STDRT.EXE - Co je to za maras???

Problematika virů a antivirů, zabezpečení PC - firewall, spyware, atd.
Odpovědět
JanFogas
Začátečník
Začátečník
Registrován: 30. črc 2005

STDRT.EXE - Co je to za maras???

Příspěvek od JanFogas »

Nazdar. Usídlil se mi v NB tenhle maras. Stahuje to nějaké data jako o závod plnou rychlostí připojení. Je napíchnutý na desítky IP adres. Neodesílat téměř nic, jen stahuje ke mě (už víc než 3GB). Zatím se mi nepodařilo zjistit, kde se schovává, ale už na tom pracuju. Setkali jste se sním už??? AdAware nic nenašel a Microsoft Security Essentials taky nic nenašel. Obzvlášť ten Microsoft Security Essentials bude asi extrémně výkoný antivirus... :-D
Acer Aspire 7560G - AMD Quad-Core A8-3500M @ 1,5GHz (Turbo 2,4GHz), 2x4096MB DDR3 1066MHz , ATi Mobility Radeon™ HD 6740G2 1GB (AMD Radeon HD 6620G + Radeon HD 6650M 1 GB), Windows 7 x64 Ultimate
Acer Ferrari One 200 - AMD Turion™ 64 X2 @ 1,2GHz, 2x2048MB DDR2 800MHz, ATI Radeon™ HD 3200, Windows 7 x64 Home Premium
Acer Revo RL100 - Athlon II Neo K325 DualCore @ 1,3GHz, 2x1024MB DDR3 1333MHz, NVIDIA® ION™, Windows 7 x64 Ultimate
PC - AMD FX-8350 @ 4,0GHz, 4x4096MB DDR3 1833MHz, 680GTX 4GB, Windows 7 x64 Ultimate
jan.svoboda
Středně pokročilý
Středně pokročilý
Registrován: 25. pro 2009
Bydliště: Chrudim

Re: STDRT.EXE - Co je to za maras???

Příspěvek od jan.svoboda »

Ahoj, poradíme si s tím. BTW: S poslední větou víceméně souhlasím :-D

Dej sem ještě log z ComboFixu a uvidíme.
Stahni si ComboFix
( http://download.bleepingcomputer.com/sUBs/ComboFix.exe , http://www.forospyware.com/sUBs/ComboFix.exe ) na plochu,

beta: http://download.bleepingcomputer.com/sU ... ttyFix.exe

- ukoncete vsechna aktivni okna a spuste ho pod uctem administratora.
- potvrdte licencni podminky - klik na "Ano", pripadne dalsi vyzvy programu.
- zapiste si informace proc se ukoncil nebo co mu brani v provozu (sdelte radci)
- nechte stahnout i nainstalovat recovery konzolu (velmi doporucuji)
- behem skenu neklikejte do zobrazeneho okna, je mozne ze CF restartuje PC.
- sken by mel trvat max. 20 minut. Pokud ani do uvedene doby nedojde k jeho ukonceni, ukoncite ho, kdy uvedeny problem nahlaste radci.
- po ukonceni se otevre log (textovy soubor) - pokud se tak nestane lze log najit C:\ComboFix.txt - cely obsah logu zkopirujte do sveho prispevku
Zde na foru již nejsem aktivní, vyskytuji se na Google+ (http://gplus.to/JanSvoboda), kde aktivně píšu nejen o IT.
JanFogas
Začátečník
Začátečník
Registrován: 30. črc 2005

Re: STDRT.EXE - Co je to za maras???

Příspěvek od JanFogas »

Už jsem na to neměl nervy, tak jsem přeinstaloval Windows. Mám tam nyní Win7 Ultimate x64. Vyskytl se ale stejný problém. ComboFix se mi nepodařilo rozjot. Napíše mi něco v tom smyslu, že pracuje jen s Windows 2000 a XP.
Acer Aspire 7560G - AMD Quad-Core A8-3500M @ 1,5GHz (Turbo 2,4GHz), 2x4096MB DDR3 1066MHz , ATi Mobility Radeon™ HD 6740G2 1GB (AMD Radeon HD 6620G + Radeon HD 6650M 1 GB), Windows 7 x64 Ultimate
Acer Ferrari One 200 - AMD Turion™ 64 X2 @ 1,2GHz, 2x2048MB DDR2 800MHz, ATI Radeon™ HD 3200, Windows 7 x64 Home Premium
Acer Revo RL100 - Athlon II Neo K325 DualCore @ 1,3GHz, 2x1024MB DDR3 1333MHz, NVIDIA® ION™, Windows 7 x64 Ultimate
PC - AMD FX-8350 @ 4,0GHz, 4x4096MB DDR3 1833MHz, 680GTX 4GB, Windows 7 x64 Ultimate
jan.svoboda
Středně pokročilý
Středně pokročilý
Registrován: 25. pro 2009
Bydliště: Chrudim

Re: STDRT.EXE - Co je to za maras???

Příspěvek od jan.svoboda »

Je to zvláštní, ale nezdá se mi to, se tam nějak ten šmejd musel i po reinstalu dostat... Jo ComboFix na x64 platformě většinou nerozjedeš (bohužel), takže sem zkus dát alespoň log z MBAMu a HijackThis.
Stáhněte Malwarebytes' Anti-Malware - http://viry.cz/forum/viewtopic.php?f=29&t=67229
Dejte úplný sken C systém
Log sem, nic nemazat až po posouzení logu :!: :!:
Stáhni HijackThis třeba odtud http://go.trendmicro.com/free-tools/hij ... ckThis.exe a spusť, klikni na Do a system scan and save a log, po chvíli se zobrazí log v Poznámkovém dokumentu, jeho obsah sem vlož.
Zde na foru již nejsem aktivní, vyskytuji se na Google+ (http://gplus.to/JanSvoboda), kde aktivně píšu nejen o IT.
Gollumek.88
Nováček
Nováček
Registrován: 16. dub 2010
Bydliště: Praha/Středočeský kraj
Kontaktovat uživatele:

Re: STDRT.EXE - Co je to za maras???

Příspěvek od Gollumek.88 »

Ahoj,
měla jsem teď stejný problém - řešení jsem našla zde: http://www.greatis.com/appdata/d/s/stdrt.exe.htm

po restartu opravdu stdrt.exe proces zmizel a už se neobjevil. Předtim ho nenašel ani Norton, NOD32 ani MS Security Essentials. Dokonce mi blokoval RootkitRevealer od Sysinternals.
By Gollumek
JanFogas
Začátečník
Začátečník
Registrován: 30. črc 2005

Re: STDRT.EXE - Co je to za maras???

Příspěvek od JanFogas »

Po delší odmlce jsem zpátky.

