Zasekávání počítače - log

Zpráva

iambenny · #1 Příspěvek od **iambenny** » 07 lis 2011 14:50

Ahoj!

Trápí mě problém se zasekáváním notebooku. Např. 2x za den se notebook z ničeho nic zasekne a využití procesoru dramaticky vzroste ke 100% a tam se drží +- 20%. Notebook stále běží, ale nedá se pracovat, kurzor myši se zasekává, otevření složky trvá 5 sekund atd.. Někdy to trvá 5 minut a přejde to z ničeho nic, někdy už to nevydržím a ntb restartuji.

Myslel jsem si, že za to může Firefox, protože pokud si dobře pamatuji, stalo se to ve všech případech při prohlížení na webu, ale od kompletní přeinstalaci před cca 2 dny používám pouze Chrome a dnes opět problém se zasekáváním. Nemůže být problém Flash?

Několikrát jsem zapínal správce úloh a zkoušel jsem najít aplikace které "žerou" nejvíce, ale nejvíc tam má svchost.exe. Nejspíš je ta aplikace skrytá, nebo hledám špatně. Nedoporučíte nějaký program na procesy, abych vám mohl zaslat log?

Předem díky za pomoc!

Log z RSIT:

Logfile of random's system information tool 1.09 (written by random/random)
Run by Notebook at 2011-11-07 14:12:13
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 366 GB (77%) free of 477 GB
Total RAM: 3951 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:12:44, on 7.11.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Users\Notebook\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\QIP\infium.exe
C:\Program Files\trend micro\Notebook.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Notebook\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Přidat do Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ie_banner_deny.htm
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Virtuální klávesnice - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: K&ontrola adres URL - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Služba Kaspersky Anti-Virus (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Hotkey Monitor (hpHotkeyMonitor) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9507 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe" -r
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
atieclxx
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"taskhost.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Users\Notebook\AppData\Local\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\Internet Download Manager\IDMan.exe" /onboot
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe"
"C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\QIP\infium.exe" /isolated /nosrv /oldsearch /acc profil /pass profil
"C:\Users\Notebook\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\AutoKMS.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2856204368-3684141871-3637587785-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2856204368-3684141871-3637587785-1000UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Notebook\AppData\Roaming\Mozilla\Firefox\Profiles\crx7favq.default

