Ahoj mám takový problém včera my kamarád poslal Tohle je tvuj obrazek tak sem to jak debil otevřel a nainstaloval a začal sem to rozesílat taky prosím o radu díky moc.
posílám log:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Pavlik at 2012-10-06 15:47:41
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 13 GB (14%) free of 96 GB
Total RAM: 8109 MB (74% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:47:50, on 6.10.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16450)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Users\Pavlik\AppData\Local\MediaGet2\mediaget.exe
C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe
C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCHelper.exe
C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files (x86)\Ask.com\Updater\Updater.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Belkin\Nostromo\nost_LM.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Users\Pavlik\AppData\Roaming\7F6E.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Program Files\trend micro\Pavlik.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.live.com/1rewlive4startup/home
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Splashtop Connect VisualBookmark - {0E5680D1-BF44-4929-94AF-FD30D784AD1D} - C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STC.dll
O2 - BHO: Complitly - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\Pavlik\AppData\Roaming\Complitly\Complitly.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Vizuální záložky - {C93F72A2-2162-4BBA-A07A-F13663C297A6} - C:\Program Files (x86)\Yandex\YandexBarIE\fastdial.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Yandex.Bar - {91397D20-1446-11D4-8AF4-0040CA1127B6} - C:\Program Files (x86)\Yandex\YandexBarIE\yndbar.dll
O4 - HKLM\..\Run: [STCAgent] "C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe"
O4 - HKLM\..\Run: [ZyngaGamesAgent] "C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe"
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
O4 - HKLM\..\Run: [4StoryPrePatch] C:\Program Files (x86)\Zemi Interactive\4StoryUS\PrePatch.exe
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKCU\..\Run: [Google Update] "C:\Users\Pavlik\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [MediaGet2] C:\Users\Pavlik\AppData\Local\MediaGet2\mediaget.exe --minimized
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [Dzgsgv] C:\Users\Pavlik\AppData\Roaming\Dzgsgv.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2052839355-3687121303-2421454062-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2052839355-3687121303-2421454062-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Startup: CurseClientStartup.ccip
O4 - Startup: Nostromo Loadout Manager.lnk = ?
O4 - Startup: PlayerScore.lnk = C:\Program Files (x86)\PlayerScoreClient\PlayerScore.exe
O4 - Global Startup: GamersFirst LIVE!.lnk = C:\Program Files (x86)\GamersFirst\LIVE!\Live.exe
O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files (x86)\TP-LINK\Common\TWCU.exe
O4 - Global Startup: TP-LINK Wireless Utility.lnk = C:\Program Files (x86)\TP-LINK\Common\TWCU.exe
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: DES2 Service for Energy Saving. (DES2 Service) - Unknown owner - C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Ralink Registry Writer (RalinkRegistryWriter) - Ralink Technology, Corp. - C:\Program Files (x86)\TP-LINK\Common\RaRegistry.exe
O23 - Service: Ralink Registry Writer 64 (RalinkRegistryWriter64) - Ralink Technology, Corp. - C:\Program Files (x86)\TP-LINK\Common\RaRegistry64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Splashtop Connect Service (SCBackService) - Splashtop Inc. - C:\Program Files (x86)\Splashtop\Splashtop Connect\BackService.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Smart TimeLock Service (Smart TimeLock) - Gigabyte Technology CO., LTD. - C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: Splashtop Connect Firefox Software Updater Service (WCUService_STC_FF) - Splashtop Inc. - C:\Program Files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe
O23 - Service: Splashtop Connect IE Software Updater Service (WCUService_STC_IE) - Splashtop Inc. - C:\Program Files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13995 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 20736448
\??\C:\Windows\system32\conhost.exe "-13577043141405908890-200378761413860173567285508991129434470587895962-504993324
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\TP-LINK\Common\RaRegistry.exe"
"C:\Program Files (x86)\TP-LINK\Common\RaRegistry64.exe"
"C:\Program Files (x86)\Splashtop\Splashtop Connect\BackService.exe"
"C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe"
"C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe"
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe"
"C:\Program Files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000690
C:\Windows\system32\wbem\wmiprvse.exe
WLIDSvcM.exe 2488
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
RPMDaemon.exe
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
"C:\Users\Pavlik\AppData\Local\MediaGet2\mediaget.exe" --minimized
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe"
"C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCHelper.exe" -Embedding
"C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
"C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Belkin\Nostromo\nost_LM.exe"
"C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:4172 CREDAT:203009
"C:\Users\Pavlik\AppData\Local\Apps\2.0\38A5ZPJX.46H\RATO8EOQ.X98\curs..tion_9e9e83ddf3ed3ead_0005.0001_161f1f0e4761792c\CurseClient.exe"
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\AlarmClock.exe"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Windows\system32\wuauclt.exe"
taskeng.exe {F6A4FC64-D9A2-42FF-9921-C36BB501A2DD}
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Users\Pavlik\AppData\Roaming\7F6E.exe"
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Program Files (x86)\Skype\Phone\Skype.exe"
"C:\Program Files (x86)\Skype\Updater\Updater.exe"
"C:\Program Files (x86)\Internet Explorer\IELowutil.exe" -embedding
"D:\Download\RSITx64 (1).exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe10_ Global\UsGthrCtrlFltPipeMssGthrPipe10 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 524 528 536 65536 532
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2052839355-3687121303-2421454062-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2052839355-3687121303-2421454062-1000UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}]
Complitly - C:\Users\Pavlik\AppData\Roaming\Complitly\64\Complitly64.dll [2012-05-21 169688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{45d30484-7ded-43d9-957a-d2fd1f046511}]
GBHO.BHO - C:\Windows\system32\mscoree.dll [2011-02-22 444752]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E5680D1-BF44-4929-94AF-FD30D784AD1D}]
Splashtop Connect VisualBookmark - C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STC.dll [2011-03-04 345968]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}]
Complitly - C:\Users\Pavlik\AppData\Roaming\Complitly\Complitly.dll [2012-05-21 142040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2012-10-04 449512]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-08-13 4120256]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C93F72A2-2162-4BBA-A07A-F13663C297A6}]
Vizuální záložky - C:\Program Files (x86)\Yandex\YandexBarIE\fastdial.dll [2012-04-16 2771768]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2012-06-06 1519304]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2012-10-04 157672]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{1d09c093-f71e-43c3-b948-19316cbd695e} - Smart Recovery 2 - C:\Windows\system32\mscoree.dll [2011-02-22 444752]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2012-06-06 1519304]
{91397D20-1446-11D4-8AF4-0040CA1127B6} - Yandex.Bar - C:\Program Files (x86)\Yandex\YandexBarIE\yndbar.dll [2012-03-05 8921400]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-06-17 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-06-17 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-06-17 416024]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-07-21 12632168]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2012-03-07 4081008]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-02-22 500208]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"RPMKickstart"=C:\Program Files\GIGABYTE\SMART6\Recovery\RPMKickstart.exe [2011-03-30 2552320]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"=C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [2005-02-17 221184]
"Google Update"=C:\Users\Pavlik\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-14 116648]
"uTorrent"=C:\Program Files (x86)\uTorrent\uTorrent.exe [2012-07-14 895376]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2012-08-11 1353080]
"AlcoholAutomount"=C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2010-08-20 33120]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-04-11 3672384]
"PlayNC Launcher"= []
"MediaGet2"=C:\Users\Pavlik\AppData\Local\MediaGet2\mediaget.exe [2012-08-12 9106664]
"AdobeBridge"= []
"msnmsgr"=C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [2012-07-28 4272064]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2011-02-22 1475584]
"Sony PC Companion"=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2012-05-31 445624]
"Dzgsgv"=C:\Users\Pavlik\AppData\Roaming\Dzgsgv.exe [2012-10-06 936448]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2012-07-13 17420464]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"STCAgent"=C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe [2011-03-04 776064]
"ZyngaGamesAgent"=C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe [2010-11-15 841544]
"ISUSScheduler"=C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [2005-02-17 81920]
""= []
"ApnUpdater"=C:\Program Files (x86)\Ask.com\Updater\Updater.exe [2012-06-06 1564872]
"4StoryPrePatch"=C:\Program Files (x86)\Zemi Interactive\4StoryUS\PrePatch.exe [2010-11-19 319488]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2012-08-29 1996200]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2012-09-25 386336]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
GamersFirst LIVE!.lnk - C:\Program Files (x86)\GamersFirst\LIVE!\Live.exe
Ralink Wireless Utility.lnk - C:\Program Files (x86)\TP-LINK\Common\TWCU.exe
TP-LINK Wireless Utility.lnk - C:\Program Files (x86)\TP-LINK\Common\TWCU.exe
C:\Users\Pavlik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
CurseClientStartup.ccip
Nostromo Loadout Manager.lnk - C:\Users\Pavlik\AppData\Roaming\Microsoft\Installer\{548C7B77-8B04-427E-ACD0-D0E6E6E59BCF}\NewShortcut2_548C7B778B04427EACD0D0E6E6E59BCF.exe
PlayerScore.lnk - C:\Program Files (x86)\PlayerScoreClient\PlayerScore.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-06-10 389632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"vidc.yv12"=xvidvfw.dll
"VIDC.FPS1"=frapsv64.dll
"vidc.mjpg"=bdmjpeg64.dll
"vidc.mpeg"=bdmpegv64.dll
"msacm.bdmpeg"=bdmpega64.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2012-10-06 15:39:36 ----A---- C:\Users\Pavlik\AppData\Roaming\7F6E.exe
2012-10-06 15:32:01 ----D---- C:\rsit
2012-10-06 15:32:01 ----D---- C:\Program Files\trend micro
2012-10-06 15:17:32 ----A---- C:\Users\Pavlik\AppData\Roaming\4AE5.exe
2012-10-06 15:02:08 ----A---- C:\Users\Pavlik\AppData\Roaming\2F78.exe
2012-10-06 15:02:04 ----A---- C:\Users\Pavlik\AppData\Roaming\Dzgsgv.exe
2012-10-06 14:55:49 ----A---- C:\Users\Pavlik\AppData\Roaming\4EEF.exe
2012-10-06 14:33:26 ----A---- C:\Users\Pavlik\AppData\Roaming\D250.exe
2012-10-06 14:24:46 ----D---- C:\ProgramData\F-Secure
2012-10-06 14:11:39 ----A---- C:\Users\Pavlik\AppData\Roaming\DF87.exe
2012-10-06 13:49:39 ----A---- C:\Users\Pavlik\AppData\Roaming\B9AE.exe
2012-10-06 13:31:34 ----A---- C:\Users\Pavlik\AppData\Roaming\297F.exe
2012-10-06 13:27:39 ----A---- C:\Users\Pavlik\AppData\Roaming\BFC6.exe
2012-10-06 13:11:45 ----A---- C:\Users\Pavlik\AppData\Roaming\31C9.exe
2012-10-06 13:05:30 ----A---- C:\Users\Pavlik\AppData\Roaming\A378.exe
2012-10-06 12:43:32 ----A---- C:\Users\Pavlik\AppData\Roaming\879D.exe
2012-10-06 12:40:04 ----D---- C:\Users\Pavlik\AppData\Roaming\Avira
2012-10-06 12:39:04 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2012-10-06 12:39:04 ----A---- C:\Windows\system32\drivers\avipbb.sys
2012-10-06 12:39:04 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2012-10-06 12:39:03 ----D---- C:\ProgramData\Avira
2012-10-06 12:39:03 ----D---- C:\Program Files (x86)\Avira
2012-10-06 12:21:27 ----A---- C:\Users\Pavlik\AppData\Roaming\51EC.exe
2012-10-06 12:07:00 ----A---- C:\Users\Pavlik\AppData\Roaming\147D.exe
2012-10-04 17:27:42 ----A---- C:\Windows\SYSWOW64\javaws.exe
2012-10-04 17:27:39 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2012-10-04 17:27:39 ----A---- C:\Windows\SYSWOW64\javaw.exe
2012-10-04 17:27:39 ----A---- C:\Windows\SYSWOW64\java.exe
2012-10-04 17:27:34 ----D---- C:\Program Files (x86)\Java
2012-10-02 21:01:34 ----D---- C:\Users\Pavlik\AppData\Roaming\TS3Client
2012-10-02 21:01:23 ----D---- C:\Program Files\TeamSpeak 3 Client
2012-09-27 19:54:29 ----D---- C:\Program Files (x86)\4StoryEG
2012-09-27 19:52:51 ----A---- C:\Windows\4StoryEG Uninstall Log.txt
2012-09-27 17:36:35 ----A---- C:\Program Files (x86)\4StoryEGLogin.txt
2012-09-27 17:21:16 ----D---- C:\Windows\4StoryEG
2012-09-26 15:20:29 ----A---- C:\Windows\system32\mshtmled.dll
2012-09-26 15:20:28 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2012-09-26 15:20:28 ----A---- C:\Windows\SYSWOW64\url.dll
2012-09-26 15:20:28 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2012-09-26 15:20:28 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2012-09-26 15:20:28 ----A---- C:\Windows\SYSWOW64\ieui.dll
2012-09-26 15:20:28 ----A---- C:\Windows\system32\url.dll
2012-09-26 15:20:28 ----A---- C:\Windows\system32\ieUnatt.exe
2012-09-26 15:20:28 ----A---- C:\Windows\system32\ieui.dll
2012-09-26 15:20:27 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2012-09-26 15:20:27 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2012-09-26 15:20:27 ----A---- C:\Windows\system32\urlmon.dll
2012-09-26 15:20:27 ----A---- C:\Windows\system32\msfeeds.dll
2012-09-26 15:20:27 ----A---- C:\Windows\system32\jscript9.dll
2012-09-26 15:20:26 ----A---- C:\Windows\SYSWOW64\wininet.dll
2012-09-26 15:20:26 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2012-09-26 15:20:26 ----A---- C:\Windows\system32\wininet.dll
2012-09-26 15:20:26 ----A---- C:\Windows\system32\jsproxy.dll
2012-09-26 15:20:25 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2012-09-26 15:20:25 ----A---- C:\Windows\SYSWOW64\jscript.dll
2012-09-26 15:20:25 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2012-09-26 15:20:25 ----A---- C:\Windows\system32\vbscript.dll
2012-09-26 15:20:25 ----A---- C:\Windows\system32\jscript.dll
2012-09-26 15:20:25 ----A---- C:\Windows\system32\iertutil.dll
2012-09-26 15:20:24 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2012-09-26 15:20:23 ----A---- C:\Windows\system32\mshtml.dll
2012-09-26 15:20:23 ----A---- C:\Windows\system32\ieframe.dll
2012-09-26 15:20:22 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2012-09-26 14:09:42 ----A---- C:\Windows\system32\OxpsConverter.exe
2012-09-17 19:41:10 ----D---- C:\Users\Pavlik\AppData\Roaming\Belkin
2012-09-17 19:41:04 ----D---- C:\Program Files (x86)\Belkin
2012-09-16 08:33:44 ----A---- C:\Windows\system32\drivers\usbehci.sys
2012-09-16 08:33:43 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2012-09-16 08:33:43 ----A---- C:\Windows\system32\drivers\usbport.sys
2012-09-16 08:33:43 ----A---- C:\Windows\system32\drivers\usbohci.sys
2012-09-16 08:33:43 ----A---- C:\Windows\system32\drivers\usbhub.sys
2012-09-16 08:33:43 ----A---- C:\Windows\system32\drivers\usbd.sys
2012-09-16 08:33:43 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2012-09-16 08:33:38 ----A---- C:\Windows\system32\fsutil.exe
2012-09-16 08:33:38 ----A---- C:\Windows\system32\esent.dll
2012-09-16 08:33:37 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2012-09-16 08:33:37 ----A---- C:\Windows\SYSWOW64\esent.dll
