log z RSITu:
Logfile of random's system information tool 1.06 (written by random/random)
Run by Adrián Pyteľ at 2010-02-25 15:14:09
Systém Microsoft Windows XP Professional Service Pack 4
System drive C: has 6 GB (31%) free of 20 GB
Total RAM: 1023 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:14:18, on 25.2.2010
Platform: Windows XP SP4 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\COMMON~1\Stardock\SDMCP.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Eset\nod32krn.exe
C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\HP\Digital Imaging\Product Assistant\bin\hprblog.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Adrián Pyteľ\Desktop\RSIT.exe
C:\Program Files\trend micro\Adrián Pyteľ.exe
R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL =
http://search13.net/search.php?clid=486&q=%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://search13.net/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant =
http://www.crawler.com/search/ie.aspx?tb_id=66022
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
http://search13.net/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
http://search13.net/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - D:\Programz\Orbitdownloader\orbitcth.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O3 - Toolbar: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -scheduler
O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [RunNarrator] Narrator.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [RunNarrator] Narrator.exe (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: &Compress Image Using Image Compressor 2008 - D:\Programy\image compressor 08 pro ed\imcieex_compress.html
O8 - Extra context menu item: &Download by Orbit - res://D:\Programz\Orbitdownloader\orbitmxt.dll/201
O8 - Extra context menu item: &Grab video by Orbit - res://D:\Programz\Orbitdownloader\orbitmxt.dll/204
O8 - Extra context menu item: Do&wnload selected by Orbit - res://D:\Programz\Orbitdownloader\orbitmxt.dll/203
O8 - Extra context menu item: Down&load all by Orbit - res://D:\Programz\Orbitdownloader\orbitmxt.dll/202
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {248F1F2D-E854-40AD-BB42-2E69EBC1CD8B} (ST WebDialer Control) -
https://zona.t-com.sk/VianKampan2007/STWebDialer.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{37A055EB-FE2D-476C-92EE-88BDDD2D3473}: NameServer = 217.119.124.1 217.119.124.146
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\WINDOWS\system32\wbsys.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate1ca56fca6d5367e) (gupdate1ca56fca6d5367e) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Performance Driver Service - Unknown owner - C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
--
End of file - 8562 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Automatic troubleshooting.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000123B4-9B42-4900-B3F7-F4B073EFC214}]
Octh Class - D:\Programz\Orbitdownloader\orbitcth.dll [2009-12-21 240912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll [2008-02-22 509328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IMJPMIG8.1"=C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2004-08-04 208952]
"MSPY2002"=C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe [2004-08-04 59392]
"nod32kui"=C:\Program Files\Eset\nod32kui.exe [2008-08-15 949376]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-10-07 13574144]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-10-07 86016]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM"=C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe [2006-09-10 218032]
"Pando Media Booster"=C:\Program Files\Pando Networks\Media Booster\PMB.exe [2009-12-20 2935480]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\WINDOWS\system32\wbsys.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\MCPClient]
C:\PROGRA~1\COMMON~1\Stardock\mcpstub.dll [2005-01-31 49152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WBSrv]
D:\Programy\WindowBlinds\wbsrv.dll [2008-03-16 229376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