prefs.js - "browser.startup.homepage" - "about:blank"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2011-10-01 367456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\ievkbd.dll [2011-04-24 91536]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 688528]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\klwtbbho.dll [2011-04-24 292752]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2011-10-01 218544]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll [2011-04-24 86416]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll [2011-04-24 229776]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2010-09-08 489472]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-03 2174760]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Notebook\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-05 136176]
"IDMan"=C:\Program Files (x86)\Internet Download Manager\IDMan.exe [2011-10-25 3437976]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-03-16 98304]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2010-10-01 256056]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"AVP"=C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe [2011-04-24 202296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\Windows\System32\klogon.dll [2011-04-24 234896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 6722448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2011-11-07 14:12:14 ----D---- C:\Program Files\trend micro
2011-11-07 14:12:13 ----D---- C:\rsit
2011-11-07 09:48:28 ----D---- C:\Utilities
2011-11-07 09:39:54 ----A---- C:\Windows\system32\drivers\klin.dat
2011-11-07 09:39:54 ----A---- C:\Windows\system32\drivers\klick.dat
2011-11-07 09:39:06 ----D---- C:\ProgramData\Kaspersky Lab
2011-11-07 09:39:06 ----D---- C:\Program Files (x86)\Kaspersky Lab
2011-11-07 09:38:55 ----A---- C:\Windows\system32\drivers\klif.sys
2011-11-06 11:57:20 ----D---- C:\Windows\SYSWOW64\Wat
2011-11-06 11:57:20 ----D---- C:\Windows\system32\Wat
2011-11-06 11:49:17 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS
2011-11-06 11:49:17 ----A---- C:\Windows\system32\drivers\bthport.sys
2011-11-06 11:43:52 ----D---- C:\Users\Notebook\AppData\Roaming\IDM
2011-11-06 11:43:45 ----D---- C:\Program Files (x86)\Internet Download Manager
2011-11-06 11:38:53 ----A---- C:\Windows\system32\drivers\revoflt.sys
2011-11-06 11:38:51 ----D---- C:\Program Files\VS Revo Group
2011-11-06 11:30:12 ----D---- C:\Windows\system32\Macromed
2011-11-06 11:28:57 ----A---- C:\Windows\system32\MRT.exe
2011-11-06 11:23:53 ----D---- C:\Users\Notebook\AppData\Roaming\DMCache
2011-11-06 11:08:19 ----A---- C:\Windows\SYSWOW64\tzres.dll
2011-11-06 11:08:19 ----A---- C:\Windows\system32\tzres.dll
2011-11-06 11:08:08 ----A---- C:\Windows\system32\drivers\afd.sys
2011-11-06 11:08:07 ----A---- C:\Windows\system32\win32k.sys
2011-11-06 11:08:06 ----A---- C:\Windows\system32\mfc42u.dll
2011-11-06 11:08:06 ----A---- C:\Windows\system32\mfc42.dll
2011-11-06 11:08:05 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2011-11-06 11:08:05 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2011-11-06 11:08:05 ----A---- C:\Windows\system32\KernelBase.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2011-11-06 11:08:04 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2011-11-06 11:08:04 ----A---- C:\Windows\SYSWOW64\wow32.dll
2011-11-06 11:08:04 ----A---- C:\Windows\SYSWOW64\user.exe
2011-11-06 11:08:04 ----A---- C:\Windows\SYSWOW64\setup16.exe
2011-11-06 11:08:04 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2011-11-06 11:08:04 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2011-11-06 11:08:04 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2011-11-06 11:08:04 ----A---- C:\Windows\SYSWOW64\instnm.exe
2011-11-06 11:08:04 ----A---- C:\Windows\system32\wow64win.dll
2011-11-06 11:08:04 ----A---- C:\Windows\system32\wow64cpu.dll
2011-11-06 11:08:04 ----A---- C:\Windows\system32\wow64.dll
2011-11-06 11:08:04 ----A---- C:\Windows\system32\winsrv.dll
2011-11-06 11:08:04 ----A---- C:\Windows\system32\ntvdm64.dll
2011-11-06 11:08:04 ----A---- C:\Windows\system32\kernel32.dll
2011-11-06 11:08:04 ----A---- C:\Windows\system32\conhost.exe
2011-11-06 11:07:59 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-11-06 11:07:59 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-11-06 11:07:59 ----A---- C:\Windows\system32\drivers\srv.sys