2012-09-16 08:33:37 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2012-09-16 08:33:37 ----A---- C:\Windows\system32\drivers\storport.sys
2012-09-16 08:33:37 ----A---- C:\Windows\system32\drivers\nvstor.sys
2012-09-16 08:33:37 ----A---- C:\Windows\system32\drivers\nvraid.sys
2012-09-16 08:33:37 ----A---- C:\Windows\system32\drivers\ntfs.sys
2012-09-16 08:33:37 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2012-09-16 08:33:37 ----A---- C:\Windows\system32\drivers\amdxata.sys
2012-09-16 08:33:37 ----A---- C:\Windows\system32\drivers\amdsata.sys
2012-09-15 16:36:31 ----D---- C:\Program Files (x86)\PlayerScoreClient
2012-09-15 15:46:30 ----D---- C:\Windows\SYSWOW64\Wat
2012-09-15 15:46:30 ----D---- C:\Windows\system32\Wat
2012-09-15 15:11:19 ----D---- C:\Windows\CheckSur
2012-09-15 15:10:24 ----A---- C:\Windows\system32\browserchoice.exe
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\wextract.exe
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\occache.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\msrating.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\msls31.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\mshta.exe
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\inseng.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\ieakui.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\ieaksie.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\ieakeng.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\icardie.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2012-09-15 15:07:45 ----A---- C:\Windows\SYSWOW64\admparse.dll
2012-09-15 15:07:45 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2012-09-15 15:07:45 ----A---- C:\Windows\system32\msls31.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\wextract.exe
2012-09-15 15:07:44 ----A---- C:\Windows\system32\webcheck.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2012-09-15 15:07:44 ----A---- C:\Windows\system32\pngfilt.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\occache.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\msrating.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\mshtmler.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\mshta.exe
2012-09-15 15:07:44 ----A---- C:\Windows\system32\msfeedssync.exe
2012-09-15 15:07:44 ----A---- C:\Windows\system32\msfeedsbs.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\licmgr10.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\inseng.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\imgutil.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\iexpress.exe
2012-09-15 15:07:44 ----A---- C:\Windows\system32\iesysprep.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\iesetup.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\iernonce.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\iepeers.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\iedkcs32.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\ieapfltr.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\ieapfltr.dat
2012-09-15 15:07:44 ----A---- C:\Windows\system32\ieakui.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\ieaksie.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\ieakeng.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\IEAdvpack.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\ie4uinit.exe
2012-09-15 15:07:44 ----A---- C:\Windows\system32\icardie.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\dxtrans.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\dxtmsft.dll
2012-09-15 15:07:44 ----A---- C:\Windows\system32\admparse.dll
2012-09-15 14:54:08 ----A---- C:\Windows\SYSWOW64\wmi.dll
2012-09-15 14:54:08 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2012-09-15 14:54:08 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2012-09-15 14:54:08 ----A---- C:\Windows\system32\wmi.dll
2012-09-15 14:54:08 ----A---- C:\Windows\system32\wintrust.dll
2012-09-15 14:54:08 ----A---- C:\Windows\system32\imagehlp.dll
2012-09-15 14:54:08 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2012-09-15 13:32:28 ----N---- C:\Windows\SYSWOW64\mwgfxcopy.exe
2012-09-15 13:32:28 ----N---- C:\Windows\SYSWOW64\mwgfx24.dll
2012-09-15 13:32:28 ----N---- C:\Windows\SYSWOW64\mwgfx.dll
2012-09-15 13:32:28 ----N---- C:\Windows\SYSWOW64\mwdds.dll
2012-09-15 13:32:28 ----N---- C:\Windows\SYSWOW64\mwace.dll
2012-09-15 13:32:28 ----D---- C:\Graphics
2012-09-15 13:20:40 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2012-09-15 13:20:40 ----A---- C:\Windows\system32\xmllite.dll
2012-09-15 13:20:38 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2012-09-15 13:20:38 ----A---- C:\Windows\system32\kerberos.dll
2012-09-15 13:20:37 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2012-09-15 13:20:37 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2012-09-15 13:20:37 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2012-09-15 13:20:37 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2012-09-15 13:20:37 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2012-09-15 13:20:37 ----A---- C:\Windows\system32\odbctrac.dll
2012-09-15 13:20:37 ----A---- C:\Windows\system32\odbccu32.dll
2012-09-15 13:20:37 ----A---- C:\Windows\system32\odbccr32.dll
2012-09-15 13:20:37 ----A---- C:\Windows\system32\odbccp32.dll
2012-09-15 13:20:35 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2012-09-15 13:20:35 ----A---- C:\Windows\system32\DWrite.dll
2012-09-15 13:20:33 ----A---- C:\Windows\SYSWOW64\srclient.dll
2012-09-15 13:20:33 ----A---- C:\Windows\system32\srcore.dll
2012-09-15 13:20:30 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2012-09-15 13:20:30 ----A---- C:\Windows\system32\poqexec.exe
2012-09-15 13:20:29 ----A---- C:\Windows\explorer.exe
2012-09-15 13:20:28 ----A---- C:\Windows\SYSWOW64\explorer.exe
2012-09-15 13:20:28 ----A---- C:\Windows\system32\CPFilters.dll
2012-09-15 13:20:27 ----A---- C:\Windows\SYSWOW64\sbe.dll
2012-09-15 13:20:27 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2012-09-15 13:20:27 ----A---- C:\Windows\system32\sbe.dll
2012-09-15 13:20:25 ----A---- C:\Windows\SYSWOW64\quartz.dll
2012-09-15 13:20:25 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2012-09-15 13:20:25 ----A---- C:\Windows\system32\quartz.dll
2012-09-15 13:20:24 ----A---- C:\Windows\system32\qdvd.dll
2012-09-15 13:20:19 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2012-09-15 13:20:19 ----A---- C:\Windows\system32\ntshrui.dll
2012-09-15 13:20:18 ----A---- C:\Windows\system32\tquery.dll
2012-09-15 13:20:17 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2012-09-15 13:20:17 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2012-09-15 13:20:17 ----A---- C:\Windows\system32\SearchIndexer.exe
2012-09-15 13:20:17 ----A---- C:\Windows\system32\mssrch.dll
2012-09-15 13:20:16 ----A---- C:\Windows\SYSWOW64\tquery.dll
2012-09-15 13:20:16 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2012-09-15 13:20:16 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2012-09-15 13:20:16 ----A---- C:\Windows\SYSWOW64\mssph.dll
2012-09-15 13:20:16 ----A---- C:\Windows\system32\SearchFilterHost.exe
2012-09-15 13:20:16 ----A---- C:\Windows\system32\mssvp.dll
2012-09-15 13:20:16 ----A---- C:\Windows\system32\mssph.dll
2012-09-15 13:20:15 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2012-09-15 13:20:15 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2012-09-15 13:20:15 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2012-09-15 13:20:15 ----A---- C:\Windows\system32\mssphtb.dll
2012-09-15 13:20:15 ----A---- C:\Windows\system32\msscntrs.dll
2012-09-15 13:20:14 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2012-09-15 13:20:12 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2012-09-15 13:20:12 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2012-09-15 13:20:12 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2012-09-15 13:20:11 ----A---- C:\Windows\SYSWOW64\webio.dll
2012-09-15 13:20:11 ----A---- C:\Windows\system32\webio.dll
2012-09-15 13:20:08 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2012-09-15 13:20:08 ----A---- C:\Windows\system32\msxml6.dll
2012-09-15 13:20:08 ----A---- C:\Windows\system32\msxml3.dll
2012-09-15 13:20:07 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2012-09-15 13:20:07 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2012-09-15 13:20:07 ----A---- C:\Windows\system32\msxml3r.dll
2012-09-15 13:20:06 ----A---- C:\Windows\system32\csrsrv.dll
2012-09-15 13:20:05 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2012-09-15 13:20:05 ----A---- C:\Windows\system32\win32spl.dll
2012-09-15 13:20:05 ----A---- C:\Windows\system32\spoolsv.exe
2012-09-15 13:20:05 ----A---- C:\Windows\splwow64.exe
2012-09-15 13:20:04 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2012-09-15 13:20:04 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2012-09-15 13:19:55 ----A---- C:\Windows\system32\shell32.dll
2012-09-15 13:19:50 ----A---- C:\Windows\SYSWOW64\shell32.dll
2012-09-15 13:19:50 ----A---- C:\Windows\system32\mfc42u.dll
2012-09-15 13:19:49 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2012-09-15 13:19:49 ----A---- C:\Windows\system32\mfc42.dll
2012-09-15 13:19:48 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2012-09-15 13:19:48 ----A---- C:\Windows\system32\XpsPrint.dll
2012-09-15 13:19:47 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2012-09-15 13:19:47 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2012-09-15 13:19:47 ----A---- C:\Windows\system32\drivers\ndis.sys
2012-09-15 13:19:46 ----A---- C:\Windows\system32\d3d10level9.dll
2012-09-15 13:19:45 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2012-09-15 13:19:45 ----A---- C:\Windows\system32\rdrmemptylst.exe
2012-09-15 13:19:45 ----A---- C:\Windows\system32\rdpwsx.dll
2012-09-15 13:19:45 ----A---- C:\Windows\system32\rdpcorekmts.dll
2012-09-15 13:19:38 ----A---- C:\Windows\SYSWOW64\schannel.dll
2012-09-15 13:19:38 ----A---- C:\Windows\SYSWOW64\secur32.dll
2012-09-15 13:19:38 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2012-09-15 13:19:38 ----A---- C:\Windows\system32\sspisrv.dll
2012-09-15 13:19:38 ----A---- C:\Windows\system32\sspicli.dll
2012-09-15 13:19:38 ----A---- C:\Windows\system32\schannel.dll
2012-09-15 13:19:38 ----A---- C:\Windows\system32\secur32.dll
2012-09-15 13:19:38 ----A---- C:\Windows\system32\ncrypt.dll
2012-09-15 13:19:38 ----A---- C:\Windows\system32\lsass.exe
2012-09-15 13:19:38 ----A---- C:\Windows\system32\lsasrv.dll
2012-09-15 13:19:38 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-09-15 13:19:38 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-09-15 13:19:38 ----A---- C:\Windows\system32\drivers\cng.sys
2012-09-15 13:19:37 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2012-09-15 13:19:37 ----A---- C:\Windows\system32\drivers\tcpip.sys
2012-09-15 13:19:37 ----A---- C:\Windows\system32\drivers\netio.sys
2012-09-15 13:19:37 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2012-09-15 13:19:35 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2012-09-15 13:19:35 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2012-09-15 13:19:35 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2012-09-15 13:19:35 ----A---- C:\Windows\system32\fontsub.dll
2012-09-15 13:19:35 ----A---- C:\Windows\system32\atmlib.dll
2012-09-15 13:19:35 ----A---- C:\Windows\system32\atmfd.dll
2012-09-15 13:19:29 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2012-09-15 13:19:28 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2012-09-15 13:19:28 ----A---- C:\Windows\system32\profsvc.dll
2012-09-15 13:19:28 ----A---- C:\Windows\system32\dnsrslvr.dll
2012-09-15 13:19:28 ----A---- C:\Windows\system32\dnscacheugc.exe
2012-09-15 13:19:28 ----A---- C:\Windows\system32\dnsapi.dll
2012-09-15 13:19:27 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2012-09-15 13:19:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-09-15 13:19:22 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2012-09-15 13:19:22 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2012-09-15 13:19:21 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2012-09-15 13:19:21 ----A---- C:\Windows\system32\d3d10_1.dll
2012-09-15 13:18:57 ----A---- C:\Windows\system32\drivers\srv2.sys
2012-09-15 13:18:57 ----A---- C:\Windows\system32\drivers\srv.sys
2012-09-15 13:18:56 ----A---- C:\Windows\system32\psisdecd.dll
2012-09-15 13:18:56 ----A---- C:\Windows\system32\drivers\srvnet.sys
2012-09-15 13:18:55 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2012-09-15 13:18:54 ----A---- C:\Windows\system32\rdpcorets.dll
2012-09-15 13:18:54 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-09-15 13:18:52 ----A---- C:\Windows\system32\drivers\afd.sys
2012-09-15 13:18:49 ----A---- C:\Windows\system32\drivers\partmgr.sys
2012-09-15 13:18:48 ----A---- C:\Windows\system32\msi.dll
2012-09-15 13:18:46 ----A---- C:\Windows\SYSWOW64\msi.dll
2012-09-15 13:18:43 ----A---- C:\Windows\system32\winresume.exe
2012-09-15 13:18:43 ----A---- C:\Windows\system32\winload.exe
2012-09-15 13:18:42 ----A---- C:\Windows\system32\kdusb.dll
2012-09-15 13:18:42 ----A---- C:\Windows\system32\kdcom.dll
2012-09-15 13:18:42 ----A---- C:\Windows\system32\kd1394.dll
2012-09-15 13:18:37 ----A---- C:\Windows\system32\crypt32.dll
2012-09-15 13:18:36 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2012-09-15 13:18:36 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2012-09-15 13:18:36 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2012-09-15 13:18:36 ----A---- C:\Windows\system32\cryptsvc.dll
2012-09-15 13:18:36 ----A---- C:\Windows\system32\cryptnet.dll
2012-09-15 13:18:30 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2012-09-15 13:18:30 ----A---- C:\Windows\SYSWOW64\browcli.dll
2012-09-15 13:18:30 ----A---- C:\Windows\system32\netapi32.dll
2012-09-15 13:18:30 ----A---- C:\Windows\system32\browser.dll
2012-09-15 13:18:30 ----A---- C:\Windows\system32\browcli.dll
2012-09-15 13:18:23 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2012-09-15 13:18:23 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2012-09-15 13:18:23 ----A---- C:\Windows\system32\wow64win.dll
2012-09-15 13:18:23 ----A---- C:\Windows\system32\winsrv.dll
2012-09-15 13:18:23 ----A---- C:\Windows\system32\KernelBase.dll
2012-09-15 13:18:23 ----A---- C:\Windows\system32\kernel32.dll
2012-09-15 13:18:23 ----A---- C:\Windows\system32\conhost.exe
2012-09-15 13:18:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2012-09-15 13:18:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2012-09-15 13:18:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2012-09-15 13:18:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-09-15 13:18:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2012-09-15 13:18:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2012-09-15 13:18:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2012-09-15 13:18:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2012-09-15 13:18:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2012-09-15 13:18:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2012-09-15 13:18:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2012-09-15 13:18:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2012-09-15 13:18:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2012-09-15 13:18:22 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2012-09-15 13:18:22 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-09-15 13:18:22 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2012-09-15 13:18:22 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-09-15 13:18:22 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2012-09-15 13:18:22 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2012-09-15 13:18:22 ----A---- C:\Windows\SYSWOW64\wow32.dll
2012-09-15 13:18:22 ----A---- C:\Windows\SYSWOW64\setup16.exe
2012-09-15 13:18:22 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2012-09-15 13:18:22 ----A---- C:\Windows\SYSWOW64\instnm.exe
2012-09-15 13:18:22 ----A---- C:\Windows\system32\wow64cpu.dll
2012-09-15 13:18:22 ----A---- C:\Windows\system32\wow64.dll
2012-09-15 13:18:22 ----A---- C:\Windows\system32\ntvdm64.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2012-09-15 13:18:21 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2012-09-15 13:18:21 ----A---- C:\Windows\SYSWOW64\user.exe
