Nalezl jsem trojany : keylogger keymsall2010Logfile of random's system information tool 1.09 (written by random/random)
Run by Martin Stroka at 2012-01-19 20:57:33
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 33 GB (21%) free of 156 GB
Total RAM: 4093 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:57:35, on 19.1.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
c:\program files (x86)\teamviewer\version7\TeamViewer.exe
C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe
C:\Program Files (x86)\Nokia\PC Internet Access\NPCIA.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\Brownie\brpjp04a.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosHdpProc.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
C:\Program Files\TOSHIBA\HDMICtrlMan\HCMSoundChanger.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\trend micro\Martin Stroka.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://toolbar.inbox.com/search/dispatc ... &%language
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [BrStsWnd] C:\Program Files (x86)\Brownie\BrstsW64.exe Autorun
O4 - HKLM\..\Run: [Anti Trojan Elite] C:\Program Files (x86)\Anti Trojan Elite\TJEnder.exe :NO
O4 - HKCU\..\Run: [NokiaPCInternetAccess] "C:\Program Files (x86)\Nokia\PC Internet Access\NPCIA.exe" /b
O4 - HKCU\..\Run: [Google Update] "C:\Users\Martin Stroka\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2704916375-464737053-844809292-1005\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2704916375-464737053-844809292-1005\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - S-1-5-21-2704916375-464737053-844809292-1005 User Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'UpdatusUser')
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MIF5BA~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_2EC7709873947E87.dll/cmsidewiki.html
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MIF5BA~1\Office12\ONBttnIE.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MIF5BA~1\Office12\REFIEBAR.DLL
O9 - Extra button: Zobrazit nebo skrýt HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Brother BRAdminPro Scheduler (BRA_Scheduler) - Unknown owner - C:\Program Files (x86)\Brother\BRAdmin Professional 3\bratimer.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\Windows\system32\HPSIsvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: Ochrana HDD TOSHIBA (Thpsrv) - Unknown owner - C:\Windows\system32\ThpSrv.exe (file missing)
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: webcamXP Service (wxpSvc) - Unknown owner - C:\Program Files (x86)\webcamXP 5\wService.exe
--
End of file - 12205 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files (x86)\Brother\BRAdmin Professional 3\bratimer.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
C:\Windows\system32\HPSIsvc.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe"
C:\Windows\system32\ThpSrv.exe
C:\Windows\system32\TODDSrv.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2128
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_000006f4
\??\C:\Windows\system32\conhost.exe "97881346333592482-408050060959780130-1261050992483255705-3352792371512943250
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k HPService
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"
C:\Windows\system32\svchost.exe -k WindowsMobile
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"taskhost.exe"
taskeng.exe {DFA476E1-C226-4861-83F9-3BF698030B57}
"c:\program files (x86)\teamviewer\version7\TeamViewer.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe" /AUTORUN
"C:\Program Files (x86)\TeamViewer\Version7\tv_w32.exe" --action hooks --deferlog --log
"C:\Program Files (x86)\TeamViewer\Version7\tv_x64.exe" --action hooks --deferlog --log
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Apoint2K\Apoint.exe"
"C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe"
"C:\Windows\WindowsMobile\wmdc.exe"
"C:\Program Files (x86)\Nokia\PC Internet Access\NPCIA.exe" /b
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe"
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe"
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
{29BD2294-5DD5-4136-A90B-F9EA2E1A9AD5}
{329BC4C6-EA86-4E75-A056-2FF41A6AB22D}
{3E80964B-630D-41BE-B7C7-13EB774B0D0E}
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Program Files (x86)\Brownie\BrStsW64.exe" Autorun
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe"
"C:\Program Files (x86)\Brownie\brpjp04a.exe" "USB002" "Brother HL-3040CN series"
