sys []
S3 gagp30kx;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms; R:\Windows\system32\DRIVERS\gagp30kx.sys []
S3 hcw85cir;Hauppauge Consumer Infrared Receiver; R:\Windows\system32\drivers\hcw85cir.sys []
S3 HidBatt;Ovladač baterie zdroje UPS standardu HID; R:\Windows\system32\DRIVERS\HidBatt.sys []
S3 HidBth;Microsoft Bluetooth HID Miniport; R:\Windows\system32\DRIVERS\hidbth.sys []
S3 HidIr;Microsoft Infrared HID Driver; R:\Windows\system32\DRIVERS\hidir.sys []
S3 HpSAMD;HpSAMD; R:\Windows\system32\DRIVERS\HpSAMD.sys []
S3 iaStorV;iaStorV; R:\Windows\system32\DRIVERS\iaStorV.sys []
S3 iirsp;iirsp; R:\Windows\system32\DRIVERS\iirsp.sys []
S3 intelide;intelide; R:\Windows\system32\DRIVERS\intelide.sys []
S3 IPMIDRV;IPMIDRV; R:\Windows\system32\DRIVERS\IPMIDrv.sys []
S3 isapnp;isapnp; R:\Windows\system32\DRIVERS\isapnp.sys []
S3 iScsiPrt;iScsiPort Driver; R:\Windows\system32\DRIVERS\msiscsi.sys []
S3 LSI_FC;LSI_FC; R:\Windows\system32\DRIVERS\lsi_fc.sys []
S3 LSI_SAS;LSI_SAS; R:\Windows\system32\DRIVERS\lsi_sas.sys []
S3 LSI_SAS2;LSI_SAS2; R:\Windows\system32\DRIVERS\lsi_sas2.sys []
S3 LSI_SCSI;LSI_SCSI; R:\Windows\system32\DRIVERS\lsi_scsi.sys []
S3 megasas;megasas; R:\Windows\system32\DRIVERS\megasas.sys []
S3 MegaSR;MegaSR; R:\Windows\system32\DRIVERS\MegaSR.sys []
S3 mpio;mpio; R:\Windows\system32\DRIVERS\mpio.sys []
S3 msahci;msahci; R:\Windows\system32\DRIVERS\msahci.sys []
S3 msdsm;msdsm; R:\Windows\system32\DRIVERS\msdsm.sys []
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; R:\Windows\System32\drivers\mshidkmdf.sys []
S3 MsRPC;MsRPC; R:\Windows\system32\drivers\MsRPC.sys []
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; R:\Windows\system32\drivers\MSTEE.sys []
S3 MTConfig;Microsoft Input Configuration Driver; R:\Windows\system32\DRIVERS\MTConfig.sys []
S3 NativeWifiP;NativeWiFi Filter; R:\Windows\system32\DRIVERS\nwifi.sys []
S3 NdisCap;NDIS Capture LightWeight Filter; R:\Windows\system32\DRIVERS\ndiscap.sys []
S3 nfrd960;nfrd960; R:\Windows\system32\DRIVERS\nfrd960.sys []
S3 nv_agp;NVIDIA nForce AGP Bus Filter; R:\Windows\system32\DRIVERS\nv_agp.sys []
S3 nvraid;nvraid; R:\Windows\system32\DRIVERS\nvraid.sys []
S3 nvstor;nvstor; R:\Windows\system32\DRIVERS\nvstor.sys []
S3 ohci1394;1394 OHCI Compliant Host Controller (Legacy); R:\Windows\system32\DRIVERS\ohci1394.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; R:\Windows\system32\DRIVERS\pccsmcfdx64.sys []
S3 ql2300;ql2300; R:\Windows\system32\DRIVERS\ql2300.sys []
S3 ql40xx;ql40xx; R:\Windows\system32\DRIVERS\ql40xx.sys []
S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; R:\Windows\system32\drivers\qwavedrv.sys []