2012-09-15 13:18:02 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2012-09-15 13:18:02 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2012-09-15 13:18:02 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2012-09-15 13:18:02 ----A---- C:\Windows\system32\umpnpmgr.dll
2012-09-15 13:18:01 ----A---- C:\Windows\SYSWOW64\devobj.dll
2012-09-15 13:18:00 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2012-09-15 13:18:00 ----A---- C:\Windows\system32\prevhost.exe
2012-09-15 13:17:48 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2012-09-15 13:17:48 ----A---- C:\Windows\system32\inetcomm.dll
2012-09-15 13:17:48 ----A---- C:\Windows\system32\FXSCOVER.exe
2012-09-15 13:17:47 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2012-09-15 13:17:47 ----A---- C:\Windows\system32\msvcrt.dll
2012-09-15 13:17:44 ----A---- C:\Windows\system32\win32k.sys
2012-09-15 13:17:43 ----A---- C:\Windows\system32\localspl.dll
2012-09-15 13:17:42 ----A---- C:\Windows\system32\drivers\bowser.sys
2012-09-15 13:17:41 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2012-09-15 13:17:41 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2012-09-15 13:17:41 ----A---- C:\Windows\system32\oleaut32.dll
2012-09-15 13:17:41 ----A---- C:\Windows\system32\oleacc.dll
2012-09-15 13:17:40 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2012-09-15 13:17:40 ----A---- C:\Windows\system32\EncDec.dll
2012-09-15 13:17:36 ----A---- C:\Windows\SYSWOW64\tzres.dll
2012-09-15 13:17:36 ----A---- C:\Windows\system32\tzres.dll
2012-09-15 13:17:26 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2012-09-15 13:17:25 ----A---- C:\Windows\system32\cdosys.dll
2012-09-15 13:15:14 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2012-09-15 13:15:14 ----A---- C:\Windows\system32\ntdll.dll
2012-09-15 13:15:00 ----A---- C:\Windows\SYSWOW64\packager.dll
2012-09-15 13:15:00 ----A---- C:\Windows\system32\packager.dll
2012-09-14 13:55:02 ----A---- C:\Windows\system32\rdpcore.dll
2012-09-14 13:55:01 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2012-09-14 13:55:01 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2012-09-14 13:52:51 ----A---- C:\Windows\system32\wups2.dll
2012-09-14 13:52:51 ----A---- C:\Windows\system32\wucltux.dll
2012-09-14 13:52:51 ----A---- C:\Windows\system32\wuaueng.dll
2012-09-14 13:52:51 ----A---- C:\Windows\system32\wuauclt.exe
2012-09-14 13:52:46 ----A---- C:\Windows\system32\wups.dll
2012-09-14 13:52:46 ----A---- C:\Windows\system32\wudriver.dll
2012-09-14 13:52:46 ----A---- C:\Windows\system32\wuapi.dll
2012-09-14 13:52:37 ----A---- C:\Windows\system32\wuwebv.dll
2012-09-14 13:52:37 ----A---- C:\Windows\system32\wuapp.exe
2012-09-13 20:54:30 ----D---- C:\Windows\cs
2012-09-13 20:54:06 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2012-09-13 20:53:28 ----DC---- C:\Windows\system32\DRVSTORE
2012-09-13 20:53:28 ----A---- C:\Windows\system32\drivers\fssfltr.sys
2012-09-13 20:53:26 ----D---- C:\Program Files\Windows Live
2012-09-13 20:53:23 ----D---- C:\Windows\PCHEALTH
2012-09-13 20:53:10 ----D---- C:\Program Files (x86)\Windows Live
2012-09-13 20:51:29 ----D---- C:\Program Files (x86)\Microsoft SkyDrive
2012-09-13 20:51:15 ----D---- C:\ProgramData\Microsoft SkyDrive
2012-09-08 19:43:52 ----D---- C:\Users\Pavlik\AppData\Roaming\AOL
2012-09-08 19:43:28 ----HD---- C:\Windows\AxInstSV
2012-09-08 19:41:38 ----D---- C:\ProgramData\Viewpoint
2012-09-08 19:41:37 ----D---- C:\Program Files (x86)\Viewpoint
2012-09-08 19:40:47 ----D---- C:\ProgramData\AOL OCP
2012-09-08 19:40:47 ----D---- C:\ProgramData\AOL
2012-09-08 19:36:21 ----D---- C:\ProgramData\AOL Downloads
2012-09-08 19:36:20 ----A---- C:\Windows\nsreg.dat
2012-09-08 19:28:19 ----D---- C:\ProgramData\Nexon
2012-09-08 19:16:07 ----D---- C:\Program Files (x86)\BandiMPEG1
2012-09-08 19:14:12 ----D---- C:\ProgramData\NexonUS
======List of files/folders modified in the last 1 month======
2012-10-06 15:47:49 ----D---- C:\Windows\Temp
2012-10-06 15:47:44 ----D---- C:\Users\Pavlik\AppData\Roaming\uTorrent
2012-10-06 15:47:29 ----D---- C:\Users\Pavlik\AppData\Roaming\Skype
2012-10-06 15:32:01 ----RD---- C:\Program Files
2012-10-06 15:16:17 ----SD---- C:\Users\Pavlik\AppData\Roaming\Microsoft
2012-10-06 15:13:33 ----D---- C:\Windows\system32\config
2012-10-06 15:07:59 ----D---- C:\Windows\System32
2012-10-06 15:07:59 ----D---- C:\Windows\inf
2012-10-06 15:07:59 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-10-06 15:02:31 ----D---- C:\Windows\Prefetch
2012-10-06 15:02:00 ----D---- C:\Program Files (x86)\Steam
2012-10-06 15:01:04 ----D---- C:\ProgramData\NVIDIA
2012-10-06 14:43:28 ----D---- C:\ProgramData\PMB Files
2012-10-06 14:24:46 ----HD---- C:\ProgramData
2012-10-06 13:09:54 ----D---- C:\Windows\system32\catroot
2012-10-06 12:39:04 ----D---- C:\Windows\system32\drivers
2012-10-06 12:39:03 ----RD---- C:\Program Files (x86)
2012-10-06 12:30:14 ----SHD---- C:\Windows\Installer
2012-10-06 12:30:14 ----D---- C:\ProgramData\Skype
2012-10-06 12:30:07 ----RD---- C:\Program Files (x86)\Skype
2012-10-06 12:30:07 ----D---- C:\Program Files (x86)\Common Files
2012-10-06 12:29:55 ----SHD---- C:\System Volume Information
2012-10-06 12:20:05 ----D---- C:\Windows\system32\appmgmt
2012-10-05 14:25:43 ----D---- C:\Windows\system32\DriverStore
2012-10-05 14:25:27 ----D---- C:\Windows\system32\catroot2
2012-10-05 14:24:41 ----D---- C:\Windows
2012-10-05 14:24:25 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-10-05 14:24:24 ----D---- C:\ProgramData\Sony
2012-10-05 14:24:24 ----D---- C:\Program Files (x86)\Sony
2012-10-04 18:02:59 ----D---- C:\Users\Pavlik\AppData\Roaming\.minecraft
2012-10-04 17:27:42 ----D---- C:\Windows\SysWOW64
2012-10-04 17:27:35 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2012-10-04 17:27:35 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2012-10-02 18:20:56 ----D---- C:\Windows\LiveKernelReports
2012-10-01 20:36:09 ----D---- C:\Riot Games
2012-09-27 20:17:28 ----A---- C:\Windows\4StoryEG Setup Log.txt
2012-09-26 19:23:01 ----D---- C:\Windows\winsxs
2012-09-26 19:22:34 ----D---- C:\Windows\SYSWOW64\migration
2012-09-26 19:22:34 ----D---- C:\Windows\system32\migration
2012-09-26 19:22:34 ----D---- C:\Program Files\Internet Explorer
2012-09-26 19:22:34 ----D---- C:\Program Files (x86)\Internet Explorer
2012-09-25 19:36:47 ----D---- C:\Windows\system32\wdi
2012-09-25 19:18:29 ----D---- C:\Windows\rescache
2012-09-24 14:57:25 ----D---- C:\Windows\system32\NDF
2012-09-19 08:07:25 ----D---- C:\ProgramData\TrackMania
2012-09-18 20:04:31 ----D---- C:\Users\Pavlik\AppData\Roaming\.techniclauncher
2012-09-18 16:21:18 ----D---- C:\Windows\Microsoft.NET
2012-09-18 16:21:17 ----RSD---- C:\Windows\assembly
2012-09-16 15:29:24 ----D---- C:\Windows\SYSWOW64\cs-CZ
2012-09-16 15:29:24 ----D---- C:\Windows\system32\cs-CZ
2012-09-15 17:20:39 ----D---- C:\Windows\system32\Tasks
2012-09-15 15:46:44 ----D---- C:\Program Files\Common Files\System
2012-09-15 15:46:43 ----RSD---- C:\Windows\Fonts
2012-09-15 15:46:43 ----D---- C:\Windows\ehome
2012-09-15 15:46:42 ----D---- C:\Windows\AppPatch
2012-09-15 15:46:34 ----D---- C:\Windows\SYSWOW64\en-US
2012-09-15 15:46:32 ----D---- C:\Windows\system32\en-US
2012-09-15 15:46:32 ----D---- C:\Windows\PolicyDefinitions
2012-09-15 15:46:28 ----D---- C:\Windows\system32\Boot
2012-09-15 15:46:22 ----D---- C:\Program Files\Windows Journal
2012-09-15 15:30:33 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2012-09-15 15:08:42 ----D---- C:\Windows\Logs
2012-09-15 13:52:06 ----D---- C:\Windows\Downloaded Program Files
2012-09-14 13:55:20 ----D---- C:\Windows\SoftwareDistribution
2012-09-13 20:53:33 ----SD---- C:\ProgramData\Microsoft
2012-09-13 20:53:24 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-09-09 16:33:26 ----D---- C:\Users\Pavlik\AppData\Roaming\.dubcat
2012-09-08 19:41:53 ----D---- C:\Windows\SYSWOW64\drivers
2012-09-08 19:36:20 ----D---- C:\Users\Pavlik\AppData\Roaming\Mozilla
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2012-03-14 62496]
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2011-02-22 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-07-26 560184]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2011-01-10 21104]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2012-10-01 129576]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2012-09-24 27800]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2011-02-22 514560]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2012-03-14 209768]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2012-03-14 148528]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2012-03-14 38288]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2012-09-13 99248]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2012-03-14 187632]
R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys [2011-07-29 56960]
R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys [2011-07-29 79104]
R3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2012-10-06 25640]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-06-10 12230912]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-07-26 3039592]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-09-21 56344]
R3 netr28ux;TP-LINK 150Mbps Wireless Lite N Adapter; C:\Windows\system32\DRIVERS\netr28ux.sys [2010-05-27 1121632]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2012-04-18 188736]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-01 535656]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 dmvsc;dmvsc; C:\Windows\system32\DRIVERS\dmvsc.sys [2011-02-22 71168]
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-07-28 57280]
S3 GVTDrv64;GVTDrv64; \??\C:\Windows\GVTDrv64.sys [2012-09-04 30528]
S3 MSICDSetup;MSICDSetup; \??\E:\CDriver64.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2011-02-22 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2011-02-22 20992]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2011-02-22 6656]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2011-02-22 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2011-02-22 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\DRIVERS\terminpt.sys [2011-02-22 34816]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2011-02-22 59392]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\DRIVERS\TsUsbGD.sys [2011-02-22 31232]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2011-02-22 117248]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 vmbus;vmbus; C:\Windows\system32\DRIVERS\vmbus.sys [2011-02-22 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2011-02-22 21760]
S3 wanatw;WAN Miniport (ATW); C:\Windows\system32\DRIVERS\wanatw64.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2011-02-22 41984]
S3 X6va009;X6va009; \??\C:\Windows\SysWOW64\Drivers\X6va009 []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2012-09-25 108320]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2012-09-25 84256]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DES2 Service;DES2 Service for Energy Saving.; C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe [2011-08-22 57344]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2012-03-07 913144]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-08-29 2369960]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-05-15 889664]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-09-05 76888]
R2 RalinkRegistryWriter;Ralink Registry Writer; C:\Program Files (x86)\TP-LINK\Common\RaRegistry.exe [2010-07-30 185632]
R2 RalinkRegistryWriter64;Ralink Registry Writer 64; C:\Program Files (x86)\TP-LINK\Common\RaRegistry64.exe [2010-07-30 212256]
R2 SCBackService;Splashtop Connect Service; C:\Program Files (x86)\Splashtop\Splashtop Connect\BackService.exe [2010-11-15 477000]
R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-08-13 3064000]
R2 Smart TimeLock;Smart TimeLock Service; C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [2009-10-13 114688]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-05-15 382272]
R2 WCUService_STC_FF;Splashtop Connect Firefox Software Updater Service; C:\Program Files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe [2011-03-24 493384]
R2 WCUService_STC_IE;Splashtop Connect IE Software Updater Service; C:\Program Files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe [2011-03-22 497480]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-07-28 1511872]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 npggsvc;nProtect GameGuard Service; C:\Windows\syswow64\GameMon.des [2012-08-06 4670000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2012-10-05 529744]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-09-15 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
SkypeVir
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119515
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: SkypeVir
Poprosím o log ComboFix:
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
pote spustte aplikaci pod uctem s administratorskym opravnenim
hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.
v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se
jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine
aplikace ani nic jineho
behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)
upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,
pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k
nezadoucim kolizim s rezidentem antispyware
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: SkypeVir
Tady posílám log:
ComboFix 12-10-04.02 - Pavlik 06.10.2012 20:31:45.1.2 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.8109.4442 [GMT 2:00]
Spuštěný z: c:\users\Pavlik\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AV: ESET Smart Security 5.2 *Disabled/Outdated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: ESET Smart Security 5.2 *Disabled/Outdated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Complitly
c:\program files (x86)\Complitly\FireFoxExtensionWithFF8Fix.exe
c:\program files (x86)\Complitly\FireFoxUninstaller.exe
c:\program files (x86)\Complitly\chrome\ComplitlyChrome.crx
c:\program files (x86)\Complitly\InstTracker.exe
c:\program files (x86)\Complitly\support@Complitly.com\defaults\preferences\predictad.js
c:\program files (x86)\Complitly\support@Complitly.com\chrome.manifest
c:\program files (x86)\Complitly\support@Complitly.com\chrome\content\appIcon.png
c:\program files (x86)\Complitly\support@Complitly.com\chrome\content\browserOverlay.xul
c:\program files (x86)\Complitly\support@Complitly.com\chrome\content\options.js
c:\program files (x86)\Complitly\support@Complitly.com\chrome\content\options.xul
c:\program files (x86)\Complitly\support@Complitly.com\chrome\content\utils.js
c:\program files (x86)\Complitly\support@Complitly.com\install.rdf
c:\program files (x86)\Complitly\System.Data.SQLite.dll
c:\program files (x86)\Complitly\unins000.dat
c:\program files (x86)\Complitly\unins000.exe
c:\programdata\ntuser.dat
c:\users\Pavlik\AppData\Roaming\115E.exe
c:\users\Pavlik\AppData\Roaming\147D.exe
c:\users\Pavlik\AppData\Roaming\1BC2.exe
c:\users\Pavlik\AppData\Roaming\297F.exe
c:\users\Pavlik\AppData\Roaming\2F78.exe
c:\users\Pavlik\AppData\Roaming\31C9.exe
c:\users\Pavlik\AppData\Roaming\4AE5.exe
c:\users\Pavlik\AppData\Roaming\4EEF.exe
c:\users\Pavlik\AppData\Roaming\51EC.exe
c:\users\Pavlik\AppData\Roaming\6755.exe
c:\users\Pavlik\AppData\Roaming\7F6E.exe
c:\users\Pavlik\AppData\Roaming\879D.exe
c:\users\Pavlik\AppData\Roaming\9BA.exe
c:\users\Pavlik\AppData\Roaming\A378.exe
c:\users\Pavlik\AppData\Roaming\A585.exe
c:\users\Pavlik\AppData\Roaming\B3E2.exe
c:\users\Pavlik\AppData\Roaming\B9AE.exe
c:\users\Pavlik\AppData\Roaming\BFC6.exe
c:\users\Pavlik\AppData\Roaming\C6EC.exe
c:\users\Pavlik\AppData\Roaming\CBE3.exe
c:\users\Pavlik\AppData\Roaming\D250.exe
c:\users\Pavlik\AppData\Roaming\DB86.exe
c:\users\Pavlik\AppData\Roaming\DF87.exe
c:\users\Pavlik\AppData\Roaming\Dzgsgv.exe
c:\users\Pavlik\AppData\Roaming\FED9.exe
c:\windows\PFRO.log
c:\windows\SwSys1.bmp
c:\windows\SwSys2.bmp
c:\windows\SysWow64\URTTemp
c:\windows\SysWow64\URTTemp\regtlib.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-09-06 do 2012-10-06 )))))))))))))))))))))))))))))))
.
.
