Prosím o kontrolu logu..

[Thooty]

Dobrý den,
chtěl bych vás poprosit o kontrolu logu, mám problém s monitorem. Předpokládám, že to asi bude chyba monitoru (a proto ho chci jít reklamovat) ale předtím se chci ujistit, jestli za tento problém nemůže nějaký vir v počítači, jelikož mi i Windows hlásil v "Centru Akcí" nějaké dvě chyby, které měli souvislost s monitorem. Pokud nic nenajdete, vyzkouším monitor ještě u známého a pokud to bude dělat i tam, pošlu ho na reklamaci.
Předem děkuji..

LOG:

Logfile of random's system information tool 1.09 (written by random/random)
Run by Padrigo at 2012-04-13 21:16:24
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 6 GB (8%) free of 76 GB
Total RAM: 3071 MB (57% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:16:26, on 13.4.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Padrigo\Desktop\RSIT.exe
C:\Program Files\trend micro\Padrigo.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://toolbar.inbox.com/search/dispatc ... &%language
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.inbox.com/homepage.aspx?tbid=80329&lng=cs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=;ftp=;https=;
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKUS\S-1-5-21-312933911-612511698-3685517910-1006\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-312933911-612511698-3685517910-1006\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Licensing Console - - C:\Windows\system32\msvfd32.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

--
End of file - 6386 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-312933911-612511698-3685517910-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-312933911-612511698-3685517910-1001UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-11-26 425680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2011-09-18 336768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17 3855520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2011-09-18 56712]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-09-22 3080264]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15 499608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager]
C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-11-10 3514176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FlashPlayerUpdate]
C:\Windows\system32\Macromed\Flash\FlashUtil10x_Plugin.exe -update plugin []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Padrigo\AppData\Local\Google\Update\GoogleUpdate.exe [2011-08-17 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2011-12-16 1508408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2012-03-27 10967656]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2012-02-29 17148552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files\Steam\Steam.exe -silent []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-05-04 252136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
c:\program files\real\realplayer\update\realsched.exe [2011-11-26 296056]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2011-06-17 66328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2011-08-17 203776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"VIDC.FPS1"=frapsvid.dll
"vidc.x264"=C:\PROGRA~1\x264vfw\x264vfw.dll
"msacm.l3fhg"=mp3fhg.acm
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"VIDC.FFDS"=ff_vfw.dll
"msacm.lameacm"=LameACM.acm
"msacm.vorbis"=vorbis.acm
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2012-04-13 21:16:24 ----D---- C:\rsit
2012-04-13 20:55:13 ----D---- C:\Users\Padrigo\AppData\Roaming\awdit
2012-04-13 20:48:01 ----A---- C:\Windows\system32\drivers\DrvAgent32.sys
2012-04-03 16:37:03 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2012-03-31 19:30:40 ----D---- C:\Windows\system32\RTCOM
2012-03-31 19:29:52 ----A---- C:\Windows\system32\WavesLib.dll
2012-03-31 19:29:52 ----A---- C:\Windows\system32\WavesGUILib.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\tosade.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\TepeqAPO.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\tadefxapo2.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\tadefxapo.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\SRSWOW.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\SRSTSXT.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\SRSTSHD.dll
2012-03-31 19:29:50 ----A---- C:\Windows\system32\SRSHP360.dll
2012-03-31 19:29:48 ----A---- C:\Windows\system32\SFSS_APO.dll
2012-03-31 19:29:48 ----A---- C:\Windows\system32\SFNHK.dll
2012-03-31 19:29:46 ----A---- C:\Windows\system32\SFCOM.dll
2012-03-31 19:29:46 ----A---- C:\Windows\system32\SFAPO.dll
2012-03-31 19:29:43 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2012-03-31 19:29:42 ----A---- C:\Windows\system32\RtkPgExt.dll
2012-03-31 19:29:40 ----A---- C:\Windows\system32\RtkCoLDR.dll
2012-03-31 19:29:40 ----A---- C:\Windows\system32\RtkCoInstII.dll
2012-03-31 19:29:39 ----A---- C:\Windows\system32\RtkApoApi.dll
2012-03-31 19:29:38 ----A---- C:\Windows\system32\RtkAPO.dll
2012-03-31 19:29:32 ----A---- C:\Windows\system32\RTEEP32A.dll
2012-03-31 19:29:32 ----A---- C:\Windows\system32\RTEEL32A.dll
2012-03-31 19:29:31 ----A---- C:\Windows\system32\RTEEG32A.dll
2012-03-31 19:29:31 ----A---- C:\Windows\system32\RTEED32A.dll
2012-03-31 19:29:30 ----A---- C:\Windows\system32\RP3DHT32.dll
2012-03-31 19:29:30 ----A---- C:\Windows\system32\RP3DAA32.dll
2012-03-31 19:29:30 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2012-03-31 19:29:27 ----A---- C:\Windows\system32\RCoRes.dat
2012-03-31 19:29:23 ----A---- C:\Windows\system32\R4EEP32A.dll
2012-03-31 19:29:23 ----A---- C:\Windows\system32\R4EEL32A.dll
2012-03-31 19:29:22 ----A---- C:\Windows\system32\R4EEG32A.dll
2012-03-31 19:29:22 ----A---- C:\Windows\system32\R4EED32A.dll
2012-03-31 19:29:22 ----A---- C:\Windows\system32\R4EEA32A.dll
2012-03-31 19:29:19 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2012-03-31 19:29:18 ----A---- C:\Windows\system32\MaxxAudioRealtek2.dll
2012-03-31 19:29:12 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2012-03-31 19:29:10 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2012-03-31 19:29:08 ----A---- C:\Windows\system32\MaxxAudioAPOShell.dll
2012-03-31 19:29:07 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2012-03-31 19:29:07 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2012-03-31 19:29:07 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2012-03-31 19:29:06 ----A---- C:\Windows\system32\KAAPORT.dll
2012-03-31 19:28:30 ----A---- C:\Windows\system32\FMAPO.dll
2012-03-31 19:28:30 ----A---- C:\Windows\system32\DTSVoiceClarityDLL.dll
2012-03-31 19:28:29 ----A---- C:\Windows\system32\DTSU2PREC32.dll
2012-03-31 19:28:29 ----A---- C:\Windows\system32\DTSU2PLFX32.dll
2012-03-31 19:28:29 ----A---- C:\Windows\system32\DTSU2PGFX32.dll
2012-03-31 19:28:28 ----A---- C:\Windows\system32\DTSSymmetryDLL.dll
2012-03-31 19:28:27 ----A---- C:\Windows\system32\DTSS2SpeakerDLL.dll
2012-03-31 19:28:26 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL.dll
2012-03-31 19:28:26 ----A---- C:\Windows\system32\DTSNeoPCDLL.dll
2012-03-31 19:28:26 ----A---- C:\Windows\system32\DTSLimiterDLL.dll
2012-03-31 19:28:26 ----A---- C:\Windows\system32\DTSLFXAPO.dll
2012-03-31 19:28:25 ----A---- C:\Windows\system32\DTSGFXAPONS.dll
2012-03-31 19:28:25 ----A---- C:\Windows\system32\DTSGFXAPO.dll
2012-03-31 19:28:25 ----A---- C:\Windows\system32\DTSGainCompensatorDLL.dll
2012-03-31 19:28:24 ----A---- C:\Windows\system32\DTSBoostDLL.dll
2012-03-31 19:28:24 ----A---- C:\Windows\system32\DTSBassEnhancementDLL.dll
2012-03-31 19:28:19 ----A---- C:\Windows\system32\AERTARen.dll
2012-03-31 19:28:19 ----A---- C:\Windows\system32\AERTACap.dll
2012-03-31 19:08:47 ----D---- C:\ProgramData\IObit
2012-03-31 19:08:47 ----D---- C:\Program Files\IObit
2012-03-31 15:46:54 ----A---- C:\Windows\system32\javaws.exe
2012-03-31 15:46:54 ----A---- C:\Windows\system32\javaw.exe
2012-03-31 15:46:53 ----A---- C:\Windows\system32\java.exe
2012-03-31 00:41:42 ----D---- C:\Program Files\Sun
2012-03-23 00:46:31 ----D---- C:\Users\Padrigo\AppData\Roaming\NCH Swift Sound
2012-03-23 00:46:31 ----D---- C:\ProgramData\NCH Swift Sound
2012-03-23 00:46:30 ----D---- C:\Program Files\WavePad Sound Editor
2012-03-19 23:07:01 ----D---- C:\Windows\Minidump
2012-03-15 14:11:55 ----A---- C:\Windows\system32\OpenCL.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvwgf2um.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvoglv32.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvgenco32.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvdispco32.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvd3dum.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvcuvid.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvcuvenc.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvcuda.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvcompiler.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvapi.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2012-03-15 14:09:00 ----A---- C:\Windows\system32\nvvsvc.exe
2012-03-15 14:09:00 ----A---- C:\Windows\system32\nvsvcr.dll
2012-03-15 14:09:00 ----A---- C:\Windows\system32\nvsvc.dll
2012-03-15 14:09:00 ----A---- C:\Windows\system32\nvshext.dll
2012-03-15 14:09:00 ----A---- C:\Windows\system32\nvmctray.dll
2012-03-15 14:09:00 ----A---- C:\Windows\system32\nvcpl.dll
2012-03-15 14:07:50 ----D---- C:\NVIDIA
2012-03-15 14:06:36 ----D---- C:\ProgramData\NVIDIA Corporation
2012-03-14 12:41:05 ----A---- C:\Windows\system32\ntkrnlpa.exe
2012-03-14 12:41:03 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-03-14 12:40:23 ----A---- C:\Windows\system32\rdrmemptylst.exe
2012-03-14 12:40:23 ----A---- C:\Windows\system32\rdpwsx.dll
2012-03-14 12:40:23 ----A---- C:\Windows\system32\rdpcorekmts.dll
2012-03-14 12:40:21 ----A---- C:\Windows\system32\DWrite.dll
2012-03-14 12:40:19 ----A---- C:\Windows\system32\rdpcorets.dll
2012-03-14 12:40:18 ----A---- C:\Windows\system32\rdpcore.dll
2012-03-14 12:40:18 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2012-03-14 12:40:18 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-03-14 12:40:04 ----A---- C:\Windows\system32\win32k.sys