"C:\Program Files\Apoint2K\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"C:\Program Files\Apoint2K\HidFind.exe"
"Apntex.exe"
\??\C:\Windows\system32\conhost.exe "-913577364-4960834461384527135-17320388124708918371192444383-959504855-941003357
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosA2dp.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosBtHid.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosHdpProc.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\\TosBtHsp.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe"
"C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\TOSHIBA\Bluetooth Toshiba Stack\tosBtProc.exe"
"C:\Program Files\TOSHIBA\HDMICtrlMan\HCMSoundChanger.exe" /SPEAKER
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe" -CtxID "#Hewlett-Packard#HP Deskjet F4500 series#1325020111" -Startup
"C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe" -Embedding
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Windows\system32\NOTEPAD.EXE" C:\rsit\info.txt
"C:\Windows\system32\NOTEPAD.EXE" C:\rsit\log.txt
"c:\program files (x86)\teamviewer\version7\TeamViewer_Desktop.exe" --IPCport 5939
"D:\AVIRA záchranný systém\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2704916375-464737053-844809292-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2704916375-464737053-844809292-1000UA.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Martin Stroka\AppData\Roaming\Mozilla\Firefox\Profiles\00oehbt4.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.google.cz/"
prefs.js - "extensions.enabledItems" - "smartwebprinting@hp.com:4.5, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {dc572301-7619-498c-a57d-39143191b318}:0.3.8.5, {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}:7.3.3.42, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.16"
prefs.js - "keyword.URL" - "http://toolbar.inbox.com/search/dispatc ... ge=cs&qkw="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=C:\Windows\system32\Wat\npWatWeb.dll
C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}
C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt
C:\Program Files (x86)\Mozilla Firefox\plugins\
npdeployJava1.dll
nppdf32.dll
C:\Program Files (x86)\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22 328248]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2011-11-10 325408]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-11-10 42272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22 517688]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HSON"=C:\Program Files\TOSHIBA\TBS\HSON.exe [2009-03-09 52600]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-08-24 8081952]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2009-07-22 312832]
"HDMICtrlMan"=C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe [2009-08-03 1032536]
"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 660360]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"NokiaPCInternetAccess"=C:\Program Files (x86)\Nokia\PC Internet Access\NPCIA.exe [2009-05-26 651264]
"Google Update"=C:\Users\Martin [2011-01-27 1946]
""= []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\00TCrdMain]
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2009-08-05 909624]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-06-08 37296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Martin [2011-01-27 1946]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent]
C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-02-22 1226024]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe [2010-09-08 421888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartFaceVWatcher]
C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatcher.exe [2009-07-29 238080]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmoothView]
C:\Program Files\Toshiba\SmoothView\SmoothView.exe [2009-08-13 570680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Toshiba Registration]
C:\Program Files\Toshiba\Registration\ToshibaReminder.exe [2009-08-25 134032]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TosReelTimeMonitor]
C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [2009-08-06 35160]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TosSENotify]
C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [2009-08-03 709976]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TPwrMain]
C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2009-08-21 497504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TUSBSleepChargeSrv]