2012-10-06 18:35 . 2012-10-06 18:35 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-10-06 18:35 . 2012-10-06 18:35 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-10-06 13:32 . 2012-10-06 13:47 -------- d-----w- c:\program files\trend micro
2012-10-06 13:32 . 2012-10-06 13:32 -------- d-----w- C:\rsit
2012-10-06 12:24 . 2012-10-06 12:24 -------- d-----w- c:\programdata\F-Secure
2012-10-06 10:40 . 2012-10-06 10:40 -------- d-----w- c:\users\Pavlik\AppData\Roaming\Avira
2012-10-06 10:39 . 2012-10-01 15:14 129576 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-10-06 10:39 . 2012-09-24 07:58 27800 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2012-10-06 10:39 . 2012-09-13 13:52 99248 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2012-10-06 10:39 . 2012-10-06 10:39 -------- d-----w- c:\programdata\Avira
2012-10-06 10:39 . 2012-10-06 10:39 -------- d-----w- c:\program files (x86)\Avira
2012-10-06 10:30 . 2012-10-06 10:30 -------- d-----w- c:\program files (x86)\Common Files\Skype
2012-10-05 12:05 . 2012-08-30 07:27 9308616 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BAE288D5-034C-40B4-8CDB-B9998FE92E65}\mpengine.dll
2012-10-04 15:27 . 2012-10-04 15:27 -------- d-----w- c:\program files (x86)\Common Files\Java
2012-10-04 15:27 . 2012-10-04 15:27 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-10-04 15:27 . 2012-10-04 15:27 -------- d-----w- c:\program files (x86)\Java
2012-10-02 19:01 . 2012-10-02 19:06 -------- d-----w- c:\users\Pavlik\AppData\Roaming\TS3Client
2012-10-02 19:01 . 2012-10-02 19:01 -------- d-----w- c:\program files\TeamSpeak 3 Client
2012-09-27 17:54 . 2012-10-01 18:01 -------- d-----w- c:\program files (x86)\4StoryEG
2012-09-27 15:21 . 2012-09-27 15:21 -------- d-----w- c:\windows\4StoryEG
2012-09-26 12:09 . 2012-08-21 21:01 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2012-09-17 17:41 . 2012-09-17 17:41 -------- d-----w- c:\users\Pavlik\AppData\Roaming\Belkin
2012-09-17 17:41 . 2012-09-17 17:41 45056 ----a-r- c:\users\Pavlik\AppData\Roaming\Microsoft\Installer\{548C7B77-8B04-427E-ACD0-D0E6E6E59BCF}\NewShortcut3_548C7B778B04427EACD0D0E6E6E59BCF.exe
2012-09-17 17:41 . 2012-09-17 17:41 45056 ----a-r- c:\users\Pavlik\AppData\Roaming\Microsoft\Installer\{548C7B77-8B04-427E-ACD0-D0E6E6E59BCF}\NewShortcut2_548C7B778B04427EACD0D0E6E6E59BCF.exe
2012-09-17 17:41 . 2012-09-17 17:41 45056 ----a-r- c:\users\Pavlik\AppData\Roaming\Microsoft\Installer\{548C7B77-8B04-427E-ACD0-D0E6E6E59BCF}\NewShortcut1_548C7B778B04427EACD0D0E6E6E59BCF.exe
2012-09-17 17:41 . 2012-09-17 17:41 -------- d-----w- c:\program files (x86)\Belkin
2012-09-17 17:40 . 2012-09-17 17:40 -------- d-----w- c:\users\Pavlik\AppData\Local\Downloaded Installations
2012-09-15 14:36 . 2012-10-06 13:02 -------- d-----w- c:\users\Pavlik\AppData\Local\PlayerScore
2012-09-15 14:36 . 2012-09-15 14:37 -------- d-----w- c:\program files (x86)\PlayerScoreClient
2012-09-15 13:46 . 2012-09-15 13:46 -------- d-----w- c:\windows\SysWow64\Wat
2012-09-15 13:46 . 2012-09-15 13:46 -------- d-----w- c:\windows\system32\Wat
2012-09-15 13:11 . 2012-09-15 13:11 -------- d-----w- c:\windows\CheckSur
2012-09-15 13:10 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2012-09-15 12:54 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-09-15 12:54 . 2012-03-01 06:38 220672 ----a-w- c:\windows\system32\wintrust.dll
2012-09-15 12:54 . 2012-03-01 06:33 81408 ----a-w- c:\windows\system32\imagehlp.dll
2012-09-15 12:54 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2012-09-15 12:54 . 2012-03-01 05:37 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
2012-09-15 12:54 . 2012-03-01 05:33 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2012-09-15 12:54 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2012-09-15 12:38 . 2012-10-06 18:10 -------- d-----w- c:\users\Pavlik\AppData\Local\Deployment
2012-09-15 11:32 . 2012-09-15 11:32 -------- d-----w- C:\Graphics
2012-09-15 11:32 . 2009-03-10 21:25 191488 ------w- c:\windows\SysWow64\mwgfx.dll
2012-09-15 11:32 . 2008-10-20 11:44 237056 ------w- c:\windows\SysWow64\mwgfx24.dll
2012-09-15 11:32 . 2008-09-05 06:32 104960 ------w- c:\windows\SysWow64\mwdds.dll
2012-09-15 11:32 . 2007-08-19 07:37 28672 ------w- c:\windows\SysWow64\mwgfxcopy.exe
2012-09-15 11:32 . 2004-05-14 09:13 56832 ------w- c:\windows\SysWow64\mwace.dll
2012-09-15 11:19 . 2012-06-09 05:43 14172672 ----a-w- c:\windows\system32\shell32.dll
2012-09-15 11:18 . 2011-04-29 03:06 467456 ----a-w- c:\windows\system32\drivers\srv.sys
2012-09-15 11:17 . 2011-05-03 05:29 976896 ----a-w- c:\windows\system32\inetcomm.dll
2012-09-15 11:15 . 2011-11-17 06:41 1731920 ----a-w- c:\windows\system32\ntdll.dll
2012-09-15 11:15 . 2011-11-17 05:38 1292080 ----a-w- c:\windows\SysWow64\ntdll.dll
2012-09-15 11:15 . 2011-11-19 14:58 77312 ----a-w- c:\windows\system32\packager.dll
2012-09-15 11:15 . 2011-11-19 14:01 67072 ----a-w- c:\windows\SysWow64\packager.dll
2012-09-14 11:55 . 2012-02-17 06:38 1031680 ----a-w- c:\windows\system32\rdpcore.dll
2012-09-14 11:55 . 2012-02-17 05:34 826880 ----a-w- c:\windows\SysWow64\rdpcore.dll
2012-09-14 11:55 . 2012-02-17 04:57 23552 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-09-14 11:52 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2012-09-14 11:52 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe
2012-09-14 11:52 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll
2012-09-14 11:52 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
2012-09-14 11:52 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll
2012-09-14 11:52 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll
2012-09-14 11:52 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll
2012-09-14 11:52 . 2012-06-02 13:19 186752 ----a-w- c:\windows\system32\wuwebv.dll
2012-09-14 11:52 . 2012-06-02 13:15 36864 ----a-w- c:\windows\system32\wuapp.exe
2012-09-13 18:57 . 2012-10-06 13:02 -------- d-----w- c:\users\Pavlik\Tracing
2012-09-13 18:54 . 2012-09-13 18:54 -------- d-----w- c:\windows\cs
2012-09-13 18:54 . 2012-09-13 18:54 -------- d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition
2012-09-13 18:53 . 2012-09-13 18:53 -------- dc----w- c:\windows\system32\DRVSTORE
2012-09-13 18:53 . 2012-07-28 00:15 57280 ----a-w- c:\windows\system32\drivers\fssfltr.sys
2012-09-13 18:53 . 2012-09-13 18:53 -------- d-----w- c:\program files\Windows Live
2012-09-13 18:53 . 2012-09-13 18:53 -------- d-----w- c:\windows\PCHEALTH
2012-09-13 18:53 . 2012-09-13 18:54 -------- d-----w- c:\program files (x86)\Windows Live
2012-09-13 18:51 . 2012-09-13 18:51 -------- d-----w- c:\program files (x86)\Microsoft SkyDrive
2012-09-13 18:51 . 2012-09-13 18:51 -------- d-----r- c:\users\Pavlik\SkyDrive
2012-09-13 18:51 . 2012-09-13 18:51 -------- d-----w- c:\programdata\Microsoft SkyDrive
2012-09-13 18:50 . 2012-09-18 18:10 -------- d-----w- c:\users\Pavlik\AppData\Local\Windows Live
2012-09-13 18:50 . 2012-09-13 18:50 -------- d-----w- c:\program files (x86)\Common Files\Windows Live
2012-09-08 17:43 . 2012-09-15 11:52 -------- d-----w- c:\users\Pavlik\AppData\Roaming\AOL
2012-09-08 17:43 . 2012-09-08 17:43 -------- d--h--w- c:\windows\AxInstSV
2012-09-08 17:41 . 2012-09-08 17:43 -------- d-----w- c:\users\Pavlik\AppData\Local\AOL
2012-09-08 17:41 . 2012-09-08 17:41 -------- d-----w- c:\programdata\Viewpoint
2012-09-08 17:41 . 2012-09-08 17:41 -------- d-----w- c:\program files (x86)\Viewpoint
2012-09-08 17:41 . 2012-09-15 13:45 -------- d-----w- c:\program files (x86)\Common Files\AOL
2012-09-08 17:40 . 2012-09-15 11:52 -------- d-----w- c:\programdata\AOL
2012-09-08 17:40 . 2012-09-08 17:40 -------- d-----w- c:\programdata\AOL OCP
2012-09-08 17:36 . 2012-09-08 17:36 -------- d-----w- c:\programdata\AOL Downloads
2012-09-08 17:28 . 2012-09-08 17:28 -------- d-----w- c:\programdata\Nexon
2012-09-08 17:16 . 2012-09-08 17:16 -------- d-----w- c:\program files (x86)\BandiMPEG1
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-06 13:01 . 2012-07-11 21:01 25640 ----a-w- c:\windows\gdrv.sys
2012-10-04 15:27 . 2012-07-11 21:10 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-10-04 15:27 . 2012-07-11 21:10 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-09-06 11:59 . 2012-09-05 12:58 281288 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2012-09-06 11:59 . 2012-09-05 12:57 281288 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2012-09-05 17:53 . 2012-09-05 12:58 281288 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2012-09-05 12:57 . 2012-09-05 12:57 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2012-09-04 10:20 . 2012-07-11 21:27 30528 ----a-w- c:\windows\GVTDrv64.sys
2012-08-06 00:04 . 2012-08-31 15:35 4670000 ----a-w- c:\windows\SysWow64\GameMon.des
2012-07-28 01:09 . 2012-07-28 01:09 57792 ----a-w- c:\windows\SysWow64\sirenacm.dll
2012-07-28 00:54 . 2012-07-28 00:54 321472 ----a-w- c:\windows\WLXPGSS.SCR
2012-07-26 17:08 . 2012-07-26 17:08 862664 ----a-w- c:\windows\SysWow64\msvcr110.dll
2012-07-26 17:08 . 2012-07-26 17:08 534480 ----a-w- c:\windows\SysWow64\msvcp110.dll
2012-07-26 17:08 . 2012-07-26 17:08 251864 ----a-w- c:\windows\SysWow64\vccorlib110.dll
2012-07-26 17:08 . 2012-07-26 17:08 153536 ----a-w- c:\windows\SysWow64\atl110.dll
2012-07-26 17:08 . 2012-07-26 17:08 115656 ----a-w- c:\windows\SysWow64\vcomp110.dll
2012-07-26 15:49 . 2012-07-26 15:43 560184 ----a-w- c:\windows\system32\drivers\sptd.sys
2012-07-26 13:22 . 2012-07-26 13:22 828872 ----a-w- c:\windows\system32\msvcr110.dll
2012-07-26 13:22 . 2012-07-26 13:22 661448 ----a-w- c:\windows\system32\msvcp110.dll
2012-07-26 13:22 . 2012-07-26 13:22 354264 ----a-w- c:\windows\system32\vccorlib110.dll
2012-07-26 13:22 . 2012-07-26 13:22 177096 ----a-w- c:\windows\system32\atl110.dll
2012-07-26 13:22 . 2012-07-26 13:22 124360 ----a-w- c:\windows\system32\vcomp110.dll
2012-07-17 13:14 . 2012-07-17 13:14 253184 ----a-w- c:\windows\system32\LIVESSP.DLL
2012-07-17 12:49 . 2012-07-17 12:49 209648 ----a-w- c:\windows\SysWow64\LIVESSP.DLL
2012-07-17 12:37 . 2012-07-17 12:37 19736 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-07-11 21:43 . 2012-07-11 21:44 111960 ----a-w- c:\windows\dxsdkuninst.exe
2012-04-27 13:45 . 2012-04-27 13:45 435544 ----a-w- c:\program files (x86)\Sony.MediaSoftware.XDCAMExp.dll
2012-04-27 13:45 . 2012-04-27 13:45 730456 ----a-w- c:\program files (x86)\WidgetLibrary.dll
2012-04-27 13:45 . 2012-04-27 13:45 865624 ----a-w- c:\program files (x86)\Sony.MediaSoftware.VideoEffectsUI.dll
2012-04-27 13:45 . 2012-04-27 13:45 8820568 ----a-w- c:\program files (x86)\vegas110k.dll
2012-04-27 13:45 . 2012-04-27 13:45 17651544 ----a-w- c:\program files (x86)\vegas110.exe
2012-04-27 13:45 . 2012-04-27 13:45 5361496 ----a-w- c:\program files (x86)\sftutor.dll
2012-04-27 13:45 . 2012-04-27 13:45 108376 ----a-w- c:\program files (x86)\Sony.Vegas.RenderAs.dll
2012-04-27 13:45 . 2012-04-27 13:45 812376 ----a-w- c:\program files (x86)\Sony.MediaSoftware.TextGen.CoreGraphics.dll
2012-04-27 13:45 . 2012-04-27 13:45 460120 ----a-w- c:\program files (x86)\Sony.MediaSoftware.TextGen.CoreGraphics.XmlSerializers.dll
2012-04-27 13:45 . 2012-04-27 13:45 54616 ----a-w- c:\program files (x86)\CorePrimitives.dll
2012-04-27 13:45 . 2012-04-27 13:45 320856 ----a-w- c:\program files (x86)\CoreUI.XmlSerializers.dll
2012-04-27 13:45 . 2012-04-27 13:45 24920 ----a-w- c:\program files (x86)\Interop.dll
2012-04-27 13:45 . 2012-04-27 13:45 2027352 ----a-w- c:\program files (x86)\CoreGraphics.Native.dll
2012-04-27 13:45 . 2012-04-27 13:45 124248 ----a-w- c:\program files (x86)\CoreUI.dll
2012-04-27 13:45 . 2012-04-27 13:45 46424 ----a-w- c:\program files (x86)\ControlLibrary.dll
2012-04-27 13:45 . 2012-04-27 13:45 370008 ----a-w- c:\program files (x86)\Sony.Vegas.dll
2012-04-27 13:45 . 2012-04-27 13:45 21336 ----a-w- c:\program files (x86)\Sony.MediaSoftware.SfBdMuxCom.dll
2012-04-27 13:45 . 2012-04-27 13:45 79192 ----a-w- c:\program files (x86)\Sony.Vegas.Publish.dll
2012-04-27 13:45 . 2012-04-27 13:45 111960 ----a-w- c:\program files (x86)\Sony.MediaSoftware.ExternalVideoDevice.dll
2012-04-27 13:45 . 2012-04-27 13:45 382296 ----a-w- c:\program files (x86)\Sony.MediaSoftware.clrshared.dll
2012-04-27 13:45 . 2012-04-27 13:45 238936 ----a-w- c:\program files (x86)\Sony.MediaSoftware.DeviceExp.dll
2012-04-27 13:45 . 2012-04-27 13:45 234840 ----a-w- c:\program files (x86)\Sony.Capture.dll
2012-04-27 13:45 . 2012-04-27 13:45 71000 ----a-w- c:\program files (x86)\Sony.MediaSoftware.Skins.dll
2012-04-27 13:45 . 2012-04-27 13:45 3476824 ----a-w- c:\program files (x86)\sfvstwrap.dll
2012-04-27 13:45 . 2012-04-27 13:45 3169112 ----a-w- c:\program files (x86)\sfvstserver.exe
2012-04-27 13:45 . 2012-04-27 13:45 2275672 ----a-w- c:\program files (x86)\sfpublish.dll
2012-04-27 13:45 . 2012-04-27 13:45 19288 ----a-w- c:\program files (x86)\sfvstproxystubx86.dll
2012-04-27 13:45 . 2012-04-27 13:45 3885912 ----a-w- c:\program files (x86)\ApplicationRegistration.exe
2012-04-27 13:45 . 2012-04-27 13:45 2338648 ----a-w- c:\program files (x86)\sfapprw.dll
2012-04-27 13:45 . 2012-04-27 13:45 1653080 ----a-w- c:\program files (x86)\eula.dll
2012-04-27 13:45 . 2012-04-27 13:45 361816 ----a-w- c:\program files (x86)\Sony.MediaSoftware.TextGen.OFXInterop.dll
2012-04-27 13:45 . 2012-04-27 13:45 18776 ----a-w- c:\program files (x86)\NGenTool.exe
2012-04-27 13:45 . 2012-04-27 13:45 79192 ----a-w- c:\program files (x86)\Sony.Monitor3D.dll
2012-04-27 13:44 . 2012-04-27 13:44 2327384 ----a-w- c:\program files (x86)\sfmarket2.dll
2012-04-27 13:44 . 2012-04-27 13:44 6033752 ----a-w- c:\program files (x86)\ffplugsk32.dll
2012-04-27 13:44 . 2012-04-27 13:44 3294552 ----a-w- c:\program files (x86)\FileIOSurrogate.exe
2012-04-27 13:44 . 2012-04-27 13:44 1814872 ----a-w- c:\program files (x86)\discdrv.dll
2012-04-27 13:44 . 2012-04-27 13:44 46424 ----a-w- c:\program files (x86)\FileIOProxyStubx86.dll
2012-04-27 13:44 . 2012-04-27 13:44 38232 ----a-w- c:\program files (x86)\DecklinkVideoProperties.dll
2012-04-27 13:44 . 2012-04-27 13:44 38232 ----a-w- c:\program files (x86)\AjaVideoProperties.dll
2012-04-27 13:44 . 2012-04-27 13:44 23896 ----a-w- c:\program files (x86)\CreateMinidumpx86.exe
2012-04-27 13:44 . 2012-04-27 13:44 73048 ----a-w- c:\program files (x86)\PRSConfig.exe
2012-04-27 13:44 . 2012-04-27 13:44 6071640 ----a-w- c:\program files (x86)\ErrorReportClient.exe
2012-04-27 13:44 . 2012-04-27 13:44 20312 ----a-w- c:\program files (x86)\ErrorReportLauncher.exe
2012-04-27 13:44 . 2012-04-27 13:44 61272 ----a-w- c:\program files (x86)\ErrorReport.dll
2012-04-27 13:44 . 2012-04-27 13:44 41304 ----a-w- c:\program files (x86)\sfspti.dll
2012-04-27 13:44 . 2012-04-27 13:44 1664856 ----a-w- c:\program files (x86)\sfscsi.dll
2012-04-27 13:44 . 2012-04-27 13:44 1654616 ----a-w- c:\program files (x86)\sfldsim.ldd.dll
2012-04-27 13:44 . 2012-04-27 13:44 1653592 ----a-w- c:\program files (x86)\sfprnsim.pdd.dll
2012-04-27 13:44 . 2012-04-27 13:44 4107608 ----a-w- c:\program files (x86)\sfcdix.dll
2012-04-27 13:44 . 2012-04-27 13:44 2387800 ----a-w- c:\program files (x86)\sfdvd.dll
2012-04-27 13:44 . 2012-04-27 13:44 21848 ----a-w- c:\program files (x86)\sfcdsim.cdd.dll
2012-04-27 13:44 . 2012-04-27 13:44 1679704 ----a-w- c:\program files (x86)\sfcdfs.dll
2012-04-27 13:44 . 2012-04-27 13:44 1316184 ----a-w- c:\program files (x86)\sfld.ldd.dll
2012-04-27 13:44 . 2012-04-27 13:44 1657176 ----a-w- c:\program files (x86)\fargo.pdd.dll
2012-04-27 13:44 . 2012-04-27 13:44 1103704 ----a-w- c:\program files (x86)\sfcd.cdd.dll
2011-11-17 09:00 . 2011-11-17 09:00 13312 ----a-w- c:\program files (x86)\ProDiscAPI.dll
2011-11-17 08:59 . 2011-11-17 08:59 2936832 ----a-w- c:\program files (x86)\AAFCOAPI.dll
2011-11-17 08:59 . 2011-11-17 08:59 1045128 ----a-w- c:\program files (x86)\dbghelp.dll
2011-11-17 08:56 . 2011-11-17 08:56 1347072 ----a-w- c:\program files (x86)\proDADMercalli20.dll
2011-11-17 08:53 . 2011-11-17 08:53 659456 ----a-w- c:\program files (x86)\sonymvd2pro_xp.dll
2011-11-17 08:53 . 2011-11-17 08:53 245760 ----a-w- c:\program files (x86)\log4net.dll
2010-04-20 08:21 . 2010-04-20 08:21 4275544 ----a-w- c:\program files (x86)\vidcap60.exe
2010-04-20 08:21 . 2010-04-20 08:21 820568 ----a-w- c:\program files (x86)\sftutor60.dll
2010-04-20 08:19 . 2010-04-20 08:19 1631576 ----a-w- c:\program files (x86)\sfs4rw.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2012-06-06 19:33 1519304 ----a-w- c:\program files (x86)\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files (x86)\Ask.com\GenericAskToolbar.dll" [2012-06-06 1519304]
"{91397D20-1446-11D4-8AF4-0040CA1127B6}"= "c:\program files (x86)\Yandex\YandexBarIE\yndbar.dll" [2012-03-05 8921400]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CLASSES_ROOT\clsid\{91397d20-1446-11d4-8af4-0040ca1127b6}]
[HKEY_CLASSES_ROOT\Yandex.Toolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{91397D13-1446-11D4-8AF4-0040CA1127B6}]
[HKEY_CLASSES_ROOT\Yandex.Toolbar]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2012-09-13 18:51 220608 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2012-09-13 18:51 220608 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2012-09-13 18:51 220608 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\SkyDriveShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"="c:\progra~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2005-02-17 221184]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2012-07-14 895376]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2012-08-11 1353080]
"AlcoholAutomount"="c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" [2010-08-20 33120]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-11 3672384]
"MediaGet2"="c:\users\Pavlik\AppData\Local\MediaGet2\mediaget.exe" [2012-08-12 9106664]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2011-02-22 1475584]
"Sony PC Companion"="c:\program files (x86)\Sony\Sony PC Companion\PCCompanion.exe" [2012-05-31 445624]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2012-07-13 17420464]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"STCAgent"="c:\program files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe" [2011-03-04 776064]
"ZyngaGamesAgent"="c:\program files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe" [2010-11-15 841544]
"ISUSScheduler"="c:\program files (x86)\Common Files\InstallShield\UpdateService\issch.exe" [2005-02-17 81920]
"ApnUpdater"="c:\program files (x86)\Ask.com\Updater\Updater.exe" [2012-06-06 1564872]
"4StoryPrePatch"="c:\program files (x86)\Zemi Interactive\4StoryUS\PrePatch.exe" [2010-11-19 319488]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2012-08-29 1996200]
"AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2012-09-25 386336]
.
