C:\ProgramData\SysLogger\core32_175.dll

[ruphi]

Zdravím, po spuštění NTB se mi vždy objeví objeví tato chybová hláška:
Při spuštění souboru C:\ProgramData\SysLogger\core32_175.dll došlo k chybě.
Uvedený modul nebyl nalezen.
Prosím o radu,co udělat, aby to zmizelo
log:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Adam at 2011-12-10 21:17:02
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 335 GB (57%) free of 588 GB
Total RAM: 4030 MB (29% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:21:34, on 10.12.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files (x86)\IncrediMail\bin\ImApp.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\AVG Secure Search\vprot.exe
C:\Program Files (x86)\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe
C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\CancelAutoPlay.exe
C:\Program Files (x86)\Opera\opera.exe
C:\Program Files (x86)\IncrediMail\bin\IncMail.exe
C:\Program Files\trend micro\Adam.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://isearch.avg.com/?cid={9C4E1EF5-3 ... &v=&sap=hp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=c:\windows\syswow64\userinit.exe,
O1 - Hosts: ::1 localhost
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\bh\BabylonToolbar.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\18.6.0.29\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\18.6.0.29\IPS\IPSBHO.DLL
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: QIPBHO - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\Adam\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\8.0.0.34\AVG Secure Search_toolbar.dll
O2 - BHO: FaceCons - {B2A44031-7EAD-434C-AC9E-7F1DA176BA8C} - C:\Program Files (x86)\Facecons\facecons.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: uTorrentBar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll
O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: @C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\18.6.0.29\coIEPlg.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarTlbr.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\8.0.0.34\AVG Secure Search_toolbar.dll
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [DTRun] c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
O4 - HKLM\..\Run: [HPConnectionManager] c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [HPQuickWebProxy] "c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SafeQ Client] "C:\Program Files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files (x86)\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKLM\..\Policies\Explorer\Run: [SysLogger32] rundll32.exe "C:\ProgramData\SysLogger\core32_175.dll",z
O4 - HKLM\..\Policies\Explorer\Run: [SysLogger64] rundll32.exe "C:\ProgramData\SysLogger\core64_175.dll",z
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\8.0.1\ViProtocol.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\windows\SysWOW64\IoctlSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\PROGRAM FILES (X86)\TUNEUP UTILITIES 2012\TUNEUPUTILITIESSERVICE64.EXE
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XobniService - Xobni Corporation - C:\Program Files (x86)\Xobni\XobniService.exe

--
End of file - 19794 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
atieclxx
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\windows\system32\WLANExt.exe 3537936
\??\C:\windows\system32\conhost.exe "494741369492060120-1897797460186594084419650012041644731029-74746038974481583
"c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Windows\System32\rundll32.exe" "C:\ProgramData\SysLogger\core64_175.dll",z
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden
"C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
"C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"C:\Program Files (x86)\IncrediMail\bin\ImApp.exe" -Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\windows\System32\spoolsv.exe
"C:\Program Files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe"
"taskhost.exe"
"C:\Program Files (x86)\AVG Secure Search\vprot.exe"
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" /hidden
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
"C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\18.6.0.29\diMaster.dll" /prefetch:1
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
C:\windows\SysWOW64\IoctlSvc.exe
"C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\PROGRAM FILES (X86)\TUNEUP UTILITIES 2012\TUNEUPUTILITIESSERVICE64.EXE"
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\PROGRAM FILES (X86)\TUNEUP UTILITIES 2012\TuneUpUtilitiesApp64.EXE" /TUStart /pid:5364
WLIDSvcM.exe 5548
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe" /c /a /s UserSession
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
"C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
"c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe"
{CA018346-9F2D-4E10-8B72-FAEDF418F65C}
{95E822ED-C241-463E-8374-1B0EC1621B76}
-Minimized
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
"c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe"
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe" -Embedding
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe" "<hpNotification><Toast><Title>HP Connection Manager</Title><Text>Wi-Fi: Připojeno
Bluetooth®: Vypnuto
Síť LAN: Nepřipojeno</Text><IconPath>C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpConnectionManager.exe</IconPath><ID>1</ID><Path>C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpConnectionManager.exe</Path><Parameters>OpenMainWindow</Parameters></Toast></hpNotification>"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files (x86)\uTorrent\uTorrent.exe"
"C:\Program Files\Windows Media Player\wmprph.exe" -Embedding
"c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\CancelAutoPlay.exe"
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Opera\opera.exe"
"C:\Program Files (x86)\IncrediMail\bin\IncMail.exe"
"C:\Users\Adam\AppData\Local\Opera\Opera\temporary_downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\windows\tasks\HPCeeScheduleForADAM-HP$.job
C:\windows\tasks\HPCeeScheduleForAdam.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2011-11-28 963064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 6721936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}]
Babylon toolbar helper - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\bh\BabylonToolbar.dll [2011-08-14 270960]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2011-02-07 117248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files (x86)\Norton Internet Security\Engine\18.6.0.29\coIEPlg.dll [2011-04-28 436152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files (x86)\Norton Internet Security\Engine\18.6.0.29\IPS\IPSBHO.DLL [2011-03-31 210872]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-07-27 191792]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-01-07 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-11-28 809040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95289393-33EA-4F8D-B952-483415B9C955}]
QIPBHO Class - C:\Users\Adam\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll [2011-10-12 142288]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\8.0.0.34\AVG Secure Search_toolbar.dll [2011-12-09 1451336]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B2A44031-7EAD-434C-AC9E-7F1DA176BA8C}]
FACECONS Class - C:\Program Files (x86)\Facecons\facecons.dll [2011-08-01 167424]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
uTorrentBar Toolbar - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll [2011-05-09 176936]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar BHO - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll [2010-08-13 609544]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-10-18 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2011-11-28 963064]
{32099AAC-C132-4136-9E9A-4E364A424E17}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - @C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll,-100 - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll [2010-08-13 609544]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\18.6.0.29\coIEPlg.dll [2011-04-28 436152]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-11-28 809040]
{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - uTorrentBar Toolbar - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll [2011-05-09 176936]
{98889811-442D-49dd-99D7-DC866BE87DBC} - Babylon Toolbar - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarTlbr.dll [2011-08-14 237680]
{95B7759C-8C7F-4BF1-B163-73684A933233} - AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\8.0.0.34\AVG Secure Search_toolbar.dll [2011-12-09 1451336]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-01-27 13880]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-02-04 2679592]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-01-07 615584]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-07 379040]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-01-27 835072]
"MfeEpePcMonitor"=C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [2011-02-09 200704]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2011-03-26 167960]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2011-03-26 391704]
"Persistence"=C:\windows\system32\igfxpers.exe [2011-03-26 418840]
"SpywareTerminatorShield"=C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe []
"SpywareTerminatorUpdater"=C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"SysLogger32"=C:\ProgramData\SysLogger\core32_175.dll,z []
"SysLogger64"=C:\ProgramData\SysLogger\core64_175.dll [2011-12-04 575488]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"IncrediMail"=C:\Program Files (x86)\IncrediMail\bin\IncMail.exe [2008-07-24 243072]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2011-03-04 2741616]
"PC Suite Tray"=C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [2011-06-16 1500160]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2008-02-28 1828136]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2011-11-07 5495680]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2011-02-01 656920]
"Microsoft Default Manager"=C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [2010-05-10 439568]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-01-28 299576]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2011-02-07 12274688]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-05-20 284440]
"DTRun"=c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2010-11-24 517456]
"HPConnectionManager"=c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2011-04-05 94264]
""= []
"HPQuickWebProxy"=c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2011-02-11 76344]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-11-28 3744552]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-04-27 336384]
"SafeQ Client"=C:\Program Files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe [2010-03-31 249856]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"vProt"=C:\Program Files (x86)\AVG Secure Search\vprot.exe [2011-12-09 218440]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"SysLogger32"=C:\ProgramData\SysLogger\core32_175.dll,z []
"SysLogger64"=C:\ProgramData\SysLogger\core64_175.dll [2011-12-04 575488]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2011-03-25 385024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 6721936]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=EpePcNp64
DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2011-12-10 21:17:02 ----D---- C:\rsit
2011-12-10 21:17:02 ----D---- C:\Program Files\trend micro
2011-12-10 16:05:09 ----D---- C:\Users\Adam\AppData\Roaming\DivX
2011-12-10 15:23:40 ----SHD---- C:\Config.Msi
2011-12-10 12:43:37 ----D---- C:\Users\Adam\AppData\Roaming\SUPERAntiSpyware.com
2011-12-10 12:43:13 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2011-12-10 12:43:13 ----D---- C:\Program Files\SUPERAntiSpyware
2011-12-09 19:09:32 ----D---- C:\Program Files (x86)\AVG Secure Search
2011-12-09 19:09:28 ----HD---- C:\ProgramData\Common Files
2011-12-09 19:09:15 ----A---- C:\windows\SYSWOW64\uxtuneup.dll
2011-12-09 19:09:15 ----A---- C:\windows\system32\uxtuneup.dll
2011-12-09 19:07:22 ----A---- C:\windows\system32\TURegOpt.exe
2011-12-09 19:07:21 ----A---- C:\windows\system32\authuitu.dll
2011-12-09 19:07:18 ----A---- C:\windows\SYSWOW64\authuitu.dll
2011-12-09 19:06:56 ----D---- C:\Users\Adam\AppData\Roaming\TuneUp Software
2011-12-09 19:06:32 ----D---- C:\Program Files (x86)\TuneUp Utilities 2012
2011-12-09 19:05:53 ----D---- C:\ProgramData\TuneUp Software
2011-12-09 19:05:48 ----SHD---- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2011-12-07 21:08:39 ----A---- C:\windows\_MSRSTRT.EXE
2011-12-07 19:47:43 ----D---- C:\Program Files (x86)\InCode Solutions
2011-12-07 19:33:47 ----RASHOT---- C:\windows\winstart.bat
2011-12-07 19:30:15 ----D---- C:\Program Files (x86)\UnHackMe
2011-12-06 00:34:51 ----D---- C:\Program Files (x86)\MSXML 4.0
2011-12-05 20:39:05 ----A---- C:\windows\system32\drivers\stflt.sys
2011-12-05 20:37:59 ----D---- C:\Program Files (x86)\Spyware Terminator
2011-12-05 17:04:03 ----A---- C:\windows\system32\drivers\SBREDrv.sys
2011-12-05 17:01:24 ----D---- C:\ProgramData\Lavasoft
2011-12-05 17:01:24 ----D---- C:\Program Files (x86)\Lavasoft
2011-12-04 12:59:45 ----AD---- C:\ProgramData\TEMP
2011-12-04 12:48:05 ----HD---- C:\ProgramData\SysLogger
2011-12-04 12:45:04 ----A---- C:\windows\SYSWOW64\IJL_11.DLL
2011-12-04 12:17:36 ----D---- C:\Program Files\DivX
2011-12-04 12:15:42 ----D---- C:\ProgramData\DivX
2011-12-04 12:14:43 ----D---- C:\Program Files (x86)\DivX
2011-12-04 09:49:52 ----D---- C:\Program Files (x86)\NeroInstall.bak
2011-12-04 09:46:54 ----D---- C:\Program Files (x86)\Nero
2011-11-20 21:19:30 ----D---- C:\Users\Adam\AppData\Roaming\QIP
2011-11-18 12:24:22 ----D---- C:\Program Files (x86)\Electronic Arts
2011-11-18 12:24:17 ----A---- C:\windows\system32\XAudio2_4.dll
2011-11-18 12:24:16 ----A---- C:\windows\system32\xactengine3_4.dll
2011-11-18 12:24:16 ----A---- C:\windows\system32\X3DAudio1_6.dll
2011-11-18 12:24:14 ----A---- C:\windows\system32\d3dx10_40.dll
2011-11-18 12:24:14 ----A---- C:\windows\system32\D3DCompiler_40.dll
2011-11-18 12:24:13 ----A---- C:\windows\system32\D3DX9_40.dll
2011-11-18 12:24:07 ----A---- C:\windows\system32\XAudio2_1.dll
2011-11-18 12:24:07 ----A---- C:\windows\system32\XAPOFX1_0.dll
2011-11-18 12:24:07 ----A---- C:\windows\system32\xactengine3_1.dll
2011-11-18 12:24:06 ----A---- C:\windows\system32\X3DAudio1_4.dll
2011-11-18 12:24:06 ----A---- C:\windows\system32\d3dx10_38.dll
2011-11-18 12:24:06 ----A---- C:\windows\system32\D3DCompiler_38.dll
2011-11-18 12:24:04 ----A---- C:\windows\system32\XAudio2_0.dll
2011-11-18 12:24:04 ----A---- C:\windows\system32\D3DX9_38.dll
2011-11-18 12:24:03 ----A---- C:\windows\system32\xactengine3_0.dll
2011-11-18 12:24:03 ----A---- C:\windows\system32\X3DAudio1_3.dll
2011-11-18 12:24:00 ----A---- C:\windows\system32\xactengine2_10.dll
2011-11-18 12:23:59 ----A---- C:\windows\system32\d3dx10_36.dll
2011-11-18 12:23:59 ----A---- C:\windows\system32\D3DCompiler_36.dll
2011-11-18 12:23:57 ----A---- C:\windows\system32\xactengine2_9.dll
2011-11-18 12:23:57 ----A---- C:\windows\system32\d3dx9_36.dll
2011-11-18 12:23:56 ----A---- C:\windows\system32\d3dx10_35.dll
2011-11-18 12:23:55 ----A---- C:\windows\system32\D3DCompiler_35.dll
2011-11-18 12:23:54 ----A---- C:\windows\system32\xactengine2_8.dll
2011-11-18 12:23:54 ----A---- C:\windows\system32\X3DAudio1_2.dll
2011-11-18 12:23:53 ----A---- C:\windows\system32\d3dx10_34.dll
2011-11-18 12:23:52 ----A---- C:\windows\system32\D3DCompiler_34.dll
2011-11-18 12:23:51 ----A---- C:\windows\system32\d3dx9_34.dll
2011-11-18 12:23:50 ----A---- C:\windows\system32\xinput1_3.dll
2011-11-18 12:23:49 ----A---- C:\windows\system32\xactengine2_7.dll
2011-11-18 12:23:49 ----A---- C:\windows\system32\d3dx10_33.dll
2011-11-18 12:23:48 ----A---- C:\windows\system32\D3DCompiler_33.dll
2011-11-18 12:23:47 ----A---- C:\windows\system32\d3dx9_33.dll
2011-11-18 12:23:43 ----A---- C:\windows\system32\x3daudio1_1.dll
2011-11-18 12:19:57 ----D---- C:\windows\SYSWOW64\AGEIA
2011-11-18 12:19:56 ----D---- C:\Program Files (x86)\AGEIA Technologies
2011-11-15 13:42:34 ----A---- C:\windows\SYSWOW64\XAudio2_4.dll
2011-11-15 13:42:34 ----A---- C:\windows\SYSWOW64\xactengine3_4.dll
2011-11-15 13:42:34 ----A---- C:\windows\SYSWOW64\X3DAudio1_6.dll
2011-11-15 13:42:33 ----A---- C:\windows\SYSWOW64\d3dx10_40.dll
2011-11-15 13:42:33 ----A---- C:\windows\SYSWOW64\D3DCompiler_40.dll
2011-11-15 13:42:32 ----A---- C:\windows\SYSWOW64\D3DX9_40.dll
2011-11-15 13:42:31 ----A---- C:\windows\SYSWOW64\d3dx10_39.dll
2011-11-15 13:42:31 ----A---- C:\windows\SYSWOW64\D3DCompiler_39.dll
2011-11-15 13:42:30 ----A---- C:\windows\SYSWOW64\XAudio2_1.dll
2011-11-15 13:42:30 ----A---- C:\windows\SYSWOW64\XAPOFX1_0.dll
2011-11-15 13:42:30 ----A---- C:\windows\SYSWOW64\D3DX9_39.dll
2011-11-15 13:42:29 ----A---- C:\windows\SYSWOW64\xactengine3_1.dll
2011-11-15 13:42:29 ----A---- C:\windows\SYSWOW64\X3DAudio1_4.dll
2011-11-15 13:42:29 ----A---- C:\windows\SYSWOW64\d3dx10_38.dll
2011-11-15 13:42:29 ----A---- C:\windows\SYSWOW64\D3DCompiler_38.dll
2011-11-15 13:42:28 ----A---- C:\windows\SYSWOW64\XAudio2_0.dll
2011-11-15 13:42:28 ----A---- C:\windows\SYSWOW64\xactengine3_0.dll
2011-11-15 13:42:28 ----A---- C:\windows\SYSWOW64\D3DX9_38.dll
2011-11-15 13:42:27 ----A---- C:\windows\SYSWOW64\X3DAudio1_3.dll
2011-11-15 13:42:26 ----A---- C:\windows\SYSWOW64\xactengine2_10.dll
2011-11-15 13:42:26 ----A---- C:\windows\SYSWOW64\d3dx10_36.dll
2011-11-15 13:42:26 ----A---- C:\windows\SYSWOW64\D3DCompiler_36.dll
2011-11-15 13:42:25 ----A---- C:\windows\SYSWOW64\xactengine2_9.dll
2011-11-15 13:42:25 ----A---- C:\windows\SYSWOW64\d3dx9_36.dll
2011-11-15 13:42:24 ----A---- C:\windows\SYSWOW64\d3dx10_35.dll
2011-11-15 13:42:24 ----A---- C:\windows\SYSWOW64\D3DCompiler_35.dll
2011-11-15 13:42:23 ----A---- C:\windows\SYSWOW64\xactengine2_8.dll
2011-11-15 13:42:23 ----A---- C:\windows\SYSWOW64\X3DAudio1_2.dll
2011-11-15 13:42:23 ----A---- C:\windows\SYSWOW64\d3dx10_34.dll
2011-11-15 13:42:23 ----A---- C:\windows\SYSWOW64\D3DCompiler_34.dll
2011-11-15 13:42:22 ----A---- C:\windows\SYSWOW64\xinput1_3.dll
2011-11-15 13:42:22 ----A---- C:\windows\SYSWOW64\xactengine2_7.dll
2011-11-15 13:42:22 ----A---- C:\windows\SYSWOW64\d3dx9_34.dll
2011-11-15 13:42:21 ----A---- C:\windows\SYSWOW64\d3dx9_33.dll
2011-11-15 13:42:21 ----A---- C:\windows\SYSWOW64\d3dx10_33.dll
2011-11-15 13:42:21 ----A---- C:\windows\SYSWOW64\D3DCompiler_33.dll
2011-11-15 13:42:19 ----A---- C:\windows\SYSWOW64\x3daudio1_1.dll
2011-11-15 13:38:13 ----D---- C:\Users\Adam\AppData\Roaming\Kalypso Media
2011-11-12 15:35:35 ----D---- C:\Users\Adam\AppData\Roaming\Mathematica
2011-11-12 15:35:35 ----D---- C:\ProgramData\Mathematica
2011-11-12 15:34:56 ----D---- C:\windows\Downloaded Installations
2011-11-12 15:33:45 ----A---- C:\windows\SYSWOW64\mlmodule32.dll
2011-11-12 15:33:45 ----A---- C:\windows\SYSWOW64\ml32i3.dll
2011-11-12 15:33:45 ----A---- C:\windows\SYSWOW64\ml32i2.dll
2011-11-12 15:33:45 ----A---- C:\windows\SYSWOW64\ml32i1.dll
2011-11-12 15:33:44 ----A---- C:\windows\system32\mlmodule64.dll
2011-11-12 15:33:44 ----A---- C:\windows\system32\ml64i3.dll
2011-11-12 15:33:44 ----A---- C:\windows\system32\ml64i2.dll