Zde je log z Malwarebytes' Anti-Malware:

Malwarebytes' Anti-Malware 1.45
http://www.malwarebytes.org

Verze databáze: 4043

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

27.4.2010 21:52:55
mbam-log-2010-04-27 (21-52-55).txt

Typ skenu: Rychlý sken
Skenované objekty: 105300
Uplynulý čas: 2 minuta(y), 48 sekunda(y)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)


A ještě log z HijckThis:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:01:57, on 27.4.2010
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\PLFSetI.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe
C:\Users\JanFogas\AppData\Roaming\Maxthon2\Maxthon.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\Users\JanFogas\AppData\Roaming\Maxthon2\Modules\MXDOWN~1\MXDOWN~1.EXE
C:\Users\JanFogas\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: µTorrent.lnk = C:\Program Files (x86)\uTorrent\uTorrent.exe
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files (x86)\ICQ7.1\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files (x86)\ICQ7.1\ICQ.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XAudioService - Unknown owner - C:\Windows\system32\DRIVERS\xaudio64.exe (file missing)

--
End of file - 8578 bytes
Acer Aspire 7560G - AMD Quad-Core A8-3500M @ 1,5GHz (Turbo 2,4GHz), 2x4096MB DDR3 1066MHz , ATi Mobility Radeon™ HD 6740G2 1GB (AMD Radeon HD 6620G + Radeon HD 6650M 1 GB), Windows 7 x64 Ultimate
Acer Ferrari One 200 - AMD Turion™ 64 X2 @ 1,2GHz, 2x2048MB DDR2 800MHz, ATI Radeon™ HD 3200, Windows 7 x64 Home Premium
Acer Revo RL100 - Athlon II Neo K325 DualCore @ 1,3GHz, 2x1024MB DDR3 1333MHz, NVIDIA® ION™, Windows 7 x64 Ultimate
PC - AMD FX-8350 @ 4,0GHz, 4x4096MB DDR3 1833MHz, 680GTX 4GB, Windows 7 x64 Ultimate
Dzin
Moderátor
Moderátor
Uživatelský avatar
Registrován: 04. bře 2004
Bydliště: Zeměpisná šířka 48.76° Délka 14.03°
Kontaktovat uživatele:

Re: STDRT.EXE - Co je to za maras???

Příspěvek od Dzin »

Hod log z RSIT.
Asus X555L Přes SZ mě kvůli PC nekontaktujte, proto tu je naše fórum;-)
Obrázek ...web o čaji, čajování, motorkách, kaligrafii...
JanFogas
Začátečník
Začátečník
Registrován: 30. črc 2005

Re: STDRT.EXE - Co je to za maras???

Příspěvek od JanFogas »

Log z RSIT část 1.:

Logfile of random's system information tool 1.06 (written by random/random)
Run by JanFogas at 2010-04-27 23:39:23
Microsoft Windows 7 Ultimate Service Pack 3
System drive C: has 76 GB (76%) free of 100 GB
Total RAM: 4094 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:39:25, on 27.4.2010
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe
C:\Users\JanFogas\AppData\Roaming\Maxthon2\Maxthon.exe
C:\Users\JanFogas\Desktop\RSIT.exe
C:\Users\JanFogas\Desktop\JanFogas.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: µTorrent.lnk = C:\Program Files (x86)\uTorrent\uTorrent.exe
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files (x86)\ICQ7.1\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.1 - {71BFC818-0CED-42D6-9C87-5142918957EE} - C:\Program Files (x86)\ICQ7.1\ICQ.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XAudioService - Unknown owner - C:\Windows\system32\DRIVERS\xaudio64.exe (file missing)

--
End of file - 8049 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Ad-Aware Update (Weekly).job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-04-04 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2009-08-27 1194504]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2010-04-14 2790472]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-03-02 98304]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
"SpybotSD TeaTimer"=C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]

C:\Users\JanFogas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
µTorrent.lnk - C:\Program Files (x86)\uTorrent\uTorrent.exe

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=
"NoActiveDesktopChanges"=
"ForceActiveDesktopOn"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8ed8e87a-3b70-11df-9d72-001f16ced69e}]
shell\AutoRun\command - F:\autorun.exe