c:\users\Pavlik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
CurseClientStartup.ccip [2012-9-15 0]
Nostromo Loadout Manager.lnk - c:\users\Pavlik\AppData\Roaming\Microsoft\Installer\{548C7B77-8B04-427E-ACD0-D0E6E6E59BCF}\NewShortcut2_548C7B778B04427EACD0D0E6E6E59BCF.exe [2012-9-17 45056]
PlayerScore.lnk - c:\program files (x86)\PlayerScoreClient\PlayerScore.exe [2012-8-28 253440]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
GamersFirst LIVE!.lnk - c:\program files (x86)\GamersFirst\LIVE!\Live.exe [2012-6-22 2720408]
Ralink Wireless Utility.lnk - c:\program files (x86)\TP-LINK\Common\TWCU.exe [2012-7-14 1638400]
TP-LINK Wireless Utility.lnk - c:\program files (x86)\TP-LINK\Common\TWCU.exe [2012-7-14 1638400]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer4"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 DES2 Service;DES2 Service for Energy Saving.;c:\program files (x86)\GIGABYTE\EnergySaver2\des2svr.exe [2011-08-22 57344]
R2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-08-13 3064000]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
R3 dmvsc;dmvsc;c:\windows\system32\DRIVERS\dmvsc.sys [2011-02-22 71168]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys [x]
R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys [2012-09-04 30528]
R3 MSICDSetup;MSICDSetup;E:\CDriver64.sys [x]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2011-02-22 20992]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2011-02-22 88960]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\DRIVERS\terminpt.sys [2011-02-22 34816]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2011-02-22 59392]
R3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%;c:\windows\system32\DRIVERS\TsUsbGD.sys [2011-02-22 31232]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2011-02-22 117248]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-09-15 1255736]
R3 X6va009;X6va009;c:\windows\SysWOW64\Drivers\X6va009 [x]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2012-03-14 62496]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys [2011-01-10 21104]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2012-09-24 27800]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2012-03-14 209768]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2012-03-14 148528]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [2012-03-14 38288]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2012-09-25 84256]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [2012-03-07 913144]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-08-29 2369960]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]
S2 RalinkRegistryWriter64;Ralink Registry Writer 64;c:\program files (x86)\TP-LINK\Common\RaRegistry64.exe [2010-07-30 212256]
S2 SCBackService;Splashtop Connect Service;c:\program files (x86)\Splashtop\Splashtop Connect\BackService.exe [2010-11-15 477000]
S2 Smart TimeLock;Smart TimeLock Service;c:\program files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [2009-10-13 114688]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-05-15 382272]
S2 WCUService_STC_FF;Splashtop Connect Firefox Software Updater Service;c:\program files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe [2011-03-24 493384]
S2 WCUService_STC_IE;Splashtop Connect IE Software Updater Service;c:\program files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe [2011-03-22 497480]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys [2011-07-29 56960]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys [2011-07-29 79104]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2010-09-21 56344]
S3 netr28ux;TP-LINK 150Mbps Wireless Lite N Adapter;c:\windows\system32\DRIVERS\netr28ux.sys [2010-05-27 1121632]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2012-04-18 188736]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-01 535656]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-09-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2052839355-3687121303-2421454062-1000Core.job
- c:\users\Pavlik\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-14 11:36]
.
2012-10-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2052839355-3687121303-2421454062-1000UA.job
- c:\users\Pavlik\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-14 11:36]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{45d30484-7ded-43d9-957a-d2fd1f046511}]
2011-02-22 19:15 444752 ----a-w- c:\windows\System32\mscoree.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{1d09c093-f71e-43c3-b948-19316cbd695e}"= "mscoree.dll" [2011-02-22 444752]
.
[HKEY_CLASSES_ROOT\CLSID\{1d09c093-f71e-43c3-b948-19316cbd695e}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2012-09-13 18:51 244672 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2012-09-13 18:51 244672 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2012-09-13 18:51 244672 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-06-17 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-06-17 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-06-17 416024]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-07-21 12632168]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2012-03-07 4081008]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-02-22 500208]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"RPMKickstart"="c:\program files\GIGABYTE\SMART6\Recovery\RPMKickstart.exe" [2011-03-30 2552320]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://g.live.com/1rewlive4startup/home
mLocal Page = c:\windows\SysWOW64\blank.htm
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKCU-Run-PlayNC Launcher - (no file)
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
Wow6432Node-HKCU-Run-Dzgsgv - c:\users\Pavlik\AppData\Roaming\Dzgsgv.exe
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{91397D20-1446-11D4-8AF4-0040CA1127B6} - (no file)
AddRemove-PunkBusterSvc - c:\users\PAVLIK\APB RELOADED\Binaries\pbsvc_apb.exe
AddRemove-{4FFBB818-B13C-11E0-931D-B2664824019B}_is1 - c:\program files (x86)\Complitly\unins000.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\X6va009]
"ImagePath"="\??\c:\windows\SysWOW64\Drivers\X6va009"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-2052839355-3687121303-2421454062-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-2052839355-3687121303-2421454062-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-10-06 20:37:28
ComboFix-quarantined-files.txt 2012-10-06 18:37
.
Před spuštěním: Volných bajtů: 18 252 341 248
Po spuštění: Volných bajtů: 18 789 769 216
.
- - End Of File - - B636C6AD4A66B26AACBC9FAA939EF576
ComboFix 12-10-04.02 - Pavlik 06.10.2012 20:31:45.1.2 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.8109.4442 [GMT 2:00]
Spuštěný z: c:\users\Pavlik\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AV: ESET Smart Security 5.2 *Disabled/Outdated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: ESET Smart Security 5.2 *Disabled/Outdated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Complitly
c:\program files (x86)\Complitly\FireFoxExtensionWithFF8Fix.exe
c:\program files (x86)\Complitly\FireFoxUninstaller.exe
c:\program files (x86)\Complitly\chrome\ComplitlyChrome.crx
c:\program files (x86)\Complitly\InstTracker.exe
c:\program files (x86)\Complitly\support@Complitly.com\defaults\preferences\predictad.js
c:\program files (x86)\Complitly\support@Complitly.com\chrome.manifest
c:\program files (x86)\Complitly\support@Complitly.com\chrome\content\appIcon.png
c:\program files (x86)\Complitly\support@Complitly.com\chrome\content\browserOverlay.xul
c:\program files (x86)\Complitly\support@Complitly.com\chrome\content\options.js
c:\program files (x86)\Complitly\support@Complitly.com\chrome\content\options.xul
c:\program files (x86)\Complitly\support@Complitly.com\chrome\content\utils.js
c:\program files (x86)\Complitly\support@Complitly.com\install.rdf
c:\program files (x86)\Complitly\System.Data.SQLite.dll
c:\program files (x86)\Complitly\unins000.dat
c:\program files (x86)\Complitly\unins000.exe
c:\programdata\ntuser.dat
c:\users\Pavlik\AppData\Roaming\115E.exe
c:\users\Pavlik\AppData\Roaming\147D.exe
c:\users\Pavlik\AppData\Roaming\1BC2.exe
c:\users\Pavlik\AppData\Roaming\297F.exe
c:\users\Pavlik\AppData\Roaming\2F78.exe
c:\users\Pavlik\AppData\Roaming\31C9.exe
c:\users\Pavlik\AppData\Roaming\4AE5.exe
c:\users\Pavlik\AppData\Roaming\4EEF.exe
c:\users\Pavlik\AppData\Roaming\51EC.exe
c:\users\Pavlik\AppData\Roaming\6755.exe
c:\users\Pavlik\AppData\Roaming\7F6E.exe
c:\users\Pavlik\AppData\Roaming\879D.exe
c:\users\Pavlik\AppData\Roaming\9BA.exe
c:\users\Pavlik\AppData\Roaming\A378.exe
c:\users\Pavlik\AppData\Roaming\A585.exe
c:\users\Pavlik\AppData\Roaming\B3E2.exe
c:\users\Pavlik\AppData\Roaming\B9AE.exe
c:\users\Pavlik\AppData\Roaming\BFC6.exe
c:\users\Pavlik\AppData\Roaming\C6EC.exe
c:\users\Pavlik\AppData\Roaming\CBE3.exe
c:\users\Pavlik\AppData\Roaming\D250.exe
c:\users\Pavlik\AppData\Roaming\DB86.exe
c:\users\Pavlik\AppData\Roaming\DF87.exe
c:\users\Pavlik\AppData\Roaming\Dzgsgv.exe
c:\users\Pavlik\AppData\Roaming\FED9.exe
c:\windows\PFRO.log
c:\windows\SwSys1.bmp
c:\windows\SwSys2.bmp
c:\windows\SysWow64\URTTemp
c:\windows\SysWow64\URTTemp\regtlib.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-09-06 do 2012-10-06 )))))))))))))))))))))))))))))))
.
.