0aMCPClient - {F5DF91F9-15E9-416B-A7C3-7519B11ECBFC} - C:\PROGRA~1\COMMON~1\stardock\MCPCore.dll [2005-05-10 86016]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-05-09 52224]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2004-08-04 239616]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=
"NoDriveTypeAutoRun"=
"NoDrives"=
"NoDriveAutoRun"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\Programy\uTorrent\utorrent.exe"="D:\Programy\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Windows Media Player\wmplayer.exe"="C:\Program Files\Windows Media Player\wmplayer.exe:*:Enabled:Windows Media Player"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"D:\Programy\Clear FTP 2006\clearftp.exe"="D:\Programy\Clear FTP 2006\clearftp.exe:*:Enabled:clearftp"
"D:\Programy\Fps Creator\MyGames\arenaskuska\arenaskuska.exe"="D:\Programy\Fps Creator\MyGames\arenaskuska\arenaskuska.exe:*:Enabled:FPSC Game"
"D:\Programy\Fps Creator\FPSC-Game.exe"="D:\Programy\Fps Creator\FPSC-Game.exe:*:Enabled:FPSC Game"
"D:\Programy\eDisk klient\eDisk klient.exe"="D:\Programy\eDisk klient\eDisk klient.exe:*:Enabled:eDisk klient"
"D:\Programy\Fps Creator\MyGames\arenaskuska2\arenaskuska2.exe"="D:\Programy\Fps Creator\MyGames\arenaskuska2\arenaskuska2.exe:*:Enabled:FPSC Game"
"D:\Programy\Hamachi\hamachi.exe"="D:\Programy\Hamachi\hamachi.exe:*:Enabled:Hamachi Client"
"D:\Programy\GoQ - NetRadio\NetRadio.exe"="D:\Programy\GoQ - NetRadio\NetRadio.exe:*:Enabled:NetRadio"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"D:\Programy\HLSW\hlsw.exe"="D:\Programy\HLSW\hlsw.exe:*:Enabled:HLSW Application"
"C:\Documents and Settings\All Users\Application Data\NexonUS\NGM\NGM.exe"="C:\Documents and Settings\All Users\Application Data\NexonUS\NGM\NGM.exe:*:Enabled:Nexon Game Manager"
"D:\Programy\QIP Infium\infium.exe"="D:\Programy\QIP Infium\infium.exe:*:Enabled:QIP Infium"
"C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"
"C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe"="C:\Program Files\HP\Digital Imaging\Unload\HpqDIA.exe:*:Enabled:hpqdia.exe"
"C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe"
"D:\Programz\Orbitdownloader\orbitdm.exe"="D:\Programz\Orbitdownloader\orbitdm.exe:*:Enabled:Orbit"
"D:\Programz\Orbitdownloader\orbitnet.exe"="D:\Programz\Orbitdownloader\orbitnet.exe:*:Enabled:Orbit"
"D:\Programy\LimeWire\LimeWire.exe"="D:\Programy\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"D:\HRY\Call of Duty 4 - Modern Warfare\iw3mp.exe"="D:\HRY\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) "
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"D:\Programy\Edisk\eDisk klient\eDisk klient.exe"="D:\Programy\Edisk\eDisk klient\eDisk klient.exe:*:Enabled:eDisk klient"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"D:\Programy\real player\realplay.exe"="D:\Programy\real player\realplay.exe:*:Enabled:RealPlayer"
"D:\Programy\iTunes\iTunes.exe"="D:\Programy\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
"D:\Programy\Plugin Manager\skypePM.exe"="D:\Programy\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"D:\HRY\THPS2\THawk2_smaller.exe"="D:\HRY\THPS2\THawk2_smaller.exe:*:Enabled:THawk2_smaller"
"D:\Programy\Phone\Skype.exe"="D:\Programy\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\HRY\Combat Arms\CombatArms.exe"="D:\HRY\Combat Arms\CombatArms.exe:*Enabled:CombatArms.exe"
"D:\HRY\Combat Arms\Engine.exe"="D:\HRY\Combat Arms\Engine.exe:*Enabled:Engine.exe"
"C:\Program Files\Pando Networks\Media Booster\PMB.exe"="C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7cae351e-6908-11dc-b97f-000b6abf036f}]
shell\AutoRun\command - I:\SECHEM///drvetje.exe
shell\open\command - I:\SECHEM///drvetje.exe
======File associations======
.js - edit - "D:\Programy\dreamweaver8\Dreamweaver 8\dreamweaver.exe" "%1"
======List of files/folders created in the last 1 months======
2010-02-20 14:13:41 ----D---- C:\psp
2010-02-20 13:56:56 ----SHD---- C:\RECYCLER
2010-02-20 11:12:37 ----D---- C:\WINDOWS\temp
2010-02-20 10:45:49 ----A---- C:\mbr.exe
2010-02-19 21:19:30 ----A---- C:\WINDOWS\system32\CF11096.exe
2010-02-19 15:14:23 ----A---- C:\WINDOWS\system32\sipr3260.dll
2010-02-19 15:14:23 ----A---- C:\WINDOWS\system32\cook3260.dll
2010-02-19 15:14:22 ----A---- C:\WINDOWS\system32\vp7vfw.dll