======List of files/folders modified in the last 1 month======

2011-12-10 21:21:10 ----D---- C:\Users\Adam\AppData\Roaming\uTorrent
2011-12-10 21:17:02 ----RD---- C:\Program Files
2011-12-10 20:35:59 ----D---- C:\windows\Tasks
2011-12-10 20:35:59 ----D---- C:\windows\system32\Tasks
2011-12-10 20:35:37 ----D---- C:\windows\Temp
2011-12-10 20:35:20 ----D---- C:\windows\Prefetch
2011-12-10 20:35:12 ----A---- C:\windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2011-12-10 18:08:23 ----D---- C:\windows\system32\config
2011-12-10 15:30:55 ----SHD---- C:\windows\Installer
2011-12-10 15:30:54 ----D---- C:\Program Files (x86)
2011-12-10 15:29:58 ----SHD---- C:\System Volume Information
2011-12-10 15:25:17 ----D---- C:\Program Files\Common Files\Autodesk Shared
2011-12-10 15:23:52 ----RSD---- C:\windows\assembly
2011-12-10 15:16:28 ----A---- C:\windows\SYSWOW64\log.txt
2011-12-10 15:14:44 ----D---- C:\ProgramData\PDFC
2011-12-10 15:14:35 ----D---- C:\ProgramData\HPQLOG
2011-12-10 15:07:41 ----D---- C:\windows\System32
2011-12-10 13:11:57 ----D---- C:\windows\Microsoft.NET
2011-12-10 13:08:00 ----RSD---- C:\windows\Fonts
2011-12-10 12:59:15 ----D---- C:\ProgramData\Autodesk
2011-12-10 12:52:28 ----D---- C:\Windows
2011-12-10 12:51:07 ----D---- C:\windows\Logs
2011-12-10 12:51:02 ----D---- C:\windows\SysWOW64
2011-12-10 12:51:02 ----A---- C:\windows\SYSWOW64\PerfStringBackup.INI
2011-12-10 12:50:54 ----D---- C:\windows\inf
2011-12-10 12:50:49 ----A---- C:\windows\system32\PerfStringBackup.INI
2011-12-10 12:48:07 ----D---- C:\windows\SYSWOW64\cs-CZ
2011-12-10 12:48:07 ----D---- C:\windows\system32\cs-CZ
2011-12-10 12:47:04 ----D---- C:\Program Files\Autodesk
2011-12-10 12:43:37 ----HD---- C:\ProgramData
2011-12-10 12:39:29 ----D---- C:\windows\SYSWOW64\drivers
2011-12-10 12:39:29 ----D---- C:\Program Files (x86)\Common Files
2011-12-10 12:35:12 ----D---- C:\windows\system32\drivers
2011-12-09 16:36:10 ----D---- C:\windows\debug
2011-12-08 17:03:06 ----D---- C:\Users\Adam\AppData\Roaming\SoftGrid Client
2011-12-07 23:21:14 ----D---- C:\Program Files (x86)\Opera
2011-12-07 21:08:48 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-12-07 21:08:48 ----D---- C:\Program Files (x86)\Hry
2011-12-07 19:32:43 ----DC---- C:\windows\system32\DRVSTORE
2011-12-06 00:35:15 ----D---- C:\windows\winsxs
2011-12-05 18:01:19 ----D---- C:\windows\Help
2011-12-05 17:01:37 ----D---- C:\windows\system32\catroot
2011-12-04 20:25:19 ----HD---- C:\Program Files (x86)\Ijrgyimfgodv
2011-12-04 11:22:17 ----D---- C:\windows\system32\catroot2
2011-12-04 11:10:15 ----D---- C:\Users\Adam\AppData\Roaming\Nero
2011-12-04 09:46:55 ----D---- C:\ProgramData\Nero
2011-12-04 09:46:53 ----D---- C:\windows\Cursors
2011-11-28 19:01:23 ----A---- C:\windows\SYSWOW64\aswBoot.exe
2011-11-28 19:01:14 ----A---- C:\windows\system32\aswBoot.exe
2011-11-26 22:26:51 ----D---- C:\windows\system32\NDF
2011-11-13 13:36:37 ----D---- C:\Users\Adam\AppData\Roaming\Samsung
2011-11-13 13:36:37 ----D---- C:\ProgramData\Samsung
2011-11-13 13:32:39 ----D---- C:\windows\system32\DriverStore
2011-11-12 13:43:52 ----SD---- C:\Users\Adam\AppData\Roaming\Microsoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-01-27 30008]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2011-05-20 557848]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2011-02-09 168008]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 SymDS;Symantec Data Store; C:\windows\system32\drivers\NISx64\1206000.01D\SYMDS64.SYS [2011-01-27 450680]
R0 SymEFA;Symantec Extended File Attributes; C:\windows\system32\drivers\NISx64\1206000.01D\SYMEFA64.SYS [2011-03-15 912504]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr.sys [2011-11-28 42328]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2011-11-28 591192]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2011-11-28 304472]
R1 aswTdi;avast! Network Shield Support; C:\windows\system32\drivers\aswTdi.sys [2011-11-28 58712]
R1 BHDrvx64;BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20110812.001\BHDrvx64.sys [2011-07-23 1151096]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2011-07-28 481912]
R1 IDSVia64;IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20110826.030\IDSvia64.sys [2011-08-22 488568]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\windows\system32\drivers\NISx64\1206000.01D\SRTSPX64.SYS [2011-03-31 40568]
R1 SymIRON;Symantec Iron Driver; C:\windows\system32\drivers\NISx64\1206000.01D\Ironx64.SYS [2011-01-27 171128]
R1 SymNetS;Symantec Network Security WFP Driver; C:\windows\System32\Drivers\NISx64\1206000.01D\SYMNETS.SYS [2011-07-08 386168]
R2 aswFsBlk;aswFsBlk; C:\windows\system32\drivers\aswFsBlk.sys [2011-11-28 24408]
R2 aswMonFlt;aswMonFlt; \??\C:\windows\system32\drivers\aswMonFlt.sys [2011-11-28 66904]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\windows\system32\DRIVERS\RMCAST.sys [2010-11-20 146432]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-01-27 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2011-04-27 9319424]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2011-04-27 303616]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2011-01-08 2698240]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\windows\system32\DRIVERS\btath_bus.sys [2011-01-07 28832]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-07-28 136824]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2010-12-03 25912]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 intelkmd;intelkmd; C:\windows\system32\DRIVERS\igdpmd64.sys [2011-03-25 12262336]
R3 MEIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2010-11-30 406632]
R3 Sftfs;Sftfs; C:\windows\system32\DRIVERS\Sftfslh.sys [2010-09-14 760168]
R3 Sftplay;Sftplay; C:\windows\system32\DRIVERS\Sftplaylh.sys [2010-09-14 268648]
R3 Sftredir;Sftredir; C:\windows\system32\DRIVERS\Sftredirlh.sys [2010-09-14 25960]
R3 Sftvol;Sftvol; C:\windows\system32\DRIVERS\Sftvollh.sys [2010-09-14 22376]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2010-12-21 1826048]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\windows\system32\DRIVERS\stwrt64.sys [2011-01-27 520192]
R3 SymEvent;SymEvent; \??\C:\windows\system32\Drivers\SYMEVENT64x86.SYS [2011-07-01 174200]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2011-02-04 1413680]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\PROGRAM FILES (X86)\TUNEUP UTILITIES 2012\TuneUpUtilitiesDriver64.sys [2011-10-20 11856]
S0 Partizan;Partizan; C:\windows\system32\drivers\Partizan.sys []
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\windows\System32\Drivers\ssadadb.sys [2010-12-21 36328]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2011-01-07 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2011-01-07 298144]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\windows\system32\DRIVERS\btath_hcrp.sys [2011-01-07 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2011-01-07 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\windows\system32\DRIVERS\btath_rcp.sys [2011-01-07 154272]
S3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2011-01-07 279200]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2011-04-28 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2011-02-07 63336]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2011-03-26 12262336]
S3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2011-01-31 174168]
S3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20110829.002\ENG64.SYS [2011-08-04 117880]
S3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20110829.002\EX64.SYS [2011-08-04 2048632]
S3 netr7364;RT73 USB - ovladač karty pro bezdrátovou síť LAN pro systém Windows Vista; C:\windows\system32\DRIVERS\netr7364.sys [2009-06-10 707072]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\windows\system32\drivers\ccdcmbx64.sys [2011-05-18 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\windows\system32\drivers\ccdcmbox64.sys [2011-05-18 27136]
S3 nmwcdnsucx64;Nokia USB Flashing Generic; C:\windows\system32\drivers\nmwcdnsucx64.sys [2011-05-18 12800]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\windows\system32\drivers\nmwcdnsux64.sys [2011-05-18 171008]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SRTSP;Symantec Real Time Storage Protection x64; C:\windows\System32\Drivers\NISx64\1206000.01D\SRTSP64.SYS [2011-03-31 744568]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\windows\system32\DRIVERS\ssadbus.sys [2011-01-03 157160]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\windows\system32\DRIVERS\ssadmdfl.sys [2011-01-03 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\windows\system32\DRIVERS\ssadmdm.sys [2011-01-03 177128]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\windows\system32\DRIVERS\ssadserd.sys [2011-01-03 145384]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-05-18 9216]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 usbser;USB Modem Driver; C:\windows\system32\drivers\usbser.sys [2010-11-20 32768]
S3 UsbserFilt;UsbserFilt; C:\windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-05-18 9216]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-12 140672]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2011-04-27 203264]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-01-07 138400]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-01-07 53920]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-11-28 44768]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2010-10-20 821664]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2011-02-12 481104]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-01-27 131128]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-06-21 85560]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [2011-01-28 133688]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-29 94264]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2011-02-07 320000]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-01-28 281656]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-01-27 30520]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]
R2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2010-11-29 210896]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-01-17 326168]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2011-02-09 1318912]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [2008-02-18 877864]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe [2011-04-17 130008]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-02-01 1127448]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-01-18 113264]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\windows\SysWOW64\IoctlSvc.exe [2006-12-19 81920]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-07-27 249136]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2010-09-14 508264]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2011-01-27 296448]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\PROGRAM FILES (X86)\TUNEUP UTILITIES 2012\TUNEUPUTILITIESSERVICE64.EXE [2011-12-08 2123584]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-01-17 2656280]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2011-01-22 3154224]
R3 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2011-01-12 36864]
R3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-04-05 1094712]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-03-29 799800]
R3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [2008-02-28 529704]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2010-09-14 219496]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-06-30 136176]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-19 44376]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2011-02-03 464480]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-10-08 1431888]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-06-30 136176]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[cernohous13]

Vítám tě u nás

Pokud tě netrápí nic jiného, tak
Otevři Poznámkový blok (Notepad) a vlož zelený text ze scriptu.

Kód: Vybrat vše

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"SysLogger32"=-

Soubor ulož jako -> oprava.reg - Uložit jako typ -> Všechny soubory
Zavři a dvojklikem na ikonu spusť - jen problikne a opraví registry - po akci jej smažeš.

restartuj a napiš

[ruphi]

No jesli se z toho logu dá vyčíst ještě nějaký problem, rád vychytám všechny mouchy, jinak tohle vyřešeno, děkuji !!

[cernohous13]

Ten SysLogger tam máš úmyslně?

Klikni na https://www.virustotal.com/cs/
klik "Procházet" > do zadávacího pole "Název souboru" jen zkopíruj:

C:\ProgramData\SysLogger\core64_175.dll

"Send file" (pokud byl již testován, nech testovat znovu - Reanalyse)
Trpělivě vyčkej dokončení scanu dokud se neobjeví konečný výsledek např.0/41
Do fóra zkopíruj výsledný log. nebo odkaz z adresního řádku na stránku.
Pokud nebude nález stačí jen oznámit

[ruphi]

Result:
1/ 43 (2.3%)

Antivirus Version Last update Result
AhnLab-V3 2011.12.10.00 2011.12.09 -
AntiVir 7.11.19.58 2011.12.11 -
Antiy-AVL 2.0.3.7 2011.12.11 -
Avast 6.0.1289.0 2011.12.11 -
AVG 10.0.0.1190 2011.12.11 -
BitDefender 7.2 2011.12.11 -
ByteHero 1.0.0.1 2011.12.07 -
CAT-QuickHeal 12.00 2011.12.11 -
ClamAV 0.97.3.0 2011.12.11 -
Commtouch 5.3.2.6 2011.12.11 -
Comodo 10922 2011.12.11 -
DrWeb 5.0.2.03300 2011.12.11 -
Emsisoft 5.1.0.11 2011.12.11 -
eSafe 7.0.17.0 2011.12.08 -
eTrust-Vet 37.0.9616 2011.12.09 -
F-Prot 4.6.5.141 2011.11.29 -
F-Secure 9.0.16440.0 2011.12.11 Monitoring-Tool:W64/MicroKeylogger.A
Fortinet 4.3.388.0 2011.12.11 -
GData 22 2011.12.11 -
Ikarus T3.1.1.109.0 2011.12.11 -
Jiangmin 13.0.900 2011.12.11 -
K7AntiVirus 9.119.5640 2011.12.09 -
Kaspersky 9.0.0.837 2011.12.11 -
McAfee 5.400.0.1158 2011.12.11 -
McAfee-GW-Edition 2010.1E 2011.12.11 -
Microsoft 1.7903 2011.12.11 -
NOD32 6691 2011.12.07 -
Norman 6.07.13 2011.12.11 -
nProtect 2011-12-11.01 2011.12.11 -
Panda 10.0.3.5 2011.12.11 -
PCTools 8.0.0.5 2011.12.11 -
Prevx 3.0 2011.12.11 -
Rising 23.87.03.02 2011.12.08 -
Sophos 4.72.0 2011.12.11 -
SUPERAntiSpyware 4.40.0.1006 2011.12.10 -
Symantec 20111.2.0.82 2011.12.11 -
TheHacker 6.7.0.1.356 2011.12.11 -
TrendMicro 9.500.0.1008 2011.12.11 -
TrendMicro-HouseCall 9.500.0.1008 2011.12.11 -
VBA32 3.12.16.4 2011.12.09 -
VIPRE 11237 2011.12.11 -
ViRobot 2011.12.10.4819 2011.12.11 -
VirusBuster 14.1.110.0 2011.12.11 -
MD5: d841fc9c8c62434e7e5bc22833db23e1
SHA1: b5db29f6b70f25cd782f161c517d56f931bd273a
SHA256: bf33bcd388264d6df0ccd2341f0cbb2fcb5b5269e0d6048bb460c180410d50b1
File size: 575488 bytes
Scan date: 2011-12-11 19:04:57 (UTC)

[cernohous13]

Ten SysLogger tam máš úmyslně?

[ruphi]

Určitě ne

[cernohous13]

Takže provedeme hlubší kontrolu na případnou další havěť

Stáhni si : ComboFix
a ulož ho na plochu.
návod na použití: http://www.bleepingcomputer.com/combofi ... t-combofix
Ukonči všechna aktivní okna,vypni Antispy a Antivir a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Odmítni stažení Konzole...
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna a nic nespouštěj
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Kdyby ti po použití ComboFixu systém nenaběhl - při restartu F8 a poslední známá funkční konfigurace

[ruphi]