======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-04-27 23:39:23 ----D---- C:\rsit
2010-04-27 21:47:15 ----D---- C:\Users\JanFogas\AppData\Roaming\Malwarebytes
2010-04-27 21:47:06 ----D---- C:\ProgramData\Malwarebytes
2010-04-27 21:47:05 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2010-04-24 23:20:49 ----D---- C:\Users\JanFogas\AppData\Roaming\Ubisoft
2010-04-24 23:20:49 ----D---- C:\ProgramData\Ubisoft
2010-04-24 23:16:53 ----D---- C:\Program Files (x86)\Ubisoft
2010-04-19 12:19:48 ----D---- C:\Program Files (x86)\Plus500
2010-04-19 10:48:57 ----D---- C:\Windows\MATS
2010-04-18 21:29:41 ----A---- C:\Windows\Burnout(TM) Paradise The Ultimate Box Patch Log.txt
2010-04-18 14:47:58 ----D---- C:\Windows\system32\AGEIA
2010-04-18 14:47:58 ----D---- C:\Program Files (x86)\AGEIA Technologies
2010-04-17 14:03:12 ----A---- C:\Windows\system32\XAudio2_6.dll
2010-04-17 14:03:12 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2010-04-17 14:03:11 ----A---- C:\Windows\system32\xactengine3_6.dll
2010-04-17 14:03:11 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2010-04-17 14:03:10 ----A---- C:\Windows\system32\XAudio2_5.dll
2010-04-17 14:03:10 ----A---- C:\Windows\system32\xactengine3_5.dll
2010-04-17 14:03:09 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2010-04-17 14:03:07 ----A---- C:\Windows\system32\d3dx11_42.dll
2010-04-17 14:03:07 ----A---- C:\Windows\system32\d3dx10_42.dll
2010-04-17 14:03:07 ----A---- C:\Windows\system32\d3dcsx_42.dll
2010-04-17 14:03:06 ----A---- C:\Windows\system32\D3DX9_42.dll
2010-04-17 14:03:05 ----A---- C:\Windows\system32\D3DX9_41.dll
2010-04-17 14:03:05 ----A---- C:\Windows\system32\d3dx10_41.dll
2010-04-17 14:03:05 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2010-04-17 14:03:04 ----A---- C:\Windows\system32\XAudio2_4.dll
2010-04-17 14:03:04 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2010-04-17 14:03:03 ----A---- C:\Windows\system32\xactengine3_4.dll
2010-04-17 14:03:03 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2010-04-17 14:03:02 ----A---- C:\Windows\system32\d3dx10_40.dll
2010-04-17 14:03:02 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2010-04-17 14:03:01 ----A---- C:\Windows\system32\D3DX9_40.dll
2010-04-17 14:03:00 ----A---- C:\Windows\system32\XAudio2_3.dll
2010-04-17 14:03:00 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2010-04-17 14:03:00 ----A---- C:\Windows\system32\xactengine3_3.dll
2010-04-17 14:03:00 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2010-04-17 14:02:59 ----A---- C:\Windows\system32\XAudio2_2.dll
2010-04-17 14:02:59 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2010-04-17 14:02:59 ----A---- C:\Windows\system32\xactengine3_2.dll
2010-04-17 14:02:58 ----A---- C:\Windows\system32\D3DX9_39.dll
2010-04-17 14:02:58 ----A---- C:\Windows\system32\d3dx10_39.dll
2010-04-17 14:02:58 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2010-04-17 14:02:57 ----A---- C:\Windows\system32\XAudio2_1.dll
2010-04-17 14:02:57 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2010-04-17 14:02:56 ----A---- C:\Windows\system32\xactengine3_1.dll
2010-04-17 14:02:56 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2010-04-17 14:02:56 ----A---- C:\Windows\system32\d3dx10_38.dll
2010-04-17 14:02:56 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2010-04-17 14:02:55 ----A---- C:\Windows\system32\D3DX9_38.dll
2010-04-14 16:08:35 ----A---- C:\Windows\system32\wintrust.dll
2010-04-14 16:08:34 ----A---- C:\Windows\system32\cabview.dll
2010-04-14 16:08:33 ----A---- C:\Windows\system32\vbscript.dll
2010-04-14 16:08:30 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-04-14 16:08:30 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-04-12 16:35:44 ----D---- C:\ProgramData\Spybot - Search & Destroy
2010-04-12 16:35:44 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy
2010-04-10 11:20:20 ----D---- C:\Users\JanFogas\AppData\Roaming\WinRAR
2010-04-10 11:19:48 ----D---- C:\Program Files (x86)\WinRAR
2010-04-04 19:26:32 ----D---- C:\Program Files (x86)\Adobe
2010-04-04 18:26:43 ----D---- C:\ProgramData\Adobe
2010-04-04 18:26:40 ----D---- C:\Program Files (x86)\Common Files\Adobe
2010-04-04 13:21:06 ----HDC---- C:\ProgramData\{74D08EB8-01D1-4BAE-91E3-F30C1B031AC6}
2010-04-04 13:21:02 ----D---- C:\ProgramData\Lavasoft
2010-04-04 13:21:02 ----D---- C:\Program Files (x86)\Lavasoft
2010-03-31 15:17:10 ----D---- C:\ProgramData\ATI
2010-03-31 15:15:51 ----D---- C:\Program Files (x86)\ATI Technologies
2010-03-31 14:05:03 ----A---- C:\Windows\system32\aswBoot.exe
2010-03-31 14:05:01 ----D---- C:\ProgramData\Alwil Software
2010-03-31 11:42:40 ----A---- C:\Windows\system32\mshtml.dll
2010-03-31 11:42:37 ----A---- C:\Windows\system32\ieframe.dll
2010-03-31 11:42:36 ----A---- C:\Windows\system32\mstime.dll
2010-03-31 11:42:35 ----A---- C:\Windows\system32\urlmon.dll
2010-03-31 11:42:34 ----A---- C:\Windows\system32\wininet.dll
2010-03-31 11:42:34 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-03-31 11:42:34 ----A---- C:\Windows\system32\iedkcs32.dll
2010-03-30 23:03:44 ----A---- C:\ProgramData\CLDShowX.ini
2010-03-30 23:02:41 ----D---- C:\Users\JanFogas\AppData\Roaming\CyberLink
2010-03-30 23:01:28 ----D---- C:\ProgramData\CyberLink
2010-03-30 23:01:12 ----D---- C:\Program Files (x86)\Common Files\CyberLink
2010-03-30 22:59:13 ----D---- C:\Program Files (x86)\CyberLink
2010-03-30 22:59:13 ----A---- C:\Windows\system32\msxml3a.dll
2010-03-30 22:59:13 ----A---- C:\Windows\system32\msvcr71.dll
2010-03-30 22:59:12 ----A---- C:\Windows\system32\msvcp71.dll
2010-03-30 22:58:56 ----D---- C:\ProgramData\Temp
2010-03-30 12:58:58 ----D---- C:\Users\JanFogas\AppData\Roaming\Media Player Classic
2010-03-29 23:06:10 ----A---- C:\Windows\system32\PnkBstrA.exe
2010-03-29 23:06:03 ----A---- C:\Windows\system32\PnkBstrB.exe
2010-03-29 22:54:38 ----D---- C:\Users\JanFogas\AppData\Roaming\Leadertech
2010-03-29 22:46:33 ----A---- C:\Windows\system32\XAudio2_0.dll
2010-03-29 22:46:32 ----A---- C:\Windows\system32\xactengine3_0.dll
2010-03-29 22:46:32 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2010-03-29 22:46:31 ----A---- C:\Windows\system32\D3DX9_37.dll
2010-03-29 22:46:31 ----A---- C:\Windows\system32\d3dx10_37.dll
2010-03-29 22:46:31 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2010-03-29 22:46:30 ----A---- C:\Windows\system32\xactengine2_10.dll
2010-03-29 22:46:29 ----A---- C:\Windows\system32\d3dx9_36.dll
2010-03-29 22:46:29 ----A---- C:\Windows\system32\d3dx10_36.dll
2010-03-29 22:46:29 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2010-03-29 22:46:28 ----A---- C:\Windows\system32\xactengine2_9.dll
2010-03-29 22:46:27 ----A---- C:\Windows\system32\d3dx9_35.dll
2010-03-29 22:46:27 ----A---- C:\Windows\system32\d3dx10_35.dll
2010-03-29 22:46:27 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2010-03-29 22:46:26 ----A---- C:\Windows\system32\xactengine2_8.dll
2010-03-29 22:46:26 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2010-03-29 22:46:26 ----A---- C:\Windows\system32\d3dx10_34.dll
2010-03-29 22:46:26 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2010-03-29 22:46:25 ----A---- C:\Windows\system32\d3dx9_34.dll
2010-03-29 22:46:24 ----A---- C:\Windows\system32\xinput1_3.dll
2010-03-29 22:46:24 ----A---- C:\Windows\system32\xactengine2_7.dll
2010-03-29 22:46:23 ----A---- C:\Windows\system32\d3dx9_33.dll