2012-10-06 18:35 . 2012-10-06 18:35 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-10-06 18:35 . 2012-10-06 18:35 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-10-06 13:32 . 2012-10-06 13:47 -------- d-----w- c:\program files\trend micro
2012-10-06 13:32 . 2012-10-06 13:32 -------- d-----w- C:\rsit
2012-10-06 12:24 . 2012-10-06 12:24 -------- d-----w- c:\programdata\F-Secure
2012-10-06 10:40 . 2012-10-06 10:40 -------- d-----w- c:\users\Pavlik\AppData\Roaming\Avira
2012-10-06 10:39 . 2012-10-01 15:14 129576 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-10-06 10:39 . 2012-09-24 07:58 27800 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2012-10-06 10:39 . 2012-09-13 13:52 99248 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2012-10-06 10:39 . 2012-10-06 10:39 -------- d-----w- c:\programdata\Avira
2012-10-06 10:39 . 2012-10-06 10:39 -------- d-----w- c:\program files (x86)\Avira
2012-10-06 10:30 . 2012-10-06 10:30 -------- d-----w- c:\program files (x86)\Common Files\Skype
2012-10-05 12:05 . 2012-08-30 07:27 9308616 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BAE288D5-034C-40B4-8CDB-B9998FE92E65}\mpengine.dll
2012-10-04 15:27 . 2012-10-04 15:27 -------- d-----w- c:\program files (x86)\Common Files\Java
2012-10-04 15:27 . 2012-10-04 15:27 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-10-04 15:27 . 2012-10-04 15:27 -------- d-----w- c:\program files (x86)\Java
2012-10-02 19:01 . 2012-10-02 19:06 -------- d-----w- c:\users\Pavlik\AppData\Roaming\TS3Client
2012-10-02 19:01 . 2012-10-02 19:01 -------- d-----w- c:\program files\TeamSpeak 3 Client
2012-09-27 17:54 . 2012-10-01 18:01 -------- d-----w- c:\program files (x86)\4StoryEG
2012-09-27 15:21 . 2012-09-27 15:21 -------- d-----w- c:\windows\4StoryEG
2012-09-26 12:09 . 2012-08-21 21:01 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2012-09-17 17:41 . 2012-09-17 17:41 -------- d-----w- c:\users\Pavlik\AppData\Roaming\Belkin
2012-09-17 17:41 . 2012-09-17 17:41 45056 ----a-r- c:\users\Pavlik\AppData\Roaming\Microsoft\Installer\{548C7B77-8B04-427E-ACD0-D0E6E6E59BCF}\NewShortcut3_548C7B778B04427EACD0D0E6E6E59BCF.exe
2012-09-17 17:41 . 2012-09-17 17:41 45056 ----a-r- c:\users\Pavlik\AppData\Roaming\Microsoft\Installer\{548C7B77-8B04-427E-ACD0-D0E6E6E59BCF}\NewShortcut2_548C7B778B04427EACD0D0E6E6E59BCF.exe
2012-09-17 17:41 . 2012-09-17 17:41 45056 ----a-r- c:\users\Pavlik\AppData\Roaming\Microsoft\Installer\{548C7B77-8B04-427E-ACD0-D0E6E6E59BCF}\NewShortcut1_548C7B778B04427EACD0D0E6E6E59BCF.exe
2012-09-17 17:41 . 2012-09-17 17:41 -------- d-----w- c:\program files (x86)\Belkin
2012-09-17 17:40 . 2012-09-17 17:40 -------- d-----w- c:\users\Pavlik\AppData\Local\Downloaded Installations
2012-09-15 14:36 . 2012-10-06 13:02 -------- d-----w- c:\users\Pavlik\AppData\Local\PlayerScore
2012-09-15 14:36 . 2012-09-15 14:37 -------- d-----w- c:\program files (x86)\PlayerScoreClient
2012-09-15 13:46 . 2012-09-15 13:46 -------- d-----w- c:\windows\SysWow64\Wat
2012-09-15 13:46 . 2012-09-15 13:46 -------- d-----w- c:\windows\system32\Wat
2012-09-15 13:11 . 2012-09-15 13:11 -------- d-----w- c:\windows\CheckSur
2012-09-15 13:10 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2012-09-15 12:54 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-09-15 12:54 . 2012-03-01 06:38 220672 ----a-w- c:\windows\system32\wintrust.dll
2012-09-15 12:54 . 2012-03-01 06:33 81408 ----a-w- c:\windows\system32\imagehlp.dll
2012-09-15 12:54 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2012-09-15 12:54 . 2012-03-01 05:37 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
2012-09-15 12:54 . 2012-03-01 05:33 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2012-09-15 12:54 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2012-09-15 12:38 . 2012-10-06 18:10 -------- d-----w- c:\users\Pavlik\AppData\Local\Deployment
2012-09-15 11:32 . 2012-09-15 11:32 -------- d-----w- C:\Graphics
2012-09-15 11:32 . 2009-03-10 21:25 191488 ------w- c:\windows\SysWow64\mwgfx.dll
2012-09-15 11:32 . 2008-10-20 11:44 237056 ------w- c:\windows\SysWow64\mwgfx24.dll
2012-09-15 11:32 . 2008-09-05 06:32 104960 ------w- c:\windows\SysWow64\mwdds.dll
2012-09-15 11:32 . 2007-08-19 07:37 28672 ------w- c:\windows\SysWow64\mwgfxcopy.exe
2012-09-15 11:32 . 2004-05-14 09:13 56832 ------w- c:\windows\SysWow64\mwace.dll
2012-09-15 11:19 . 2012-06-09 05:43 14172672 ----a-w- c:\windows\system32\shell32.dll
2012-09-15 11:18 . 2011-04-29 03:06 467456 ----a-w- c:\windows\system32\drivers\srv.sys
2012-09-15 11:17 . 2011-05-03 05:29 976896 ----a-w- c:\windows\system32\inetcomm.dll
2012-09-15 11:15 . 2011-11-17 06:41 1731920 ----a-w- c:\windows\system32\ntdll.dll
2012-09-15 11:15 . 2011-11-17 05:38 1292080 ----a-w- c:\windows\SysWow64\ntdll.dll
2012-09-15 11:15 . 2011-11-19 14:58 77312 ----a-w- c:\windows\system32\packager.dll
2012-09-15 11:15 . 2011-11-19 14:01 67072 ----a-w- c:\windows\SysWow64\packager.dll
2012-09-14 11:55 . 2012-02-17 06:38 1031680 ----a-w- c:\windows\system32\rdpcore.dll
2012-09-14 11:55 . 2012-02-17 05:34 826880 ----a-w- c:\windows\SysWow64\rdpcore.dll
2012-09-14 11:55 . 2012-02-17 04:57 23552 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-09-14 11:52 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2012-09-14 11:52 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe
2012-09-14 11:52 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll
2012-09-14 11:52 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
2012-09-14 11:52 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll
2012-09-14 11:52 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll
2012-09-14 11:52 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll
2012-09-14 11:52 . 2012-06-02 13:19 186752 ----a-w- c:\windows\system32\wuwebv.dll
2012-09-14 11:52 . 2012-06-02 13:15 36864 ----a-w- c:\windows\system32\wuapp.exe
2012-09-13 18:57 . 2012-10-06 13:02 -------- d-----w- c:\users\Pavlik\Tracing
2012-09-13 18:54 . 2012-09-13 18:54 -------- d-----w- c:\windows\cs
2012-09-13 18:54 . 2012-09-13 18:54 -------- d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition
2012-09-13 18:53 . 2012-09-13 18:53 -------- dc----w- c:\windows\system32\DRVSTORE
2012-09-13 18:53 . 2012-07-28 00:15 57280 ----a-w- c:\windows\system32\drivers\fssfltr.sys
2012-09-13 18:53 . 2012-09-13 18:53 -------- d-----w- c:\program files\Windows Live
2012-09-13 18:53 . 2012-09-13 18:53 -------- d-----w- c:\windows\PCHEALTH
2012-09-13 18:53 . 2012-09-13 18:54 -------- d-----w- c:\program files (x86)\Windows Live
2012-09-13 18:51 . 2012-09-13 18:51 -------- d-----w- c:\program files (x86)\Microsoft SkyDrive
2012-09-13 18:51 . 2012-09-13 18:51 -------- d-----r- c:\users\Pavlik\SkyDrive
2012-09-13 18:51 . 2012-09-13 18:51 -------- d-----w- c:\programdata\Microsoft SkyDrive
2012-09-13 18:50 . 2012-09-18 18:10 -------- d-----w- c:\users\Pavlik\AppData\Local\Windows Live
2012-09-13 18:50 . 2012-09-13 18:50 -------- d-----w- c:\program files (x86)\Common Files\Windows Live
2012-09-08 17:43 . 2012-09-15 11:52 -------- d-----w- c:\users\Pavlik\AppData\Roaming\AOL
2012-09-08 17:43 . 2012-09-08 17:43 -------- d--h--w- c:\windows\AxInstSV
2012-09-08 17:41 . 2012-09-08 17:43 -------- d-----w- c:\users\Pavlik\AppData\Local\AOL
2012-09-08 17:41 . 2012-09-08 17:41 -------- d-----w- c:\programdata\Viewpoint
2012-09-08 17:41 . 2012-09-08 17:41 -------- d-----w- c:\program files (x86)\Viewpoint
2012-09-08 17:41 . 2012-09-15 13:45 -------- d-----w- c:\program files (x86)\Common Files\AOL
2012-09-08 17:40 . 2012-09-15 11:52 -------- d-----w- c:\programdata\AOL
2012-09-08 17:40 . 2012-09-08 17:40 -------- d-----w- c:\programdata\AOL OCP
2012-09-08 17:36 . 2012-09-08 17:36 -------- d-----w- c:\programdata\AOL Downloads
2012-09-08 17:28 . 2012-09-08 17:28 -------- d-----w- c:\programdata\Nexon
2012-09-08 17:16 . 2012-09-08 17:16 -------- d-----w- c:\program files (x86)\BandiMPEG1
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-06 13:01 . 2012-07-11 21:01 25640 ----a-w- c:\windows\gdrv.sys
2012-10-04 15:27 . 2012-07-11 21:10 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-10-04 15:27 . 2012-07-11 21:10 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-09-06 11:59 . 2012-09-05 12:58 281288 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2012-09-06 11:59 . 2012-09-05 12:57 281288 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2012-09-05 17:53 . 2012-09-05 12:58 281288 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2012-09-05 12:57 . 2012-09-05 12:57 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2012-09-04 10:20 . 2012-07-11 21:27 30528 ----a-w- c:\windows\GVTDrv64.sys
2012-08-06 00:04 . 2012-08-31 15:35 4670000 ----a-w- c:\windows\SysWow64\GameMon.des
2012-07-28 01:09 . 2012-07-28 01:09 57792 ----a-w- c:\windows\SysWow64\sirenacm.dll
2012-07-28 00:54 . 2012-07-28 00:54 321472 ----a-w- c:\windows\WLXPGSS.SCR
2012-07-26 17:08 . 2012-07-26 17:08 862664 ----a-w- c:\windows\SysWow64\msvcr110.dll
2012-07-26 17:08 . 2012-07-26 17:08 534480 ----a-w- c:\windows\SysWow64\msvcp110.dll
2012-07-26 17:08 . 2012-07-26 17:08 251864 ----a-w- c:\windows\SysWow64\vccorlib110.dll
2012-07-26 17:08 . 2012-07-26 17:08 153536 ----a-w- c:\windows\SysWow64\atl110.dll
2012-07-26 17:08 . 2012-07-26 17:08 115656 ----a-w- c:\windows\SysWow64\vcomp110.dll
2012-07-26 15:49 . 2012-07-26 15:43 560184 ----a-w- c:\windows\system32\drivers\sptd.sys
2012-07-26 13:22 . 2012-07-26 13:22 828872 ----a-w- c:\windows\system32\msvcr110.dll
2012-07-26 13:22 . 2012-07-26 13:22 661448 ----a-w- c:\windows\system32\msvcp110.dll
2012-07-26 13:22 . 2012-07-26 13:22 354264 ----a-w- c:\windows\system32\vccorlib110.dll
2012-07-26 13:22 . 2012-07-26 13:22 177096 ----a-w- c:\windows\system32\atl110.dll
2012-07-26 13:22 . 2012-07-26 13:22 124360 ----a-w- c:\windows\system32\vcomp110.dll
2012-07-17 13:14 . 2012-07-17 13:14 253184 ----a-w- c:\windows\system32\LIVESSP.DLL
2012-07-17 12:49 . 2012-07-17 12:49 209648 ----a-w- c:\windows\SysWow64\LIVESSP.DLL
2012-07-17 12:37 . 2012-07-17 12:37 19736 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-07-11 21:43 . 2012-07-11 21:44 111960 ----a-w- c:\windows\dxsdkuninst.exe
2012-04-27 13:45 . 2012-04-27 13:45 435544 ----a-w- c:\program files (x86)\Sony.MediaSoftware.XDCAMExp.dll
2012-04-27 13:45 . 2012-04-27 13:45 730456 ----a-w- c:\program files (x86)\WidgetLibrary.dll
2012-04-27 13:45 . 2012-04-27 13:45 865624 ----a-w- c:\program files (x86)\Sony.MediaSoftware.VideoEffectsUI.dll
2012-04-27 13:45 . 2012-04-27 13:45 8820568 ----a-w- c:\program files (x86)\vegas110k.dll
2012-04-27 13:45 . 2012-04-27 13:45 17651544 ----a-w- c:\program files (x86)\vegas110.exe
2012-04-27 13:45 . 2012-04-27 13:45 5361496 ----a-w- c:\program files (x86)\sftutor.dll
2012-04-27 13:45 . 2012-04-27 13:45 108376 ----a-w- c:\program files (x86)\Sony.Vegas.RenderAs.dll
2012-04-27 13:45 . 2012-04-27 13:45 812376 ----a-w- c:\program files (x86)\Sony.MediaSoftware.TextGen.CoreGraphics.dll
2012-04-27 13:45 . 2012-04-27 13:45 460120 ----a-w- c:\program files (x86)\Sony.MediaSoftware.TextGen.CoreGraphics.XmlSerializers.dll
2012-04-27 13:45 . 2012-04-27 13:45 54616 ----a-w- c:\program files (x86)\CorePrimitives.dll
2012-04-27 13:45 . 2012-04-27 13:45 320856 ----a-w- c:\program files (x86)\CoreUI.XmlSerializers.dll
2012-04-27 13:45 . 2012-04-27 13:45 24920 ----a-w- c:\program files (x86)\Interop.dll
2012-04-27 13:45 . 2012-04-27 13:45 2027352 ----a-w- c:\program files (x86)\CoreGraphics.Native.dll
2012-04-27 13:45 . 2012-04-27 13:45 124248 ----a-w- c:\program files (x86)\CoreUI.dll
2012-04-27 13:45 . 2012-04-27 13:45 46424 ----a-w- c:\program files (x86)\ControlLibrary.dll
2012-04-27 13:45 . 2012-04-27 13:45 370008 ----a-w- c:\program files (x86)\Sony.Vegas.dll
2012-04-27 13:45 . 2012-04-27 13:45 21336 ----a-w- c:\program files (x86)\Sony.MediaSoftware.SfBdMuxCom.dll
2012-04-27 13:45 . 2012-04-27 13:45 79192 ----a-w- c:\program files (x86)\Sony.Vegas.Publish.dll
2012-04-27 13:45 . 2012-04-27 13:45 111960 ----a-w- c:\program files (x86)\Sony.MediaSoftware.ExternalVideoDevice.dll
2012-04-27 13:45 . 2012-04-27 13:45 382296 ----a-w- c:\program files (x86)\Sony.MediaSoftware.clrshared.dll
2012-04-27 13:45 . 2012-04-27 13:45 238936 ----a-w- c:\program files (x86)\Sony.MediaSoftware.DeviceExp.dll
2012-04-27 13:45 . 2012-04-27 13:45 234840 ----a-w- c:\program files (x86)\Sony.Capture.dll
2012-04-27 13:45 . 2012-04-27 13:45 71000 ----a-w- c:\program files (x86)\Sony.MediaSoftware.Skins.dll
2012-04-27 13:45 . 2012-04-27 13:45 3476824 ----a-w- c:\program files (x86)\sfvstwrap.dll
2012-04-27 13:45 . 2012-04-27 13:45 3169112 ----a-w- c:\program files (x86)\sfvstserver.exe
2012-04-27 13:45 . 2012-04-27 13:45 2275672 ----a-w- c:\program files (x86)\sfpublish.dll
2012-04-27 13:45 . 2012-04-27 13:45 19288 ----a-w- c:\program files (x86)\sfvstproxystubx86.dll
2012-04-27 13:45 . 2012-04-27 13:45 3885912 ----a-w- c:\program files (x86)\ApplicationRegistration.exe
2012-04-27 13:45 . 2012-04-27 13:45 2338648 ----a-w- c:\program files (x86)\sfapprw.dll
2012-04-27 13:45 . 2012-04-27 13:45 1653080 ----a-w- c:\program files (x86)\eula.dll
2012-04-27 13:45 . 2012-04-27 13:45 361816 ----a-w- c:\program files (x86)\Sony.MediaSoftware.TextGen.OFXInterop.dll
2012-04-27 13:45 . 2012-04-27 13:45 18776 ----a-w- c:\program files (x86)\NGenTool.exe
2012-04-27 13:45 . 2012-04-27 13:45 79192 ----a-w- c:\program files (x86)\Sony.Monitor3D.dll
2012-04-27 13:44 . 2012-04-27 13:44 2327384 ----a-w- c:\program files (x86)\sfmarket2.dll
2012-04-27 13:44 . 2012-04-27 13:44 6033752 ----a-w- c:\program files (x86)\ffplugsk32.dll
2012-04-27 13:44 . 2012-04-27 13:44 3294552 ----a-w- c:\program files (x86)\FileIOSurrogate.exe
2012-04-27 13:44 . 2012-04-27 13:44 1814872 ----a-w- c:\program files (x86)\discdrv.dll
2012-04-27 13:44 . 2012-04-27 13:44 46424 ----a-w- c:\program files (x86)\FileIOProxyStubx86.dll
2012-04-27 13:44 . 2012-04-27 13:44 38232 ----a-w- c:\program files (x86)\DecklinkVideoProperties.dll
2012-04-27 13:44 . 2012-04-27 13:44 38232 ----a-w- c:\program files (x86)\AjaVideoProperties.dll
2012-04-27 13:44 . 2012-04-27 13:44 23896 ----a-w- c:\program files (x86)\CreateMinidumpx86.exe
2012-04-27 13:44 . 2012-04-27 13:44 73048 ----a-w- c:\program files (x86)\PRSConfig.exe
2012-04-27 13:44 . 2012-04-27 13:44 6071640 ----a-w- c:\program files (x86)\ErrorReportClient.exe
2012-04-27 13:44 . 2012-04-27 13:44 20312 ----a-w- c:\program files (x86)\ErrorReportLauncher.exe
2012-04-27 13:44 . 2012-04-27 13:44 61272 ----a-w- c:\program files (x86)\ErrorReport.dll
2012-04-27 13:44 . 2012-04-27 13:44 41304 ----a-w- c:\program files (x86)\sfspti.dll
2012-04-27 13:44 . 2012-04-27 13:44 1664856 ----a-w- c:\program files (x86)\sfscsi.dll
2012-04-27 13:44 . 2012-04-27 13:44 1654616 ----a-w- c:\program files (x86)\sfldsim.ldd.dll
2012-04-27 13:44 . 2012-04-27 13:44 1653592 ----a-w- c:\program files (x86)\sfprnsim.pdd.dll
2012-04-27 13:44 . 2012-04-27 13:44 4107608 ----a-w- c:\program files (x86)\sfcdix.dll
2012-04-27 13:44 . 2012-04-27 13:44 2387800 ----a-w- c:\program files (x86)\sfdvd.dll
2012-04-27 13:44 . 2012-04-27 13:44 21848 ----a-w- c:\program files (x86)\sfcdsim.cdd.dll
2012-04-27 13:44 . 2012-04-27 13:44 1679704 ----a-w- c:\program files (x86)\sfcdfs.dll
2012-04-27 13:44 . 2012-04-27 13:44 1316184 ----a-w- c:\program files (x86)\sfld.ldd.dll
2012-04-27 13:44 . 2012-04-27 13:44 1657176 ----a-w- c:\program files (x86)\fargo.pdd.dll
2012-04-27 13:44 . 2012-04-27 13:44 1103704 ----a-w- c:\program files (x86)\sfcd.cdd.dll
2011-11-17 09:00 . 2011-11-17 09:00 13312 ----a-w- c:\program files (x86)\ProDiscAPI.dll
2011-11-17 08:59 . 2011-11-17 08:59 2936832 ----a-w- c:\program files (x86)\AAFCOAPI.dll
2011-11-17 08:59 . 2011-11-17 08:59 1045128 ----a-w- c:\program files (x86)\dbghelp.dll
2011-11-17 08:56 . 2011-11-17 08:56 1347072 ----a-w- c:\program files (x86)\proDADMercalli20.dll
2011-11-17 08:53 . 2011-11-17 08:53 659456 ----a-w- c:\program files (x86)\sonymvd2pro_xp.dll
2011-11-17 08:53 . 2011-11-17 08:53 245760 ----a-w- c:\program files (x86)\log4net.dll
2010-04-20 08:21 . 2010-04-20 08:21 4275544 ----a-w- c:\program files (x86)\vidcap60.exe
2010-04-20 08:21 . 2010-04-20 08:21 820568 ----a-w- c:\program files (x86)\sftutor60.dll
2010-04-20 08:19 . 2010-04-20 08:19 1631576 ----a-w- c:\program files (x86)\sfs4rw.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2012-06-06 19:33 1519304 ----a-w- c:\program files (x86)\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files (x86)\Ask.com\GenericAskToolbar.dll" [2012-06-06 1519304]
"{91397D20-1446-11D4-8AF4-0040CA1127B6}"= "c:\program files (x86)\Yandex\YandexBarIE\yndbar.dll" [2012-03-05 8921400]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CLASSES_ROOT\clsid\{91397d20-1446-11d4-8af4-0040ca1127b6}]
[HKEY_CLASSES_ROOT\Yandex.Toolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{91397D13-1446-11D4-8AF4-0040CA1127B6}]
[HKEY_CLASSES_ROOT\Yandex.Toolbar]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2012-09-13 18:51 220608 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2012-09-13 18:51 220608 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2012-09-13 18:51 220608 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\SkyDriveShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"="c:\progra~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2005-02-17 221184]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2012-07-14 895376]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2012-08-11 1353080]
"AlcoholAutomount"="c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" [2010-08-20 33120]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-11 3672384]
"MediaGet2"="c:\users\Pavlik\AppData\Local\MediaGet2\mediaget.exe" [2012-08-12 9106664]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2011-02-22 1475584]
"Sony PC Companion"="c:\program files (x86)\Sony\Sony PC Companion\PCCompanion.exe" [2012-05-31 445624]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2012-07-13 17420464]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"STCAgent"="c:\program files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe" [2011-03-04 776064]
"ZyngaGamesAgent"="c:\program files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe" [2010-11-15 841544]
"ISUSScheduler"="c:\program files (x86)\Common Files\InstallShield\UpdateService\issch.exe" [2005-02-17 81920]
"ApnUpdater"="c:\program files (x86)\Ask.com\Updater\Updater.exe" [2012-06-06 1564872]
"4StoryPrePatch"="c:\program files (x86)\Zemi Interactive\4StoryUS\PrePatch.exe" [2010-11-19 319488]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2012-08-29 1996200]
"AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2012-09-25 386336]
.