C:\Program Files (x86)\TOSHIBA\TOSHIBA USB Sleep and Charge Utility\TUSBSleepChargeSrv.exe [2009-07-02 252288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Martin Stroka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~2\MIF5BA~1\Office12\ONENOTEM.EXE [2009-02-26 97680]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"NPSStartup"= []
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-30 937920]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]
"HP Software Update"=C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [2009-11-18 54576]
""= []
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2011-10-11 258512]
"BrStsWnd"=C:\Program Files (x86)\Brownie\BrstsW64.exe [2011-03-25 3695984]
"Anti Trojan Elite"=C:\Program Files (x86)\Anti Trojan Elite\TJEnder.exe [2012-01-19 4076544]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth Manager.lnk - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Promixis\Girder\girder.exe"="C:\Program Files (x86)\Promixis\Girder\girder.exe:*:Enabled:Trust Girder"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Program Files (x86)\Promixis\Girder\girder.exe"="C:\Program Files (x86)\Promixis\Girder\girder.exe:*:Enabled:Trust Girder"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*
.vbs - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2012-01-19 19:35:15 ----D---- C:\rsit
2012-01-19 19:35:15 ----D---- C:\Program Files\trend micro
2012-01-19 13:20:20 ----D---- C:\Program Files (x86)\Anti Trojan Elite
2012-01-19 12:58:05 ----D---- C:\ProgramData\Spybot - Search & Destroy
2012-01-19 12:58:05 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy
2012-01-19 12:56:35 ----D---- C:\Users\Martin Stroka\AppData\Roaming\Safer Networking
2012-01-19 12:56:21 ----D---- C:\Program Files (x86)\Safer Networking
2012-01-18 20:57:09 ----D---- C:\Program Files (x86)\LinuxLive USB Creator
2012-01-16 16:34:17 ----A---- C:\Windows\system32\drivers\4860279drv.sys
2012-01-16 16:34:17 ----A---- C:\Windows\system32\drivers\25370561.sys
2012-01-16 01:07:55 ----A---- C:\Windows\system32\drivers\53833460.sys
2012-01-16 00:00:51 ----D---- C:\ProgramData\RegCure
2012-01-16 00:00:51 ----D---- C:\Program Files (x86)\RegCure
2012-01-15 21:33:09 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2012-01-15 21:33:08 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2012-01-15 21:33:06 ----D---- C:\Users\Martin Stroka\AppData\Roaming\PunkBuster
2012-01-15 20:36:56 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2012-01-15 20:36:56 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2012-01-15 20:36:56 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2012-01-15 20:36:56 ----A---- C:\Windows\system32\XAudio2_7.dll
2012-01-15 20:36:56 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2012-01-15 20:36:56 ----A---- C:\Windows\system32\xactengine3_7.dll
2012-01-15 20:36:55 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2012-01-15 20:36:55 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2012-01-15 20:36:51 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2012-01-15 20:36:51 ----A---- C:\Windows\system32\d3dcsx_43.dll
2012-01-15 20:36:50 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2012-01-15 20:36:50 ----A---- C:\Windows\system32\d3dx11_43.dll
2012-01-15 20:36:48 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2012-01-15 20:36:48 ----A---- C:\Windows\system32\d3dx10_43.dll
2012-01-15 20:36:46 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2012-01-15 20:36:46 ----A---- C:\Windows\system32\D3DX9_43.dll
2012-01-15 20:36:45 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2012-01-15 20:36:45 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2012-01-15 20:36:45 ----A---- C:\Windows\system32\XAudio2_6.dll
2012-01-15 20:36:45 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2012-01-15 20:36:44 ----A---- C:\Wi=1
MSVideo8=1
MSVideo8ndows\SYSWOW64\xactengine3_6.dll
2012-01-15 20:36:44 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2012-01-15 20:36:44 ----A---- C:\Windows\system32\xactengine3_6.dll
2012-01-15 20:36:44 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2012-01-15 20:36:42 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2012-01-15 20:36:42 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2012-01-15 20:36:42 ----A---- C:\Windows\system32\XAudio2_5.dll
2012-01-15 20:36:42 ----A---- C:\Windows\system32\xactengine3_5.dll