2010-03-29 22:46:23 ----A---- C:\Windows\system32\d3dx10_33.dll
2010-03-29 22:46:23 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2010-03-29 22:46:22 ----A---- C:\Windows\system32\xactengine2_6.dll
2010-03-29 22:46:21 ----A---- C:\Windows\system32\xactengine2_5.dll
2010-03-29 22:46:21 ----A---- C:\Windows\system32\d3dx10.dll
2010-03-29 22:46:18 ----A---- C:\Windows\system32\xactengine2_4.dll
2010-03-29 22:46:18 ----A---- C:\Windows\system32\x3daudio1_1.dll
2010-03-29 22:46:18 ----A---- C:\Windows\system32\d3dx9_31.dll
2010-03-29 22:46:17 ----A---- C:\Windows\system32\xinput1_2.dll
2010-03-29 22:46:17 ----A---- C:\Windows\system32\xactengine2_3.dll
2010-03-29 22:46:16 ----A---- C:\Windows\system32\xinput1_1.dll
2010-03-29 22:46:16 ----A---- C:\Windows\system32\xactengine2_2.dll
2010-03-29 22:46:15 ----A---- C:\Windows\system32\xactengine2_1.dll
2010-03-29 22:46:11 ----A---- C:\Windows\system32\d3dx9_30.dll
2010-03-29 22:46:10 ----A---- C:\Windows\system32\xactengine2_0.dll
2010-03-29 22:46:10 ----A---- C:\Windows\system32\x3daudio1_0.dll
2010-03-29 22:46:10 ----A---- C:\Windows\system32\d3dx9_29.dll
2010-03-29 22:46:09 ----A---- C:\Windows\system32\d3dx9_28.dll
2010-03-29 22:46:09 ----A---- C:\Windows\system32\d3dx9_27.dll
2010-03-29 22:46:08 ----A---- C:\Windows\system32\d3dx9_26.dll
2010-03-29 22:46:07 ----A---- C:\Windows\system32\d3dx9_25.dll
2010-03-29 22:46:07 ----A---- C:\Windows\system32\d3dx9_24.dll
2010-03-29 22:18:27 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2010-03-29 22:17:46 ----D---- C:\Users\JanFogas\AppData\Roaming\DAEMON Tools Lite
2010-03-29 22:17:44 ----D---- C:\ProgramData\DAEMON Tools Lite
2010-03-29 22:03:36 ----D---- C:\Program Files (x86)\Fraps
2010-03-29 22:00:37 ----D---- C:\Program Files (x86)\Microsoft Sync Framework
2010-03-29 21:59:53 ----A---- C:\Windows\system32\d3dx9_32.dll
2010-03-29 21:59:48 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2010-03-29 21:58:50 ----D---- C:\Program Files (x86)\Microsoft
2010-03-29 21:58:26 ----D---- C:\Program Files (x86)\Windows Live SkyDrive
2010-03-29 21:58:20 ----D---- C:\Program Files (x86)\Windows Live
2010-03-29 21:57:47 ----D---- C:\Windows\PCHEALTH
2010-03-29 21:54:12 ----D---- C:\Users\JanFogas\AppData\Roaming\ICQ
2010-03-29 21:54:07 ----D---- C:\Program Files (x86)\ICQ7.1
2010-03-29 21:35:22 ----D---- C:\Program Files (x86)\Common Files\Windows Live
2010-03-29 21:33:24 ----A---- C:\Windows\system32\msv1_0.dll
2010-03-29 21:24:57 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2010-03-29 21:24:14 ----A---- C:\Windows\system32\jscript.dll
2010-03-29 21:24:13 ----A---- C:\Windows\system32\t2embed.dll
2010-03-29 21:24:13 ----A---- C:\Windows\system32\fontsub.dll
2010-03-29 21:24:13 ----A---- C:\Windows\system32\atmfd.dll
2010-03-29 21:24:09 ----A---- C:\Windows\system32\tzres.dll
2010-03-29 21:23:46 ----A---- C:\Windows\system32\explorer.exe
2010-03-29 21:23:46 ----A---- C:\Windows\explorer.exe
2010-03-29 21:23:43 ----A---- C:\Windows\system32\wmp.dll
2010-03-29 21:23:41 ----A---- C:\Windows\system32\CertEnroll.dll
2010-03-29 21:23:38 ----A---- C:\Windows\system32\wmploc.DLL
2010-03-29 21:23:34 ----A---- C:\Windows\system32\CPFilters.dll
2010-03-29 21:23:32 ----A---- C:\Windows\system32\psisdecd.dll
2010-03-29 21:23:31 ----A---- C:\Windows\system32\secproc_isv.dll
2010-03-29 21:23:30 ----A---- C:\Windows\system32\secproc.dll
2010-03-29 21:23:30 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-03-29 21:23:29 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-03-29 21:23:29 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-03-29 21:23:29 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-03-29 21:23:29 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-03-29 21:23:29 ----A---- C:\Windows\system32\RMActivate.exe
2010-03-29 21:23:28 ----A---- C:\Windows\system32\quartz.dll
2010-03-29 21:23:27 ----A---- C:\Windows\system32\tsbyuv.dll
2010-03-29 21:23:27 ----A---- C:\Windows\system32\msyuv.dll
2010-03-29 21:23:27 ----A---- C:\Windows\system32\msvidc32.dll
2010-03-29 21:23:27 ----A---- C:\Windows\system32\msrle32.dll
2010-03-29 21:23:27 ----A---- C:\Windows\system32\mciavi32.dll
2010-03-29 21:23:27 ----A---- C:\Windows\system32\iyuv_32.dll
2010-03-29 21:23:27 ----A---- C:\Windows\system32\avifil32.dll
2010-03-29 21:23:26 ----A---- C:\Windows\system32\setup16.exe
2010-03-29 21:23:25 ----A---- C:\Windows\system32\wow32.dll
2010-03-29 21:23:25 ----A---- C:\Windows\system32\user.exe
2010-03-29 21:23:25 ----A---- C:\Windows\system32\ntvdm64.dll
2010-03-29 21:23:25 ----A---- C:\Windows\system32\instnm.exe
2010-03-29 21:21:11 ----A---- C:\Windows\system32\msasn1.dll
2010-03-29 21:00:47 ----D---- C:\Users\JanFogas\AppData\Roaming\Macromedia
2010-03-29 21:00:46 ----D---- C:\Users\JanFogas\AppData\Roaming\Adobe
2010-03-29 21:00:42 ----D---- C:\Windows\system32\Macromed
2010-03-29 20:49:56 ----D---- C:\Program Files (x86)\uTorrent
2010-03-29 20:41:14 ----D---- C:\Program Files (x86)\Microsoft Antimalware
2010-03-29 20:39:41 ----D---- C:\Users\JanFogas\AppData\Roaming\uTorrent
2010-03-29 20:36:07 ----D---- C:\Users\JanFogas\AppData\Roaming\MxBoost
2010-03-29 20:36:00 ----D---- C:\Users\JanFogas\AppData\Roaming\Maxthon2
2010-03-29 20:30:49 ----D---- C:\Users\JanFogas\AppData\Roaming\ATI
2010-03-29 20:28:51 ----D---- C:\ATI
2010-03-29 20:21:59 ----D---- C:\Program Files (x86)\Launch Manager
2010-03-29 20:20:00 ----A---- C:\Windows\USB_VIDEO_REG.exe
2010-03-29 20:20:00 ----A---- C:\Windows\PLFSetI.exe
2010-03-29 20:20:00 ----A---- C:\Windows\PidList.ini
2010-03-29 20:20:00 ----A---- C:\Windows\Image.dll
2010-03-29 20:19:59 ----A---- C:\Windows\Acer Crystal Eye webcam.EXE
2010-03-29 20:19:42 ----D---- C:\Users\JanFogas\AppData\Roaming\InstallShield
2010-03-29 20:07:36 ----D---- C:\Windows\system32\RTCOM
2010-03-29 20:07:23 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2010-03-29 20:07:23 ----D---- C:\Program Files (x86)\Realtek
2010-03-29 20:06:02 ----HD---- C:\Program Files (x86)\Temp
2010-03-29 20:06:02 ----A---- C:\Windows\RtlExUpd.dll
2010-03-29 20:05:59 ----D---- C:\Program Files (x86)\Common Files\InstallShield
2010-03-29 20:01:16 ----D---- C:\Program Files (x86)\AMD
2010-03-29 20:00:37 ----SHD---- C:\Windows\Installer
2010-03-29 19:57:09 ----A---- C:\Windows\system32\SynTPCOM.dll
2010-03-29 19:57:09 ----A---- C:\Windows\system32\SynCtrl.dll
2010-03-29 19:57:09 ----A---- C:\Windows\system32\SynCOM.dll
2010-03-29 19:57:07 ----A---- C:\Windows\UNINST32.EXE
2010-03-29 19:34:35 ----D---- C:\Windows\Panther
2010-03-29 19:34:23 ----RASH---- C:\BOOTSECT.BAK
2010-03-29 19:34:21 ----SHD---- C:\Boot
2010-03-29 18:53:55 ----D---- C:\Users\JanFogas\AppData\Roaming\Identities
2010-03-29 18:53:26 ----SD---- C:\Users\JanFogas\AppData\Roaming\Microsoft
2010-03-29 18:53:26 ----D---- C:\Users\JanFogas\AppData\Roaming\Media Center Programs
2010-03-29 18:53:14 ----SHD---- C:\Recovery
2010-03-29 18:53:14 ----SHD---- C:\ProgramData\Šablony
2010-03-29 18:53:14 ----SHD---- C:\ProgramData\Plocha
2010-03-29 18:53:14 ----SHD---- C:\ProgramData\Oblíbené položky
2010-03-29 18:53:14 ----SHD---- C:\ProgramData\Nabídka Start
2010-03-29 18:53:14 ----SHD---- C:\ProgramData\Dokumenty
2010-03-29 18:53:14 ----SHD---- C:\ProgramData\Data aplikací
2010-03-29 18:38:04 ----D---- C:\Windows\SoftwareDistribution
2010-03-29 18:35:21 ----D---- C:\Windows\Prefetch
2010-03-29 18:35:02 ----SHD---- C:\System Volume Information