2010-02-19 15:14:21 ----A---- C:\WINDOWS\system32\wvc1dmod.dll
2010-02-18 16:19:34 ----D---- C:\Documents and Settings\Adrián Pyteľ\Application Data\id Software
2010-02-18 16:19:27 ----D---- C:\Documents and Settings\All Users\Application Data\id Software
2010-02-12 11:42:16 ----A---- C:\WINDOWS\system32\licence.dll
2010-02-05 13:56:57 ----D---- C:\Documents and Settings\Adrián Pyteľ\Application Data\GetRightToGo
2010-01-28 10:29:08 ----A---- C:\WINDOWS\system32\TURegOpt.exe
2010-01-28 10:29:07 ----A---- C:\WINDOWS\system32\uxtuneup.dll
2010-01-28 10:28:34 ----D---- C:\Program Files\TuneUp Utilities 2010
======List of files/folders modified in the last 1 months======
2010-02-25 15:14:17 ----D---- C:\WINDOWS\Prefetch
2010-02-25 15:14:12 ----D---- C:\Program Files\trend micro
2010-02-25 15:13:21 ----D---- C:\Program Files\Mozilla Firefox
2010-02-25 11:30:06 ----D---- C:\WINDOWS\system32\CatRoot2
2010-02-25 11:01:06 ----D---- C:\Documents and Settings\Adrián Pyteľ\Application Data\HLSW
2010-02-25 11:00:36 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2010-02-25 10:42:58 ----A---- C:\WINDOWS\NeroDigital.ini
2010-02-24 22:02:22 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-02-24 11:43:37 ----D---- C:\Documents and Settings\Adrián Pyteľ\Application Data\uTorrent
2010-02-23 22:15:37 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2010-02-23 22:14:57 ----D---- C:\Documents and Settings\Adrián Pyteľ\Application Data\MyPhoneExplorer
2010-02-23 11:28:21 ----D---- C:\WINDOWS
2010-02-22 16:20:55 ----D---- C:\downloads
2010-02-21 13:38:06 ----D---- C:\Documents and Settings\Adrián Pyteľ\Application Data\Orbit
2010-02-20 20:16:30 ----D---- C:\Documents and Settings\Adrián Pyteľ\Application Data\Skype
2010-02-20 18:53:38 ----D---- C:\Documents and Settings\Adrián Pyteľ\Application Data\Adobe
2010-02-20 17:42:22 ----D---- C:\Documents and Settings\Adrián Pyteľ\Application Data\skypePM
2010-02-20 13:27:15 ----AD---- C:\Qoobox
2010-02-20 11:12:50 ----SD---- C:\WINDOWS\Temporary Internet Files
2010-02-20 11:10:05 ----A---- C:\WINDOWS\system.ini
2010-02-20 11:08:14 ----D---- C:\WINDOWS\system32\drivers
2010-02-20 11:08:14 ----D---- C:\WINDOWS\system32
2010-02-20 11:08:14 ----D---- C:\WINDOWS\AppPatch
2010-02-20 11:08:11 ----D---- C:\Program Files\Common Files
2010-02-19 21:44:51 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-02-19 21:44:51 ----D---- C:\WINDOWS\erdnt
2010-02-19 21:39:43 ----D---- C:\WINDOWS\system32\config
2010-02-19 21:38:54 ----AD---- C:\Program Files
2010-02-19 21:38:46 ----D---- C:\WINDOWS\Config
2010-02-19 15:37:40 ----D---- C:\Documents and Settings\Adrián Pyteľ\Application Data\Vso
2010-02-19 15:14:17 ----D---- C:\Program Files\vso
2010-02-18 16:19:37 ----SHD---- C:\WINDOWS\Installer
2010-02-18 16:19:36 ----D---- C:\Config.Msi
2010-02-18 16:19:31 ----AC---- C:\WINDOWS\system32\pbsvc.exe
2010-02-16 15:51:11 ----D---- C:\Games
2010-02-10 14:45:13 ----A---- C:\WINDOWS\win.ini
2010-02-05 15:46:21 ----D---- C:\WINDOWS\Minidump
2010-02-02 16:45:56 ----D---- C:\WINDOWS\system32\DirectX
2010-02-02 16:45:48 ----RSD---- C:\WINDOWS\assembly
2010-02-02 16:13:50 ----HD---- C:\Program Files\InstallShield Installation Information
2010-01-28 18:13:09 ----D---- C:\Documents and Settings\All Users\Application Data\Ubisoft
2010-01-28 10:29:14 ----SD---- C:\WINDOWS\Tasks
2010-01-28 10:28:19 ----D---- C:\Documents and Settings\All Users\Application Data\TuneUp Software
2010-01-26 17:22:57 ----D---- C:\Program Files\ICQ6.5
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-04 36096]
R1 nod32drv;nod32drv; C:\WINDOWS\system32\drivers\nod32drv.sys [2008-08-15 15424]
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2004-05-13 79488]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2007-01-20 31644]
R1 sdpiosys;sdpiosys; C:\WINDOWS\system32\drivers\sdpiosys.sys [2004-11-30 161792]
R1 WS2IFSL;Prostredie podpory poskytovateľa služby Windows Socket 2.0 Non-IFS Service; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-04 12032]
R2 AMON;AMON; C:\WINDOWS\system32\drivers\amon.sys [2008-08-15 512096]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2007-11-11 278984]
R2 Hardlock;Hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys []
R2 Haspnt;Haspnt; \??\C:\WINDOWS\system32\drivers\Haspnt.sys []
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2007-11-11 25416]
R3 Afc;PPdus ASPI Shell; C:\WINDOWS\system32\drivers\Afc.sys [2005-02-23 11776]
R3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys [2004-01-08 812416]
R3 hidgame;Microsoft Hid to Joystick Port Enabler; C:\WINDOWS\system32\DRIVERS\hidgame.sys [2001-08-17 8576]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-10-07 6133856]
R3 PAC207;PC Camera; C:\WINDOWS\system32\DRIVERS\PFC027.SYS [2007-05-29 508160]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2009-12-25 47360]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys []
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-04 26624]
R3 usbhub;Microsoft USB Standard Hub Driver; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-03 57600]
R3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
S1 aiptektp;Pen Pad; C:\WINDOWS\system32\DRIVERS\aiptektp.sys [2005-12-23 22656]
S3 actser;actser; C:\WINDOWS\system32\drivers\actser.sys [2004-08-23 29440]
S3 apaejuym;apaejuym; C:\WINDOWS\system32\drivers\apaejuym.sys []
S3 aqaqu798;aqaqu798; C:\WINDOWS\system32\drivers\aqaqu798.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\ADRINP~1\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2008-03-19 15440]
S3 hamachi_oem;PlayLinc Adapter; C:\WINDOWS\system32\DRIVERS\gan_adapter.sys [2006-08-28 10664]
S3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2005-03-08 51120]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2005-03-08 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-03-08 21744]
S3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 rak;rak; \??\C:\WINDOWS\system32\rakion.sys []
S3 RivaTuner32;RivaTuner32; \??\D:\Programy\RivaTuner v2.06\RivaTuner32.sys []
S3 s716bus;Sony Ericsson Device 716 driver (WDM); C:\WINDOWS\system32\DRIVERS\s716bus.sys [2007-06-29 83208]
S3 s716mdfl;Sony Ericsson Device 716 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s716mdfl.sys [2007-06-29 15112]
S3 s716mdm;Sony Ericsson Device 716 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s716mdm.sys [2007-06-29 108552]
S3 s716mgmt;Sony Ericsson Device 716 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s716mgmt.sys [2007-06-29 100360]
S3 s716nd5;Sony Ericsson Device 716 USB Ethernet Emulation SEMC716 (NDIS); C:\WINDOWS\system32\DRIVERS\s716nd5.sys [2007-06-29 23176]
S3 s716obex;Sony Ericsson Device 716 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s716obex.sys [2007-06-29 98568]
S3 s716unic;Sony Ericsson Device 716 USB Ethernet Emulation SEMC716 (WDM); C:\WINDOWS\system32\DRIVERS\s716unic.sys [2007-06-29 98952]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 w200bus;Sony Ericsson W200 driver (WDM); C:\WINDOWS\system32\DRIVERS\w200bus.sys [2006-11-07 61504]
S3 w200mdfl;Sony Ericsson W200 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\w200mdfl.sys [2006-11-07 9328]
S3 w200mdm;Sony Ericsson W200 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\w200mdm.sys [2006-11-07 97056]
S3 w200mgmt;Sony Ericsson W200 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\w200mgmt.sys [2006-11-07 88560]
S3 w200obex;Sony Ericsson W200 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\w200obex.sys [2006-11-07 86368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-05-09 40704]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-04-11 87808]
S3 zlportio;zlportio; \??\D:\from torrent\ultrastardx-101a-full\zlportio.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R01000000 papycpu2;papycpu2; C:\WINDOWS\System32\DRIVERS\papycpu2.sys [2003-01-17 1984]
R01000000 papyjoy;papyjoy; C:\WINDOWS\System32\DRIVERS\papyjoy.sys [2003-01-17 1856]
R2 aawservice;Ad-Aware 2007 Service; C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe [2007-06-18 565248]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-11-07 132424]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2008-08-15 552064]
R2 NVIDIA Performance Driver Service;NVIDIA Performance Driver Service; C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe [2008-12-11 3575808]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-10-07 163908]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2009-12-18 1044808]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2004-08-04 14336]