2012-01-15 20:36:40 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2012-01-15 20:36:40 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2012-01-15 20:36:38 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2012-01-15 20:36:38 ----A---- C:\Windows\system32\d3dcsx_42.dll
2012-01-15 20:36:37 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2012-01-15 20:36:37 ----A---- C:\Windows\system32\d3dx11_42.dll
2012-01-15 20:36:36 ----A---- C:\Windows\system32\d3dx10_42.dll
2012-01-15 20:36:35 ----A---- C:\Windows\system32\D3DX9_42.dll
2012-01-15 20:36:31 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2012-01-15 20:36:31 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2012-01-15 20:36:28 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2012-01-15 20:36:28 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2012-01-15 20:36:28 ----A---- C:\Windows\system32\d3dx10_40.dll
2012-01-15 20:36:28 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2012-01-15 20:36:26 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2012-01-15 20:36:26 ----A---- C:\Windows\system32\D3DX9_40.dll
2012-01-15 20:36:25 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2012-01-15 20:36:25 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2012-01-15 20:36:25 ----A---- C:\Windows\system32\XAudio2_3.dll
2012-01-15 20:36:25 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2012-01-15 20:36:24 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2012-01-15 20:36:24 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2012-01-15 20:36:24 ----A---- C:\Windows\system32\xactengine3_3.dll
2012-01-15 20:36:24 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2012-01-15 20:36:23 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2012-01-15 20:36:23 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2012-01-15 20:36:23 ----A---- C:\Windows\system32\XAudio2_2.dll
2012-01-15 20:36:23 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2012-01-15 20:36:22 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2012-01-15 20:36:22 ----A---- C:\Windows\system32\xactengine3_2.dll
2012-01-15 20:36:21 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2012-01-15 20:36:21 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2012-01-15 20:36:21 ----A---- C:\Windows\system32\d3dx10_39.dll
2012-01-15 20:36:21 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2012-01-15 20:36:19 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2012-01-15 20:36:19 ----A---- C:\Windows\system32\D3DX9_39.dll
2012-01-15 20:36:18 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2012-01-15 20:36:18 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2012-01-15 20:36:18 ----A---- C:\Windows\system32\XAudio2_1.dll
2012-01-15 20:36:18 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2012-01-15 20:36:17 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2012-01-15 20:36:17 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2012-01-15 20:36:17 ----A---- C:\Windows\system32\xactengine3_1.dll
2012-01-15 20:36:17 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2012-01-15 20:36:15 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2012-01-15 20:36:15 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2012-01-15 20:36:15 ----A---- C:\Windows\system32\d3dx10_38.dll
2012-01-15 20:36:15 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2012-01-15 20:36:13 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2012-01-15 20:36:13 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2012-01-15 20:36:13 ----A---- C:\Windows\system32\XAudio2_0.dll
2012-01-15 20:36:13 ----A---- C:\Windows\system32\D3DX9_38.dll
2012-01-15 20:36:12 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2012-01-15 20:36:12 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2012-01-15 20:36:12 ----A---- C:\Windows\system32\xactengine3_0.dll
2012-01-15 20:36:12 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2012-01-15 20:36:10 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2012-01-15 20:36:10 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2012-01-15 20:36:10 ----A---- C:\Windows\system32\d3dx10_37.dll
2012-01-15 20:36:10 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2012-01-15 20:36:08 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2012-01-15 20:36:08 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2012-01-15 20:36:08 ----A---- C:\Windows\system32\xactengine2_10.dll
2012-01-15 20:36:08 ----A---- C:\Windows\system32\D3DX9_37.dll