ComboFix 11-12-12.03 - Adam 12.12.2011 21:44:27.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4030.1910 [GMT 1:00]
Spuštěný z: c:\users\Adam\Desktop\123.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Norton Internet Security *Disabled/Outdated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton Internet Security *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Norton Internet Security *Disabled/Outdated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge
c:\programdata\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\About RelevantKnowledge.lnk
c:\programdata\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\Privacy Policy and User License Agreement.lnk
c:\programdata\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\Support.lnk
c:\programdata\SysLogger
c:\programdata\SysLogger\bl.dat
c:\programdata\SysLogger\config.xml
c:\programdata\SysLogger\core64_175.dll
c:\programdata\SysLogger\help.html
c:\programdata\SysLogger\libeay32.dll
c:\programdata\SysLogger\reportscheme.html
c:\programdata\SysLogger\reporttemplate.txt
c:\programdata\SysLogger\resdyn.dll
c:\programdata\SysLogger\screenreportscheme.html
c:\programdata\SysLogger\ssleay32.dll
c:\programdata\SysLogger\svchost.exe
c:\programdata\SysLogger\zip.exe
c:\users\Public\Documents\SysLogger
c:\users\Public\Documents\SysLogger\Adam\application.txt
c:\users\Public\Documents\SysLogger\Adam\key.txt
c:\users\Public\Documents\SysLogger\Adam\navigate.txt
c:\users\Public\Documents\SysLogger\reports\Adam\application.txt
c:\users\Public\Documents\SysLogger\reports\Adam\block.txt
c:\users\Public\Documents\SysLogger\reports\Adam\download.txt
c:\users\Public\Documents\SysLogger\reports\Adam\key.txt
c:\users\Public\Documents\SysLogger\reports\Adam\navigate.txt
c:\users\Public\Documents\SysLogger\reports\Adam\screen.txt
c:\users\Public\Documents\SysLogger\reports\reports\Adam\application.txt
c:\users\Public\Documents\SysLogger\reports\reports\Adam\block.txt
c:\users\Public\Documents\SysLogger\reports\reports\Adam\download.txt
c:\users\Public\Documents\SysLogger\reports\reports\Adam\key.txt
c:\users\Public\Documents\SysLogger\reports\reports\Adam\navigate.txt
c:\users\Public\Documents\SysLogger\reports\SYSTEM\key.txt
c:\users\Public\Documents\SysLogger\screens\Adam\05122011203237.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011095254.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011095355.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011095751.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011100019.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011100120.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011100220.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011100703.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011100803.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011100904.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011101413.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011101513.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011101614.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011101714.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011102138.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011102240.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011102340.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011102555.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011102817.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011102918.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011103455.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011103556.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011104201.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011104301.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011104926.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011105027.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011105128.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011105329.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011105430.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011105638.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011105738.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011110309.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011110410.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011110511.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011110943.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011111044.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011111145.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011111646.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011111747.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011112330.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011112431.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011112532.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011113114.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011113215.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011113841.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011113941.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011114551.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011114652.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011114752.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011115257.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011115357.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011115947.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011120048.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011120148.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011120632.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011120732.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011120833.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011121346.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011121446.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011121547.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011122018.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011122119.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011122333.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011122433.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011122715.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011122816.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011123435.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011123535.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011123636.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011124146.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011124247.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011124914.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011125014.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011125333.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011125433.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011125627.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011125728.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011130259.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011130359.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011130500.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011130600.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011130932.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011131033.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011131134.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011131701.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011131802.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011132343.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011132444.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011132544.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011133106.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011133207.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011133821.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011133921.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011134534.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011134635.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011135236.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011135336.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011135437.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011140003.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011140103.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011140203.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011140714.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011140814.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011141446.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011141546.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011142201.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011142302.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011142402.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011142834.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011142935.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011143036.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011143506.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011143606.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011143707.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011144204.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011144304.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011144405.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011144857.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011144958.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011145159.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011145338.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011145439.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011145612.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011145713.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011150024.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011151745.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011151845.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011153332.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011153923.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011154023.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011161114.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011161214.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011161353.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011163519.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011165214.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011165315.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011172038.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011173131.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011173231.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011173505.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011173605.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011173706.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011173806.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011173907.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011174007.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011174127.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011174227.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011174328.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011174429.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011174530.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011180114.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011180214.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011180315.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011180416.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011180517.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011180822.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011180827.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011181310.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011181532.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011181714.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011181815.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011181915.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011182147.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011182248.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011182348.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011184718.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011184724.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011184818.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011185241.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011185854.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011190135.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011190236.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011190420.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011190541.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011190642.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011191019.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011191120.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011191221.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011191321.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011191422.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011191645.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011191746.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011191847.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011192350.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011192451.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011192807.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011192908.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011193009.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011193110.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011193210.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011193744.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011193844.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011193945.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011194414.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011194514.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011194631.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011194732.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011194833.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011195010.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011195111.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011195211.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011195312.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011195413.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011195802.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011195903.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011200451.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011200551.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011200652.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011200911.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011201012.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011201133.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011201233.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011201334.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011201850.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011201951.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011202052.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011202609.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011202709.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011202810.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011203256.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011203357.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011203458.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011203914.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011204015.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011204116.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011204700.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011204801.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011204901.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011205422.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011205523.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011210124.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011210225.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011210514.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011210614.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011210727.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011210848.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011210948.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011211529.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011211630.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011211745.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011211846.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011211946.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011212232.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011212333.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011212933.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011213034.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011213654.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011213755.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011213916.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011214017.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011214402.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011214503.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011214603.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011215209.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011215309.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011222233.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011222334.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011225221.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011225322.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011231052.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011232034.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\07122011234316.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011084617.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011084718.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011084819.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011084919.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011085019.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011085125.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011085226.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011085326.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011085427.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011085818.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011094613.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011094714.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011094835.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011094935.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011095036.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011100005.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011100106.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011100206.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011100307.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011102936.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011103122.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011103223.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011110011.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011113103.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011113204.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011130253.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011130354.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011131614.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011163027.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011163127.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011163227.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011165755.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011165856.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011170653.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011170754.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011170913.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011171014.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011171315.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011171415.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011171527.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011172026.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011172126.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011172227.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011172739.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011172840.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011172941.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011173507.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011173608.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011174220.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011174321.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011174852.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011174953.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011175551.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011175651.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011180314.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011180414.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011180515.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011181023.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011181124.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011181257.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011181721.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011181821.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011181921.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011182241.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011182342.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011182443.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011182544.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011182644.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011182759.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011182900.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011183100.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011183201.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011183742.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011183843.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011183944.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011184422.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011184523.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011184624.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011185057.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011185157.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011185458.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011185559.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011185728.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011185828.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011190430.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011190530.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011191119.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011191220.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011191832.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011191933.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011192033.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011192507.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011192608.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011192709.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011193139.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011193240.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011193837.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011193937.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011194038.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011194602.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011194703.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011195239.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011195340.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011195441.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011195948.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011220959.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011221100.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011223656.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\08122011231401.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011072833.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011072938.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011073104.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011073204.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011073305.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011073626.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011073727.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011074309.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011074410.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011074942.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011075044.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011075620.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011075721.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011080250.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011080351.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011080951.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011081052.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011081715.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011081815.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011081916.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011082354.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011082455.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011082555.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011082727.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011082828.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011083102.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011083203.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011083828.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011083929.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011084539.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011084640.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011085241.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011085341.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011085441.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011090005.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011090105.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011090206.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011090713.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011090814.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011091445.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011091545.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011092201.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011092301.