R2 wmcmgc;Windows Management Configuration; C:\WINDOWS\System32\svchost.exe [2004-08-04 14336]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
S2 gupdate1ca56fca6d5367e;Služba Google Update (gupdate1ca56fca6d5367e); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-10-27 133104]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2004-09-29 69632]
S2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-03-01 75064]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2009-01-13 72704]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-01-17 654848]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-11-20 536872]
S3 Macromedia Licensing Service;Macromedia Licensing Service; C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe [2008-03-03 68096]
S3 MSSQL$SONY_MEDIAMGR;MSSQL$SONY_MEDIAMGR; D:\Programy\Sony SF8 Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [2002-12-17 7520337]
S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-08-22 724992]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2009-10-29 3407292]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 SQLAgent$SONY_MEDIAMGR;SQLAgent$SONY_MEDIAMGR; D:\Programy\Sony SF8 Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [2002-12-17 311872]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2010-01-28 435016]
S3 usprserv;User Privilege Service; C:\WINDOWS\System32\svchost.exe [2004-08-04 14336]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-05-09 823808]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2007-10-11 122880]
-----------------EOF-----------------
log z USBFixu:
############################## | UsbFix V6.097 |
User : Adrián Pyteľ (Administrators) # PC
Update on 20/02/2010 by El Desaparecido , C_XX & Chimay8
Start at: 15:21:22 | 25.2.2010
Website :
http://pagesperso-orange.fr/NosTools/index.html
Contact :
FindyKill.Contact@gmail.com
Intel(R) Celeron(R) CPU 2.80GHz
Systém Microsoft Windows XP Professional (5.1.2600 32-bit) # Service Pack 4
Internet Explorer 6.0.2900.2180
Windows Firewall Status : Enabled
AV : Eset NOD32 Antivirus 2.70 2.70 [ Enabled | Updated ]
A:\ -> 3,5 palcová disketová mechanika
C:\ -> Lokálny pevný disk # 19.53 Go (6.07 Go free) # NTFS
D:\ -> Lokálny pevný disk # 55.02 Go (559.76 Mo free) # NTFS
E:\ -> Disk CD-ROM
F:\ -> Disk CD-ROM
G:\ -> Disk CD-ROM
H:\ -> Disk CD-ROM
J:\ -> Vymeniteľný disk # 7.45 Go (7.45 Go free) [FŤIPS'S DEV] # FAT32
############################## | Active processes |
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\logonui.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Eset\nod32krn.exe
C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\COMMON~1\Stardock\SDMCP.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\TuneUp Utilities 2010\TuneUpSystemStatusCheck.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
################## | Files # Infected Folders |
Deleted ! C:\WINDOWS\IFinst27.exe
Deleted ! C:\Recycler\S-1-5-21-2619539893-2343344858-692672608-4398\nissan.exe
Deleted ! C:\Recycler\S-1-5-21-2619539893-2343344858-692672608-4398\Desktop.ini
Deleted ! C:\Recycler\S-1-5-21-2619539893-2343344858-692672608-4398
Deleted ! C:\Recycler\S-1-5-21-1960408961-73586283-682003330-1003
Deleted ! C:\Recycler\S-1-5-21-4663519303-3476703519-516126210-8597
Deleted ! D:\HijackThis.exe
Deleted ! D:\Recycler\S-1-5-21-1177238915-162531612-839522115-1003
Deleted ! D:\Recycler\S-1-5-21-1715567821-1659004503-682003330-1003
Deleted ! D:\Recycler\S-1-5-21-1960408961-73586283-682003330-1003
J:\autorun.inf -> Called file : "J:\DIJASPORA///gruda.exe" ( Not Found ! )
J:\autorun.inf -> Called file : "J:\DIJASPORA///gruda.exe" ( Not Found ! )
Deleted ! J:\autorun.inf
################## | Registry |
Deleted ! [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoDrives"
Deleted ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoDrives"
Deleted ! [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoResolveSearch"
################## | Mountpoints2 |
Deleted ! HKCU\...\Explorer\MountPoints2\{7cae351e-6908-11dc-b97f-000b6abf036f}\Shell\AutoRun\Command