2012-01-15 20:36:05 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2012-01-15 20:36:05 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2012-01-15 20:36:05 ----A---- C:\Windows\system32\d3dx10_36.dll
2012-01-15 20:36:05 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2012-01-15 20:36:03 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2012-01-15 20:36:03 ----A---- C:\Windows\system32\d3dx9_36.dll
2012-01-15 20:36:02 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2012-01-15 20:36:02 ----A---- C:\Windows\system32\xactengine2_9.dll
2012-01-15 20:36:00 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2012-01-15 20:36:00 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2012-01-15 20:36:00 ----A---- C:\Windows\system32\d3dx10_35.dll
2012-01-15 20:36:00 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2012-01-15 20:35:58 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2012-01-15 20:35:58 ----A---- C:\Windows\system32\d3dx9_35.dll
2012-01-15 20:35:56 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2012-01-15 20:35:56 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2012-01-15 20:35:56 ----A---- C:\Windows\system32\xactengine2_8.dll
2012-01-15 20:35:56 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2012-01-15 20:35:55 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2012-01-15 20:35:55 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2012-01-15 20:35:55 ----A---- C:\Windows\system32\d3dx10_34.dll
2012-01-15 20:35:55 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2012-01-15 20:35:53 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2012-01-15 20:35:53 ----A---- C:\Windows\system32\d3dx9_34.dll
2012-01-15 20:35:52 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2012-01-15 20:35:52 ----A---- C:\Windows\system32\xactengine2_7.dll
2012-01-15 20:35:51 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2012-01-15 20:35:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2012-01-15 20:35:51 ----A---- C:\Windows\system32\d3dx10_33.dll
2012-01-15 20:35:51 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2012-01-15 20:35:49 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2012-01-15 20:35:49 ----A---- C:\Windows\system32\d3dx9_33.dll
2012-01-15 20:35:48 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2012-01-15 20:35:48 ----A---- C:\Windows\system32\xactengine2_6.dll
2012-01-15 20:35:47 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2012-01-15 20:35:47 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2012-01-15 20:35:47 ----A---- C:\Windows\system32\xactengine2_5.dll
2012-01-15 20:35:47 ----A---- C:\Windows\system32\d3dx10.dll
2012-01-15 20:35:45 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2012-01-15 20:35:45 ----A---- C:\Windows\system32\d3dx9_32.dll
2012-01-15 20:35:44 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2012-01-15 20:35:44 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2012-01-15 20:35:44 ----A---- C:\Windows\system32\xactengine2_4.dll
2012-01-15 20:35:44 ----A---- C:\Windows\system32\x3daudio1_1.dll
2012-01-15 20:35:42 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2012-01-15 20:35:42 ----A---- C:\Windows\system32\d3dx9_31.dll
2012-01-15 20:35:41 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2012-01-15 20:35:41 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2012-01-15 20:35:41 ----A---- C:\Windows\system32\xinput1_2.dll
2012-01-15 20:35:41 ----A---- C:\Windows\system32\xactengine2_3.dll
2012-01-15 20:35:40 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2012-01-15 20:35:40 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2012-01-15 20:35:40 ----A---- C:\Windows\system32\xinput1_1.dll
2012-01-15 20:35:40 ----A---- C:\Windows\system32\xactengine2_2.dll
2012-01-15 20:35:39 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2012-01-15 20:35:39 ----A---- C:\Windows\system32\xactengine2_1.dll
2012-01-15 20:35:30 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2012-01-15 20:35:30 ----A---- C:\Windows\system32\d3dx9_30.dll
2012-01-15 20:35:29 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2012-01-15 20:35:29 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2012-01-15 20:35:29 ----A---- C:\Windows\system32\xactengine2_0.dll
2012-01-15 20:35:29 ----A---- C:\Windows\system32\x3daudio1_0.dll
2012-01-15 20:35:28 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2012-01-15 20:35:28 ----A---- C:\Windows\system32\d3dx9_29.dll
2012-01-15 20:35:26 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2012-01-15 20:35:26 ----A---- C:\Windows\system32\d3dx9_28.dll