S3 s3cap;s3cap; R:\Windows\system32\DRIVERS\vms3cap.sys []
S3 sbp2port;sbp2port; R:\Windows\system32\DRIVERS\sbp2port.sys []
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; R:\Windows\System32\DRIVERS\scfilter.sys []
S3 sermouse;Serial Mouse Driver; R:\Windows\system32\DRIVERS\sermouse.sys []
S3 sffdisk;SFF Storage Class Driver; R:\Windows\system32\DRIVERS\sffdisk.sys []
S3 sffp_mmc;SFF Storage Protocol Driver for MMC; R:\Windows\system32\DRIVERS\sffp_mmc.sys []
S3 sffp_sd;SFF Storage Protocol Driver for SDBus; R:\Windows\system32\DRIVERS\sffp_sd.sys []
S3 SiSRaid2;SiSRaid2; R:\Windows\system32\DRIVERS\SiSRaid2.sys []
S3 SiSRaid4;SiSRaid4; R:\Windows\system32\DRIVERS\sisraid4.sys []
S3 Smb;@%SystemRoot%\system32\tcpipcfg.dll,-50005; R:\Windows\system32\DRIVERS\smb.sys []
S3 stexstor;stexstor; R:\Windows\system32\DRIVERS\stexstor.sys []
S3 storvsc;storvsc; R:\Windows\system32\DRIVERS\storvsc.sys []
S3 TCPIP6;Microsoft IPv6 Protocol Driver; R:\Windows\system32\DRIVERS\tcpip.sys []
S3 tssecsrv;@%SystemRoot%\System32\DRIVERS\tssecsrv.sys,-101; R:\Windows\System32\DRIVERS\tssecsrv.sys []
S3 uagp35;Microsoft AGPv3.5 Filter; R:\Windows\system32\DRIVERS\uagp35.sys []
S3 uliagpkx;Uli AGP Bus Filter; R:\Windows\system32\DRIVERS\uliagpkx.sys []
S3 UmPass;Microsoft UMPass Driver; R:\Windows\system32\DRIVERS\umpass.sys []
S3 usb_rndisx;Adaptér USB RNDIS; R:\Windows\system32\DRIVERS\usb8023x.sys []
S3 usbcir;eHome Infrared Receiver (USBCIR); R:\Windows\system32\DRIVERS\usbcir.sys []
S3 usbohci;Microsoft USB Open Host Controller Miniport Driver; R:\Windows\system32\DRIVERS\usbohci.sys []
S3 usbprint;Microsoft USB PRINTER Class; R:\Windows\system32\DRIVERS\usbprint.sys []
S3 vga;vga; R:\Windows\system32\DRIVERS\vgapnp.sys []
S3 vhdmp;vhdmp; R:\Windows\system32\DRIVERS\vhdmp.sys []
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; R:\Windows\system32\DRIVERS\vmbus.sys []
S3 VMBusHID;VMBusHID; R:\Windows\system32\DRIVERS\VMBusHID.sys []
S3 vsmraid;vsmraid; R:\Windows\system32\DRIVERS\vsmraid.sys []
S3 vwifibus;@%SystemRoot%\System32\drivers\vwifibus.sys,-257; R:\Windows\System32\drivers\vwifibus.sys []
S3 WacomPen;Wacom Serial Pen HID Driver; R:\Windows\system32\DRIVERS\wacompen.sys []
S3 Wd;Wd; R:\Windows\system32\DRIVERS\wd.sys []
S3 WIMMount;WIMMount; R:\Windows\system32\drivers\wimmount.sys [2009-07-14 19008]
S3 WINUSB;Ovladač WinUsb; R:\Windows\system32\DRIVERS\WinUSB.SYS []
S3 WmiAcpi;Microsoft Windows Management Interface for ACPI; R:\Windows\system32\DRIVERS\wmiacpi.sys []
S4 crcdisk;Crcdisk Filter Driver; R:\Windows\system32\DRIVERS\crcdisk.sys []
S4 ws2ifsl;@%systemroot%\System32\drivers\ws2ifsl.sys,-1000; R:\Windows\system32\drivers\ws2ifsl.sys []