======List of files/folders modified in the last 1 month======

2012-04-13 21:16:26 ----D---- C:\Windows\Temp
2012-04-13 21:16:26 ----D---- C:\Program Files\trend micro
2012-04-13 21:16:23 ----D---- C:\Windows\Prefetch
2012-04-13 21:15:28 ----SHD---- C:\System Volume Information
2012-04-13 21:15:04 ----RD---- C:\Program Files
2012-04-13 21:14:37 ----D---- C:\Windows\System32
2012-04-13 20:48:15 ----D---- C:\Windows\inf
2012-04-13 20:48:01 ----D---- C:\Windows\system32\drivers
2012-04-13 20:43:46 ----D---- C:\Windows\system32\config
2012-04-13 20:32:33 ----D---- C:\ProgramData\NVIDIA
2012-04-13 20:26:50 ----D---- C:\Users\Padrigo\AppData\Roaming\Skype
2012-04-13 20:01:39 ----D---- C:\Users\Padrigo\AppData\Roaming\.minecraft
2012-04-13 16:17:57 ----A---- C:\Windows\system32\PnkBstrB.exe
2012-04-13 09:12:19 ----D---- C:\Windows
2012-04-12 22:13:11 ----D---- C:\Users\Padrigo\AppData\Roaming\FileZilla
2012-04-08 10:37:22 ----D---- C:\Windows\system32\LogFiles
2012-04-08 01:26:25 ----SHD---- C:\Windows\Installer
2012-04-08 01:23:55 ----D---- C:\Users\Padrigo\AppData\Roaming\uTorrent
2012-04-08 01:08:40 ----D---- C:\Program Files\Realmware
2012-04-05 22:04:17 ----RSD---- C:\Windows\Fonts
2012-04-04 17:23:03 ----D---- C:\Program Files\Origin
2012-04-04 16:20:50 ----D---- C:\Windows\system32\NDF
2012-04-03 16:37:17 ----D---- C:\Windows\Tasks
2012-04-03 16:37:17 ----D---- C:\Windows\system32\Tasks
2012-04-01 13:01:27 ----D---- C:\Windows\system32\catroot2
2012-03-31 19:32:48 ----HD---- C:\Program Files\Temp
2012-03-31 19:30:37 ----D---- C:\Windows\system32\catroot
2012-03-31 19:30:34 ----D---- C:\Windows\system32\DriverStore
2012-03-31 19:28:10 ----HD---- C:\Program Files\InstallShield Installation Information
2012-03-31 19:21:43 ----D---- C:\Program Files\CCleaner
2012-03-31 19:08:47 ----D---- C:\ProgramData
2012-03-31 13:44:04 ----RSD---- C:\Windows\assembly
2012-03-31 13:44:04 ----D---- C:\Windows\Microsoft.NET
2012-03-31 11:11:39 ----D---- C:\Program Files\Opera
2012-03-31 11:04:31 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-03-31 00:39:56 ----D---- C:\Program Files\Java
2012-03-28 15:36:07 ----D---- C:\Program Files\Battlelog Web Plugins
2012-03-25 00:18:26 ----D---- C:\Windows\Logs
2012-03-20 19:55:34 ----D---- C:\Windows\system32\directx
2012-03-20 19:54:17 ----HD---- C:\Windows\msdownld.tmp
2012-03-15 14:23:37 ----D---- C:\Windows\debug
2012-03-15 14:23:14 ----D---- C:\Program Files\NVIDIA Corporation
2012-03-15 14:10:02 ----RD---- C:\Users
2012-03-15 14:08:53 ----D---- C:\Windows\Help
2012-03-14 13:07:03 ----D---- C:\Windows\winsxs
2012-03-14 12:42:31 ----A---- C:\Windows\system32\MRT.exe
2012-03-14 12:42:03 ----D---- C:\ProgramData\Microsoft Help

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2011-05-23 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-11-14 239168]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2011-08-04 118104]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2011-08-09 163424]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2011-08-04 103112]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2010-11-20 117760]
R3 DrvAgent32;DrvAgent32; \??\C:\Windows\system32\Drivers\DrvAgent32.sys [2012-04-13 23456]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2012-03-27 3204200]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2011-04-30 41240]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2011-04-30 39064]
R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\Windows\System32\Drivers\LUsbFilt.Sys [2011-04-30 30360]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2011-08-31 22216]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2012-01-17 148800]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2011-11-01 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2011-11-01 23168]
S3 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-06-25 35088]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2011-11-01 8192]
S3 usbser;USB Modem Driver; C:\Windows\system32\DRIVERS\usbser.sys [2010-11-20 27648]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 390504]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2011-09-22 974944]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-02-29 645440]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-03-01 2348352]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2012-02-17 76888]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-29 382272]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536]
S2 Adobe Licensing Console;Adobe Licensing Console; C:\Windows\system32\msvfd32.exe [2011-12-27 818169]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 KMService;KMService; C:\Windows\system32\srvany.exe [2011-11-18 8192]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-02-15 158856]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-08 253600]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-11-02 655624]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2011-06-17 295192]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2010-06-25 117264]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2011-11-30 718888]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-08-19 1343400]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[Rudy]

Zdravím!
V PC vidím nějaké zbytečnosti. Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Program Files\Skype\Toolbars
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-312933911-612511698-3685517910-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-312933911-612511698-3685517910-1001UA.job

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]

:commands
[Purity]
[Emptytemp]
[Emptyflash]

a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.

[Thooty]

Logfile of random's system information tool 1.09 (written by random/random)
Run by Padrigo at 2012-04-13 22:23:01
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 6 GB (8%) free of 76 GB
Total RAM: 3071 MB (68% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:23:28, on 13.4.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Padrigo\Desktop\RSIT.exe
C:\Program Files\trend micro\Padrigo.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://toolbar.inbox.com/search/dispatc ... &%language
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.inbox.com/homepage.aspx?tbid=80329&lng=cs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=;ftp=;https=;
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKUS\S-1-5-21-312933911-612511698-3685517910-1006\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-312933911-612511698-3685517910-1006\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Licensing Console - - C:\Windows\system32\msvfd32.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