################## | Listing of the present files |
[01.09.2009 14:00|--a------|45] C:\23990098.$$$
[11.12.2009 13:51|--a------|20287] C:\aaw7boot.log
[21.01.2009 18:43|---------|45] C:\AUTOEXEC.BAT
[13.09.2008 20:08|--a------|1726] C:\avenger.txt
[22.09.2007 12:13|---hs----|211] C:\boot.ini
[22.09.2007 12:19|--a------|0] C:\CONFIG.SYS
[29.10.2007 18:52|--a------|23900] C:\debug.log
[26.10.2009 18:02|--a------|3532] C:\drmHeader.bin
[19.05.2008 17:58|--a------|264] C:\fftrlog.txt
[25.05.2009 11:03|--a------|1229] C:\info.log
[22.09.2007 12:19|-rahs----|0] C:\IO.SYS
[20.02.2010 10:45|--a------|77312] C:\mbr.exe
[20.02.2010 10:53|--a------|195] C:\mbr.log
[22.09.2007 12:19|-rahs----|0] C:\MSDOS.SYS
[04.08.2004 13:00|-rahs----|47564] C:\NTDETECT.COM
[04.08.2004 13:00|-rahs----|250032] C:\ntldr
[08.12.2009 15:44|--a------|304160] C:\PA207.DAT
[?|?|?] C:\pagefile.sys
[14.01.2010 17:10|--a------|49] C:\plug_in.ini
[14.07.2008 10:02|--a------|37124] C:\SDSSetup.log
[25.02.2010 15:29|--a------|4550] C:\UsbFix.txt
[25.09.2009 11:48|--a------|7] D:\0000 Nedota§en‚ Linky DzusoForRapid
[14.09.2008 12:13|--a------|1406832] D:\023.avi
[14.11.2009 07:37|--a------|20494755] D:\11886537.mp4
[16.11.2009 07:49|--a------|9195404] D:\339045730303_4951.mp4
[25.09.2008 14:38|--a------|35124856] D:\AdbeRdr90_en_US.exe
[25.03.2009 17:48|---hs----|2106] D:\AlbumArtSmall.jpg
[04.05.2008 15:59|---hs----|9536] D:\AlbumArt_{00000000-0000-0000-0000-000000000000}_Large.jpg
[04.05.2008 15:59|---hs----|2641] D:\AlbumArt_{00000000-0000-0000-0000-000000000000}_Small.jpg
[17.02.2009 15:02|---hs----|12842] D:\AlbumArt_{066FE803-25BD-4312-9BD0-4631625F5AC7}_Large.jpg
[17.02.2009 15:02|---hs----|2902] D:\AlbumArt_{066FE803-25BD-4312-9BD0-4631625F5AC7}_Small.jpg
[03.03.2008 15:41|---hs----|13791] D:\AlbumArt_{083FAEB2-71DC-4423-BFD6-76B7F132A56A}_Large.jpg
[03.03.2008 15:41|---hs----|3050] D:\AlbumArt_{083FAEB2-71DC-4423-BFD6-76B7F132A56A}_Small.jpg
[14.05.2007 14:33|---hs----|8550] D:\AlbumArt_{2C37F23F-6CEA-4CBC-B2F9-BE20D211E5EC}_Large.jpg
[14.05.2007 14:33|---hs----|2333] D:\AlbumArt_{2C37F23F-6CEA-4CBC-B2F9-BE20D211E5EC}_Small.jpg
[15.09.2008 11:50|---hs----|10256] D:\AlbumArt_{5DBFB78B-8BE6-4976-A672-7EFCEC9D6891}_Large.jpg
[15.09.2008 11:50|---hs----|2450] D:\AlbumArt_{5DBFB78B-8BE6-4976-A672-7EFCEC9D6891}_Small.jpg
[29.03.2008 12:00|---hs----|9823] D:\AlbumArt_{703A4F0F-6741-42BA-AA04-E9DB96C14B34}_Large.jpg
[29.03.2008 12:00|---hs----|2520] D:\AlbumArt_{703A4F0F-6741-42BA-AA04-E9DB96C14B34}_Small.jpg
[25.03.2009 17:48|---hs----|6822] D:\AlbumArt_{7B81B348-8D4B-433B-BCDC-A2237F3381D4}_Large.jpg
[25.03.2009 17:48|---hs----|2106] D:\AlbumArt_{7B81B348-8D4B-433B-BCDC-A2237F3381D4}_Small.jpg
[04.02.2009 17:59|---hs----|9962] D:\AlbumArt_{89AE4B27-9D63-486C-9F16-02EA16F4D4BB}_Large.jpg
[04.02.2009 17:59|---hs----|9962] D:\AlbumArt_{89AE4B27-9D63-486C-9F16-02EA16F4D4BB}_Small.jpg
[12.01.2008 13:15|---hs----|13197] D:\AlbumArt_{96F69DF9-46E8-47BB-9254-B80C362C8344}_Large.jpg
[12.01.2008 13:15|---hs----|2889] D:\AlbumArt_{96F69DF9-46E8-47BB-9254-B80C362C8344}_Small.jpg
[15.11.2008 17:13|---hs----|7150] D:\AlbumArt_{990F8971-1A48-437B-A996-826D762795D6}_Large.jpg
[15.11.2008 17:13|---hs----|2064] D:\AlbumArt_{990F8971-1A48-437B-A996-826D762795D6}_Small.jpg
[18.02.2009 10:53|---hs----|6727] D:\AlbumArt_{9CAC03DB-7A76-4912-A964-1CB4F40169BA}_Large.jpg
[18.02.2009 10:53|---hs----|1850] D:\AlbumArt_{9CAC03DB-7A76-4912-A964-1CB4F40169BA}_Small.jpg
[06.11.2008 19:12|---hs----|14435] D:\AlbumArt_{E4712F77-2F1E-4355-B174-62B16824DC80}_Large.jpg
[06.11.2008 19:12|---hs----|3140] D:\AlbumArt_{E4712F77-2F1E-4355-B174-62B16824DC80}_Small.jpg
[12.02.2008 16:48|---hs----|12229] D:\AlbumArt_{E83CA0FA-E521-4868-BD5A-681C43E7411B}_Large.jpg
[12.02.2008 16:48|---hs----|3292] D:\AlbumArt_{E83CA0FA-E521-4868-BD5A-681C43E7411B}_Small.jpg
[06.02.2009 19:03|--a------|11903] D:\All_Dat_Azz_21.torrent
[02.06.2008 12:04|--a------|23040] D:\ATT25184.doc
[27.10.2008 15:13|--a------|14557376] D:\avc-free.exe
[30.12.2008 22:13|--a------|27316582] D:\Breakin Beats (Old School breakdance mix).flv
[26.01.2009 16:54|--a------|26244405] D:\Brick And Lace - Love Is Wicked.flv