2011-11-06 11:07:57 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2011-11-06 11:07:57 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2011-11-06 11:07:57 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2011-11-06 11:07:57 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2011-11-06 11:07:57 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2011-11-06 11:07:57 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2011-11-06 11:07:57 ----A---- C:\Windows\system32\poqexec.exe
2011-11-06 11:07:57 ----A---- C:\Windows\system32\odbctrac.dll
2011-11-06 11:07:57 ----A---- C:\Windows\system32\odbccu32.dll
2011-11-06 11:07:57 ----A---- C:\Windows\system32\odbccr32.dll
2011-11-06 11:07:57 ----A---- C:\Windows\system32\odbccp32.dll
2011-11-06 11:07:56 ----A---- C:\Windows\SYSWOW64\sbe.dll
2011-11-06 11:07:56 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2011-11-06 11:07:56 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2011-11-06 11:07:56 ----A---- C:\Windows\system32\sbe.dll
2011-11-06 11:07:56 ----A---- C:\Windows\system32\EncDec.dll
2011-11-06 11:07:56 ----A---- C:\Windows\system32\CPFilters.dll
2011-11-06 11:07:55 ----A---- C:\Windows\system32\psisdecd.dll
2011-11-06 11:07:54 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2011-11-06 11:07:36 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-11-06 11:07:36 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-11-06 11:07:36 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-11-06 11:07:35 ----A---- C:\Windows\system32\winresume.exe
2011-11-06 11:07:35 ----A---- C:\Windows\system32\winload.exe
2011-11-06 11:07:35 ----A---- C:\Windows\system32\kdusb.dll
2011-11-06 11:07:35 ----A---- C:\Windows\system32\kdcom.dll
2011-11-06 11:07:35 ----A---- C:\Windows\system32\kd1394.dll
2011-11-06 11:07:34 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2011-11-06 11:07:34 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2011-11-06 11:07:34 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2011-11-06 11:07:34 ----A---- C:\Windows\system32\fontsub.dll
2011-11-06 11:07:34 ----A---- C:\Windows\system32\atmlib.dll
2011-11-06 11:07:34 ----A---- C:\Windows\system32\atmfd.dll
2011-11-06 11:07:33 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2011-11-06 11:07:33 ----A---- C:\Windows\system32\inetcomm.dll
2011-11-06 11:07:32 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2011-11-06 11:07:32 ----A---- C:\Windows\system32\kerberos.dll
2011-11-06 11:07:31 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2011-11-06 11:07:31 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2011-11-06 11:07:31 ----A---- C:\Windows\system32\dnsrslvr.dll
2011-11-06 11:07:31 ----A---- C:\Windows\system32\dnscacheugc.exe
2011-11-06 11:07:31 ----A---- C:\Windows\system32\dnsapi.dll
2011-11-06 11:07:30 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2011-11-06 11:07:30 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-11-06 11:07:29 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2011-11-06 11:07:29 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-11-06 11:07:09 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2011-11-06 11:07:09 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2011-11-06 11:07:09 ----A---- C:\Windows\SYSWOW64\devobj.dll
2011-11-06 11:07:09 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2011-11-06 11:07:09 ----A---- C:\Windows\system32\umpnpmgr.dll
2011-11-06 11:07:09 ----A---- C:\Windows\system32\FXSCOVER.exe
2011-11-06 11:06:13 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2011-11-06 11:06:13 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2011-11-06 11:06:13 ----A---- C:\Windows\system32\oleaut32.dll
2011-11-06 11:06:13 ----A---- C:\Windows\system32\oleacc.dll
2011-11-06 11:06:00 ----A---- C:\Windows\system32\drivers\bowser.sys
2011-11-06 11:01:29 ----D---- C:\Windows\AutoKMS
2011-11-06 10:58:33 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\wininet.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\wextract.exe
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\url.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\occache.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\msrating.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\msls31.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\mshta.exe