--
End of file - 6292 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-11-26 425680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2011-09-18 336768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2011-09-18 56712]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-09-22 3080264]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15 499608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager]
C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-11-10 3514176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FlashPlayerUpdate]
C:\Windows\system32\Macromed\Flash\FlashUtil10x_Plugin.exe -update plugin []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Padrigo\AppData\Local\Google\Update\GoogleUpdate.exe [2011-08-17 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2011-12-16 1508408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2012-03-27 10967656]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2012-02-29 17148552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files\Steam\Steam.exe -silent []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-05-04 252136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
c:\program files\real\realplayer\update\realsched.exe [2011-11-26 296056]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2011-06-17 66328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2011-08-17 203776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"VIDC.FPS1"=frapsvid.dll
"vidc.x264"=C:\PROGRA~1\x264vfw\x264vfw.dll
"msacm.l3fhg"=mp3fhg.acm
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"VIDC.FFDS"=ff_vfw.dll
"msacm.lameacm"=LameACM.acm
"msacm.vorbis"=vorbis.acm
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2012-04-13 22:23:01 ----D---- C:\rsit
2012-04-13 22:08:15 ----D---- C:\_OTM
2012-04-13 20:48:01 ----A---- C:\Windows\system32\drivers\DrvAgent32.sys
2012-04-03 16:37:03 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2012-03-31 19:30:40 ----D---- C:\Windows\system32\RTCOM
2012-03-31 19:29:52 ----A---- C:\Windows\system32\WavesLib.dll
2012-03-31 19:29:52 ----A---- C:\Windows\system32\WavesGUILib.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\tosade.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\TepeqAPO.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\tadefxapo2.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\tadefxapo.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\SRSWOW.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\SRSTSXT.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\SRSTSHD.dll
2012-03-31 19:29:50 ----A---- C:\Windows\system32\SRSHP360.dll
2012-03-31 19:29:48 ----A---- C:\Windows\system32\SFSS_APO.dll
2012-03-31 19:29:48 ----A---- C:\Windows\system32\SFNHK.dll
2012-03-31 19:29:46 ----A---- C:\Windows\system32\SFCOM.dll
2012-03-31 19:29:46 ----A---- C:\Windows\system32\SFAPO.dll
2012-03-31 19:29:43 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2012-03-31 19:29:42 ----A---- C:\Windows\system32\RtkPgExt.dll
2012-03-31 19:29:40 ----A---- C:\Windows\system32\RtkCoLDR.dll
2012-03-31 19:29:40 ----A---- C:\Windows\system32\RtkCoInstII.dll
2012-03-31 19:29:39 ----A---- C:\Windows\system32\RtkApoApi.dll
2012-03-31 19:29:38 ----A---- C:\Windows\system32\RtkAPO.dll
2012-03-31 19:29:32 ----A---- C:\Windows\system32\RTEEP32A.dll
2012-03-31 19:29:32 ----A---- C:\Windows\system32\RTEEL32A.dll
2012-03-31 19:29:31 ----A---- C:\Windows\system32\RTEEG32A.dll
2012-03-31 19:29:31 ----A---- C:\Windows\system32\RTEED32A.dll
2012-03-31 19:29:30 ----A---- C:\Windows\system32\RP3DHT32.dll
2012-03-31 19:29:30 ----A---- C:\Windows\system32\RP3DAA32.dll
2012-03-31 19:29:30 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2012-03-31 19:29:27 ----A---- C:\Windows\system32\RCoRes.dat
2012-03-31 19:29:23 ----A---- C:\Windows\system32\R4EEP32A.dll
2012-03-31 19:29:23 ----A---- C:\Windows\system32\R4EEL32A.dll
2012-03-31 19:29:22 ----A---- C:\Windows\system32\R4EEG32A.dll
2012-03-31 19:29:22 ----A---- C:\Windows\system32\R4EED32A.dll
2012-03-31 19:29:22 ----A---- C:\Windows\system32\R4EEA32A.dll
2012-03-31 19:29:19 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2012-03-31 19:29:18 ----A---- C:\Windows\system32\MaxxAudioRealtek2.dll
2012-03-31 19:29:12 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2012-03-31 19:29:10 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2012-03-31 19:29:08 ----A---- C:\Windows\system32\MaxxAudioAPOShell.dll
2012-03-31 19:29:07 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2012-03-31 19:29:07 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2012-03-31 19:29:07 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2012-03-31 19:29:06 ----A---- C:\Windows\system32\KAAPORT.dll
2012-03-31 19:28:30 ----A---- C:\Windows\system32\FMAPO.dll
2012-03-31 19:28:30 ----A---- C:\Windows\system32\DTSVoiceClarityDLL.dll
2012-03-31 19:28:29 ----A---- C:\Windows\system32\DTSU2PREC32.dll
2012-03-31 19:28:29 ----A---- C:\Windows\system32\DTSU2PLFX32.dll
2012-03-31 19:28:29 ----A---- C:\Windows\system32\DTSU2PGFX32.dll
2012-03-31 19:28:28 ----A---- C:\Windows\system32\DTSSymmetryDLL.dll
2012-03-31 19:28:27 ----A---- C:\Windows\system32\DTSS2SpeakerDLL.dll
2012-03-31 19:28:26 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL.dll
2012-03-31 19:28:26 ----A---- C:\Windows\system32\DTSNeoPCDLL.dll
2012-03-31 19:28:26 ----A---- C:\Windows\system32\DTSLimiterDLL.dll
2012-03-31 19:28:26 ----A---- C:\Windows\system32\DTSLFXAPO.dll
2012-03-31 19:28:25 ----A---- C:\Windows\system32\DTSGFXAPONS.dll
2012-03-31 19:28:25 ----A---- C:\Windows\system32\DTSGFXAPO.dll
2012-03-31 19:28:25 ----A---- C:\Windows\system32\DTSGainCompensatorDLL.dll
2012-03-31 19:28:24 ----A---- C:\Windows\system32\DTSBoostDLL.dll
2012-03-31 19:28:24 ----A---- C:\Windows\system32\DTSBassEnhancementDLL.dll
2012-03-31 19:28:19 ----A---- C:\Windows\system32\AERTARen.dll
2012-03-31 19:28:19 ----A---- C:\Windows\system32\AERTACap.dll
2012-03-31 19:08:47 ----D---- C:\ProgramData\IObit
2012-03-31 19:08:47 ----D---- C:\Program Files\IObit
2012-03-31 15:46:54 ----A---- C:\Windows\system32\javaws.exe
2012-03-31 15:46:54 ----A---- C:\Windows\system32\javaw.exe
2012-03-31 15:46:53 ----A---- C:\Windows\system32\java.exe
2012-03-31 00:41:42 ----D---- C:\Program Files\Sun
2012-03-23 00:46:31 ----D---- C:\Users\Padrigo\AppData\Roaming\NCH Swift Sound
2012-03-23 00:46:31 ----D---- C:\ProgramData\NCH Swift Sound
2012-03-23 00:46:30 ----D---- C:\Program Files\WavePad Sound Editor
2012-03-19 23:07:01 ----D---- C:\Windows\Minidump
2012-03-15 14:11:55 ----A---- C:\Windows\system32\OpenCL.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvwgf2um.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvoglv32.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvgenco32.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvdispco32.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvd3dum.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvcuvid.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvcuvenc.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvcuda.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvcompiler.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvapi.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2012-03-15 14:09:00 ----A---- C:\Windows\system32\nvvsvc.exe
2012-03-15 14:09:00 ----A---- C:\Windows\system32\nvsvcr.dll
2012-03-15 14:09:00 ----A---- C:\Windows\system32\nvsvc.dll
2012-03-15 14:09:00 ----A---- C:\Windows\system32\nvshext.dll
2012-03-15 14:09:00 ----A---- C:\Windows\system32\nvmctray.dll
2012-03-15 14:09:00 ----A---- C:\Windows\system32\nvcpl.dll
2012-03-15 14:07:50 ----D---- C:\NVIDIA
2012-03-15 14:06:36 ----D---- C:\ProgramData\NVIDIA Corporation
2012-03-14 12:41:05 ----A---- C:\Windows\system32\ntkrnlpa.exe
2012-03-14 12:41:03 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-03-14 12:40:23 ----A---- C:\Windows\system32\rdrmemptylst.exe
2012-03-14 12:40:23 ----A---- C:\Windows\system32\rdpwsx.dll
2012-03-14 12:40:23 ----A---- C:\Windows\system32\rdpcorekmts.dll
2012-03-14 12:40:21 ----A---- C:\Windows\system32\DWrite.dll
2012-03-14 12:40:19 ----A---- C:\Windows\system32\rdpcorets.dll
2012-03-14 12:40:18 ----A---- C:\Windows\system32\rdpcore.dll
2012-03-14 12:40:18 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2012-03-14 12:40:18 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-03-14 12:40:04 ----A---- C:\Windows\system32\win32k.sys