2012-01-15 20:35:24 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2012-01-15 20:35:24 ----A---- C:\Windows\system32\d3dx9_27.dll
2012-01-15 20:35:22 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2012-01-15 20:35:22 ----A---- C:\Windows\system32\d3dx9_26.dll
2012-01-15 20:35:20 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2012-01-15 20:35:20 ----A---- C:\Windows\system32\d3dx9_25.dll
2012-01-15 20:35:19 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2012-01-15 20:35:19 ----A---- C:\Windows\system32\d3dx9_24.dll
2012-01-10 21:19:29 ----A---- C:\Windows\system32\schannel.dll
2012-01-10 21:19:29 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-01-10 21:19:28 ----A---- C:\Windows\SYSWOW64\webio.dll
2012-01-10 21:19:28 ----A---- C:\Windows\SYSWOW64\schannel.dll
2012-01-10 21:19:28 ----A---- C:\Windows\system32\webio.dll
2012-01-10 21:19:28 ----A---- C:\Windows\system32\lsass.exe
2012-01-10 21:19:28 ----A---- C:\Windows\system32\lsasrv.dll
2012-01-10 21:19:28 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-01-10 21:19:28 ----A---- C:\Windows\system32\drivers\cng.sys
2012-01-10 21:19:27 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2012-01-10 21:19:27 ----A---- C:\Windows\SYSWOW64\secur32.dll
2012-01-10 21:19:27 ----A---- C:\Windows\system32\sspisrv.dll
2012-01-10 21:19:27 ----A---- C:\Windows\system32\sspicli.dll
2012-01-10 21:19:27 ----A---- C:\Windows\system32\secur32.dll
2012-01-10 20:21:45 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2012-01-10 20:21:45 ----A---- C:\Windows\system32\mshtmled.dll
2012-01-10 20:21:44 ----A---- C:\Windows\SYSWOW64\url.dll
2012-01-10 20:21:44 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2012-01-10 20:21:44 ----A---- C:\Windows\system32\url.dll
2012-01-10 20:21:44 ----A---- C:\Windows\system32\iertutil.dll
2012-01-10 20:21:43 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2012-01-10 20:21:43 ----A---- C:\Windows\SYSWOW64\ieui.dll
2012-01-10 20:21:43 ----A---- C:\Windows\system32\urlmon.dll
2012-01-10 20:21:43 ----A---- C:\Windows\system32\ieui.dll
2012-01-10 20:21:42 ----A---- C:\Windows\SYSWOW64\wininet.dll
2012-01-10 20:21:42 ----A---- C:\Windows\system32\wininet.dll
2012-01-10 20:21:42 ----A---- C:\Windows\system32\jsproxy.dll
2012-01-10 20:21:41 ----A---- C:\Windows\system32\jscript9.dll
2012-01-10 20:21:40 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2012-01-10 20:21:40 ----A---- C:\Windows\SYSWOW64\jscript.dll
2012-01-10 20:21:39 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2012-01-10 20:21:39 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2012-01-10 20:21:39 ----A---- C:\Windows\system32\jscript.dll
2012-01-10 20:21:36 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2012-01-10 20:21:36 ----A---- C:\Windows\system32\mshtml.dll
2012-01-10 20:21:35 ----A---- C:\Windows\system32\ieframe.dll
2012-01-10 20:20:08 ----A---- C:\Windows\SYSWOW64\quartz.dll
2012-01-10 20:20:08 ----A---- C:\Windows\system32\quartz.dll
2012-01-10 20:20:07 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2012-01-10 20:20:07 ----A---- C:\Windows\system32\qdvd.dll
2012-01-10 20:20:06 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2012-01-10 20:20:06 ----A---- C:\Windows\system32\ntdll.dll
2012-01-10 20:20:05 ----A---- C:\Windows\SYSWOW64\packager.dll
2012-01-10 20:20:05 ----A---- C:\Windows\system32\packager.dll
2012-01-10 20:17:04 ----A---- C:\Windows\SYSWOW64\javaws.exe
2012-01-10 20:17:04 ----A---- C:\Windows\SYSWOW64\javaw.exe
2012-01-10 20:17:04 ----A---- C:\Windows\SYSWOW64\java.exe
2012-01-02 14:52:14 ----A---- C:\Windows\SYSWOW64\tzres.dll
2012-01-02 14:52:14 ----A---- C:\Windows\system32\tzres.dll
2011-12-30 22:34:36 ----A---- C:\Windows\system32\csrsrv.dll
2011-12-30 22:16:49 ----A---- C:\Windows\system32\win32k.sys
2011-12-30 22:14:15 ----A---- C:\Windows\system32\EncDec.dll
2011-12-30 22:14:14 ----A---- C:\Windows\SYSWOW64\EncDec.dll
======List of files/folders modified in the last 1 month======
2012-01-19 20:57:34 ----D---- C:\Windows\Temp
2012-01-19 19:35:22 ----D---- C:\Windows\Prefetch
2012-01-19 19:35:15 ----RD---- C:\Program Files
2012-01-19 19:13:22 ----A---- C:\Windows\Brownie.ini
2012-01-19 19:01:10 ----D---- C:\Windows\system32\config
2012-01-19 15:57:58 ----SHD---- C:\System Volume Information
2012-01-19 13:20:20 ----RD---- C:\Program Files (x86)
2012-01-19 12:58:05 ----HD---- C:\ProgramData
2012-01-19 10:35:38 ----D---- C:\Windows\system32\catroot2