c:\users\Pavlik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
CurseClientStartup.ccip [2012-9-15 0]
Nostromo Loadout Manager.lnk - c:\users\Pavlik\AppData\Roaming\Microsoft\Installer\{548C7B77-8B04-427E-ACD0-D0E6E6E59BCF}\NewShortcut2_548C7B778B04427EACD0D0E6E6E59BCF.exe [2012-9-17 45056]
PlayerScore.lnk - c:\program files (x86)\PlayerScoreClient\PlayerScore.exe [2012-8-28 253440]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
GamersFirst LIVE!.lnk - c:\program files (x86)\GamersFirst\LIVE!\Live.exe [2012-6-22 2720408]
Ralink Wireless Utility.lnk - c:\program files (x86)\TP-LINK\Common\TWCU.exe [2012-7-14 1638400]
TP-LINK Wireless Utility.lnk - c:\program files (x86)\TP-LINK\Common\TWCU.exe [2012-7-14 1638400]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer4"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 DES2 Service;DES2 Service for Energy Saving.;c:\program files (x86)\GIGABYTE\EnergySaver2\des2svr.exe [2011-08-22 57344]
R2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-08-13 3064000]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
R3 dmvsc;dmvsc;c:\windows\system32\DRIVERS\dmvsc.sys [2011-02-22 71168]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys [x]
R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys [2012-09-04 30528]
R3 MSICDSetup;MSICDSetup;E:\CDriver64.sys [x]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2011-02-22 20992]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2011-02-22 88960]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\DRIVERS\terminpt.sys [2011-02-22 34816]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2011-02-22 59392]
R3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%;c:\windows\system32\DRIVERS\TsUsbGD.sys [2011-02-22 31232]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2011-02-22 117248]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-09-15 1255736]
R3 X6va009;X6va009;c:\windows\SysWOW64\Drivers\X6va009 [x]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2012-03-14 62496]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys [2011-01-10 21104]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2012-09-24 27800]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2012-03-14 209768]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2012-03-14 148528]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [2012-03-14 38288]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2012-09-25 84256]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [2012-03-07 913144]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-08-29 2369960]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]
S2 RalinkRegistryWriter64;Ralink Registry Writer 64;c:\program files (x86)\TP-LINK\Common\RaRegistry64.exe [2010-07-30 212256]
S2 SCBackService;Splashtop Connect Service;c:\program files (x86)\Splashtop\Splashtop Connect\BackService.exe [2010-11-15 477000]
S2 Smart TimeLock;Smart TimeLock Service;c:\program files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [2009-10-13 114688]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-05-15 382272]
S2 WCUService_STC_FF;Splashtop Connect Firefox Software Updater Service;c:\program files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe [2011-03-24 493384]
S2 WCUService_STC_IE;Splashtop Connect IE Software Updater Service;c:\program files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe [2011-03-22 497480]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys [2011-07-29 56960]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys [2011-07-29 79104]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2010-09-21 56344]
S3 netr28ux;TP-LINK 150Mbps Wireless Lite N Adapter;c:\windows\system32\DRIVERS\netr28ux.sys [2010-05-27 1121632]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2012-04-18 188736]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-01 535656]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-09-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2052839355-3687121303-2421454062-1000Core.job
- c:\users\Pavlik\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-14 11:36]
.
2012-10-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2052839355-3687121303-2421454062-1000UA.job
- c:\users\Pavlik\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-14 11:36]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{45d30484-7ded-43d9-957a-d2fd1f046511}]
2011-02-22 19:15 444752 ----a-w- c:\windows\System32\mscoree.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{1d09c093-f71e-43c3-b948-19316cbd695e}"= "mscoree.dll" [2011-02-22 444752]
.
[HKEY_CLASSES_ROOT\CLSID\{1d09c093-f71e-43c3-b948-19316cbd695e}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2012-09-13 18:51 244672 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2012-09-13 18:51 244672 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2012-09-13 18:51 244672 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-06-17 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-06-17 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-06-17 416024]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-07-21 12632168]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2012-03-07 4081008]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-02-22 500208]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"RPMKickstart"="c:\program files\GIGABYTE\SMART6\Recovery\RPMKickstart.exe" [2011-03-30 2552320]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://g.live.com/1rewlive4startup/home
mLocal Page = c:\windows\SysWOW64\blank.htm
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKCU-Run-PlayNC Launcher - (no file)
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
Wow6432Node-HKCU-Run-Dzgsgv - c:\users\Pavlik\AppData\Roaming\Dzgsgv.exe
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{91397D20-1446-11D4-8AF4-0040CA1127B6} - (no file)
AddRemove-PunkBusterSvc - c:\users\PAVLIK\APB RELOADED\Binaries\pbsvc_apb.exe
AddRemove-{4FFBB818-B13C-11E0-931D-B2664824019B}_is1 - c:\program files (x86)\Complitly\unins000.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\X6va009]
"ImagePath"="\??\c:\windows\SysWOW64\Drivers\X6va009"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-2052839355-3687121303-2421454062-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-2052839355-3687121303-2421454062-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-10-06 20:37:28
ComboFix-quarantined-files.txt 2012-10-06 18:37
.
Před spuštěním: Volných bajtů: 18 252 341 248
Po spuštění: Volných bajtů: 18 789 769 216
.
- - End Of File - - B636C6AD4A66B26AACBC9FAA939EF576
-
Rudy
- Site Admin
- Příspěvky: 119515
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: SkypeVir
Ještě dočistíme. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.KillAll::
Folder::
c:\program files (x86)\Ask.com
c:\program files (x86)\Yandex
Collect::
c:\windows\SysWOW64\Drivers\X6va009
File::
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2052839355-3687121303-2421454062-1000Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2052839355-3687121303-2421454062-1000UA.job
c:\windows\System32\mscoree.dll
Driver::
X6va009
Registry::
[-HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
[-HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[-HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
[-HKEY_CLASSES_ROOT\clsid\{91397d20-1446-11d4-8af4-0040ca1127b6}]
[-HKEY_CLASSES_ROOT\Yandex.Toolbar.1]
[-HKEY_CLASSES_ROOT\TypeLib\{91397D13-1446-11D4-8AF4-0040CA1127B6}]
[-HKEY_CLASSES_ROOT\Yandex.Toolbar]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{45d30484-7ded-43d9-957a-d2fd1f046511}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{1d09c093-f71e-43c3-b948-19316cbd695e}"=-
[-HKEY_CLASSES_ROOT\CLSID\{1d09c093-f71e-43c3-b948-19316cbd695e}]
RegLock::
[HKEY_USERS\S-1-5-21-2052839355-3687121303-2421454062-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
[HKEY_USERS\S-1-5-21-2052839355-3687121303-2421454062-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
Reboot::
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: SkypeVir
Posílám další log:
ComboFix 12-10-04.02 - Pavlik 07.10.2012 8:21.2.2 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.8109.5918 [GMT 2:00]
Spuštěný z: c:\users\Pavlik\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Pavlik\Desktop\CFScript.txt
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AV: ESET Smart Security 5.2 *Disabled/Outdated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: ESET Smart Security 5.2 *Disabled/Outdated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\System32\mscoree.dll"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2052839355-3687121303-2421454062-1000Core.job"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2052839355-3687121303-2421454062-1000UA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Ask.com
c:\program files (x86)\Ask.com\assets\oobe\b.png
c:\program files (x86)\Ask.com\assets\oobe\bl.png
c:\program files (x86)\Ask.com\assets\oobe\br.png
c:\program files (x86)\Ask.com\assets\oobe\l.png
c:\program files (x86)\Ask.com\assets\oobe\pointer.png
c:\program files (x86)\Ask.com\assets\oobe\r.png
c:\program files (x86)\Ask.com\assets\oobe\t.png
c:\program files (x86)\Ask.com\assets\oobe\tl.png
c:\program files (x86)\Ask.com\assets\oobe\tr.png
c:\program files (x86)\Ask.com\cobrand.ico
c:\program files (x86)\Ask.com\config.xml
c:\program files (x86)\Ask.com\favicon.ico
c:\program files (x86)\Ask.com\GenericAskToolbar.dll
c:\program files (x86)\Ask.com\mupcfg.xml
c:\program files (x86)\Ask.com\precache.exe
c:\program files (x86)\Ask.com\SaUpdate.exe
c:\program files (x86)\Ask.com\Updater\config.xml
c:\program files (x86)\Ask.com\Updater\Updater.exe
c:\program files (x86)\Ask.com\UpdateTask.exe
c:\program files (x86)\Yandex
c:\program files (x86)\Yandex\YandexBarIE\accelerators\search.ico
c:\program files (x86)\Yandex\YandexBarIE\accelerators\search.xml
c:\program files (x86)\Yandex\YandexBarIE\Apache Licence, version 2.0.rtf
c:\program files (x86)\Yandex\YandexBarIE\bar.ico
c:\program files (x86)\Yandex\YandexBarIE\basepackage.zip
c:\program files (x86)\Yandex\YandexBarIE\branding.zip
c:\program files (x86)\Yandex\YandexBarIE\default.xml
c:\program files (x86)\Yandex\YandexBarIE\facebook_ie_2_18.zip
c:\program files (x86)\Yandex\YandexBarIE\fastdial.dll
c:\program files (x86)\Yandex\YandexBarIE\games_cs_ie_1_9.zip
c:\program files (x86)\Yandex\YandexBarIE\license.rtf
c:\program files (x86)\Yandex\YandexBarIE\news_cs_ie_1_9.zip
c:\program files (x86)\Yandex\YandexBarIE\quotes_7.zip
c:\program files (x86)\Yandex\YandexBarIE\radio_ie_3_1.zip
c:\program files (x86)\Yandex\YandexBarIE\seznam_ie_1_12.zip
c:\program files (x86)\Yandex\YandexBarIE\seznamrank_ie_1_10.zip
c:\program files (x86)\Yandex\YandexBarIE\soc_ie_1_16.zip
c:\program files (x86)\Yandex\YandexBarIE\sport_ie_1_8.zip
c:\program files (x86)\Yandex\YandexBarIE\translator_ie_1_12.zip
c:\program files (x86)\Yandex\YandexBarIE\twitter_ie_3.zip
c:\program files (x86)\Yandex\YandexBarIE\video_cs_ie_1_6.zip
c:\program files (x86)\Yandex\YandexBarIE\xb-Gmail3_1.zip
c:\program files (x86)\Yandex\YandexBarIE\yndbar.dll
c:\program files (x86)\Yandex\YandexBarIE\yndhelper.exe
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2052839355-3687121303-2421454062-1000Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2052839355-3687121303-2421454062-1000UA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_X6VA009
-------\Service_X6va009
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-09-07 do 2012-10-07 )))))))))))))))))))))))))))))))
.
.