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011092806.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011092906.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011093007.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011093628.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011093728.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011094311.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011094411.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011094948.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011095048.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011095149.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011095250.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011095651.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011095751.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011095852.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011100343.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011100443.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011100543.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011101055.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011101156.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011101257.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011101731.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011101831.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011101931.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011102405.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011102506.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011102606.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011102806.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011102907.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011103037.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011103138.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011103238.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011103737.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011103838.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011104426.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011104527.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011105111.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011105212.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011105312.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011105755.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011105856.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011105957.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011110433.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011110534.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011110635.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011111112.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011111212.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011111744.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011111844.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011111945.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011112444.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011112544.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011112806.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011112906.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011113007.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011113108.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011113208.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011113309.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011113851.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011113951.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011114052.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011114554.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011114654.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011114754.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011114855.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011115315.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011115416.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011115517.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011115642.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011115743.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011120030.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011120131.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011120232.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011120706.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011120807.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011120907.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011121409.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011121510.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011121611.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011122059.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011122200.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011122815.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011122916.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011123515.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011123616.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011123717.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011124242.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011124343.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011124919.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011125020.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011125624.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011125725.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011125826.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011130322.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011130423.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011131010.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011131111.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011131211.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011131721.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011131822.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011132423.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011132524.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011132807.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011132907.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011133116.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011133216.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011133803.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011133903.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011134517.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011134617.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011134718.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011135149.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011135249.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011135350.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011135850.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011135950.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011140613.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011140713.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011141039.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011141323.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011141424.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011142025.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011142125.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011142711.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011142812.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011142912.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011143148.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011143248.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\09122011143432.jpg
c:\users\Public\Documents\SysLogger\screens\Adam\screen.txt
c:\users\Public\Documents\SysLogger\screens\screens\Adam\07122011185753.jpg
c:\windows\SysWow64\muzapp.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-11-12 do 2011-12-12 )))))))))))))))))))))))))))))))
.
.
2011-12-12 21:04 . 2011-12-12 21:04 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-12-12 20:39 . 2011-12-12 20:40 -------- d-----w- C:\123
2011-12-11 12:34 . 2011-12-11 12:34 -------- d-----w- c:\programdata\PDFC
2011-12-11 12:34 . 2011-12-11 12:34 -------- d-----w- C:\My Documents
2011-12-11 09:48 . 2011-12-11 09:48 -------- d-----w- c:\users\Adam\AppData\Local\Adobe
2011-12-11 09:31 . 2011-12-11 09:35 -------- d-----w- c:\program files\AutoCAD 2010
2011-12-11 09:02 . 2011-12-11 09:03 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2011-12-10 20:17 . 2011-12-10 20:21 -------- d-----w- C:\rsit
2011-12-10 20:17 . 2011-12-10 20:21 -------- d-----w- c:\program files\trend micro
2011-12-10 15:05 . 2011-12-10 15:05 -------- d-----w- c:\users\Adam\AppData\Roaming\DivX
2011-12-10 11:43 . 2011-12-10 11:43 -------- d-----w- c:\users\Adam\AppData\Roaming\SUPERAntiSpyware.com
2011-12-10 11:43 . 2011-12-10 11:43 -------- d-----w- c:\program files\SUPERAntiSpyware
2011-12-10 11:43 . 2011-12-10 11:43 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2011-12-09 18:09 . 2011-12-09 18:09 -------- d-----w- c:\program files (x86)\Common Files\AVG Secure Search
2011-12-09 18:09 . 2011-12-11 16:33 -------- d-----w- c:\program files (x86)\AVG Secure Search
2011-12-09 18:09 . 2011-12-09 18:09 -------- d--h--w- c:\programdata\Common Files
2011-12-09 18:09 . 2011-12-08 17:11 35648 ----a-w- c:\windows\system32\uxtuneup.dll
2011-12-09 18:09 . 2011-12-08 17:11 28992 ----a-w- c:\windows\SysWow64\uxtuneup.dll
2011-12-09 18:07 . 2011-12-08 17:11 34624 ----a-w- c:\windows\system32\TURegOpt.exe
2011-12-09 18:07 . 2011-12-08 17:11 25920 ----a-w- c:\windows\system32\authuitu.dll
2011-12-09 18:07 . 2011-12-08 17:11 21312 ----a-w- c:\windows\SysWow64\authuitu.dll
2011-12-09 18:06 . 2011-12-09 18:06 -------- d-----w- c:\users\Adam\AppData\Roaming\TuneUp Software
2011-12-09 18:06 . 2011-12-09 18:09 -------- d-----w- c:\program files (x86)\TuneUp Utilities 2012
2011-12-09 18:05 . 2011-12-09 18:07 -------- d-----w- c:\programdata\TuneUp Software
2011-12-09 18:05 . 2011-12-09 18:05 -------- d-sh--w- c:\programdata\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2011-12-07 20:08 . 2011-12-07 20:08 2560 ----a-w- c:\windows\_MSRSTRT.EXE
2011-12-07 18:47 . 2011-12-07 18:47 -------- d-----w- c:\program files (x86)\InCode Solutions
2011-12-07 18:33 . 2011-12-07 18:33 2 --shatr- c:\windows\winstart.bat
2011-12-07 18:30 . 2011-12-07 18:39 -------- d-----w- c:\program files (x86)\UnHackMe
2011-12-05 23:34 . 2011-12-05 23:34 -------- d-----w- c:\program files (x86)\MSXML 4.0
2011-12-05 19:39 . 2011-12-05 19:39 51496 ----a-w- c:\windows\system32\drivers\stflt.sys
2011-12-05 19:37 . 2011-12-10 14:09 -------- d-----w- c:\program files (x86)\Spyware Terminator
2011-12-05 16:04 . 2011-12-05 16:04 55384 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2011-12-05 16:01 . 2011-12-07 18:32 -------- d-----w- c:\programdata\Lavasoft
2011-12-05 16:01 . 2011-12-05 16:01 -------- d-----w- c:\program files (x86)\Lavasoft
2011-12-04 11:45 . 2004-03-08 22:00 212240 ----a-w- c:\windows\SysWow64\RICHTX32.OCX
2011-12-04 11:45 . 2004-03-08 22:00 124688 ----a-w- c:\windows\SysWow64\MSWINSCK.OCX
2011-12-04 11:45 . 2003-07-06 12:07 372736 ----a-w- c:\windows\SysWow64\IJL_11.DLL
2011-12-04 11:17 . 2011-12-04 11:17 -------- d-----w- c:\program files\DivX
2011-12-04 11:17 . 2011-12-04 11:17 -------- d-----w- c:\program files (x86)\Common Files\DivX Shared
2011-12-04 11:15 . 2011-12-04 11:17 -------- d-----w- c:\programdata\DivX
2011-12-04 11:14 . 2011-12-04 11:23 -------- d-----w- c:\program files (x86)\DivX
2011-12-04 08:49 . 2011-12-04 08:49 -------- d-----w- c:\users\Adam\AppData\Local\Ahead
2011-12-04 08:46 . 2011-12-04 08:47 -------- d-----w- c:\program files (x86)\Common Files\Nero
2011-12-04 08:46 . 2011-12-04 08:46 -------- d-----w- c:\program files (x86)\Nero
2011-11-20 20:19 . 2011-11-20 20:19 -------- d-----w- c:\users\Adam\AppData\Roaming\QIP
2011-11-20 20:19 . 2011-10-12 17:35 142288 ----a-w- c:\users\Adam\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
2011-11-18 11:23 . 2007-10-12 14:14 2006552 ----a-w- c:\windows\system32\D3DCompiler_36.dll
2011-11-18 11:19 . 2011-11-18 11:19 -------- d-----w- c:\windows\SysWow64\AGEIA
2011-11-18 11:19 . 2011-11-18 11:20 -------- d-----w- c:\program files (x86)\AGEIA Technologies
2011-11-15 12:38 . 2011-11-15 12:38 -------- d-----w- c:\users\Adam\AppData\Roaming\Kalypso Media
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-28 18:01 . 2011-06-30 18:18 41184 ----a-w- c:\windows\avastSS.scr
2011-11-28 18:01 . 2011-06-30 18:18 199816 ----a-w- c:\windows\SysWow64\aswBoot.exe
2011-11-28 18:01 . 2011-06-30 18:18 256960 ----a-w- c:\windows\system32\aswBoot.exe
2011-11-28 17:54 . 2011-06-30 18:18 591192 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-11-28 17:53 . 2011-06-30 18:18 304472 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-11-28 17:52 . 2011-06-30 18:18 42328 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-11-28 17:52 . 2011-06-30 18:18 58712 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-11-28 17:52 . 2011-06-30 18:18 66904 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-11-28 17:51 . 2011-06-30 18:18 24408 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-10-20 23:26 . 2011-10-20 23:26 94208 ----a-w- c:\windows\SysWow64\dpl100.dll
2011-10-17 19:26 . 2011-10-17 19:26 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2011-10-15 09:14 . 2011-07-02 13:22 466520 ----a-w- c:\windows\system32\wrap_oal.dll
2011-10-15 09:14 . 2011-07-02 13:22 445016 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2011-10-15 09:14 . 2011-07-02 13:22 122968 ----a-w- c:\windows\system32\OpenAL32.dll
2011-10-15 09:14 . 2011-07-02 13:22 109144 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2011-10-06 06:49 . 2011-10-06 06:49 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2011-10-06 06:49 . 2011-10-06 06:49 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2011-10-06 06:49 . 2011-10-06 06:49 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2011-10-06 06:49 . 2011-10-06 06:49 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2011-10-06 06:49 . 2011-10-06 06:49 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2011-10-06 06:49 . 2011-10-06 06:49 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2011-10-06 06:49 . 2011-10-06 06:49 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2011-10-06 06:49 . 2011-10-06 06:49 367104 ----a-w- c:\windows\SysWow64\html.iec
2011-10-06 06:49 . 2011-10-06 06:49 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2011-10-06 06:49 . 2011-10-06 06:49 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2011-10-06 06:49 . 2011-10-06 06:49 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2011-10-06 06:49 . 2011-10-06 06:49 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2011-10-06 06:49 . 2011-10-06 06:49 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2011-10-06 06:49 . 2011-10-06 06:49 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2011-10-06 06:49 . 2011-10-06 06:49 1427456 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2011-10-06 06:49 . 2011-10-06 06:49 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2011-10-06 06:49 . 2011-10-06 06:49 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2011-10-06 06:49 . 2011-10-06 06:49 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2011-10-06 06:49 . 2011-10-06 06:49 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-10-06 06:49 . 2011-10-06 06:49 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-10-06 06:49 . 2011-10-06 06:49 85504 ----a-w- c:\windows\system32\iesetup.dll
2011-10-06 06:49 . 2011-10-06 06:49 76800 ----a-w- c:\windows\system32\tdc.ocx
2011-10-06 06:49 . 2011-10-06 06:49 603648 ----a-w- c:\windows\system32\vbscript.dll
2011-10-06 06:49 . 2011-10-06 06:49 49664 ----a-w- c:\windows\system32\imgutil.dll
2011-10-06 06:49 . 2011-10-06 06:49 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-10-06 06:49 . 2011-10-06 06:49 448512 ----a-w- c:\windows\system32\html.iec
2011-10-06 06:49 . 2011-10-06 06:49 30720 ----a-w- c:\windows\system32\licmgr10.dll
2011-10-06 06:49 . 2011-10-06 06:49 222208 ----a-w- c:\windows\system32\msls31.dll
2011-10-06 06:49 . 2011-10-06 06:49 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2011-10-06 06:49 . 2011-10-06 06:49 165888 ----a-w- c:\windows\system32\iexpress.exe
2011-10-06 06:49 . 2011-10-06 06:49 160256 ----a-w- c:\windows\system32\wextract.exe
2011-10-06 06:49 . 2011-10-06 06:49 1492992 ----a-w- c:\windows\system32\inetcpl.cpl
2011-10-06 06:49 . 2011-10-06 06:49 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-10-06 06:49 . 2011-10-06 06:49 12288 ----a-w- c:\windows\system32\mshta.exe
2011-10-06 06:49 . 2011-10-06 06:49 114176 ----a-w- c:\windows\system32\admparse.dll
2011-10-06 06:49 . 2011-10-06 06:49 111616 ----a-w- c:\windows\system32\iesysprep.dll
2011-10-03 03:06 . 2011-08-31 12:55 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2011-09-29 16:29 . 2011-11-09 07:29 1923952 ----a-w- c:\windows\system32\drivers\tcpip.sys
2011-09-29 04:03 . 2011-11-09 07:29 3144704 ----a-w- c:\windows\system32\win32k.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}"= "c:\program files (x86)\uTorrentBar\prxtbuTor.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2011-12-11 16:33 1451336 ----a-w- c:\program files (x86)\AVG Secure Search\8.0.0.40\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{B2A44031-7EAD-434C-AC9E-7F1DA176BA8C}]
2011-08-01 12:51 167424 ----a-w- c:\program files (x86)\Facecons\Facecons.dll
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
2011-05-09 09:49 176936 ----a-w- c:\program files (x86)\uTorrentBar\prxtbuTor.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}"= "c:\program files (x86)\uTorrentBar\prxtbuTor.dll" [2011-05-09 176936]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files (x86)\AVG Secure Search\8.0.0.40\AVG Secure Search_toolbar.dll" [2011-12-11 1451336]
.
[HKEY_CLASSES_ROOT\clsid\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IncrediMail"="c:\program files (x86)\IncrediMail\bin\IncMail.exe" [2008-07-24 243072]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2011-03-04 2741616]
"PC Suite Tray"="c:\program files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" [2011-06-16 1500160]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2008-02-28 1828136]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2011-11-07 5495680]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Microsoft Default Manager"="c:\program files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2010-05-10 439568]
"QLBController"="c:\program files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" [2011-01-28 299576]
"File Sanitizer"="c:\program files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe" [2011-02-07 12274688]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-05-20 284440]
"DTRun"="c:\program files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe" [2010-11-24 517456]
"HPConnectionManager"="c:\program files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe" [2011-04-05 94264]
"HPQuickWebProxy"="c:\program files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe" [2011-02-11 76344]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-11-28 3744552]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-04-27 336384]
"SafeQ Client"="c:\program files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe" [2010-03-31 249856]
"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"vProt"="c:\program files (x86)\AVG Secure Search\vprot.exe" [2011-12-09 218440]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DeviceNP]
2011-02-03 22:09 75360 ----a-w- c:\windows\System32\DeviceNP.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ DPPassFilter scecli
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Služba Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-30 136176]
R2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-01-27 131128]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-06-21 85560]
R2 XobniService;XobniService;c:\program files (x86)\Xobni\XobniService.exe [2011-03-07 62184]
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys [x]
R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys [x]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [x]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys [x]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys [x]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys [x]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys [x]
R3 DAMDrv;DAMDrv;c:\windows\system32\DRIVERS\DAMDrv64.sys [x]
R3 FLCDLOCK;HP ProtectTools Device Locking / Auditing;c:\windows\SysWOW64\flcdlock.exe [2011-02-03 464480]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-10-08 1431888]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-30 136176]
R3 hpCMSrv;HP Connection Manager 4 Service;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-04-05 1094712]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
R3 netr7364;RT73 USB - ovladač karty pro bezdrátovou síť LAN pro systém Windows Vista;c:\windows\system32\DRIVERS\netr7364.sys [x]
R3 nmwcdnsucx64;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsucx64.sys [x]
R3 nmwcdnsux64;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsux64.sys [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [x]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 MfeEpePc;MfeEpePc; [x]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1206000.01D\SYMDS64.SYS [x]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1206000.01D\SYMEFA64.SYS [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20110812.001\BHDrvx64.sys [2011-07-23 1151096]
S1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20110826.030\IDSvia64.sys [2011-08-22 488568]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1206000.01D\Ironx64.SYS [x]
S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\NISx64\1206000.01D\SYMNETS.SYS [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-11 140672]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-01-07 138400]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe [2011-01-07 53920]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2010-10-20 821664]
S2 HPDayStarterService;HP DayStarter Service;c:\program files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [2011-01-28 133688]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-29 94264]
S2 HPFSService;File Sanitizer for HP ProtectTools;c:\program files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2011-02-07 320000]
S2 hpHotkeyMonitor;hpHotkeyMonitor;c:\program files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-01-28 281656]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [x]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]
S2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service;c:\program files (x86)\Intel\Services\IPT\jhi_service.exe [2010-11-29 210896]
S2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent;c:\program files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2011-02-09 1318912]
S2 NIS;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe [2011-04-17 130008]
S2 PdiService;Portrait Displays SDK Service;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-01-18 113264]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2010-09-14 508264]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TUNEUP UTILITIES 2012\TUNEUPUTILITIESSERVICE64.EXE [2011-12-08 2123584]
S2 uArcCapture;ArcCapture;c:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-01-17 2656280]
S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe [2011-01-22 3154224]
S2 vToolbarUpdater;vToolbarUpdater;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe [2011-12-09 246600]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver;c:\windows\system32\DRIVERS\ArcSoftVCapture.sys [x]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys [x]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-07-28 136824]
S3 HP ProtectTools Service;HP ProtectTools Service;c:\program files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2011-01-12 36864]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys [x]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [x]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2010-09-14 219496]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TUNEUP UTILITIES 2012\TuneUpUtilitiesDriver64.sys [2011-10-20 11856]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2011-03-04 11:29 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2011-12-12 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-30 18:18]
.
2011-12-12 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-30 18:18]
.
2011-12-08 c:\windows\Tasks\HPCeeScheduleForADAM-HP$.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15]
.
2011-12-10 c:\windows\Tasks\HPCeeScheduleForAdam.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-11-28 18:01 134384 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"="c:\program files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe" [2011-01-27 13880]
"AtherosBtStack"="c:\program files (x86)\Bluetooth Suite\BtvStack.exe" [2011-01-07 615584]
"AthBtTray"="c:\program files (x86)\Bluetooth Suite\AthBtTray.exe" [2011-01-07 379040]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2011-01-27 835072]
"MfeEpePcMonitor"="c:\program files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe" [2011-02-09 200704]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-03-25 167960]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-03-25 391704]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-03-25 418840]
"combofix"="c:\123275201\CF31822.3XE" [2010-11-20 345088]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
------- Doplňkový sken -------
.
uStart Page = hxxp://isearch.avg.com/?cid={9C4E1EF5-3A1D-40B4-9D9A-CFBC515A5716}&mid=25ef11b1149347d181e9b578167e884e-a320af1af8b7f33d280f02bc2842a21673366070&lang=en&ds=tt014&pr=sa&d=&v=&sap=hp
uLocal Page = c:\windows\system32\blank.htm
uDefault_Search_URL = hxxp://search.qip.ru
mLocal Page = c:\windows\SysWOW64\blank.htm
uSearchAssistant = hxxp://search.qip.ru/ie
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Search the Web - c:\program files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
IE: {{A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://c:\program files (x86)\Evernote\Evernote\EvernoteIE.dll/204
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\8.0.1\ViProtocol.dll
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
HKLM-Run-SpywareTerminatorShield - c:\program files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
HKLM-Run-SpywareTerminatorUpdater - c:\program files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
AddRemove-{CA43FE4F-9FF2-4AD7-88F0-CC3BAC17B226} - c:\program files (x86)\InstallShield Installation Information\{CA43FE4F-9FF2-4AD7-88F0-CC3BAC17B226}\setup.exe
AddRemove-Dr. DivX 2.0 OSS - c:\program files (x86)\DivX\Dr. DivX 2.0 OSS\Remove.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\NIS]
"ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files (x86)\Norton Internet Security\Engine\18.6.0.29\diMaster.dll\" /prefetch:1"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1835176325-79991702-3068751925-1002\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10m_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10m_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
c:\program files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
c:\windows\SysWOW64\IoctlSvc.exe
c:\program files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Celkový čas: 2011-12-12 22:31:52 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-12-12 21:31
.
Před spuštěním: Volných bajtů: 352 238 497 792
Po spuštění: Volných bajtů: 351 493 697 536
.
- - End Of File - - 160B8AFCAF4C13436F7F10578F5F2AE7