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\jscript.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\inseng.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\ieui.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\ieakui.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\ieaksie.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\ieakeng.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\icardie.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2011-11-06 10:47:41 ----A---- C:\Windows\SYSWOW64\admparse.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\wininet.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\urlmon.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2011-11-06 10:47:41 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2011-11-06 10:47:41 ----A---- C:\Windows\system32\pngfilt.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\occache.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\msrating.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\msls31.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\mshtmler.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\mshtml.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\mshta.exe
2011-11-06 10:47:41 ----A---- C:\Windows\system32\msfeedssync.exe
2011-11-06 10:47:41 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\jsproxy.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\jscript9.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\jscript.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\imgutil.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\ieUnatt.exe
2011-11-06 10:47:41 ----A---- C:\Windows\system32\ieui.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\iesysprep.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\iertutil.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\iernonce.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\iepeers.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\ieframe.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\ieapfltr.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\ieapfltr.dat
2011-11-06 10:47:41 ----A---- C:\Windows\system32\ieakui.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\ieaksie.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\ieakeng.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\IEAdvpack.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\ie4uinit.exe
2011-11-06 10:47:41 ----A---- C:\Windows\system32\icardie.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\dxtrans.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\dxtmsft.dll
2011-11-06 10:47:41 ----A---- C:\Windows\system32\admparse.dll
2011-11-06 10:47:40 ----A---- C:\Windows\system32\wextract.exe
2011-11-06 10:47:40 ----A---- C:\Windows\system32\webcheck.dll
2011-11-06 10:47:40 ----A---- C:\Windows\system32\vbscript.dll
2011-11-06 10:47:40 ----A---- C:\Windows\system32\url.dll
2011-11-06 10:47:40 ----A---- C:\Windows\system32\mshtmled.dll
2011-11-06 10:47:40 ----A---- C:\Windows\system32\msfeeds.dll
2011-11-06 10:47:40 ----A---- C:\Windows\system32\licmgr10.dll
2011-11-06 10:47:40 ----A---- C:\Windows\system32\inseng.dll
2011-11-06 10:47:40 ----A---- C:\Windows\system32\iexpress.exe
2011-11-06 10:47:40 ----A---- C:\Windows\system32\iesetup.dll
2011-11-06 10:47:40 ----A---- C:\Windows\system32\iedkcs32.dll
2011-11-06 10:41:28 ----D---- C:\Users\Notebook\AppData\Roaming\Mozilla
2011-11-06 10:41:21 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-11-06 10:30:36 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2011-11-06 10:27:56 ----D---- C:\Program Files\Adobe
2011-11-06 10:27:12 ----D---- C:\Program Files\Common Files\Adobe
2011-11-06 10:26:23 ----D---- C:\Program Files (x86)\Adobe Media Player
2011-11-06 10:24:56 ----D---- C:\Windows\SYSWOW64\Macromed
2011-11-06 10:24:49 ----D---- C:\Program Files (x86)\Adobe
2011-11-06 10:24:14 ----D---- C:\ProgramData\Adobe
2011-11-06 00:01:25 ----D---- C:\Program Files\Common Files\DESIGNER
2011-11-06 00:00:59 ----D---- C:\Program Files\Microsoft Synchronization Services
2011-11-06 00:00:42 ----D---- C:\Windows\PCHEALTH
2011-11-06 00:00:42 ----D---- C:\Program Files\Microsoft Sync Framework
2011-11-06 00:00:42 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2011-11-06 00:00:42 ----D---- C:\Program Files (x86)\Microsoft.NET
2011-11-05 23:59:04 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2011-11-05 23:58:31 ----D---- C:\Program Files\Microsoft Analysis Services
2011-11-05 23:58:31 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2011-11-05 23:58:24 ----D---- C:\Program Files\Microsoft Office