======List of files/folders modified in the last 1 month======

2012-04-13 22:23:27 ----D---- C:\Program Files\trend micro
2012-04-13 22:23:03 ----D---- C:\Windows\Temp
2012-04-13 22:13:08 ----D---- C:\Windows\System32
2012-04-13 22:10:34 ----D---- C:\ProgramData\NVIDIA
2012-04-13 22:08:30 ----D---- C:\Windows
2012-04-13 22:08:15 ----RD---- C:\Program Files\Skype
2012-04-13 22:08:15 ----D---- C:\Windows\Tasks
2012-04-13 21:54:28 ----D---- C:\Users\Padrigo\AppData\Roaming\.minecraft
2012-04-13 21:52:39 ----D---- C:\Users\Padrigo\AppData\Roaming\Skype
2012-04-13 21:51:07 ----D---- C:\Windows\system32\drivers
2012-04-13 21:51:07 ----D---- C:\Windows\inf
2012-04-13 21:51:06 ----D---- C:\Windows\system32\DriverStore
2012-04-13 21:51:06 ----D---- C:\Windows\system32\catroot
2012-04-13 21:46:31 ----D---- C:\Windows\system32\config
2012-04-13 21:17:37 ----D---- C:\Windows\Prefetch
2012-04-13 21:15:28 ----SHD---- C:\System Volume Information
2012-04-13 21:15:04 ----RD---- C:\Program Files
2012-04-13 16:17:57 ----A---- C:\Windows\system32\PnkBstrB.exe
2012-04-12 22:13:11 ----D---- C:\Users\Padrigo\AppData\Roaming\FileZilla
2012-04-08 10:37:22 ----D---- C:\Windows\system32\LogFiles
2012-04-08 01:26:25 ----SHD---- C:\Windows\Installer
2012-04-08 01:23:55 ----D---- C:\Users\Padrigo\AppData\Roaming\uTorrent
2012-04-08 01:08:40 ----D---- C:\Program Files\Realmware
2012-04-05 22:04:17 ----RSD---- C:\Windows\Fonts
2012-04-04 17:23:03 ----D---- C:\Program Files\Origin
2012-04-04 16:20:50 ----D---- C:\Windows\system32\NDF
2012-04-03 16:37:17 ----D---- C:\Windows\system32\Tasks
2012-04-01 13:01:27 ----D---- C:\Windows\system32\catroot2
2012-03-31 19:32:48 ----HD---- C:\Program Files\Temp
2012-03-31 19:28:10 ----HD---- C:\Program Files\InstallShield Installation Information
2012-03-31 19:21:43 ----D---- C:\Program Files\CCleaner
2012-03-31 19:08:47 ----D---- C:\ProgramData
2012-03-31 13:44:04 ----RSD---- C:\Windows\assembly
2012-03-31 13:44:04 ----D---- C:\Windows\Microsoft.NET
2012-03-31 11:11:39 ----D---- C:\Program Files\Opera
2012-03-31 11:04:31 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-03-31 00:39:56 ----D---- C:\Program Files\Java
2012-03-28 15:36:07 ----D---- C:\Program Files\Battlelog Web Plugins
2012-03-25 00:18:26 ----D---- C:\Windows\Logs
2012-03-20 19:55:34 ----D---- C:\Windows\system32\directx
2012-03-15 14:23:37 ----D---- C:\Windows\debug
2012-03-15 14:23:14 ----D---- C:\Program Files\NVIDIA Corporation
2012-03-15 14:10:02 ----RD---- C:\Users
2012-03-15 14:08:53 ----D---- C:\Windows\Help
2012-03-14 13:07:03 ----D---- C:\Windows\winsxs
2012-03-14 12:42:31 ----A---- C:\Windows\system32\MRT.exe
2012-03-14 12:42:03 ----D---- C:\ProgramData\Microsoft Help