[cernohous13]

log mi ukazuje, že tam je zabezpečení NIS a Avast - zdá se, že NIS byl smazán bez korektního odinstalování
jaké zabezpečení tedy budeš používat?

další pokračování až ráno, už na to skoro nevidím

[ruphi]

NIS odinstalován

[cernohous13]

Výborně, tak mi udělej aktuální RSIT - koukneme na zbytečnosti

[ruphi]

Přidávám log:

Logfile of random's system information tool 1.09 (written by random/random)
Run by Adam at 2011-12-14 09:29:26
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 332 GB (57%) free of 588 GB
Total RAM: 4030 MB (52% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:29:31, on 14.12.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files (x86)\IncrediMail\bin\ImApp.exe
C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\AVG Secure Search\vprot.exe
C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
C:\Program Files\trend micro\Adam.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://isearch.avg.com/?cid={9C4E1EF5-3 ... &v=&sap=hp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\bh\BabylonToolbar.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: QIPBHO - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\Adam\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\8.0.0.40\AVG Secure Search_toolbar.dll
O2 - BHO: FaceCons - {B2A44031-7EAD-434C-AC9E-7F1DA176BA8C} - C:\Program Files (x86)\Facecons\facecons.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: uTorrentBar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll
O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: @C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarTlbr.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\8.0.0.40\AVG Secure Search_toolbar.dll
O4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
O4 - HKLM\..\Run: [QLBController] C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe /start
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [DTRun] c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
O4 - HKLM\..\Run: [HPConnectionManager] c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [HPQuickWebProxy] "c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SafeQ Client] "C:\Program Files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files (x86)\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\8.0.1\ViProtocol.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\windows\system32\atiesrxx.exe (file missing)
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Company - c:\Windows\SysWOW64\flcdlock.exe
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Power Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpHotkeyMonitor - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\windows\system32\Hpservice.exe (file missing)
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Identity Protection Technology Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee Endpoint Encryption Agent - Unknown owner - C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: Portrait Displays SDK Service (PdiService) - Portrait Displays, Inc. - C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\windows\SysWOW64\IoctlSvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\PROGRAM FILES (X86)\TUNEUP UTILITIES 2012\TUNEUPUTILITIESSERVICE64.EXE
O23 - Service: ArcCapture (uArcCapture) - ArcSoft, Inc. - C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XobniService - Xobni Corporation - C:\Program Files (x86)\Xobni\XobniService.exe