2011-11-05 23:58:24 ----D---- C:\Program Files (x86)\Microsoft Office
2011-11-05 23:58:23 ----D---- C:\ProgramData\Microsoft Help
2011-11-05 23:58:14 ----RHD---- C:\MSOCache
2011-11-05 23:06:02 ----D---- C:\QIP
2011-11-05 22:42:51 ----D---- C:\Program Files\CCleaner
2011-11-05 21:22:29 ----D---- C:\Program Files (x86)\OperationFlashpoint
2011-11-05 21:20:15 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2011-11-05 21:20:10 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2011-11-05 21:19:59 ----D---- C:\Users\Notebook\AppData\Roaming\DAEMON Tools Lite
2011-11-05 21:19:58 ----D---- C:\ProgramData\DAEMON Tools Lite
2011-11-05 21:17:15 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2011-11-05 20:45:27 ----D---- C:\Users\Notebook\AppData\Roaming\Mp3tag
2011-11-05 20:45:21 ----D---- C:\Program Files (x86)\Mp3tag
2011-11-05 20:42:07 ----D---- C:\Users\Notebook\AppData\Roaming\foobar2000
2011-11-05 20:42:02 ----D---- C:\Program Files (x86)\foobar2000
2011-11-05 20:27:22 ----D---- C:\Users\Notebook\AppData\Roaming\Media Player Classic
2011-11-05 20:27:07 ----A---- C:\Windows\SYSWOW64\unrar.dll
2011-11-05 20:27:05 ----A---- C:\Windows\SYSWOW64\xvidvfw.dll
2011-11-05 20:27:05 ----A---- C:\Windows\SYSWOW64\xvidcore.dll
2011-11-05 20:27:05 ----A---- C:\Windows\SYSWOW64\ff_vfw.dll
2011-11-05 20:27:03 ----D---- C:\Program Files (x86)\K-Lite Codec Pack
2011-11-05 19:35:49 ----D---- C:\Program Files\Hewlett-Packard
2011-11-05 19:35:02 ----D---- C:\Users\Notebook\AppData\Roaming\Hewlett-Packard
2011-11-05 19:35:02 ----D---- C:\Program Files (x86)\Hewlett-Packard
2011-11-05 19:35:01 ----D---- C:\Users\Notebook\AppData\Roaming\hpqLog
2011-11-05 19:27:28 ----D---- C:\Program Files\Synaptics
2011-11-05 19:22:21 ----A---- C:\Windows\system32\stlang64.dll
2011-11-05 19:22:21 ----A---- C:\Windows\system32\AESTEC64.dll
2011-11-05 19:22:21 ----A---- C:\Windows\system32\AESTCo64.dll
2011-11-05 19:22:21 ----A---- C:\Windows\system32\AESTAR64.dll
2011-11-05 19:22:21 ----A---- C:\Windows\system32\AESTAC64.dll
2011-11-05 19:22:21 ----A---- C:\Windows\sttray64.exe
2011-11-05 19:21:50 ----N---- C:\Windows\system32\stapi64.dll
2011-11-05 19:21:50 ----A---- C:\Windows\system32\stcplx64.dll
2011-11-05 19:21:50 ----A---- C:\Windows\system32\stapo64.dll
2011-11-05 19:21:50 ----A---- C:\Windows\system32\staco64.dll
2011-11-05 19:21:50 ----A---- C:\Windows\system32\drivers\stwrt64.sys
2011-11-05 19:21:48 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-11-05 19:21:48 ----D---- C:\Program Files\IDT
2011-11-05 19:17:28 ----A---- C:\Windows\SYSWOW64\log.txt
2011-11-05 19:15:54 ----D---- C:\Program Files (x86)\Intel
2011-11-05 19:15:54 ----A---- C:\Windows\SYSWOW64\CSVer.dll
2011-11-05 19:15:42 ----D---- C:\Intel
2011-11-05 19:13:24 ----D---- C:\Users\Notebook\AppData\Roaming\ATI
2011-11-05 19:13:24 ----D---- C:\ProgramData\ATI
2011-11-05 19:10:10 ----D---- C:\Program Files (x86)\ATI Technologies
2011-11-05 19:09:53 ----SHD---- C:\Windows\Installer
2011-11-05 19:09:53 ----D---- C:\Program Files\ATI
2011-11-05 19:09:41 ----D---- C:\Program Files\ATI Technologies
2011-11-05 19:09:14 ----D---- C:\Users\Notebook\AppData\Roaming\WinRAR
2011-11-05 19:08:41 ----D---- C:\Program Files\WinRAR
2011-11-05 19:05:30 ----D---- C:\Drivers
2011-11-05 18:35:02 ----D---- C:\Users\Notebook\AppData\Roaming\Macromedia
2011-11-05 18:35:02 ----D---- C:\Users\Notebook\AppData\Roaming\Adobe
2011-11-05 18:27:32 ----D---- C:\Windows\SoftwareDistribution
2011-11-05 18:27:02 ----D---- C:\Users\Notebook\AppData\Roaming\Identities
2011-11-05 18:26:49 ----SD---- C:\Users\Notebook\AppData\Roaming\Microsoft
2011-11-05 18:26:49 ----D---- C:\Users\Notebook\AppData\Roaming\Media Center Programs
2011-11-05 18:26:36 ----SHD---- C:\Recovery
2011-11-05 18:26:36 ----SHD---- C:\ProgramData\Šablony
2011-11-05 18:26:36 ----SHD---- C:\ProgramData\Plocha
2011-11-05 18:26:36 ----SHD---- C:\ProgramData\Oblíbené položky
2011-11-05 18:26:36 ----SHD---- C:\ProgramData\Nabídka Start
2011-11-05 18:26:36 ----SHD---- C:\ProgramData\Dokumenty
2011-11-05 18:26:36 ----SHD---- C:\ProgramData\Data aplikací
2011-11-05 18:20:20 ----D---- C:\Windows\Prefetch
2011-11-05 18:19:39 ----SHD---- C:\System Volume Information
2011-11-05 18:19:39 ----ASH---- C:\pagefile.sys
2011-11-05 18:19:39 ----ASH---- C:\hiberfil.sys
2011-11-05 18:19:18 ----D---- C:\Windows\Panther
2011-10-25 09:22:14 ----A---- C:\Windows\system32\drivers\idmwfp.sys