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2011-05-23 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-11-14 239168]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2011-08-04 118104]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2011-08-09 163424]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2011-08-04 103112]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2010-11-20 117760]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2012-03-27 3204200]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2011-04-30 41240]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2011-04-30 39064]
R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\Windows\System32\Drivers\LUsbFilt.Sys [2011-04-30 30360]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2011-08-31 22216]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2012-01-17 148800]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 DrvAgent32;DrvAgent32; \??\C:\Windows\system32\Drivers\DrvAgent32.sys [2012-04-13 23456]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2011-11-01 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2011-11-01 23168]
S3 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-06-25 35088]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2011-11-01 8192]
S3 usbser;USB Modem Driver; C:\Windows\system32\DRIVERS\usbser.sys [2010-11-20 27648]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 390504]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2011-09-22 974944]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-02-29 645440]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-03-01 2348352]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2012-02-17 76888]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-29 382272]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536]
S2 Adobe Licensing Console;Adobe Licensing Console; C:\Windows\system32\msvfd32.exe [2011-12-27 818169]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 KMService;KMService; C:\Windows\system32\srvany.exe [2011-11-18 8192]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-02-15 158856]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-13 253088]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-11-02 655624]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2011-06-17 295192]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2010-06-25 117264]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2011-11-30 718888]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-08-19 1343400]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[Rudy]

Dvouklikem na soubor C:\Program Files\trend micro\Padrigo.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://toolbar.inbox.com/search/dispatc ... p=aus&qkw=%s&tbid=%tb_id&%language
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.inbox.com/homepage.aspx?tbid=80329&lng=cs
R3 - URLSearchHook: (no name) - {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - (no file)
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (file missing)

Klikněte na >FixChecked< a restartujte PC.

[Thooty]

Logfile of random's system information tool 1.09 (written by random/random)
Run by Padrigo at 2012-04-13 23:46:57
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 6 GB (7%) free of 76 GB
Total RAM: 3071 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:47:22, on 13.4.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Users\Padrigo\Desktop\RSIT.exe
C:\Program Files\trend micro\Padrigo.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=;ftp=;https=;
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKUS\S-1-5-21-312933911-612511698-3685517910-1006\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-312933911-612511698-3685517910-1006\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Licensing Console - - C:\Windows\system32\msvfd32.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