--
End of file - 17755 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe"
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\system32\atiesrxx.exe
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\Hpservice.exe
C:\windows\system32\vcsFPService.exe
atieclxx
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 26088256
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
\??\C:\windows\system32\conhost.exe "-136542273-2030517406-1313981200-799591428-11655780836662975461812783944-1933745755
C:\windows\System32\spoolsv.exe
"c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe"
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe"
"C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe"
"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe"
"C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe"
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe"
C:\windows\SysWOW64\IoctlSvc.exe
"taskhost.exe"
"C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe"
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
C:\windows\system32\svchost.exe -k imgsvc
"C:\PROGRAM FILES (X86)\TUNEUP UTILITIES 2012\TUNEUPUTILITIESSERVICE64.EXE"
C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe"
"C:\PROGRAM FILES (X86)\TUNEUP UTILITIES 2012\TuneUpUtilitiesApp64.EXE" /TUStart /pid:3536
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 3712
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" -hidden
"C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
"C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe"
"C:\Program Files (x86)\IncrediMail\bin\ImApp.exe" -Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe" /start
"C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\coreshredder.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe"
"C:\Program Files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe"
"C:\Program Files (x86)\AVG Secure Search\vprot.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\windows\sysWOW64\wbem\wmiprvse.exe -secured -Embedding
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
{C07F61F1-BE79-44D8-B554-40B632F27C77}
{519674A6-4985-4899-8F58-0F28BA73AD16}
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe" /hidden
"C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe"
"C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe" -Embedding
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
-Minimized
"c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe" "<hpNotification><Toast><Title>HP Connection Manager</Title><Text>Wi-Fi: Připojeno
Bluetooth®: Vypnuto
Síť LAN: Nepřipojeno</Text><IconPath>C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpConnectionManager.exe</IconPath><ID>1</ID><Path>C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpConnectionManager.exe</Path><Parameters>OpenMainWindow</Parameters></Toast></hpNotification>"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\windows\system32\wbem\wmiprvse.exe
"C:\Users\Adam\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\windows\tasks\HPCeeScheduleForADAM-HP$.job
C:\windows\tasks\HPCeeScheduleForAdam.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2011-11-28 963064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 6721936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}]
Babylon toolbar helper - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\bh\BabylonToolbar.dll [2011-08-14 270960]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\IEBHO.dll [2011-02-07 117248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-07-27 191792]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-01-07 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-11-28 809040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95289393-33EA-4F8D-B952-483415B9C955}]
QIPBHO Class - C:\Users\Adam\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll [2011-10-12 142288]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\8.0.0.40\AVG Secure Search_toolbar.dll [2011-12-11 1451336]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B2A44031-7EAD-434C-AC9E-7F1DA176BA8C}]
FACECONS Class - C:\Program Files (x86)\Facecons\facecons.dll [2011-08-01 167424]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
uTorrentBar Toolbar - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll [2011-05-09 176936]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar BHO - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll [2010-08-13 609544]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-10-18 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2011-11-28 963064]
{32099AAC-C132-4136-9E9A-4E364A424E17}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - @C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll,-100 - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2282.0\npwinext.dll [2010-08-13 609544]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2011-11-28 809040]
{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - uTorrentBar Toolbar - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll [2011-05-09 176936]
{98889811-442D-49dd-99D7-DC866BE87DBC} - Babylon Toolbar - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarTlbr.dll [2011-08-14 237680]
{95B7759C-8C7F-4BF1-B163-73684A933233} - AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\8.0.0.40\AVG Secure Search_toolbar.dll [2011-12-11 1451336]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HPPowerAssistant"=C:\Program Files\Hewlett-Packard\HP Power Assistant\DelayedAppStarter.exe [2011-01-27 13880]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-02-04 2679592]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-01-07 615584]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-07 379040]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2011-01-27 835072]
"MfeEpePcMonitor"=C:\Program Files\Hewlett-Packard\Drive Encryption\EpePcMonitor.exe [2011-02-09 200704]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2011-03-26 167960]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2011-03-26 391704]
"Persistence"=C:\windows\system32\igfxpers.exe [2011-03-26 418840]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"IncrediMail"=C:\Program Files (x86)\IncrediMail\bin\IncMail.exe [2008-07-24 243072]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"LightScribe Control Panel"=C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2011-03-04 2741616]
"PC Suite Tray"=C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [2011-06-16 1500160]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2008-02-28 1828136]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2011-11-07 5495680]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Microsoft Default Manager"=C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe [2010-05-10 439568]
"QLBController"=C:\Program Files (x86)\Hewlett-Packard\HP HotKey Support\QLBController.exe [2011-01-28 299576]
"File Sanitizer"=C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2011-02-07 12274688]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-05-20 284440]
"DTRun"=c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe [2010-11-24 517456]
"HPConnectionManager"=c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2011-04-05 94264]
"HPQuickWebProxy"=c:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [2011-02-11 76344]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-11-28 3744552]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-04-27 336384]
"SafeQ Client"=C:\Program Files (x86)\Y Soft\SafeQ Client\Client\SafeQ Client.exe [2010-03-31 249856]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"vProt"=C:\Program Files (x86)\AVG Secure Search\vprot.exe [2011-12-09 218440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2011-03-25 385024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\windows\system32\webcheck.dll [2011-10-06 249344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 6721936]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.scr - open - C:\windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2011-12-12 22:32:13 ----D---- C:\windows\temp
2011-12-12 22:32:00 ----A---- C:\ComboFix.txt
2011-12-12 22:10:53 ----D---- C:\$RECYCLE.BIN
2011-12-12 21:42:32 ----A---- C:\windows\zip.exe
2011-12-12 21:42:32 ----A---- C:\windows\SWSC.exe
2011-12-12 21:42:32 ----A---- C:\windows\SWREG.exe
2011-12-12 21:42:32 ----A---- C:\windows\sed.exe
2011-12-12 21:42:32 ----A---- C:\windows\PEV.exe
2011-12-12 21:42:32 ----A---- C:\windows\NIRCMD.exe
2011-12-12 21:42:32 ----A---- C:\windows\MBR.exe
2011-12-12 21:42:32 ----A---- C:\windows\grep.exe
2011-12-12 21:40:00 ----D---- C:\windows\ERDNT
2011-12-12 21:39:59 ----D---- C:\123
2011-12-12 21:39:56 ----D---- C:\Qoobox
2011-12-11 13:34:13 ----D---- C:\ProgramData\PDFC
2011-12-11 13:34:00 ----D---- C:\My Documents
2011-12-11 10:31:51 ----D---- C:\Program Files\AutoCAD 2010
2011-12-11 10:02:21 ----D---- C:\Program Files (x86)\Adobe
2011-12-11 10:01:27 ----D---- C:\ProgramData\Adobe
2011-12-10 21:17:02 ----D---- C:\rsit
2011-12-10 21:17:02 ----D---- C:\Program Files\trend micro
2011-12-10 16:05:09 ----D---- C:\Users\Adam\AppData\Roaming\DivX
2011-12-10 12:43:37 ----D---- C:\Users\Adam\AppData\Roaming\SUPERAntiSpyware.com
2011-12-10 12:43:13 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2011-12-10 12:43:13 ----D---- C:\Program Files\SUPERAntiSpyware
2011-12-09 19:09:32 ----D---- C:\Program Files (x86)\AVG Secure Search
2011-12-09 19:09:28 ----HD---- C:\ProgramData\Common Files
2011-12-09 19:09:15 ----A---- C:\windows\SYSWOW64\uxtuneup.dll
2011-12-09 19:09:15 ----A---- C:\windows\system32\uxtuneup.dll
2011-12-09 19:07:22 ----A---- C:\windows\system32\TURegOpt.exe