[RadeKKK88]

RSIT druhá část logu:

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AEADIFilters;Andrea ADI Filters Service; R:\Windows\system32\AEADISRV.EXE []
R2 AMD External Events Utility;AMD External Events Utility; R:\Windows\system32\atiesrxx.exe []
R2 ASDR;ASDR; R:\Windows\SysWOW64\ASDR.exe [2009-07-27 61440]
R2 aswUpdSv;avast! iAVS4 Control Service; R:\Program Files\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 ATKFUSService;ATK Fast User Switch Service; R:\Windows\system32\ATKFUSService.exe []
R2 AudioEndpointBuilder;@%SystemRoot%\system32\audiosrv.dll,-204; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 avast! Antivirus;avast! Antivirus; R:\Program Files\Avast4\ashServ.exe [2009-11-25 138680]
R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DPS;@%systemroot%\system32\dps.dll,-500; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 gpsvc;@gpapi.dll,-112; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 iphlpsvc;@%SystemRoot%\system32\iphlpsvc.dll,-500; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 MpsSvc;@%SystemRoot%\system32\FirewallAPI.dll,-23090; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 SBSDWSCService;SBSD Security Center Service; R:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
R2 SysMain;@%SystemRoot%\system32\sysmain.dll,-1000; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 UxSms;@%SystemRoot%\system32\dwm.exe,-2000; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 WinDefend;@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 wlidsvc;Windows Live ID Sign-in Assistant; R:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 2297216]
R2 WMPNetworkSvc;@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101; R:\Program Files (x86)\Windows Media Player\wmpnetwk.exe []
R2 WSearch;@%systemroot%\system32\SearchIndexer.exe,-103; R:\Windows\system32\SearchIndexer.exe [2009-07-14 428032]
R2 wudfsvc;@%SystemRoot%\system32\wudfsvc.dll,-1000; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 avast! Mail Scanner;avast! Mail Scanner; R:\Program Files\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; R:\Program Files\Avast4\ashWebSv.exe [2009-11-25 352920]
R3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 netprofm;@%SystemRoot%\system32\netprofm.dll,-202; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 ServiceLayer;ServiceLayer; R:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
R3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; R:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 wcncsvc;@%SystemRoot%\system32\wcncsvc.dll,-3; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 WdiServiceHost;@%systemroot%\system32\wdi.dll,-502; R:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 WPDBusEnum;@%SystemRoot%\system32\wpdbusenum.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; R:\Windows\system32\sppsvc.exe []
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 clr_optimization_v2.0.50727_32;Microsoft .NET Framework NGEN v2.0.50727_X86; R:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2009-06-10 66384]
S3 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64; R:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-06-10 89920]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; R:\Windows\System32\lsass.exe []
S3 ehRecvr;@%SystemRoot%\ehome\ehrecvr.exe,-101; R:\Windows\ehome\ehRecvr.exe [2009-07-14 696832]
S3 ehSched;@%SystemRoot%\ehome\ehsched.exe,-101; R:\Windows\ehome\ehsched.exe [2009-07-14 127488]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; R:\Windows\system32\fxssvc.exe []
S3 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; R:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2009-06-10 42840]
S3 fsssvc;Služba Windows Live Zabezpečení rodiny; R:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
S3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 IDriverT;InstallDriver Table Manager; R:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;@%systemroot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8193; R:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe [2009-06-10 856384]
S3 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 IPBusEnum;@%systemroot%\system32\IPBusEnum.dll,-102; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 KeyIso;@keyiso.dll,-100; R:\Windows\system32\lsass.exe []
S3 KtmRm;@comres.dll,-2946; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 LBTServ;Logitech Bluetooth Service; R:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2009-07-20 160784]
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 odserv;Microsoft Office Diagnostics Service; R:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; R:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; R:\Windows\SysWow64\perfhost.exe [2009-07-14 20992]
S3 pla;@%systemroot%\system32\pla.dll,-500; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SDRSVC;@%SystemRoot%\system32\sdrsvc.dll,-107; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; R:\Windows\System32\snmptrap.exe []
S3 sppuinotify;@%SystemRoot%\system32\sppuinotify.dll,-103; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 TBS;@%SystemRoot%\system32\tbssvc.dll,-100; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; R:\Windows\servicing\TrustedInstaller.exe [2009-07-14 194048]
S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; R:\Windows\system32\UI0Detect.exe []
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; R:\Windows\system32\lsass.exe []
S3 vds;@%SystemRoot%\system32\vds.exe,-100; R:\Windows\System32\vds.exe []
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; R:\Windows\system32\wbengine.exe []
S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 WcsPlugInService;@%SystemRoot%\system32\WcsPlugInService.dll,-200; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Wecsvc;@%SystemRoot%\system32\wecsvc.dll,-200; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 wercplsupport;@%SystemRoot%\System32\wercplsupport.dll,-101; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WerSvc;@%SystemRoot%\System32\wersvc.dll,-100; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WinHttpAutoProxySvc;@%SystemRoot%\system32\winhttp.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 WinRM;@%Systemroot%\system32\wsmsvc.dll,-101; R:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Wlansvc;@%SystemRoot%\System32\wlansvc.dll,-257; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 WPCSvc;@%SystemRoot%\system32\wpcsvc.dll,-100; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 WwanSvc;@%SystemRoot%\System32\wwansvc.dll,-257; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S4 Mcx2Svc;@%SystemRoot%\ehome\ehres.dll,-15501; R:\Windows\system32\svchost.exe [2009-07-14 20992]
S4 NetTcpPortSharing;@%systemroot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8201; R:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2009-06-10 116560]

-----------------EOF-----------------

[motji]

odinstalujte Swetim toolbar
můžu Vás poprosit o odstranění logu z code, špatně se to čte, at něco nepřehlédnu . Díky

[RadeKKK88]

toolbar jsem odintaloval a ve všech zprávách odstranil code