--
End of file - 5358 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-11-26 425680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2011-09-18 336768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2011-09-18 56712]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-09-22 3080264]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-03-15 499608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager]
C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-11-10 3514176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FlashPlayerUpdate]
C:\Windows\system32\Macromed\Flash\FlashUtil10x_Plugin.exe -update plugin []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Padrigo\AppData\Local\Google\Update\GoogleUpdate.exe [2011-08-17 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2011-12-16 1508408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDVCPL]
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2012-03-27 10967656]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2012-02-29 17148552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files\Steam\Steam.exe -silent []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-05-04 252136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
c:\program files\real\realplayer\update\realsched.exe [2011-11-26 296056]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2011-06-17 66328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2011-08-17 203776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"VIDC.FPS1"=frapsvid.dll
"vidc.x264"=C:\PROGRA~1\x264vfw\x264vfw.dll
"msacm.l3fhg"=mp3fhg.acm
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"VIDC.FFDS"=ff_vfw.dll
"msacm.lameacm"=LameACM.acm
"msacm.vorbis"=vorbis.acm
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2012-04-13 23:46:57 ----D---- C:\rsit
2012-04-13 22:45:26 ----A---- C:\Windows\system32\mshtmled.dll
2012-04-13 22:45:25 ----A---- C:\Windows\system32\wininet.dll
2012-04-13 22:45:25 ----A---- C:\Windows\system32\jsproxy.dll
2012-04-13 22:45:25 ----A---- C:\Windows\system32\jscript9.dll
2012-04-13 22:45:25 ----A---- C:\Windows\system32\jscript.dll
2012-04-13 22:45:25 ----A---- C:\Windows\system32\iertutil.dll
2012-04-13 22:45:24 ----A---- C:\Windows\system32\url.dll
2012-04-13 22:45:24 ----A---- C:\Windows\system32\ieui.dll
2012-04-13 22:45:23 ----A---- C:\Windows\system32\urlmon.dll
2012-04-13 22:45:22 ----A---- C:\Windows\system32\mshtml.dll
2012-04-13 22:45:22 ----A---- C:\Windows\system32\ieframe.dll
2012-04-13 22:40:51 ----A---- C:\Windows\system32\wmi.dll
2012-04-13 22:40:51 ----A---- C:\Windows\system32\wintrust.dll
2012-04-13 22:40:51 ----A---- C:\Windows\system32\imagehlp.dll
2012-04-13 22:40:51 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2012-04-13 22:39:31 ----A---- C:\Windows\system32\ntkrnlpa.exe
2012-04-13 22:39:30 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-04-13 22:33:00 ----SHD---- C:\Config.Msi
2012-04-13 22:08:15 ----D---- C:\_OTM
2012-04-13 20:48:01 ----A---- C:\Windows\system32\drivers\DrvAgent32.sys
2012-04-03 16:37:03 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2012-03-31 19:30:40 ----D---- C:\Windows\system32\RTCOM
2012-03-31 19:29:52 ----A---- C:\Windows\system32\WavesLib.dll
2012-03-31 19:29:52 ----A---- C:\Windows\system32\WavesGUILib.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\tosade.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\TepeqAPO.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\tadefxapo2.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\tadefxapo.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\SRSWOW.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\SRSTSXT.dll
2012-03-31 19:29:51 ----A---- C:\Windows\system32\SRSTSHD.dll
2012-03-31 19:29:50 ----A---- C:\Windows\system32\SRSHP360.dll
2012-03-31 19:29:48 ----A---- C:\Windows\system32\SFSS_APO.dll
2012-03-31 19:29:48 ----A---- C:\Windows\system32\SFNHK.dll
2012-03-31 19:29:46 ----A---- C:\Windows\system32\SFCOM.dll
2012-03-31 19:29:46 ----A---- C:\Windows\system32\SFAPO.dll
2012-03-31 19:29:43 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2012-03-31 19:29:42 ----A---- C:\Windows\system32\RtkPgExt.dll
2012-03-31 19:29:40 ----A---- C:\Windows\system32\RtkCoLDR.dll
2012-03-31 19:29:40 ----A---- C:\Windows\system32\RtkCoInstII.dll
2012-03-31 19:29:39 ----A---- C:\Windows\system32\RtkApoApi.dll
2012-03-31 19:29:38 ----A---- C:\Windows\system32\RtkAPO.dll
2012-03-31 19:29:32 ----A---- C:\Windows\system32\RTEEP32A.dll
2012-03-31 19:29:32 ----A---- C:\Windows\system32\RTEEL32A.dll
2012-03-31 19:29:31 ----A---- C:\Windows\system32\RTEEG32A.dll
2012-03-31 19:29:31 ----A---- C:\Windows\system32\RTEED32A.dll
2012-03-31 19:29:30 ----A---- C:\Windows\system32\RP3DHT32.dll