2011-12-09 19:07:21 ----A---- C:\windows\system32\authuitu.dll
2011-12-09 19:07:18 ----A---- C:\windows\SYSWOW64\authuitu.dll
2011-12-09 19:06:56 ----D---- C:\Users\Adam\AppData\Roaming\TuneUp Software
2011-12-09 19:06:32 ----D---- C:\Program Files (x86)\TuneUp Utilities 2012
2011-12-09 19:05:53 ----D---- C:\ProgramData\TuneUp Software
2011-12-09 19:05:48 ----SHD---- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2011-12-07 21:08:39 ----A---- C:\windows\_MSRSTRT.EXE
2011-12-07 19:47:43 ----D---- C:\Program Files (x86)\InCode Solutions
2011-12-07 19:33:47 ----RASHOT---- C:\windows\winstart.bat
2011-12-07 19:30:15 ----D---- C:\Program Files (x86)\UnHackMe
2011-12-06 00:34:51 ----D---- C:\Program Files (x86)\MSXML 4.0
2011-12-05 20:39:05 ----A---- C:\windows\system32\drivers\stflt.sys
2011-12-05 20:37:59 ----D---- C:\Program Files (x86)\Spyware Terminator
2011-12-05 17:04:03 ----A---- C:\windows\system32\drivers\SBREDrv.sys
2011-12-05 17:01:24 ----D---- C:\ProgramData\Lavasoft
2011-12-05 17:01:24 ----D---- C:\Program Files (x86)\Lavasoft
2011-12-04 12:59:45 ----AD---- C:\ProgramData\TEMP
2011-12-04 12:45:04 ----A---- C:\windows\SYSWOW64\IJL_11.DLL
2011-12-04 12:17:36 ----D---- C:\Program Files\DivX
2011-12-04 12:15:42 ----D---- C:\ProgramData\DivX
2011-12-04 12:14:43 ----D---- C:\Program Files (x86)\DivX
2011-12-04 09:49:52 ----D---- C:\Program Files (x86)\NeroInstall.bak
2011-12-04 09:46:54 ----D---- C:\Program Files (x86)\Nero
2011-11-20 21:19:30 ----D---- C:\Users\Adam\AppData\Roaming\QIP
2011-11-18 12:24:22 ----D---- C:\Program Files (x86)\Electronic Arts
2011-11-18 12:24:17 ----A---- C:\windows\system32\XAudio2_4.dll
2011-11-18 12:24:16 ----A---- C:\windows\system32\xactengine3_4.dll
2011-11-18 12:24:16 ----A---- C:\windows\system32\X3DAudio1_6.dll
2011-11-18 12:24:14 ----A---- C:\windows\system32\d3dx10_40.dll
2011-11-18 12:24:14 ----A---- C:\windows\system32\D3DCompiler_40.dll
2011-11-18 12:24:13 ----A---- C:\windows\system32\D3DX9_40.dll
2011-11-18 12:24:07 ----A---- C:\windows\system32\XAudio2_1.dll
2011-11-18 12:24:07 ----A---- C:\windows\system32\XAPOFX1_0.dll
2011-11-18 12:24:07 ----A---- C:\windows\system32\xactengine3_1.dll
2011-11-18 12:24:06 ----A---- C:\windows\system32\X3DAudio1_4.dll
2011-11-18 12:24:06 ----A---- C:\windows\system32\d3dx10_38.dll
2011-11-18 12:24:06 ----A---- C:\windows\system32\D3DCompiler_38.dll
2011-11-18 12:24:04 ----A---- C:\windows\system32\XAudio2_0.dll
2011-11-18 12:24:04 ----A---- C:\windows\system32\D3DX9_38.dll
2011-11-18 12:24:03 ----A---- C:\windows\system32\xactengine3_0.dll
2011-11-18 12:24:03 ----A---- C:\windows\system32\X3DAudio1_3.dll
2011-11-18 12:24:00 ----A---- C:\windows\system32\xactengine2_10.dll
2011-11-18 12:23:59 ----A---- C:\windows\system32\d3dx10_36.dll
2011-11-18 12:23:59 ----A---- C:\windows\system32\D3DCompiler_36.dll
2011-11-18 12:23:57 ----A---- C:\windows\system32\xactengine2_9.dll
2011-11-18 12:23:57 ----A---- C:\windows\system32\d3dx9_36.dll
2011-11-18 12:23:56 ----A---- C:\windows\system32\d3dx10_35.dll
2011-11-18 12:23:55 ----A---- C:\windows\system32\D3DCompiler_35.dll
2011-11-18 12:23:54 ----A---- C:\windows\system32\xactengine2_8.dll
2011-11-18 12:23:54 ----A---- C:\windows\system32\X3DAudio1_2.dll
2011-11-18 12:23:53 ----A---- C:\windows\system32\d3dx10_34.dll
2011-11-18 12:23:52 ----A---- C:\windows\system32\D3DCompiler_34.dll
2011-11-18 12:23:51 ----A---- C:\windows\system32\d3dx9_34.dll
2011-11-18 12:23:50 ----A---- C:\windows\system32\xinput1_3.dll
2011-11-18 12:23:49 ----A---- C:\windows\system32\xactengine2_7.dll
2011-11-18 12:23:49 ----A---- C:\windows\system32\d3dx10_33.dll
2011-11-18 12:23:48 ----A---- C:\windows\system32\D3DCompiler_33.dll
2011-11-18 12:23:47 ----A---- C:\windows\system32\d3dx9_33.dll
2011-11-18 12:23:43 ----A---- C:\windows\system32\x3daudio1_1.dll
2011-11-18 12:19:57 ----D---- C:\windows\SYSWOW64\AGEIA
2011-11-18 12:19:56 ----D---- C:\Program Files (x86)\AGEIA Technologies
2011-11-15 13:42:34 ----A---- C:\windows\SYSWOW64\XAudio2_4.dll
2011-11-15 13:42:34 ----A---- C:\windows\SYSWOW64\xactengine3_4.dll
2011-11-15 13:42:34 ----A---- C:\windows\SYSWOW64\X3DAudio1_6.dll
2011-11-15 13:42:33 ----A---- C:\windows\SYSWOW64\d3dx10_40.dll
2011-11-15 13:42:33 ----A---- C:\windows\SYSWOW64\D3DCompiler_40.dll
2011-11-15 13:42:32 ----A---- C:\windows\SYSWOW64\D3DX9_40.dll
2011-11-15 13:42:31 ----A---- C:\windows\SYSWOW64\d3dx10_39.dll
2011-11-15 13:42:31 ----A---- C:\windows\SYSWOW64\D3DCompiler_39.dll
2011-11-15 13:42:30 ----A---- C:\windows\SYSWOW64\XAudio2_1.dll
2011-11-15 13:42:30 ----A---- C:\windows\SYSWOW64\XAPOFX1_0.dll
2011-11-15 13:42:30 ----A---- C:\windows\SYSWOW64\D3DX9_39.dll
2011-11-15 13:42:29 ----A---- C:\windows\SYSWOW64\xactengine3_1.dll
2011-11-15 13:42:29 ----A---- C:\windows\SYSWOW64\X3DAudio1_4.dll
2011-11-15 13:42:29 ----A---- C:\windows\SYSWOW64\d3dx10_38.dll
2011-11-15 13:42:29 ----A---- C:\windows\SYSWOW64\D3DCompiler_38.dll
2011-11-15 13:42:28 ----A---- C:\windows\SYSWOW64\XAudio2_0.dll
2011-11-15 13:42:28 ----A---- C:\windows\SYSWOW64\xactengine3_0.dll
2011-11-15 13:42:28 ----A---- C:\windows\SYSWOW64\D3DX9_38.dll
2011-11-15 13:42:27 ----A---- C:\windows\SYSWOW64\X3DAudio1_3.dll
2011-11-15 13:42:26 ----A---- C:\windows\SYSWOW64\xactengine2_10.dll
2011-11-15 13:42:26 ----A---- C:\windows\SYSWOW64\d3dx10_36.dll
2011-11-15 13:42:26 ----A---- C:\windows\SYSWOW64\D3DCompiler_36.dll
2011-11-15 13:42:25 ----A---- C:\windows\SYSWOW64\xactengine2_9.dll
2011-11-15 13:42:25 ----A---- C:\windows\SYSWOW64\d3dx9_36.dll
2011-11-15 13:42:24 ----A---- C:\windows\SYSWOW64\d3dx10_35.dll
2011-11-15 13:42:24 ----A---- C:\windows\SYSWOW64\D3DCompiler_35.dll
2011-11-15 13:42:23 ----A---- C:\windows\SYSWOW64\xactengine2_8.dll
2011-11-15 13:42:23 ----A---- C:\windows\SYSWOW64\X3DAudio1_2.dll
2011-11-15 13:42:23 ----A---- C:\windows\SYSWOW64\d3dx10_34.dll
2011-11-15 13:42:23 ----A---- C:\windows\SYSWOW64\D3DCompiler_34.dll
2011-11-15 13:42:22 ----A---- C:\windows\SYSWOW64\xinput1_3.dll
2011-11-15 13:42:22 ----A---- C:\windows\SYSWOW64\xactengine2_7.dll
2011-11-15 13:42:22 ----A---- C:\windows\SYSWOW64\d3dx9_34.dll
2011-11-15 13:42:21 ----A---- C:\windows\SYSWOW64\d3dx9_33.dll
2011-11-15 13:42:21 ----A---- C:\windows\SYSWOW64\d3dx10_33.dll
2011-11-15 13:42:21 ----A---- C:\windows\SYSWOW64\D3DCompiler_33.dll
2011-11-15 13:42:19 ----A---- C:\windows\SYSWOW64\x3daudio1_1.dll
2011-11-15 13:38:13 ----D---- C:\Users\Adam\AppData\Roaming\Kalypso Media

======List of files/folders modified in the last 1 month======

2011-12-14 09:29:31 ----D---- C:\windows\Prefetch
2011-12-14 08:37:12 ----D---- C:\windows\system32\config
2011-12-14 08:25:06 ----A---- C:\windows\SYSWOW64\log.txt
2011-12-14 08:23:20 ----D---- C:\ProgramData\HPQLOG
2011-12-14 08:22:02 ----D---- C:\windows\system32\catroot2
2011-12-14 08:20:02 ----D---- C:\ProgramData\Norton
2011-12-14 08:20:02 ----D---- C:\Program Files (x86)
2011-12-14 08:20:01 ----SHD---- C:\System Volume Information
2011-12-13 16:44:57 ----D---- C:\windows\system32\Tasks
2011-12-13 15:31:48 ----D---- C:\windows\system32\drivers
2011-12-13 15:31:33 ----D---- C:\Program Files\Common Files
2011-12-13 15:18:21 ----D---- C:\windows\System32
2011-12-13 15:18:21 ----D---- C:\windows\inf
2011-12-13 15:18:21 ----A---- C:\windows\system32\PerfStringBackup.INI
2011-12-12 22:32:13 ----D---- C:\Windows
2011-12-12 22:11:24 ----A---- C:\windows\system.ini
2011-12-12 22:10:46 ----D---- C:\windows\system32\drivers\etc
2011-12-12 21:56:11 ----D---- C:\ProgramData
2011-12-12 21:55:52 ----D---- C:\windows\SysWOW64
2011-12-12 21:49:24 ----D---- C:\windows\SYSWOW64\drivers
2011-12-12 21:49:24 ----D---- C:\windows\AppPatch
2011-12-12 21:49:22 ----D---- C:\Program Files (x86)\Common Files
2011-12-12 21:15:02 ----D---- C:\Users\Adam\AppData\Roaming\SoftGrid Client
2011-12-11 21:59:05 ----D---- C:\Users\Adam\AppData\Roaming\uTorrent
2011-12-11 15:21:30 ----D---- C:\windows\Logs
2011-12-11 11:42:37 ----SHD---- C:\windows\Installer
2011-12-11 10:48:40 ----SD---- C:\Users\Adam\AppData\Roaming\Microsoft
2011-12-11 10:48:40 ----D---- C:\Users\Adam\AppData\Roaming\Adobe
2011-12-11 10:35:21 ----RSD---- C:\windows\assembly
2011-12-11 10:35:21 ----D---- C:\windows\Microsoft.NET
2011-12-11 10:35:07 ----D---- C:\Program Files\Common Files\Autodesk Shared
2011-12-11 10:34:53 ----D---- C:\windows\Help
2011-12-11 10:33:03 ----RSD---- C:\windows\Fonts
2011-12-11 10:31:51 ----RD---- C:\Program Files
2011-12-11 10:31:51 ----D---- C:\ProgramData\Autodesk
2011-12-11 09:58:04 ----D---- C:\ProgramData\FLEXnet
2011-12-10 20:35:59 ----D---- C:\windows\Tasks
2011-12-10 20:35:12 ----A---- C:\windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2011-12-10 12:51:02 ----A---- C:\windows\SYSWOW64\PerfStringBackup.INI
2011-12-10 12:48:07 ----D---- C:\windows\SYSWOW64\cs-CZ
2011-12-10 12:48:07 ----D---- C:\windows\system32\cs-CZ
2011-12-09 16:36:10 ----D---- C:\windows\debug
2011-12-07 23:21:14 ----D---- C:\Program Files (x86)\Opera
2011-12-07 21:08:48 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-12-07 21:08:48 ----D---- C:\Program Files (x86)\Hry
2011-12-07 19:32:43 ----DC---- C:\windows\system32\DRVSTORE
2011-12-06 00:35:15 ----D---- C:\windows\winsxs
2011-12-05 17:01:37 ----D---- C:\windows\system32\catroot
2011-12-04 20:25:19 ----HD---- C:\Program Files (x86)\Ijrgyimfgodv
2011-12-04 11:10:15 ----D---- C:\Users\Adam\AppData\Roaming\Nero
2011-12-04 09:46:55 ----D---- C:\ProgramData\Nero
2011-12-04 09:46:53 ----D---- C:\windows\Cursors
2011-11-28 19:01:23 ----A---- C:\windows\SYSWOW64\aswBoot.exe
2011-11-28 19:01:14 ----A---- C:\windows\system32\aswBoot.exe
2011-11-26 22:26:51 ----D---- C:\windows\system32\NDF