======List of files/folders modified in the last 1 months======

2010-04-27 23:39:23 ----D---- C:\Windows\Temp
2010-04-27 22:13:12 ----D---- C:\Windows\System32
2010-04-27 22:13:12 ----D---- C:\Windows\inf
2010-04-27 22:10:06 ----D---- C:\Windows\system
2010-04-27 22:10:04 ----D---- C:\Windows\Tasks
2010-04-27 21:47:08 ----D---- C:\Windows\system32\drivers
2010-04-27 21:47:06 ----HD---- C:\ProgramData
2010-04-27 21:47:05 ----RD---- C:\Program Files (x86)
2010-04-24 23:15:53 ----RSD---- C:\Windows\assembly
2010-04-19 10:48:57 ----D---- C:\Windows
2010-04-19 10:48:55 ----RD---- C:\Program Files
2010-04-18 21:05:12 ----D---- C:\Windows\Logs
2010-04-18 14:47:58 ----D---- C:\Windows\SysWOW64
2010-04-14 16:13:59 ----D---- C:\Windows\winsxs
2010-04-07 16:57:30 ----SD---- C:\ProgramData\Microsoft
2010-04-04 18:26:40 ----D---- C:\Program Files (x86)\Common Files
2010-03-31 12:27:08 ----D---- C:\Windows\LiveKernelReports
2010-03-31 12:04:18 ----D---- C:\Program Files (x86)\Internet Explorer
2010-03-30 22:59:19 ----D---- C:\Program Files (x86)\Common Files\microsoft shared
2010-03-30 02:14:22 ----D---- C:\Windows\rescache
2010-03-30 01:41:36 ----D---- C:\Windows\Microsoft.NET
2010-03-30 00:43:53 ----D---- C:\Windows\debug
2010-03-29 22:08:38 ----D---- C:\Windows\Downloaded Program Files
2010-03-29 22:06:44 ----D---- C:\Program Files (x86)\Windows Media Player
2010-03-29 22:06:41 ----D---- C:\Windows\system32\cs-CZ
2010-03-29 22:06:41 ----D---- C:\Windows\AppPatch
2010-03-29 22:06:39 ----D---- C:\Windows\ehome
2010-03-29 18:53:48 ----SHD---- C:\$Recycle.Bin
2010-03-29 18:53:25 ----RD---- C:\Users
2010-03-29 18:35:48 ----D---- C:\Windows\CSC