2012-01-18 22:10:14 ----D---- C:\Windows\system32\Tasks
2012-01-18 20:59:03 ----D---- C:\Program Files (x86)\Hard Disk Sentinel
2012-01-16 22:02:57 ----D---- C:\Windows\system32\drivers
2012-01-16 09:27:46 ----D---- C:\Program Files (x86)\ProFact 3.0
2012-01-16 01:08:33 ----D---- C:\ProgramData\Kaspersky Lab
2012-01-16 00:51:07 ----D---- C:\Users\Martin Stroka\AppData\Roaming\uTorrent
2012-01-16 00:35:12 ----D---- C:\Program Files\Puran Defrag
2012-01-16 00:25:45 ----D---- C:\Windows\system32\NDF
2012-01-15 22:45:15 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-01-15 22:45:15 ----D---- C:\Program Files (x86)\Ubisoft
2012-01-15 22:45:11 ----SHD---- C:\Windows\Installer
2012-01-15 22:45:11 ----HD---- C:\Config.Msi
2012-01-15 22:44:07 ----RSD---- C:\Windows\assembly
2012-01-15 22:21:28 ----D---- C:\Windows\SYSWOW64\wbem
2012-01-15 22:08:08 ----D---- C:\Windows\SYSWOW64\sysprep
2012-01-15 22:08:08 ----D---- C:\Windows\SYSWOW64\Setup
2012-01-15 22:08:08 ----D---- C:\Windows\SysWOW64
2012-01-15 22:08:07 ----D---- C:\Windows\SYSWOW64\oobe
2012-01-15 22:08:07 ----D---- C:\Windows\SYSWOW64\MUI
2012-01-15 22:08:07 ----D---- C:\Windows\SYSWOW64\drivers
2012-01-15 22:08:07 ----D---- C:\Windows\SYSWOW64\config
2012-01-15 22:08:03 ----D---- C:\Windows\SYSWOW64\com
2012-01-15 21:56:00 ----D---- C:\ProgramData\Ubisoft
2012-01-15 21:33:07 ----D---- C:\Windows\system32\LogFiles
2012-01-15 21:32:15 ----D---- C:\Windows\winsxs
2012-01-15 20:36:57 ----D---- C:\Windows\System32
2012-01-10 21:34:27 ----D---- C:\Windows\system32\catroot
2012-01-10 20:47:11 ----D---- C:\Windows\Microsoft.NET
2012-01-10 20:36:24 ----D---- C:\Windows\ehome
2012-01-10 20:36:23 ----D---- C:\Windows\SYSWOW64\migration
2012-01-10 20:36:23 ----D---- C:\Windows\system32\migration
2012-01-10 20:36:23 ----D---- C:\Program Files\Internet Explorer
2012-01-10 20:36:23 ----D---- C:\Program Files (x86)\Internet Explorer
2012-01-10 20:28:01 ----A---- C:\Windows\system32\MRT.exe
2012-01-10 20:22:34 ----D---- C:\ProgramData\Microsoft Help
2012-01-10 20:16:59 ----D---- C:\Program Files (x86)\Java
2012-01-10 20:15:06 ----D---- C:\Program Files (x86)\Mozilla Firefox
2012-01-06 18:07:39 ----D---- C:\Windows\rescache
2012-01-03 03:01:31 ----D---- C:\Windows\SYSWOW64\cs-CZ
2012-01-03 03:01:31 ----D---- C:\Windows\system32\cs-CZ
2011-12-27 22:24:27 ----D---- C:\Windows
2011-12-27 22:16:05 ----A---- C:\Windows\win.ini
2011-12-27 22:15:50 ----D---- C:\Windows\twain_32
2011-12-27 22:07:53 ----D---- C:\Windows\inf
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 25370561;25370561; C:\Windows\system32\DRIVERS\25370561.sys [2012-01-16 460888]
R0 36090012;36090012 Boot Guard Driver; C:\Windows\system32\DRIVERS\36090012.sys [2009-10-22 40464]
R0 53833460;53833460; C:\Windows\system32\DRIVERS\53833460.sys [2012-01-16 460888]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-06-04 408600]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-06-20 834544]
R0 Thpdrv;TOSHIBA HDD Protection Driver; C:\Windows\system32\DRIVERS\thpdrv.sys [2009-06-29 34880]
R0 Thpevm;TOSHIBA HDD Protection - Shock Sensor Driver; C:\Windows\system32\DRIVERS\Thpevm.SYS [2009-06-29 14784]
R0 tos_sps64;TOSHIBA tos_sps64 Service; C:\Windows\system32\DRIVERS\tos_sps64.sys [2009-07-24 482384]
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2009-07-14 26840]
R1 36090011;36090011; C:\Windows\system32\DRIVERS\36090011.sys [2009-09-25 157712]
R1 4860279drv;4860279drv; C:\Windows\system32\DRIVERS\4860279drv.sys [2012-01-16 556632]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2012-01-10 130760]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2011-10-11 27760]
R1 PMCF;PMCF; \??\C:\Windows\system32\drivers\PMCF.sys [2009-03-20 16392]
R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys [2009-07-28 81768]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2011-07-18 314016]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2011-10-11 97312]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2011-07-18 43680]
R2 rimspci;rimspci; C:\Windows\system32\DRIVERS\rimspe64.sys [2009-07-02 60416]
R2 risdpcie;risdpcie; C:\Windows\system32\DRIVERS\risdpe64.sys [2009-07-28 81408]
R2 rixdpcie;rixdpcie; C:\Windows\system32\DRIVERS\rixdpe64.sys [2009-07-04 55808]
R3 Afc;PPdus ASPI Shell; C:\Windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2009-07-13 253488]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-09-21 1537024]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-08-24 1985184]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2011-07-08 174184]