2012-03-31 19:29:30 ----A---- C:\Windows\system32\RP3DAA32.dll
2012-03-31 19:29:30 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2012-03-31 19:29:27 ----A---- C:\Windows\system32\RCoRes.dat
2012-03-31 19:29:23 ----A---- C:\Windows\system32\R4EEP32A.dll
2012-03-31 19:29:23 ----A---- C:\Windows\system32\R4EEL32A.dll
2012-03-31 19:29:22 ----A---- C:\Windows\system32\R4EEG32A.dll
2012-03-31 19:29:22 ----A---- C:\Windows\system32\R4EED32A.dll
2012-03-31 19:29:22 ----A---- C:\Windows\system32\R4EEA32A.dll
2012-03-31 19:29:19 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2012-03-31 19:29:18 ----A---- C:\Windows\system32\MaxxAudioRealtek2.dll
2012-03-31 19:29:12 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2012-03-31 19:29:10 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2012-03-31 19:29:08 ----A---- C:\Windows\system32\MaxxAudioAPOShell.dll
2012-03-31 19:29:07 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2012-03-31 19:29:07 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2012-03-31 19:29:07 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2012-03-31 19:29:06 ----A---- C:\Windows\system32\KAAPORT.dll
2012-03-31 19:28:30 ----A---- C:\Windows\system32\FMAPO.dll
2012-03-31 19:28:30 ----A---- C:\Windows\system32\DTSVoiceClarityDLL.dll
2012-03-31 19:28:29 ----A---- C:\Windows\system32\DTSU2PREC32.dll
2012-03-31 19:28:29 ----A---- C:\Windows\system32\DTSU2PLFX32.dll
2012-03-31 19:28:29 ----A---- C:\Windows\system32\DTSU2PGFX32.dll
2012-03-31 19:28:28 ----A---- C:\Windows\system32\DTSSymmetryDLL.dll
2012-03-31 19:28:27 ----A---- C:\Windows\system32\DTSS2SpeakerDLL.dll
2012-03-31 19:28:26 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL.dll
2012-03-31 19:28:26 ----A---- C:\Windows\system32\DTSNeoPCDLL.dll
2012-03-31 19:28:26 ----A---- C:\Windows\system32\DTSLimiterDLL.dll
2012-03-31 19:28:26 ----A---- C:\Windows\system32\DTSLFXAPO.dll
2012-03-31 19:28:25 ----A---- C:\Windows\system32\DTSGFXAPONS.dll
2012-03-31 19:28:25 ----A---- C:\Windows\system32\DTSGFXAPO.dll
2012-03-31 19:28:25 ----A---- C:\Windows\system32\DTSGainCompensatorDLL.dll
2012-03-31 19:28:24 ----A---- C:\Windows\system32\DTSBoostDLL.dll
2012-03-31 19:28:24 ----A---- C:\Windows\system32\DTSBassEnhancementDLL.dll
2012-03-31 19:28:19 ----A---- C:\Windows\system32\AERTARen.dll
2012-03-31 19:28:19 ----A---- C:\Windows\system32\AERTACap.dll
2012-03-31 19:08:47 ----D---- C:\ProgramData\IObit
2012-03-31 19:08:47 ----D---- C:\Program Files\IObit
2012-03-31 15:46:54 ----A---- C:\Windows\system32\javaws.exe
2012-03-31 15:46:54 ----A---- C:\Windows\system32\javaw.exe
2012-03-31 15:46:53 ----A---- C:\Windows\system32\java.exe
2012-03-31 00:41:42 ----D---- C:\Program Files\Sun
2012-03-23 00:46:31 ----D---- C:\Users\Padrigo\AppData\Roaming\NCH Swift Sound
2012-03-23 00:46:31 ----D---- C:\ProgramData\NCH Swift Sound
2012-03-23 00:46:30 ----D---- C:\Program Files\WavePad Sound Editor
2012-03-19 23:07:01 ----D---- C:\Windows\Minidump
2012-03-15 14:11:55 ----A---- C:\Windows\system32\OpenCL.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvwgf2um.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvoglv32.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvgenco32.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvdispco32.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvd3dum.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvcuvid.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvcuvenc.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvcuda.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvcompiler.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\nvapi.dll
2012-03-15 14:11:55 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2012-03-15 14:09:00 ----A---- C:\Windows\system32\nvvsvc.exe
2012-03-15 14:09:00 ----A---- C:\Windows\system32\nvsvcr.dll
2012-03-15 14:09:00 ----A---- C:\Windows\system32\nvsvc.dll
2012-03-15 14:09:00 ----A---- C:\Windows\system32\nvshext.dll
2012-03-15 14:09:00 ----A---- C:\Windows\system32\nvmctray.dll
2012-03-15 14:09:00 ----A---- C:\Windows\system32\nvcpl.dll
2012-03-15 14:07:50 ----D---- C:\NVIDIA
2012-03-15 14:06:36 ----D---- C:\ProgramData\NVIDIA Corporation
2012-03-14 12:40:23 ----A---- C:\Windows\system32\rdrmemptylst.exe
2012-03-14 12:40:23 ----A---- C:\Windows\system32\rdpwsx.dll
2012-03-14 12:40:23 ----A---- C:\Windows\system32\rdpcorekmts.dll
2012-03-14 12:40:21 ----A---- C:\Windows\system32\DWrite.dll
2012-03-14 12:40:19 ----A---- C:\Windows\system32\rdpcorets.dll
2012-03-14 12:40:18 ----A---- C:\Windows\system32\rdpcore.dll
2012-03-14 12:40:18 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2012-03-14 12:40:18 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-03-14 12:40:04 ----A---- C:\Windows\system32\win32k.sys