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys []
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys []
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys []
R1 blbdrive;blbdrive; C:\Windows\system32\DRIVERS\blbdrive.sys []
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys []
R1 DfsC;@%systemroot%\system32\drivers\dfsc.sys,-101; C:\Windows\System32\Drivers\dfsc.sys []
R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; C:\Windows\System32\drivers\discache.sys []
R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; C:\Windows\system32\drivers\nsiproxy.sys []
R1 RDPENCDD;@%systemroot%\system32\drivers\RDPENCDD.sys,-101; C:\Windows\system32\drivers\rdpencdd.sys []
R1 RDPREFMP;@%systemroot%\system32\drivers\RdpRefMp.sys,-101; C:\Windows\system32\drivers\rdprefmp.sys []
R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; C:\Windows\system32\DRIVERS\tdx.sys []
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys []
R1 Wanarpv6;@%systemroot%\system32\rascfg.dll,-32012; C:\Windows\system32\DRIVERS\wanarp.sys []
R1 WfpLwf;WFP Lightweight Filter; C:\Windows\system32\DRIVERS\wfplwf.sys []
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/03/30 23:01:26]; \??\C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl [2010-03-13 146928]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys []
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys []
R2 lltdio;Link-Layer Topology Discovery Mapper I/O Driver; C:\Windows\system32\DRIVERS\lltdio.sys []
R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; C:\Windows\system32\drivers\luafv.sys []
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys []
R2 PEAUTH;PEAUTH; C:\Windows\system32\drivers\peauth.sys []
R2 rspndr;Link-Layer Topology Discovery Responder; C:\Windows\system32\DRIVERS\rspndr.sys []
R2 tcpipreg;TCP/IP Registry Compatibility; C:\Windows\System32\drivers\tcpipreg.sys []
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio64.sys []
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys []
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys []
R3 AmdPPM;Ovladač procesoru AMD; C:\Windows\system32\DRIVERS\amdppm.sys []
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys []
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys []
R3 bowser;@%systemroot%\system32\browser.dll,-102; C:\Windows\system32\DRIVERS\bowser.sys []
R3 CAXHWAZL;CAXHWAZL; C:\Windows\system32\DRIVERS\CAXHWAZL.sys []
R3 CmBatt;Ovladač baterie Microsoft ACPI Control Method Battery; C:\Windows\system32\DRIVERS\CmBatt.sys []
R3 CompositeBus;Ovladač rozpoznávacího modulu složené sběrnice; C:\Windows\system32\DRIVERS\CompositeBus.sys []
R3 DKbFltr;Dritek Keyboard Filter Driver (64-bit); C:\Windows\SysWOW64\Drivers\DKbFltr.sys [2009-03-26 25608]
R3 DXGKrnl;LDDM Graphics Subsystem; C:\Windows\System32\drivers\dxgkrnl.sys []
R3 HDAudBus;Ovladač sběrnice Microsoft UAA pro zvuk High Definition Audio; C:\Windows\system32\DRIVERS\HDAudBus.sys []
R3 HidUsb;Ovladač třídy standardu HID Microsoft; C:\Windows\system32\DRIVERS\hidusb.sys []
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\CAX_DPV.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys []
R3 kbdhid;Ovladač klávesnice standardu HID; C:\Windows\system32\DRIVERS\kbdhid.sys []
R3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys []
R3 monitor;Služba ovladače funkce třídy monitorů Microsoft; C:\Windows\system32\DRIVERS\monitor.sys []
R3 mouhid;Ovladač myši standardu HID; C:\Windows\system32\DRIVERS\mouhid.sys []
R3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; C:\Windows\System32\drivers\mpsdrv.sys []
R3 mrxsmb10;@%systemroot%\system32\wkssvc.dll,-1004; C:\Windows\system32\DRIVERS\mrxsmb10.sys []
R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; C:\Windows\system32\DRIVERS\mrxsmb20.sys []
R3 NativeWifiP;NativeWiFi Filter; C:\Windows\system32\DRIVERS\nwifi.sys []
R3 RasAgileVpn;WAN Miniport (IKEv2); C:\Windows\system32\DRIVERS\AgileVpn.sys []
R3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; C:\Windows\system32\DRIVERS\rassstp.sys []
R3 rdpbus;Remote Desktop Device Redirector Bus Driver; C:\Windows\system32\DRIVERS\rdpbus.sys []
R3 srv2;@%systemroot%\system32\srvsvc.dll,-104; C:\Windows\System32\DRIVERS\srv2.sys []
R3 srvnet;srvnet; C:\Windows\System32\DRIVERS\srvnet.sys []
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys []
R3 tunnel;Microsoft Tunnel Miniport Adapter Driver; C:\Windows\system32\DRIVERS\tunnel.sys []
R3 umbus;Ovladač sběrnice UMBus Enumerator; C:\Windows\system32\DRIVERS\umbus.sys []
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\Windows\system32\DRIVERS\usbccgp.sys []
R3 usbehci;Ovladač miniportu vylepšeného hostitelského řadiče Microsoft USB 2.0; C:\Windows\system32\DRIVERS\usbehci.sys []
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys []
R3 usbhub;Ovladač standardního rozbočovače USB; C:\Windows\system32\DRIVERS\usbhub.sys []
R3 usbohci;Ovladač miniportu otevřeného hostitelského řadiče Microsoft USB; C:\Windows\system32\DRIVERS\usbohci.sys []
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys []
R3 vwifibus;Ovladač sběrnice Virtual WiFi; C:\Windows\system32\DRIVERS\vwifibus.sys []
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\CAX_CNXT.sys []
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys []
R3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys []
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys []
R3 WmVirHid;Logitech Virtual Hid Device Driver; C:\Windows\system32\drivers\WmVirHid.sys []
R3 WmXlCore;Logitech Translation Layer Driver; C:\Windows\system32\drivers\WmXlCore.sys []
R3 WudfPf;User Mode Driver Frameworks Platform Driver; C:\Windows\system32\drivers\WudfPf.sys []
S3 1394ohci;1394 OHCI Compliant Host Controller; C:\Windows\system32\DRIVERS\1394ohci.sys []
S3 AcpiPmi;ACPI Power Meter Driver; C:\Windows\system32\DRIVERS\acpipmi.sys []
S3 adp94xx;adp94xx; C:\Windows\system32\DRIVERS\adp94xx.sys []
S3 adpahci;adpahci; C:\Windows\system32\DRIVERS\adpahci.sys []
S3 adpu320;adpu320; C:\Windows\system32\DRIVERS\adpu320.sys []
S3 agp440;Intel AGP Bus Filter; C:\Windows\system32\DRIVERS\agp440.sys []
S3 amdide;amdide; C:\Windows\system32\DRIVERS\amdide.sys []
S3 AmdK8;AMD K8 Processor Driver; C:\Windows\system32\DRIVERS\amdk8.sys []
S3 amdsbs;amdsbs; C:\Windows\system32\DRIVERS\amdsbs.sys []
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\Windows\system32\drivers\appid.sys []
S3 arc;arc; C:\Windows\system32\DRIVERS\arc.sys []
S3 arcsas;arcsas; C:\Windows\system32\DRIVERS\arcsas.sys []
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys []
S3 auvdc285;auvdc285; C:\Windows\system32\drivers\auvdc285.sys []
S3 b06bdrv;Broadcom NetXtreme II VBD; C:\Windows\system32\DRIVERS\bxvbda.sys []
S3 b57nd60a;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60a.sys []
S3 BrFiltLo;Brother USB Mass-Storage Lower Filter Driver; C:\Windows\system32\DRIVERS\BrFiltLo.sys []
S3 BrFiltUp;Brother USB Mass-Storage Upper Filter Driver; C:\Windows\system32\DRIVERS\BrFiltUp.sys []
S3 Brserid;Brother MFC Serial Port Interface Driver (WDM); C:\Windows\System32\Drivers\Brserid.sys []
S3 BrSerWdm;Brother WDM Serial driver; C:\Windows\System32\Drivers\BrSerWdm.sys []
S3 BrUsbMdm;Brother MFC USB Fax Only Modem; C:\Windows\System32\Drivers\BrUsbMdm.sys []
S3 BrUsbSer;Brother MFC USB Serial WDM Driver; C:\Windows\System32\Drivers\BrUsbSer.sys []
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys []
S3 BTHMODEM;Ovladač pro komunikaci pomocí modemu Bluetooth; C:\Windows\system32\DRIVERS\bthmodem.sys []
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys []
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys []
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys []
S3 circlass;Consumer IR Devices; C:\Windows\system32\DRIVERS\circlass.sys []
S3 ebdrv;Broadcom NetXtreme II 10 GigE VBD; C:\Windows\system32\DRIVERS\evbda.sys []
S3 elxstor;elxstor; C:\Windows\system32\DRIVERS\elxstor.sys []
S3 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\DRIVERS\errdev.sys []
S3 exfat;exFAT File System Driver; C:\Windows\system32\drivers\exfat.sys []
S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; C:\Windows\system32\drivers\filetrace.sys []
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\Windows\System32\drivers\FsDepends.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys []
S3 gagp30kx;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms; C:\Windows\system32\DRIVERS\gagp30kx.sys []
S3 hcw85cir;Hauppauge Consumer Infrared Receiver; C:\Windows\system32\drivers\hcw85cir.sys []
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys []
S3 HidBatt;HID UPS Battery Driver; C:\Windows\system32\DRIVERS\HidBatt.sys []
S3 HidBth;Microsoft Bluetooth HID Miniport; C:\Windows\system32\DRIVERS\hidbth.sys []
S3 HidIr;Microsoft Infrared HID Driver; C:\Windows\system32\DRIVERS\hidir.sys []
S3 HpSAMD;HpSAMD; C:\Windows\system32\DRIVERS\HpSAMD.sys []
S3 iaStorV;iaStorV; C:\Windows\system32\DRIVERS\iaStorV.sys []
S3 iirsp;iirsp; C:\Windows\system32\DRIVERS\iirsp.sys []
S3 intelide;intelide; C:\Windows\system32\DRIVERS\intelide.sys []
S3 intelppm;Intel Processor Driver; C:\Windows\system32\DRIVERS\intelppm.sys []
S3 IPMIDRV;IPMIDRV; C:\Windows\system32\DRIVERS\IPMIDrv.sys []
S3 isapnp;isapnp; C:\Windows\system32\DRIVERS\isapnp.sys []
S3 iScsiPrt;iScsiPort Driver; C:\Windows\system32\DRIVERS\msiscsi.sys []
S3 LSI_FC;LSI_FC; C:\Windows\system32\DRIVERS\lsi_fc.sys []
S3 LSI_SAS;LSI_SAS; C:\Windows\system32\DRIVERS\lsi_sas.sys []
S3 LSI_SAS2;LSI_SAS2; C:\Windows\system32\DRIVERS\lsi_sas2.sys []
S3 LSI_SCSI;LSI_SCSI; C:\Windows\system32\DRIVERS\lsi_scsi.sys []
S3 megasas;megasas; C:\Windows\system32\DRIVERS\megasas.sys []
S3 MegaSR;MegaSR; C:\Windows\system32\DRIVERS\MegaSR.sys []
S3 mpio;mpio; C:\Windows\system32\DRIVERS\mpio.sys []
S3 msdsm;msdsm; C:\Windows\system32\DRIVERS\msdsm.sys []
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\Windows\System32\drivers\mshidkmdf.sys []
S3 MsRPC;MsRPC; C:\Windows\system32\drivers\MsRPC.sys []
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys []
S3 MTConfig;Microsoft Input Configuration Driver; C:\Windows\system32\DRIVERS\MTConfig.sys []
S3 NdisCap;NDIS Capture LightWeight Filter; C:\Windows\system32\DRIVERS\ndiscap.sys []
S3 nfrd960;nfrd960; C:\Windows\system32\DRIVERS\nfrd960.sys []
S3 nv_agp;NVIDIA nForce AGP Bus Filter; C:\Windows\system32\DRIVERS\nv_agp.sys []
S3 nvraid;nvraid; C:\Windows\system32\DRIVERS\nvraid.sys []
S3 nvstor;nvstor; C:\Windows\system32\DRIVERS\nvstor.sys []
S3 ohci1394;1394 OHCI Compliant Host Controller (Legacy); C:\Windows\system32\DRIVERS\ohci1394.sys []
S3 ql2300;ql2300; C:\Windows\system32\DRIVERS\ql2300.sys []
S3 ql40xx;ql40xx; C:\Windows\system32\DRIVERS\ql40xx.sys []
S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; C:\Windows\system32\drivers\qwavedrv.sys []
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys []
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys []
S3 sbp2port;sbp2port; C:\Windows\system32\DRIVERS\sbp2port.sys []
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\Windows\System32\DRIVERS\scfilter.sys []
S3 sermouse;Serial Mouse Driver; C:\Windows\system32\DRIVERS\sermouse.sys []
S3 sffdisk;SFF Storage Class Driver; C:\Windows\system32\DRIVERS\sffdisk.sys []
S3 sffp_mmc;SFF Storage Protocol Driver for MMC; C:\Windows\system32\DRIVERS\sffp_mmc.sys []
S3 sffp_sd;SFF Storage Protocol Driver for SDBus; C:\Windows\system32\DRIVERS\sffp_sd.sys []
S3 SiSRaid2;SiSRaid2; C:\Windows\system32\DRIVERS\SiSRaid2.sys []
S3 SiSRaid4;SiSRaid4; C:\Windows\system32\DRIVERS\sisraid4.sys []
S3 Smb;@%SystemRoot%\system32\tcpipcfg.dll,-50005; C:\Windows\system32\DRIVERS\smb.sys []
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS []
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS []
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS []
S3 stexstor;stexstor; C:\Windows\system32\DRIVERS\stexstor.sys []
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys []
S3 TCPIP6;Microsoft IPv6 Protocol Driver; C:\Windows\system32\DRIVERS\tcpip.sys []
S3 tssecsrv;@%SystemRoot%\System32\DRIVERS\tssecsrv.sys,-101; C:\Windows\System32\DRIVERS\tssecsrv.sys []
S3 uagp35;Microsoft AGPv3.5 Filter; C:\Windows\system32\DRIVERS\uagp35.sys []
S3 uliagpkx;Uli AGP Bus Filter; C:\Windows\system32\DRIVERS\uliagpkx.sys []
S3 UmPass;Microsoft UMPass Driver; C:\Windows\system32\DRIVERS\umpass.sys []
S3 usbcir;eHome Infrared Receiver (USBCIR); C:\Windows\system32\DRIVERS\usbcir.sys []
S3 usbprint;Microsoft USB PRINTER Class; C:\Windows\system32\DRIVERS\usbprint.sys []
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\Windows\system32\DRIVERS\USBSTOR.SYS []
S3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\Windows\system32\DRIVERS\usbuhci.sys []
S3 vga;vga; C:\Windows\system32\DRIVERS\vgapnp.sys []
S3 vhdmp;vhdmp; C:\Windows\system32\DRIVERS\vhdmp.sys []
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys []
S3 vsmraid;vsmraid; C:\Windows\system32\DRIVERS\vsmraid.sys []
S3 WacomPen;Wacom Serial Pen HID Driver; C:\Windows\system32\DRIVERS\wacompen.sys []
S3 Wd;Wd; C:\Windows\system32\DRIVERS\wd.sys []
S3 WIMMount;WIMMount; C:\Windows\system32\drivers\wimmount.sys [2009-07-14 19008]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys []
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys []
S4 crcdisk;Crcdisk Filter Driver; C:\Windows\system32\DRIVERS\crcdisk.sys []
S4 ws2ifsl;@%systemroot%\System32\drivers\ws2ifsl.sys,-1000; C:\Windows\system32\drivers\ws2ifsl.sys []
Acer Aspire 7560G - AMD Quad-Core A8-3500M @ 1,5GHz (Turbo 2,4GHz), 2x4096MB DDR3 1066MHz , ATi Mobility Radeon™ HD 6740G2 1GB (AMD Radeon HD 6620G + Radeon HD 6650M 1 GB), Windows 7 x64 Ultimate
Acer Ferrari One 200 - AMD Turion™ 64 X2 @ 1,2GHz, 2x2048MB DDR2 800MHz, ATI Radeon™ HD 3200, Windows 7 x64 Home Premium
Acer Revo RL100 - Athlon II Neo K325 DualCore @ 1,3GHz, 2x1024MB DDR3 1333MHz, NVIDIA® ION™, Windows 7 x64 Ultimate
PC - AMD FX-8350 @ 4,0GHz, 4x4096MB DDR3 1833MHz, 680GTX 4GB, Windows 7 x64 Ultimate
JanFogas
Začátečník
Začátečník
Registrován: 30. črc 2005