[08.04.2009 14:19|--a------|12790272] D:\BumpTopInstaller2738.msi
[31.05.2009 13:50|--a------|1158444] D:\cbr display.zip
[05.10.2008 14:38|--a------|3242124] D:\chernobyl.zip
[10.05.2009 18:00|--a------|4167074] D:\Coca Cola Commercial - Coke Creatures Ad.flv
[27.09.2008 15:04|--a------|2857912] D:\ComboFix.exe
[26.10.2008 20:10|--a------|2] D:\Config.dat
[05.04.2008 13:07|--a------|16787325] D:\cooledit_pro_2.0.rar
[21.09.2008 15:24|--a------|4743112] D:\daemon4301-lite.exe
[27.10.2008 16:59|--a------|16901] D:\Divokej_Bill.torrent
[16.02.2009 15:23|--a------|19333112] D:\DivXInstaller.exe
[29.07.2009 13:15|--a------|5376658] D:\Dj E-Maxx - Make You Move (Original Mix).mp3
[10.01.2009 18:54|--a------|150528] D:\dwfrfefefefefefeferer.doc
[28.02.2008 23:35|--a------|2896472] D:\Encyclopedia of Gangs.pdf
[07.11.2007 08:00|--a------|17734] D:\eula.1028.txt
[07.11.2007 08:00|--a------|17734] D:\eula.1031.txt
[07.11.2007 08:00|--a------|10134] D:\eula.1033.txt
[07.11.2007 08:00|--a------|17734] D:\eula.1036.txt
[07.11.2007 08:00|--a------|17734] D:\eula.1040.txt
[07.11.2007 08:00|--a------|118] D:\eula.1041.txt
[07.11.2007 08:00|--a------|17734] D:\eula.1042.txt
[07.11.2007 08:00|--a------|17734] D:\eula.2052.txt
[07.11.2007 08:00|--a------|17734] D:\eula.3082.txt
[26.12.2009 13:59|--a------|3619359] D:\Facebook - Hlavnˇ str nka.mp4
[11.06.2008 14:25|--a------|69120] D:\fei.doc
[12.02.2009 19:39|--a------|3725043] D:\female driver compilation.wmv
[27.07.2008 13:02|--a------|68103] D:\ff8_bahamut.jpeg
[04.09.2009 10:57|--a------|41984] D:\Finanźn podpora pre çtudentov - çtipendi .doc
[09.11.2009 20:47|--a------|8084968] D:\Firefox Setup 3.5.5.exe
[26.10.2008 17:08|--a------|4315352] D:\flvconverter.exe
[25.03.2009 17:48|---hs----|6822] D:\Folder.jpg
[17.08.2008 15:47|--a------|4286642] D:\Free-Fire-Screensaver_1.21.exe
[25.02.2009 17:41|--a------|1892336] D:\freeripmp3.exe
[26.05.2009 16:31|--a------|1615602] D:\FSGSP_beginnersguide_20090105_Ver003_Eng.pdf
[25.09.2008 14:36|--a------|326656] D:\fyzA.doc
[09.11.2008 20:26|--a------|8628815] D:\fyzika.rar
[12.10.2008 13:30|--a------|305152] D:\fyz_a.doc
[11.06.2009 11:45|--a------|218256] D:\gabinstall.exe
[01.09.2008 12:16|--a------|56078] D:\gang singgs.jpg
[12.10.2009 07:58|--a------|1377837] D:\Gibbets.swf
[07.11.2007 08:00|--a------|1110] D:\globdata.ini
[10.07.2008 11:19|--a------|84] D:\grind.txt
[07.06.2009 12:35|--a------|3212048] D:\He Still Love's Me-Beyonce(The Fighting Temptations Movie).mp3
[18.01.2009 11:16|--a------|9989562] D:\hlsw_1_3_1_setup.exe
[18.10.2008 10:39|--a------|4842515] D:\Home-Video-Download-Studio-Pro_4.7.5.2.exe
[22.09.2008 14:46|--a------|17373208] D:\IDoser+v4.5.rar
[09.06.2009 15:44|--a------|3615937] D:\IMT_Smile_-_O_Cest ch.mp3
[07.11.2007 08:00|--a------|843] D:\install.ini
[21.01.2009 18:43|--a------|5252] D:\INSTALL.LOG
[07.11.2007 08:03|--a------|76304] D:\install.res.1028.dll
[07.11.2007 08:03|--a------|96272] D:\install.res.1031.dll
[07.11.2007 08:03|--a------|91152] D:\install.res.1033.dll
[07.11.2007 08:03|--a------|97296] D:\install.res.1036.dll
[07.11.2007 08:03|--a------|95248] D:\install.res.1040.dll
[07.11.2007 08:03|--a------|81424] D:\install.res.1041.dll
[07.11.2007 08:03|--a------|79888] D:\install.res.1042.dll
[07.11.2007 08:03|--a------|75792] D:\install.res.2052.dll
[07.11.2007 08:03|--a------|96272] D:\install.res.3082.dll
[10.06.2009 09:11|--a------|1878888] D:\install_flash_player.exe
[15.05.2009 15:35|--a------|9971755] D:\JDownloader 0.4.936.zip
[14.03.2008 19:35|--a------|358400] D:\Kontrola.pps
[01.01.2009 22:45|--a------|358107] D:\Legalizator_2.zip
[27.12.2008 14:07|--a------|118405] D:\Legendary_Multi5_Full_Rip_Skullptura.torrent
[26.10.2008 17:17|--a------|4900376] D:\LimeWire_4.18.8-0.exe
[15.03.2008 18:51|---------|49] D:\MD5.txt
[21.11.2008 19:14|--a------|89600] D:\Michail Chazin - Globalna financna kriza.doc
[04.03.2008 15:25|--a------|402] D:\navod k ADOBE_ILLUSTRATOR CS3 ISO LZ0.txt
[11.05.2009 14:55|--a------|10012888] D:\NokiaVideoManager_1.6.1.exe
[11.05.2009 14:54|--a------|33963176] D:\Nokia_PC_Suite_7_1_18_0_slk_web.exe
[11.05.2009 15:31|--a------|3488231] D:\O3DBETA.zip