======List of files/folders modified in the last 1 month======

2011-11-07 14:12:36 ----D---- C:\Windows\Temp
2011-11-07 14:12:14 ----RD---- C:\Program Files
2011-11-07 14:11:23 ----D---- C:\Windows\system32\drivers
2011-11-07 14:10:22 ----D---- C:\Windows\inf
2011-11-07 14:10:21 ----D---- C:\Windows
2011-11-07 13:42:15 ----D---- C:\Windows\System32
2011-11-07 13:42:15 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-11-07 12:32:33 ----D---- C:\Windows\system32\config
2011-11-07 12:21:58 ----RSD---- C:\Windows\assembly
2011-11-07 12:21:58 ----D---- C:\Windows\Microsoft.NET
2011-11-07 12:08:50 ----D---- C:\Windows\system32\LogFiles
2011-11-07 12:02:32 ----D---- C:\Windows\system32\Tasks
2011-11-07 09:39:42 ----D---- C:\Windows\winsxs
2011-11-07 09:39:32 ----D---- C:\Windows\system32\catroot
2011-11-07 09:39:25 ----D---- C:\Windows\system32\DriverStore
2011-11-07 09:39:06 ----RD---- C:\Program Files (x86)
2011-11-07 09:39:06 ----HD---- C:\ProgramData
2011-11-07 09:29:31 ----D---- C:\Windows\Tasks
2011-11-06 11:57:20 ----D---- C:\Windows\SysWOW64
2011-11-06 11:48:12 ----D---- C:\Windows\Logs
2011-11-06 11:48:12 ----D---- C:\Windows\debug
2011-11-06 11:31:52 ----D---- C:\Program Files\Internet Explorer
2011-11-06 11:31:07 ----D---- C:\Windows\SYSWOW64\cs-CZ
2011-11-06 11:31:07 ----D---- C:\Windows\system32\cs-CZ
2011-11-06 11:31:07 ----D---- C:\Windows\ehome
2011-11-06 11:31:06 ----D---- C:\Windows\system32\Boot
2011-11-06 11:31:05 ----D---- C:\Windows\AppPatch
2011-11-06 11:07:51 ----D---- C:\Windows\system32\catroot2
2011-11-06 10:55:01 ----D---- C:\Windows\SYSWOW64\en-US
2011-11-06 10:55:01 ----D---- C:\Windows\system32\en-US
2011-11-06 10:49:22 ----D---- C:\Windows\servicing
2011-11-06 10:49:22 ----D---- C:\Program Files (x86)\Internet Explorer
2011-11-06 10:48:00 ----D---- C:\Windows\SYSWOW64\migration
2011-11-06 10:47:59 ----D---- C:\Windows\system32\migration
2011-11-06 10:47:59 ----D---- C:\Windows\PolicyDefinitions
2011-11-06 10:30:27 ----D---- C:\Windows\system32\drivers\etc
2011-11-06 10:27:32 ----RSD---- C:\Windows\Fonts
2011-11-06 10:27:12 ----D---- C:\Program Files\Common Files
2011-11-06 10:24:50 ----D---- C:\Program Files (x86)\Common Files
2011-11-06 00:01:26 ----D---- C:\Windows\ShellNew
2011-11-06 00:01:25 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-11-06 00:00:51 ----D---- C:\Program Files (x86)\MSBuild
2011-11-06 00:00:42 ----SD---- C:\ProgramData\Microsoft
2011-11-05 23:58:44 ----A---- C:\Windows\win.ini
2011-11-05 23:58:43 ----D---- C:\Program Files\Common Files\System
2011-11-05 20:20:00 ----D---- C:\Windows\system32\wdi
2011-11-05 19:22:26 ----D---- C:\Windows\system32\restore
2011-11-05 18:33:39 ----D---- C:\Windows\system32\CodeIntegrity
2011-11-05 18:27:00 ----SHD---- C:\$Recycle.Bin
2011-11-05 18:26:47 ----RD---- C:\Users
2011-11-05 18:26:36 ----D---- C:\Program Files\Windows NT
2011-11-05 18:25:36 ----D---- C:\Windows\rescache
2011-11-05 18:23:00 ----D---- C:\Windows\system32\sysprep
2011-11-05 18:21:50 ----D---- C:\Windows\system32\drivers\UMDF
2011-11-05 18:20:16 ----D---- C:\Windows\CSC

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 KL1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2011-03-04 460888]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-11-05 270912]
R1 kl2;kl2; C:\Windows\system32\DRIVERS\kl2.sys [2011-03-04 11864]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2011-11-07 615728]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2011-03-10 29488]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 IDMWFP;IDMWFP; C:\Windows\system32\DRIVERS\idmwfp.sys [2011-07-06 145008]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-03-16 6862848]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-03-16 264192]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-09-22 1484800]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2011-03-16 125456]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2010-06-02 25912]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2009-11-02 22544]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Ovladač Realtek 8167 NT; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys [2010-09-08 515584]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-06-03 1379376]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-28 552960]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 31800]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-02 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-03-16 203264]
R2 AVP;Služba Kaspersky Anti-Virus; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe [2011-04-24 202296]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2011-08-15 2329480]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2010-09-27 92216]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-10-01 280120]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2010-09-08 271360]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2010-09-27 749112]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 51456888]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-11-06 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

#2 Příspěvek od **Rudy** » 07 lis 2011 18:39

Zdravím!
Log vypadá OK. Nejprve zkuste vypnout aut. aktualizace, příp reinstalujte antivir. Pokud to nepomůže, udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte. Máte nainstalovány všechny ovladače hardwaru?

iambenny · #3 Příspěvek od **iambenny** » 07 lis 2011 19:54

Reinstaloval jsem antivirus. Zatím vše v pořádku. Kdyby se to objevilo opět, dám vědět. Díky.

#4 Příspěvek od **Rudy** » 07 lis 2011 20:06

OK a nemáte zač!

VIRY.CZ

Zasekávání počítače - log

Zasekávání počítače - log

Re: Zasekávání počítače - log

Re: Zasekávání počítače - log

Re: Zasekávání počítače - log