Re: STDRT.EXE - Co je to za maras???

Příspěvek od JanFogas »

Log z RSIT část 2.:

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe []
R2 AudioEndpointBuilder;@%SystemRoot%\system32\audiosrv.dll,-204; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-04-14 40384]
R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DPS;@%systemroot%\system32\dps.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 gpsvc;@gpapi.dll,-112; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 iphlpsvc;@%SystemRoot%\system32\iphlpsvc.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe [2010-04-07 1265264]
R2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 MpsSvc;@%SystemRoot%\system32\FirewallAPI.dll,-23090; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2010-03-29 66872]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
R2 SysMain;@%SystemRoot%\system32\sysmain.dll,-1000; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 UxSms;@%SystemRoot%\system32\dwm.exe,-2000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 WinDefend;@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 Wlansvc;@%SystemRoot%\System32\wlansvc.dll,-257; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 WMPNetworkSvc;@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101; C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe []
R2 WSearch;@%systemroot%\system32\SearchIndexer.exe,-103; C:\Windows\system32\SearchIndexer.exe [2009-07-14 428032]
R2 wudfsvc;@%SystemRoot%\system32\wudfsvc.dll,-1000; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio64.exe []
R3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-04-14 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-04-14 40384]
R3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 KeyIso;@keyiso.dll,-100; C:\Windows\system32\lsass.exe []
R3 netprofm;@%SystemRoot%\system32\netprofm.dll,-202; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 WdiServiceHost;@%systemroot%\system32\wdi.dll,-502; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 FLEXnet Licensing Manager;FLEXnet Licensing Manager for Adobe Products; C:\Windows\system\regsrv.exe [2010-03-30 667649]
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\Windows\system32\sppsvc.exe []
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 clr_optimization_v2.0.50727_32;Microsoft .NET Framework NGEN v2.0.50727_X86; C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2009-06-10 66384]
S3 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-06-10 89920]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\Windows\System32\lsass.exe []
S3 ehRecvr;@%SystemRoot%\ehome\ehrecvr.exe,-101; C:\Windows\ehome\ehRecvr.exe [2009-07-14 696832]
S3 ehSched;@%SystemRoot%\ehome\ehsched.exe,-101; C:\Windows\ehome\ehsched.exe [2009-07-14 127488]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe []
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2009-06-10 42840]
S3 fsssvc;Služba Windows Live Zabezpečení rodiny; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
S3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 idsvc;@%systemroot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8193; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe [2009-06-10 856384]
S3 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 IPBusEnum;@%systemroot%\system32\IPBusEnum.dll,-102; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 KtmRm;@comres.dll,-2946; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 MatSvc;@%ProgramFiles%\Microsoft Fix it Center\MatsRes.dll,-9000; C:\Program Files\Microsoft Fix it Center\Matsvc.exe [2010-04-10 342320]
S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\Windows\SysWow64\perfhost.exe [2009-07-14 20992]
S3 pla;@%systemroot%\system32\pla.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SDRSVC;@%SystemRoot%\system32\sdrsvc.dll,-107; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; C:\Windows\System32\snmptrap.exe []
S3 sppuinotify;@%SystemRoot%\system32\sppuinotify.dll,-103; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 TBS;@%SystemRoot%\system32\tbssvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; C:\Windows\servicing\TrustedInstaller.exe [2009-07-14 194048]
S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; C:\Windows\system32\UI0Detect.exe []
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; C:\Windows\system32\lsass.exe []
S3 vds;@%SystemRoot%\system32\vds.exe,-100; C:\Windows\System32\vds.exe []
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe []
S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 wcncsvc;@%SystemRoot%\system32\wcncsvc.dll,-3; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WcsPlugInService;@%SystemRoot%\system32\WcsPlugInService.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Wecsvc;@%SystemRoot%\system32\wecsvc.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 wercplsupport;@%SystemRoot%\System32\wercplsupport.dll,-101; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WerSvc;@%SystemRoot%\System32\wersvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WinHttpAutoProxySvc;@%SystemRoot%\system32\winhttp.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 WinRM;@%Systemroot%\system32\wsmsvc.dll,-101; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WPCSvc;@%SystemRoot%\system32\wpcsvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 WPDBusEnum;@%SystemRoot%\system32\wpdbusenum.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 WwanSvc;@%SystemRoot%\System32\wwansvc.dll,-257; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S4 Mcx2Svc;@%SystemRoot%\ehome\ehres.dll,-15501; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S4 NetTcpPortSharing;@%systemroot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8201; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2009-06-10 116560]