R3 PGEffect;Pangu effect driver; C:\Windows\system32\DRIVERS\pgeffect.sys [2009-06-22 35008]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2009-07-14 11264]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2009-07-30 27784]
R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys [2009-06-17 54664]
R3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2009-07-07 211432]
R3 tosrfec;Bluetooth ACPI; C:\Windows\system32\DRIVERS\tosrfec.sys [2009-07-13 19824]
R3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2009-06-19 94336]
R3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2009-08-05 58744]
S1 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys []
S2 ATE_PROCMON;ATE_PROCMON; \??\C:\Program Files (x86)\Anti Trojan Elite\ATEPMon.sys [2010-11-15 9984]
S2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys []
S3 atikmdag;atikmdag; C:\Windows\system32\drivers\atikmdag.sys [2009-07-13 5020672]
S3 BVRPMPR5a64;BVRPMPR5a64 NDIS Protocol Driver; \??\C:\Windows\system32\drivers\BVRPMPR5a64.SYS [2010-09-27 35840]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\Windows\system32\DRIVERS\ewdcsc.sys []
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys []
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys []
S3 mvusbews;USB EWS Device; C:\Windows\System32\Drivers\mvusbews.sys [2010-03-06 20480]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SIUSBXP;SIUSBXP; C:\Windows\system32\drivers\SiUSBXp.sys [2007-03-01 16384]
S3 smserial;smserial; C:\Windows\system32\DRIVERS\SmSerl64.sys [2009-06-10 1227776]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2010-04-27 127488]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2010-04-27 18944]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2010-04-27 161280]
S3 ss_bserd;SAMSUNG USB Mobile Logging Driver; C:\Windows\system32\DRIVERS\ss_bserd.sys [2010-04-27 128000]
S3 teamviewervpn;TeamViewer VPN Adapter; C:\Windows\system32\DRIVERS\teamviewervpn.sys [2010-11-30 35112]
S3 TFsExDisk;TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys [2010-06-14 16448]
S3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys [2009-06-19 50664]
S3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys [2009-07-24 26472]
S3 TosRfSnd;Bluetooth Audio; C:\Windows\system32\drivers\tosrfsnd.sys [2009-08-05 63856]
S3 TridVid;Video Grabber; C:\Windows\system32\DRIVERS\tridvid6010.sys [2010-10-10 287488]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2009-07-14 19968]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2009-02-13 14464]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirService;Avira Realtime Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2011-10-11 110032]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2011-10-11 86224]
R2 BRA_Scheduler;Brother BRAdminPro Scheduler; C:\Program Files (x86)\Brother\BRAdmin Professional 3\bratimer.exe [2010-09-15 65536]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2010-04-07 127800]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-10-15 1640768]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-01-15 75136]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 TeamViewer7;TeamViewer 7; C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2011-12-14 2984832]
R2 Thpsrv;Ochrana HDD TOSHIBA; C:\Windows\system32\ThpSrv.exe [2009-07-08 531520]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2009-07-28 140632]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-10-27 718384]
R3 TOSHIBA Bluetooth Service;TOSHIBA Bluetooth Service; C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe [2009-07-30 192368]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-06-20 1255736]
S4 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-02-18 462632]
S4 PuranDefrag;PuranDefrag; C:\Windows\system32\PuranDefragS.exe [2011-04-08 295424]
S4 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe [2009-08-21 488800]
S4 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service; C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2009-08-03 137560]
-----------------EOF-----------------
keylogger Overseer-setup monitor
Trojan Silent_manager_install
Pomocí programu anti trojan elite...plus jsme procistil PC pomocí programu AVIRA desktop
Ale jde hlavne o to ze se jich nemuzu zbavit...porad se kopiruji nekam jinam a infikuji jine soubory...takze donekonecna odstranovani bez smyslu...
Přispějete na provoz fóra?