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2011-01-27 30008]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2011-05-20 557848]
R0 MfeEpePc;MfeEpePc; C:\windows\system32\drivers\MfeEpePc.sys [2011-02-09 168008]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr.sys [2011-11-28 42328]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2011-11-28 591192]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2011-11-28 304472]
R1 aswTdi;avast! Network Shield Support; C:\windows\system32\drivers\aswTdi.sys [2011-11-28 58712]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 aswFsBlk;aswFsBlk; C:\windows\system32\drivers\aswFsBlk.sys [2011-11-28 24408]
R2 aswMonFlt;aswMonFlt; \??\C:\windows\system32\drivers\aswMonFlt.sys [2011-11-28 66904]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\windows\system32\DRIVERS\RMCAST.sys [2010-11-20 146432]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\windows\system32\DRIVERS\Accelerometer.sys [2011-01-27 43320]
R3 Afc;PPdus ASPI Shell; C:\windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2011-04-27 9319424]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2011-04-27 303616]
R3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys [2010-11-11 32192]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athrx.sys [2011-01-08 2698240]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\windows\system32\DRIVERS\btath_bus.sys [2011-01-07 28832]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2010-12-03 25912]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 intelkmd;intelkmd; C:\windows\system32\DRIVERS\igdpmd64.sys [2011-03-25 12262336]
R3 JMCR;JMCR; C:\windows\system32\DRIVERS\jmcr.sys [2011-01-31 174168]
R3 MEIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2010-11-30 406632]
R3 Sftfs;Sftfs; C:\windows\system32\DRIVERS\Sftfslh.sys [2010-09-14 760168]
R3 Sftplay;Sftplay; C:\windows\system32\DRIVERS\Sftplaylh.sys [2010-09-14 268648]
R3 Sftredir;Sftredir; C:\windows\system32\DRIVERS\Sftredirlh.sys [2010-09-14 25960]
R3 Sftvol;Sftvol; C:\windows\system32\DRIVERS\Sftvollh.sys [2010-09-14 22376]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2010-12-21 1826048]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10301; C:\windows\system32\DRIVERS\stwrt64.sys [2011-01-27 520192]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2011-02-04 1413680]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\PROGRAM FILES (X86)\TUNEUP UTILITIES 2012\TuneUpUtilitiesDriver64.sys [2011-10-20 11856]
S0 Partizan;Partizan; C:\windows\system32\drivers\Partizan.sys []
S3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\agrsm64.sys [2009-06-10 1146880]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\windows\System32\Drivers\ssadadb.sys [2010-12-21 36328]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\windows\system32\DRIVERS\btath_flt.sys [2011-01-07 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\windows\system32\drivers\btath_a2dp.sys [2011-01-07 298144]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\windows\system32\DRIVERS\btath_hcrp.sys [2011-01-07 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\windows\system32\DRIVERS\btath_lwflt.sys [2011-01-07 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\windows\system32\DRIVERS\btath_rcp.sys [2011-01-07 154272]
S3 BtFilter;BtFilter; C:\windows\system32\DRIVERS\btfilter.sys [2011-01-07 279200]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2011-04-28 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 catchme;catchme; \??\C:\123275201\catchme.sys []
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv64.sys [2011-02-07 63336]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2011-03-26 12262336]
S3 netr7364;RT73 USB - ovladač karty pro bezdrátovou síť LAN pro systém Windows Vista; C:\windows\system32\DRIVERS\netr7364.sys [2009-06-10 707072]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\windows\system32\drivers\ccdcmbx64.sys [2011-05-18 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\windows\system32\drivers\ccdcmbox64.sys [2011-05-18 27136]
S3 nmwcdnsucx64;Nokia USB Flashing Generic; C:\windows\system32\drivers\nmwcdnsucx64.sys [2011-05-18 12800]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\windows\system32\drivers\nmwcdnsux64.sys [2011-05-18 171008]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\windows\system32\DRIVERS\ssadbus.sys [2011-01-03 157160]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\windows\system32\DRIVERS\ssadmdfl.sys [2011-01-03 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\windows\system32\DRIVERS\ssadmdm.sys [2011-01-03 177128]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\windows\system32\DRIVERS\ssadserd.sys [2011-01-03 145384]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 38400]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-05-18 9216]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 usbser;USB Modem Driver; C:\windows\system32\drivers\usbser.sys [2010-11-20 32768]
S3 UsbserFilt;UsbserFilt; C:\windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-05-18 9216]
S3 vserial;ELTIMA Virtual Serial Ports Driver; C:\windows\System32\DRIVERS\vserial.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-12 140672]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2011-04-27 203264]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-01-07 138400]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-01-07 53920]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-11-28 44768]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2010-10-20 821664]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2011-02-12 481104]
R2 HP Power Assistant Service;HP Power Assistant Service; C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2011-01-27 131128]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-06-21 85560]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP DayStarter\32-bit\HPDayStarterService.exe [2011-01-28 133688]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-29 94264]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe [2011-02-07 320000]
R2 hpHotkeyMonitor;hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HpHotkeyMonitor.exe [2011-01-28 281656]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2011-01-27 30520]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]
R2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2010-11-29 210896]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-01-17 326168]
R2 McAfee Endpoint Encryption Agent;McAfee Endpoint Encryption Agent; C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHost.exe [2011-02-09 1318912]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [2008-02-18 877864]
R2 PdiService;Portrait Displays SDK Service; C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2011-01-18 113264]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\windows\SysWOW64\IoctlSvc.exe [2006-12-19 81920]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-07-27 249136]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2010-09-14 508264]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2011-01-27 296448]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\PROGRAM FILES (X86)\TUNEUP UTILITIES 2012\TUNEUPUTILITIESSERVICE64.EXE [2011-12-08 2123584]
R2 uArcCapture;ArcCapture; C:\windows\SysWow64\ArcVCapRender\uArcCapture.exe [2010-11-11 502464]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-01-17 2656280]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\windows\System32\svchost.exe [2009-07-14 27136]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2011-01-22 3154224]
R2 vToolbarUpdater;vToolbarUpdater; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe [2011-12-09 246600]
R3 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files (x86)\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2011-01-12 36864]
R3 hpCMSrv;HP Connection Manager 4 Service; c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-04-05 1094712]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-03-29 799800]
R3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [2008-02-28 529704]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2010-09-14 219496]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-06-30 136176]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-19 44376]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\SysWOW64\flcdlock.exe [2011-02-03 464480]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-10-08 1431888]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-06-30 136176]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[cernohous13]

Udělám ti trochu průvan v toolbarech a zbytečnostech

Stáhni OTM z jednoho odkazu a rozbal nejlépe na plochu.
http://oldtimer.geekstogo.com/OTM.exe
http://www.itxassociates.com/OT-Tools/OTM.exe

Spusť program „OTM.exe“ (pro Vistu a Win7 – pravým a „Run As Administrator“).
Do okna pod žlutou čáru vlož celý text zeleným písmem ze „Scriptu“

Klikni na červené „Moveit!“

Při nabídce restartu „YES“
a log potom najdeš v C:\_OTM\MovedFiles\

Script OTM

Kód: Vybrat vše

:Commands
[purity]
[resethosts]
[emptytemp]
[emptyflash]
[clearallrestorepoints]

:Files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp /s
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\windows\tasks\HPCeeScheduleForADAM-HP$.job
C:\windows\tasks\HPCeeScheduleForAdam.job
C:\Program Files (x86)\BabylonToolbar

:Reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95289393-33EA-4F8D-B952-483415B9C955}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B2A44031-7EAD-434C-AC9E-7F1DA176BA8C}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}"=-
"{32099AAC-C132-4136-9E9A-4E364A424E17}"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
"{8dcb7100-df86-4384-8842-8fa844297b3f}"=-
"{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}"=-
"{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}"=-
"{98889811-442D-49dd-99D7-DC866BE87DBC}"=-
"{95B7759C-8C7F-4BF1-B163-73684A933233}"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=-
"SUPERAntiSpyware"=-
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"vProt"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
"WebCheck"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=-

:Services
SASDIFSV
SASKUTIL
Partizan
NMIndexingService
gupdate
gupdatem

Akce je vratná tak se nelekej a napiš bez kterého tlačítka nemůžeš žít

[ruphi]

Mužu ti jsem max dát "results"
žádný log mi to neudělá, po kliknutí na "yes" se ntb neresetuje.



Restore point Set: OTM Restore Point
========== FILES ==========
File/Folder C:\windows\system32\*.tmp.dll not found.
File/Folder C:\windows\system32\SET*.tmp not found.
C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP84F7.tmp folder moved successfully.
C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder moved successfully.
C:\windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPEBD4.tmp folder moved successfully.
C:\windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP1093.tmp folder moved successfully.
C:\windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP2387.tmp folder moved successfully.
C:\windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP3B8.tmp folder moved successfully.
C:\windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP4AB6.tmp folder moved successfully.
C:\windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAP7177.tmp folder moved successfully.
C:\windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPBF4.tmp folder moved successfully.
C:\windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder moved successfully.
C:\windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder moved successfully.
C:\windows\SoftwareDistribution\Download\ce4ee6f8fc7b4204768e67fb3f77fecb\BIT16C8.tmp moved successfully.
C:\windows\System32\config\systemprofile\AppData\Roaming\SoftGrid Client\Icon Cache\icoC015.tmp moved successfully.
C:\windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\windows\tasks\HPCeeScheduleForADAM-HP$.job moved successfully.
C:\windows\tasks\HPCeeScheduleForAdam.job moved successfully.
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\bh folder moved successfully.
Folder move failed. C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10 scheduled to be moved on reboot.
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar folder moved successfully.
C:\Program Files (x86)\BabylonToolbar folder moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3134413B-49B4-425C-98A5-893C1F195601}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95289393-33EA-4F8D-B952-483415B9C955}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{95289393-33EA-4F8D-B952-483415B9C955}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B2A44031-7EAD-434C-AC9E-7F1DA176BA8C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B2A44031-7EAD-434C-AC9E-7F1DA176BA8C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B4F3A835-0E21-4959-BA22-42B3008E02FF}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{32099AAC-C132-4136-9E9A-4E364A424E17} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\\{95B7759C-8C7F-4BF1-B163-73684A933233} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\SUPERAntiSpyware deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\vProt deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{B5A7F190-DDA6-4420-B3BA-52453494E6CD} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B5A7F190-DDA6-4420-B3BA-52453494E6CD}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{B5A7F190-DDA6-4420-B3BA-52453494E6CD} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B5A7F190-DDA6-4420-B3BA-52453494E6CD}\ not found.
========== SERVICES/DRIVERS ==========
Error: No service named SASDIFSV was found to stop!
Service\Driver key SASDIFSV not found.
Error: Unable to stop service SASKUTIL!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SASKUTIL deleted successfully.
Error: No service named Partizan was found to stop!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Partizan deleted successfully.
Error: No service named NMIndexingService was found to stop!
Service\Driver key NMIndexingService not found.
Error: No service named gupdate was found to stop!
Service\Driver key gupdate not found.
Error: No service named gupdatem was found to stop!
Service\Driver key gupdatem not found.