-----------------EOF-----------------
Acer Aspire 7560G - AMD Quad-Core A8-3500M @ 1,5GHz (Turbo 2,4GHz), 2x4096MB DDR3 1066MHz , ATi Mobility Radeon™ HD 6740G2 1GB (AMD Radeon HD 6620G + Radeon HD 6650M 1 GB), Windows 7 x64 Ultimate
Acer Ferrari One 200 - AMD Turion™ 64 X2 @ 1,2GHz, 2x2048MB DDR2 800MHz, ATI Radeon™ HD 3200, Windows 7 x64 Home Premium
Acer Revo RL100 - Athlon II Neo K325 DualCore @ 1,3GHz, 2x1024MB DDR3 1333MHz, NVIDIA® ION™, Windows 7 x64 Ultimate
PC - AMD FX-8350 @ 4,0GHz, 4x4096MB DDR3 1833MHz, 680GTX 4GB, Windows 7 x64 Ultimate
jan.svoboda
Středně pokročilý
Středně pokročilý
Registrován: 25. pro 2009
Bydliště: Chrudim

Re: STDRT.EXE - Co je to za maras???

Příspěvek od jan.svoboda »

Možná bych viděl příčinu ve Warezu:
C:\Program Files (x86)\uTorrent\uTorrent.exe

No a zkus ten soubor (stdrt.exe) otestovat např. na VirusTotal.
Zde na foru již nejsem aktivní, vyskytuji se na Google+ (http://gplus.to/JanSvoboda), kde aktivně píšu nejen o IT.
zombux
Odborník PCT
Odborník PCT
Uživatelský avatar
Registrován: 05. čer 2003
Bydliště: sluníčkář a havloid z pražské lumpenkavárny

Re: STDRT.EXE - Co je to za maras???

Příspěvek od zombux »

Pfizer & Moderna inside
ignorelist: mimo jiné všechny kremrole (danny1691, Lokomotiva, CZECHYa, pavel2003, shorty25, ajtak, stepan001, ulver, brambora81, CZ_viper, tielka a pár dalších exotů)
Shit
Odborník PCT
Odborník PCT
Uživatelský avatar
Registrován: 20. pro 2003
Bydliště: Hradec Králové

Re: STDRT.EXE - Co je to za maras???

Příspěvek od Shit »

jan.svoboda píše:Možná bych viděl příčinu ve Warezu:
C:\Program Files (x86)\uTorrent\uTorrent.exe
No tak... Zase to nepřeháněj. :)
μTorrent sám o sobě není warez, ale legitimní klient bit-torrentu.

Ber to i jinak:

a) Nejsem si vědom, že sosání linuxových distribucí či 3D-Marku pomocí jakéhokolik bittorrent-klienta je warez.
b) Pak by si mohl tvrdit, že i IE8/Firefox/Opera jsou "nakažlivé@příčinou", jelikož pomocí nich můžeš stahovat mj. i warez. Můžeš? Ano, můžeš s tím stahovat i warez - tak proč nevidíš příčinu i tam... :nervous: ;-)
c) Je docela možné, že torrent-protokol (v kombinaci s nějakou ochranou) bude někdy v budoucnosti legálním prostředkem např. sdílení filmů, service packů, updatů atd. :wink:
jan.svoboda
Středně pokročilý
Středně pokročilý
Registrován: 25. pro 2009
Bydliště: Chrudim

Re: STDRT.EXE - Co je to za maras???

Příspěvek od jan.svoboda »

Shit:

a) Jistě, já vím, že sám o sobě klient sítě bit-torrent není Warez ani nelegální. Ale zrovna tak, upřímě řečeno, neviděl jsem nikoho, kdo by jej využíval k legálním účelům. A skutečně pochybuji, že tento uživatel by spadal do 1% lidí, kteří přes torrenty stahují např. zmíněné Linuxové distribuce. Je veřejným tajemstvím, že dnes slouží torrenty v 99% na stahování nelegalního software.
b) Pochybuji, proč bych měl vidět příčinu v internetovém prohlížeči? Ok, stahovat warez a s ním spojené šmejdy může, ale procento nákazy je určitě vyšší u torrentů.
c) Popravdě tomu moc nevěřím (alespoň ne v několika následujících letech), ačkoliv bych to poměrně ocenil.
Zde na foru již nejsem aktivní, vyskytuji se na Google+ (http://gplus.to/JanSvoboda), kde aktivně píšu nejen o IT.
Shit
Odborník PCT
Odborník PCT
Uživatelský avatar
Registrován: 20. pro 2003
Bydliště: Hradec Králové

Re: STDRT.EXE - Co je to za maras???

Příspěvek od Shit »

jan.svoboda píše:b) Pochybuji, proč bych měl vidět příčinu v internetovém prohlížeči? Ok, stahovat warez a s ním spojené šmejdy může, ale procento nákazy je určitě vyšší u torrentů.
No nevím, ale spíš bych řekl, že pomocí služeb typu RapidShare se v dnešní době stahuje mnohem větší množství warezu prohlížeči/download managery než pomocí sítí P2P. :wink:

Pokud tu a tam zavítáš do "kalných vod", tak zjistíš, že 99% warezu se stahuje "přes port 80" - neboli přes internetový prohlížeč (down-manager).
=>
S tvojí odpovědí b) nemohu souhlasit.

S tím a) v zásadě souhlasím, ale i to 1% lidí představuje jistou komunitu a proto bych vzal v potaz to, že se může jednat i o tento případ a tak "striktně" bych to "neřešil".
Naposledy upravil(a) Shit dne sob 1. kvě 2010, 10:32, celkem upraveno 1 x.
jan.svoboda
Středně pokročilý
Středně pokročilý
Registrován: 25. pro 2009
Bydliště: Chrudim

Re: STDRT.EXE - Co je to za maras???

Příspěvek od jan.svoboda »

Jo, tvůj názor Ti neberu. RapidShare samozřejmě znám, no a taktéž vím, co je port 80, to mi popisovat nemusíš. V dnešní době dle mě se stáhne více svinstva (nemluvím jen o Warezu, ale konkrétně o havěti) přes P2P protokoly, ale nechme to být.
Zde na foru již nejsem aktivní, vyskytuji se na Google+ (http://gplus.to/JanSvoboda), kde aktivně píšu nejen o IT.
Odpovědět

Zpět na „Viry, antiviry a bezpečnost“