======List of files/folders modified in the last 1 month======

2012-04-13 23:47:21 ----D---- C:\Program Files\trend micro
2012-04-13 23:46:59 ----D---- C:\Windows\Temp
2012-04-13 23:40:31 ----D---- C:\Windows\System32
2012-04-13 23:39:32 ----D---- C:\ProgramData\NVIDIA
2012-04-13 23:36:11 ----D---- C:\Windows\system32\config
2012-04-13 23:13:34 ----D---- C:\Users\Padrigo\AppData\Roaming\Skype
2012-04-13 23:13:08 ----D---- C:\Windows\Prefetch
2012-04-13 23:01:01 ----D---- C:\Windows\Microsoft.NET
2012-04-13 23:01:00 ----RSD---- C:\Windows\assembly
2012-04-13 22:57:04 ----D---- C:\Windows\winsxs
2012-04-13 22:56:55 ----D---- C:\Windows\system32\LogFiles
2012-04-13 22:56:21 ----D---- C:\Windows
2012-04-13 22:55:03 ----D---- C:\Windows\system32\migration
2012-04-13 22:55:03 ----D---- C:\Windows\system32\drivers
2012-04-13 22:55:03 ----D---- C:\Program Files\Internet Explorer
2012-04-13 22:46:05 ----SHD---- C:\Windows\Installer
2012-04-13 22:46:04 ----D---- C:\ProgramData\Microsoft Help
2012-04-13 22:45:36 ----D---- C:\Windows\system32\catroot
2012-04-13 22:45:35 ----D---- C:\Windows\system32\catroot2
2012-04-13 22:43:32 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-04-13 22:43:31 ----D---- C:\Windows\inf
2012-04-13 22:41:06 ----D---- C:\Windows\debug
2012-04-13 22:41:02 ----A---- C:\Windows\system32\MRT.exe
2012-04-13 22:38:43 ----SHD---- C:\System Volume Information
2012-04-13 22:34:23 ----D---- C:\Users\Padrigo\AppData\Roaming\Notepad++
2012-04-13 22:33:02 ----RD---- C:\Program Files
2012-04-13 22:32:09 ----D---- C:\Program Files\Battlelog Web Plugins
2012-04-13 22:08:15 ----RD---- C:\Program Files\Skype
2012-04-13 22:08:15 ----D---- C:\Windows\Tasks
2012-04-13 21:54:28 ----D---- C:\Users\Padrigo\AppData\Roaming\.minecraft
2012-04-13 21:51:06 ----D---- C:\Windows\system32\DriverStore
2012-04-13 16:17:57 ----A---- C:\Windows\system32\PnkBstrB.exe
2012-04-12 22:13:11 ----D---- C:\Users\Padrigo\AppData\Roaming\FileZilla
2012-04-08 01:23:55 ----D---- C:\Users\Padrigo\AppData\Roaming\uTorrent
2012-04-08 01:08:40 ----D---- C:\Program Files\Realmware
2012-04-05 22:04:17 ----RSD---- C:\Windows\Fonts
2012-04-04 17:23:03 ----D---- C:\Program Files\Origin
2012-04-04 16:20:50 ----D---- C:\Windows\system32\NDF
2012-04-03 16:37:17 ----D---- C:\Windows\system32\Tasks
2012-03-31 19:32:48 ----HD---- C:\Program Files\Temp
2012-03-31 19:28:10 ----HD---- C:\Program Files\InstallShield Installation Information
2012-03-31 19:21:43 ----D---- C:\Program Files\CCleaner
2012-03-31 19:08:47 ----D---- C:\ProgramData
2012-03-31 11:11:39 ----D---- C:\Program Files\Opera
2012-03-31 00:39:56 ----D---- C:\Program Files\Java
2012-03-25 00:18:26 ----D---- C:\Windows\Logs
2012-03-20 19:55:34 ----D---- C:\Windows\system32\directx
2012-03-15 14:23:14 ----D---- C:\Program Files\NVIDIA Corporation
2012-03-15 14:10:02 ----RD---- C:\Users
2012-03-15 14:08:53 ----D---- C:\Windows\Help

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2011-05-23 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-11-14 239168]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2011-08-04 118104]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2011-08-09 163424]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2011-08-04 103112]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2010-11-20 117760]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2012-03-27 3204200]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2011-04-30 41240]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2011-04-30 39064]
R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\Windows\System32\Drivers\LUsbFilt.Sys [2011-04-30 30360]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2011-08-31 22216]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2012-01-17 148800]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 DrvAgent32;DrvAgent32; \??\C:\Windows\system32\Drivers\DrvAgent32.sys [2012-04-13 23456]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2011-11-01 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbo.sys [2011-11-01 23168]
S3 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-06-25 35088]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2011-11-01 8192]
S3 usbser;USB Modem Driver; C:\Windows\system32\DRIVERS\usbser.sys [2010-11-20 27648]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2011-09-22 974944]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-02-29 645440]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-03-01 2348352]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2012-02-17 76888]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-29 382272]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536]
S2 Adobe Licensing Console;Adobe Licensing Console; C:\Windows\system32\msvfd32.exe [2011-12-27 818169]
S2 KMService;KMService; C:\Windows\system32\srvany.exe [2011-11-18 8192]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-02-15 158856]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-13 253088]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-11-02 655624]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2011-06-17 295192]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2010-06-25 117264]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2011-11-30 718888]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-08-19 1343400]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[Rudy]

Log je nyní OK. Předpokládám, že tento problém s monitorem nesouvisel.

[Thooty]

Nesouvisel, to bude problém monitoru samotného. Pošlu ho na reklamačku, ale i tak děkuji opět

[Rudy]

OK a nemáte zač!