[05.02.2008 20:40|--a------|53248] D:\objem_a_povrch_telies.doc
[10.01.2009 18:53|--a------|150528] D:\obr zek.doc
[12.10.2008 16:34|--a------|2306336] D:\OrbitDownloaderSetup.exe
[25.02.2009 17:27|--a------|810612] D:\Parlement_Europeen_3.wmv
[03.09.2008 19:57|--a------|1128916] D:\pdf2wordsetup.exe
[10.08.2007 13:18|--a------|97311] D:\plocha.JPG
[10.08.2007 13:18|--a------|183477] D:\plocha2.JPG
[10.08.2007 13:19|--a------|73410] D:\plocha3.JPG
[22.09.2007 07:39|--a------|209568] D:\plocha4.JPG
[22.09.2007 07:39|--a------|173822] D:\plocha5.JPG
[22.09.2007 07:40|--a------|146342] D:\plocha6.JPG
[09.12.2008 16:45|--a------|75264] D:\Poriadok_prijimacieho_konania_TUKE.doc
[16.02.2009 12:12|--a------|1386763] D:\Potvrdenia mamina 1.jpg
[16.02.2009 12:14|--a------|1374306] D:\Potvrdenia mamina 2.jpg
[18.01.2009 19:13|--a------|228615] D:\pracaSA.jpg
[07.12.2008 21:53|--a------|61592] D:\prase.swf
[10.02.2009 14:00|--a------|1742702] D:\prihlaska.jpg
[05.10.2008 13:06|--a------|4175801] D:\qipinfium9015.exe
[28.12.2008 14:21|--a------|4535791] D:\qipinfium9020.exe
[09.12.2008 17:09|--a------|22528] D:\Ragnarok_the_Animation_[LK-Anime].3892776.TPB.torrent
[05.06.2009 17:31|--a------|3291460] D:\Rain down - The Fighting Temptations.mp3
[16.11.2008 11:39|--a------|304640] D:\rapiddz.exe
[18.08.2008 17:12|--a------|353840] D:\RealPlayer11GOLD.exe
[28.06.2009 11:49|--a------|4569161] D:\Red Hook Day - Shabazz the Disciple.mp3
[06.12.2008 13:45|--a------|155683] D:\reflection_by_Tyrkyska.jpg
[05.07.2008 12:29|--a------|178] D:\ReFX.Nexus.VSTi.v1.3.9.REPACK-AMPLiFY Nov3j.txt
[18.07.2009 13:39|--a------|3777965] D:\Scary Movie Theme [Original from Scary Movie].mp3
[11.06.2009 11:48|--a------|3411064] D:\setup_digsby.exe
[11.06.2008 14:25|--a------|83968] D:\sjf.doc
[24.01.2009 10:29|--a------|22285608] D:\SkypeSetup.exe
[11.12.2008 13:46|--a------|14717] D:\Soldat.Morskij.Korpus.2007.PC.torrent
[29.08.2008 13:42|--a------|12460640] D:\Stardock-DesktopX_3.5.exe
[09.08.2008 18:05|--a------|874001] D:\stphmkre200.exe
[25.11.2009 16:03|--a------|63463] D:\Styles-P--Pharoahe-Monch---My-Life.mp3
[11.06.2008 14:24|--a------|97792] D:\svf.doc
[14.05.2008 09:04|--a------|19512] D:\T-Cleaner.bat
[02.11.2008 15:31|--a------|5253698] D:\teeworlds-0.4.3-src.zip
[30.10.2008 10:37|--a------|4663787] D:\teeworlds-0.4.3-win32.zip
[10.09.2007 18:42|--ahs----|35840] D:\Thumbs.db
[16.12.2008 19:33|--a------|33957] D:\Tortuga Two Treasures.torrent
[16.12.2008 19:22|--a------|20081] D:\Tortuga_Two_Treasures_RELOADED328924880492_968.torrent
[02.11.2008 14:22|--a------|3580575] D:\Towerball.zip
[18.02.2009 12:53|---h-----|26379] D:\treeinfo.wc
[23.09.2008 14:32|--a------|7605527] D:\tvcnew.exe
[09.01.2009 16:54|--a------|209400] D:\Two-Stroke_Engine.gif
[04.10.2008 13:48|--a------|6420024] D:\uf501std.exe
[28.09.2001 13:00|--a------|164864] D:\UNWISE.EXE
[25.12.2008 18:45|--a------|3692502] D:\Vanoce jsou za dvermi.wmv
[07.11.2007 08:00|--a------|5686] D:\vcredist.bmp
[07.11.2007 08:09|--a------|1442522] D:\VC_RED.cab
[07.11.2007 08:12|--a------|232960] D:\VC_RED.MSI
[23.12.2008 22:39|--a------|183808] D:\Vianoce 2008 (2).doc
[23.09.2008 14:31|--a------|11566920] D:\Video3GPConverter.exe
[06.06.2009 16:38|--a------|2868148] D:\Videospot HipHop Kosice.mp4
[19.09.2008 13:26|--a------|1371954] D:\VirtualDub-1.8.5.zip
[03.03.2009 16:49|--a------|5133015] D:\Vysvedcenia.rar
[14.09.2009 11:59|--a------|277] D:\WorkerOutput.bin
[16.11.2008 19:31|--a------|25564] D:\Wu_Tang_Clan___Discography_fiLmtorrent.torrent
[25.02.2009 17:28|--a------|4127919] D:\xx disrobics[1].wmv
[29.03.2008 17:52|--a------|39936] D:\zaver o lekarskej prehliadke ziadatela.doc
[23.06.2009 15:07|--a------|70144] D:\z hor cka maturita.pps
################## | Vaccination |
# C:\autorun.inf -> Autorun.inf created by UsbFix (El Desaparecido).
# D:\autorun.inf -> Autorun.inf created by UsbFix (El Desaparecido).
# J:\autorun.inf -> Autorun.inf created by UsbFix (El Desaparecido).
################## | Upload |
Please send the file : C:\UsbFix_Upload_Me_PC.zip :
http://chiquitine.changelog.fr/Sample/Upload.php
Thank you for your contribution .
################## | ! End of report # UsbFix V6.097 ! |
Stáhněte na plochu