2012-10-07 06:25 . 2012-10-07 06:25 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-10-06 13:32 . 2012-10-06 13:47 -------- d-----w- c:\program files\trend micro
2012-10-06 13:32 . 2012-10-06 13:32 -------- d-----w- C:\rsit
2012-10-06 12:24 . 2012-10-06 12:24 -------- d-----w- c:\programdata\F-Secure
2012-10-06 10:40 . 2012-10-06 10:40 -------- d-----w- c:\users\Pavlik\AppData\Roaming\Avira
2012-10-06 10:39 . 2012-10-01 15:14 129576 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-10-06 10:39 . 2012-09-24 07:58 27800 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2012-10-06 10:39 . 2012-09-13 13:52 99248 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2012-10-06 10:39 . 2012-10-06 10:39 -------- d-----w- c:\programdata\Avira
2012-10-06 10:39 . 2012-10-06 10:39 -------- d-----w- c:\program files (x86)\Avira
2012-10-06 10:30 . 2012-10-06 10:30 -------- d-----w- c:\program files (x86)\Common Files\Skype
2012-10-05 12:05 . 2012-08-30 07:27 9308616 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BAE288D5-034C-40B4-8CDB-B9998FE92E65}\mpengine.dll
2012-10-04 15:27 . 2012-10-04 15:27 -------- d-----w- c:\program files (x86)\Common Files\Java
2012-10-04 15:27 . 2012-10-04 15:27 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-10-04 15:27 . 2012-10-04 15:27 -------- d-----w- c:\program files (x86)\Java
2012-10-02 19:01 . 2012-10-02 19:06 -------- d-----w- c:\users\Pavlik\AppData\Roaming\TS3Client
2012-10-02 19:01 . 2012-10-02 19:01 -------- d-----w- c:\program files\TeamSpeak 3 Client
2012-09-27 17:54 . 2012-10-01 18:01 -------- d-----w- c:\program files (x86)\4StoryEG
2012-09-27 15:21 . 2012-09-27 15:21 -------- d-----w- c:\windows\4StoryEG
2012-09-26 12:09 . 2012-08-21 21:01 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2012-09-17 17:41 . 2012-09-17 17:41 -------- d-----w- c:\users\Pavlik\AppData\Roaming\Belkin
2012-09-17 17:41 . 2012-09-17 17:41 45056 ----a-r- c:\users\Pavlik\AppData\Roaming\Microsoft\Installer\{548C7B77-8B04-427E-ACD0-D0E6E6E59BCF}\NewShortcut3_548C7B778B04427EACD0D0E6E6E59BCF.exe
2012-09-17 17:41 . 2012-09-17 17:41 45056 ----a-r- c:\users\Pavlik\AppData\Roaming\Microsoft\Installer\{548C7B77-8B04-427E-ACD0-D0E6E6E59BCF}\NewShortcut2_548C7B778B04427EACD0D0E6E6E59BCF.exe
2012-09-17 17:41 . 2012-09-17 17:41 45056 ----a-r- c:\users\Pavlik\AppData\Roaming\Microsoft\Installer\{548C7B77-8B04-427E-ACD0-D0E6E6E59BCF}\NewShortcut1_548C7B778B04427EACD0D0E6E6E59BCF.exe
2012-09-17 17:41 . 2012-09-17 17:41 -------- d-----w- c:\program files (x86)\Belkin
2012-09-17 17:40 . 2012-09-17 17:40 -------- d-----w- c:\users\Pavlik\AppData\Local\Downloaded Installations
2012-09-15 14:36 . 2012-10-07 06:15 -------- d-----w- c:\users\Pavlik\AppData\Local\PlayerScore
2012-09-15 14:36 . 2012-09-15 14:37 -------- d-----w- c:\program files (x86)\PlayerScoreClient
2012-09-15 13:46 . 2012-09-15 13:46 -------- d-----w- c:\windows\SysWow64\Wat
2012-09-15 13:46 . 2012-09-15 13:46 -------- d-----w- c:\windows\system32\Wat
2012-09-15 13:11 . 2012-09-15 13:11 -------- d-----w- c:\windows\CheckSur
2012-09-15 13:10 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2012-09-15 12:54 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-09-15 12:54 . 2012-03-01 06:38 220672 ----a-w- c:\windows\system32\wintrust.dll
2012-09-15 12:54 . 2012-03-01 06:33 81408 ----a-w- c:\windows\system32\imagehlp.dll
2012-09-15 12:54 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2012-09-15 12:54 . 2012-03-01 05:37 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
2012-09-15 12:54 . 2012-03-01 05:33 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2012-09-15 12:54 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2012-09-15 12:38 . 2012-10-07 06:16 -------- d-----w- c:\users\Pavlik\AppData\Local\Deployment
2012-09-15 11:32 . 2012-09-15 11:32 -------- d-----w- C:\Graphics
2012-09-15 11:32 . 2009-03-10 21:25 191488 ------w- c:\windows\SysWow64\mwgfx.dll
2012-09-15 11:32 . 2008-10-20 11:44 237056 ------w- c:\windows\SysWow64\mwgfx24.dll
2012-09-15 11:32 . 2008-09-05 06:32 104960 ------w- c:\windows\SysWow64\mwdds.dll
2012-09-15 11:32 . 2007-08-19 07:37 28672 ------w- c:\windows\SysWow64\mwgfxcopy.exe
2012-09-15 11:32 . 2004-05-14 09:13 56832 ------w- c:\windows\SysWow64\mwace.dll
2012-09-15 11:19 . 2012-06-09 05:43 14172672 ----a-w- c:\windows\system32\shell32.dll
2012-09-15 11:18 . 2011-04-29 03:06 467456 ----a-w- c:\windows\system32\drivers\srv.sys
2012-09-15 11:17 . 2011-05-03 05:29 976896 ----a-w- c:\windows\system32\inetcomm.dll
2012-09-15 11:15 . 2011-11-17 06:41 1731920 ----a-w- c:\windows\system32\ntdll.dll
2012-09-15 11:15 . 2011-11-17 05:38 1292080 ----a-w- c:\windows\SysWow64\ntdll.dll
2012-09-15 11:15 . 2011-11-19 14:58 77312 ----a-w- c:\windows\system32\packager.dll
2012-09-15 11:15 . 2011-11-19 14:01 67072 ----a-w- c:\windows\SysWow64\packager.dll
2012-09-14 11:55 . 2012-02-17 06:38 1031680 ----a-w- c:\windows\system32\rdpcore.dll
2012-09-14 11:55 . 2012-02-17 05:34 826880 ----a-w- c:\windows\SysWow64\rdpcore.dll
2012-09-14 11:55 . 2012-02-17 04:57 23552 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-09-14 11:52 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2012-09-14 11:52 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe
2012-09-14 11:52 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll
2012-09-14 11:52 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
2012-09-14 11:52 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll
2012-09-14 11:52 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll
2012-09-14 11:52 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll
2012-09-14 11:52 . 2012-06-02 13:19 186752 ----a-w- c:\windows\system32\wuwebv.dll
2012-09-14 11:52 . 2012-06-02 13:15 36864 ----a-w- c:\windows\system32\wuapp.exe
2012-09-13 18:57 . 2012-10-06 13:02 -------- d-----w- c:\users\Pavlik\Tracing
2012-09-13 18:54 . 2012-09-13 18:54 -------- d-----w- c:\windows\cs
2012-09-13 18:54 . 2012-09-13 18:54 -------- d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition
2012-09-13 18:53 . 2012-09-13 18:53 -------- dc----w- c:\windows\system32\DRVSTORE
2012-09-13 18:53 . 2012-07-28 00:15 57280 ----a-w- c:\windows\system32\drivers\fssfltr.sys
2012-09-13 18:53 . 2012-09-13 18:53 -------- d-----w- c:\program files\Windows Live
2012-09-13 18:53 . 2012-09-13 18:53 -------- d-----w- c:\windows\PCHEALTH
2012-09-13 18:53 . 2012-09-13 18:54 -------- d-----w- c:\program files (x86)\Windows Live
2012-09-13 18:51 . 2012-09-13 18:51 -------- d-----w- c:\program files (x86)\Microsoft SkyDrive
2012-09-13 18:51 . 2012-09-13 18:51 -------- d-----r- c:\users\Pavlik\SkyDrive
2012-09-13 18:51 . 2012-09-13 18:51 -------- d-----w- c:\programdata\Microsoft SkyDrive
2012-09-13 18:50 . 2012-09-18 18:10 -------- d-----w- c:\users\Pavlik\AppData\Local\Windows Live
2012-09-13 18:50 . 2012-09-13 18:50 -------- d-----w- c:\program files (x86)\Common Files\Windows Live
2012-09-08 17:43 . 2012-09-15 11:52 -------- d-----w- c:\users\Pavlik\AppData\Roaming\AOL
2012-09-08 17:43 . 2012-09-08 17:43 -------- d--h--w- c:\windows\AxInstSV
2012-09-08 17:41 . 2012-09-08 17:43 -------- d-----w- c:\users\Pavlik\AppData\Local\AOL
2012-09-08 17:41 . 2012-09-08 17:41 -------- d-----w- c:\programdata\Viewpoint
2012-09-08 17:41 . 2012-09-08 17:41 -------- d-----w- c:\program files (x86)\Viewpoint
2012-09-08 17:41 . 2012-09-15 13:45 -------- d-----w- c:\program files (x86)\Common Files\AOL
2012-09-08 17:40 . 2012-09-15 11:52 -------- d-----w- c:\programdata\AOL
2012-09-08 17:40 . 2012-09-08 17:40 -------- d-----w- c:\programdata\AOL OCP
2012-09-08 17:36 . 2012-09-08 17:36 -------- d-----w- c:\programdata\AOL Downloads
2012-09-08 17:28 . 2012-09-08 17:28 -------- d-----w- c:\programdata\Nexon
2012-09-08 17:16 . 2012-09-08 17:16 -------- d-----w- c:\program files (x86)\BandiMPEG1
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-07 06:26 . 2012-07-11 21:01 25640 ----a-w- c:\windows\gdrv.sys
2012-10-04 15:27 . 2012-07-11 21:10 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-10-04 15:27 . 2012-07-11 21:10 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-09-06 11:59 . 2012-09-05 12:58 281288 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2012-09-06 11:59 . 2012-09-05 12:57 281288 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2012-09-05 17:53 . 2012-09-05 12:58 281288 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2012-09-05 12:57 . 2012-09-05 12:57 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2012-09-04 10:20 . 2012-07-11 21:27 30528 ----a-w- c:\windows\GVTDrv64.sys
2012-08-06 00:04 . 2012-08-31 15:35 4670000 ----a-w- c:\windows\SysWow64\GameMon.des
2012-07-28 01:09 . 2012-07-28 01:09 57792 ----a-w- c:\windows\SysWow64\sirenacm.dll
2012-07-28 00:54 . 2012-07-28 00:54 321472 ----a-w- c:\windows\WLXPGSS.SCR
2012-07-26 17:08 . 2012-07-26 17:08 862664 ----a-w- c:\windows\SysWow64\msvcr110.dll
2012-07-26 17:08 . 2012-07-26 17:08 534480 ----a-w- c:\windows\SysWow64\msvcp110.dll
2012-07-26 17:08 . 2012-07-26 17:08 251864 ----a-w- c:\windows\SysWow64\vccorlib110.dll
2012-07-26 17:08 . 2012-07-26 17:08 153536 ----a-w- c:\windows\SysWow64\atl110.dll
2012-07-26 17:08 . 2012-07-26 17:08 115656 ----a-w- c:\windows\SysWow64\vcomp110.dll
2012-07-26 15:49 . 2012-07-26 15:43 560184 ----a-w- c:\windows\system32\drivers\sptd.sys
2012-07-26 13:22 . 2012-07-26 13:22 828872 ----a-w- c:\windows\system32\msvcr110.dll
2012-07-26 13:22 . 2012-07-26 13:22 661448 ----a-w- c:\windows\system32\msvcp110.dll
2012-07-26 13:22 . 2012-07-26 13:22 354264 ----a-w- c:\windows\system32\vccorlib110.dll
2012-07-26 13:22 . 2012-07-26 13:22 177096 ----a-w- c:\windows\system32\atl110.dll
2012-07-26 13:22 . 2012-07-26 13:22 124360 ----a-w- c:\windows\system32\vcomp110.dll
2012-07-17 13:14 . 2012-07-17 13:14 253184 ----a-w- c:\windows\system32\LIVESSP.DLL
2012-07-17 12:49 . 2012-07-17 12:49 209648 ----a-w- c:\windows\SysWow64\LIVESSP.DLL
2012-07-17 12:37 . 2012-07-17 12:37 19736 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-07-11 21:43 . 2012-07-11 21:44 111960 ----a-w- c:\windows\dxsdkuninst.exe
2012-04-27 13:45 . 2012-04-27 13:45 435544 ----a-w- c:\program files (x86)\Sony.MediaSoftware.XDCAMExp.dll
2012-04-27 13:45 . 2012-04-27 13:45 730456 ----a-w- c:\program files (x86)\WidgetLibrary.dll
2012-04-27 13:45 . 2012-04-27 13:45 865624 ----a-w- c:\program files (x86)\Sony.MediaSoftware.VideoEffectsUI.dll
2012-04-27 13:45 . 2012-04-27 13:45 8820568 ----a-w- c:\program files (x86)\vegas110k.dll
2012-04-27 13:45 . 2012-04-27 13:45 17651544 ----a-w- c:\program files (x86)\vegas110.exe
2012-04-27 13:45 . 2012-04-27 13:45 5361496 ----a-w- c:\program files (x86)\sftutor.dll
2012-04-27 13:45 . 2012-04-27 13:45 108376 ----a-w- c:\program files (x86)\Sony.Vegas.RenderAs.dll
2012-04-27 13:45 . 2012-04-27 13:45 812376 ----a-w- c:\program files (x86)\Sony.MediaSoftware.TextGen.CoreGraphics.dll
2012-04-27 13:45 . 2012-04-27 13:45 460120 ----a-w- c:\program files (x86)\Sony.MediaSoftware.TextGen.CoreGraphics.XmlSerializers.dll
2012-04-27 13:45 . 2012-04-27 13:45 54616 ----a-w- c:\program files (x86)\CorePrimitives.dll
2012-04-27 13:45 . 2012-04-27 13:45 320856 ----a-w- c:\program files (x86)\CoreUI.XmlSerializers.dll
2012-04-27 13:45 . 2012-04-27 13:45 24920 ----a-w- c:\program files (x86)\Interop.dll
2012-04-27 13:45 . 2012-04-27 13:45 2027352 ----a-w- c:\program files (x86)\CoreGraphics.Native.dll
2012-04-27 13:45 . 2012-04-27 13:45 124248 ----a-w- c:\program files (x86)\CoreUI.dll
2012-04-27 13:45 . 2012-04-27 13:45 46424 ----a-w- c:\program files (x86)\ControlLibrary.dll
2012-04-27 13:45 . 2012-04-27 13:45 370008 ----a-w- c:\program files (x86)\Sony.Vegas.dll
2012-04-27 13:45 . 2012-04-27 13:45 21336 ----a-w- c:\program files (x86)\Sony.MediaSoftware.SfBdMuxCom.dll
2012-04-27 13:45 . 2012-04-27 13:45 79192 ----a-w- c:\program files (x86)\Sony.Vegas.Publish.dll
2012-04-27 13:45 . 2012-04-27 13:45 111960 ----a-w- c:\program files (x86)\Sony.MediaSoftware.ExternalVideoDevice.dll
2012-04-27 13:45 . 2012-04-27 13:45 382296 ----a-w- c:\program files (x86)\Sony.MediaSoftware.clrshared.dll
2012-04-27 13:45 . 2012-04-27 13:45 238936 ----a-w- c:\program files (x86)\Sony.MediaSoftware.DeviceExp.dll
2012-04-27 13:45 . 2012-04-27 13:45 234840 ----a-w- c:\program files (x86)\Sony.Capture.dll
2012-04-27 13:45 . 2012-04-27 13:45 71000 ----a-w- c:\program files (x86)\Sony.MediaSoftware.Skins.dll
2012-04-27 13:45 . 2012-04-27 13:45 3476824 ----a-w- c:\program files (x86)\sfvstwrap.dll
2012-04-27 13:45 . 2012-04-27 13:45 3169112 ----a-w- c:\program files (x86)\sfvstserver.exe
2012-04-27 13:45 . 2012-04-27 13:45 2275672 ----a-w- c:\program files (x86)\sfpublish.dll
2012-04-27 13:45 . 2012-04-27 13:45 19288 ----a-w- c:\program files (x86)\sfvstproxystubx86.dll
2012-04-27 13:45 . 2012-04-27 13:45 3885912 ----a-w- c:\program files (x86)\ApplicationRegistration.exe
2012-04-27 13:45 . 2012-04-27 13:45 2338648 ----a-w- c:\program files (x86)\sfapprw.dll
2012-04-27 13:45 . 2012-04-27 13:45 1653080 ----a-w- c:\program files (x86)\eula.dll
2012-04-27 13:45 . 2012-04-27 13:45 361816 ----a-w- c:\program files (x86)\Sony.MediaSoftware.TextGen.OFXInterop.dll
2012-04-27 13:45 . 2012-04-27 13:45 18776 ----a-w- c:\program files (x86)\NGenTool.exe
2012-04-27 13:45 . 2012-04-27 13:45 79192 ----a-w- c:\program files (x86)\Sony.Monitor3D.dll
2012-04-27 13:44 . 2012-04-27 13:44 2327384 ----a-w- c:\program files (x86)\sfmarket2.dll
2012-04-27 13:44 . 2012-04-27 13:44 6033752 ----a-w- c:\program files (x86)\ffplugsk32.dll
2012-04-27 13:44 . 2012-04-27 13:44 3294552 ----a-w- c:\program files (x86)\FileIOSurrogate.exe
2012-04-27 13:44 . 2012-04-27 13:44 1814872 ----a-w- c:\program files (x86)\discdrv.dll
2012-04-27 13:44 . 2012-04-27 13:44 46424 ----a-w- c:\program files (x86)\FileIOProxyStubx86.dll
2012-04-27 13:44 . 2012-04-27 13:44 38232 ----a-w- c:\program files (x86)\DecklinkVideoProperties.dll
2012-04-27 13:44 . 2012-04-27 13:44 38232 ----a-w- c:\program files (x86)\AjaVideoProperties.dll
2012-04-27 13:44 . 2012-04-27 13:44 23896 ----a-w- c:\program files (x86)\CreateMinidumpx86.exe
2012-04-27 13:44 . 2012-04-27 13:44 73048 ----a-w- c:\program files (x86)\PRSConfig.exe
2012-04-27 13:44 . 2012-04-27 13:44 6071640 ----a-w- c:\program files (x86)\ErrorReportClient.exe
2012-04-27 13:44 . 2012-04-27 13:44 20312 ----a-w- c:\program files (x86)\ErrorReportLauncher.exe
2012-04-27 13:44 . 2012-04-27 13:44 61272 ----a-w- c:\program files (x86)\ErrorReport.dll
2012-04-27 13:44 . 2012-04-27 13:44 41304 ----a-w- c:\program files (x86)\sfspti.dll
2012-04-27 13:44 . 2012-04-27 13:44 1664856 ----a-w- c:\program files (x86)\sfscsi.dll
2012-04-27 13:44 . 2012-04-27 13:44 1654616 ----a-w- c:\program files (x86)\sfldsim.ldd.dll
2012-04-27 13:44 . 2012-04-27 13:44 1653592 ----a-w- c:\program files (x86)\sfprnsim.pdd.dll
2012-04-27 13:44 . 2012-04-27 13:44 4107608 ----a-w- c:\program files (x86)\sfcdix.dll
2012-04-27 13:44 . 2012-04-27 13:44 2387800 ----a-w- c:\program files (x86)\sfdvd.dll
2012-04-27 13:44 . 2012-04-27 13:44 21848 ----a-w- c:\program files (x86)\sfcdsim.cdd.dll
2012-04-27 13:44 . 2012-04-27 13:44 1679704 ----a-w- c:\program files (x86)\sfcdfs.dll
2012-04-27 13:44 . 2012-04-27 13:44 1316184 ----a-w- c:\program files (x86)\sfld.ldd.dll
2012-04-27 13:44 . 2012-04-27 13:44 1657176 ----a-w- c:\program files (x86)\fargo.pdd.dll
2012-04-27 13:44 . 2012-04-27 13:44 1103704 ----a-w- c:\program files (x86)\sfcd.cdd.dll
2011-11-17 09:00 . 2011-11-17 09:00 13312 ----a-w- c:\program files (x86)\ProDiscAPI.dll
2011-11-17 08:59 . 2011-11-17 08:59 2936832 ----a-w- c:\program files (x86)\AAFCOAPI.dll
2011-11-17 08:59 . 2011-11-17 08:59 1045128 ----a-w- c:\program files (x86)\dbghelp.dll
2011-11-17 08:56 . 2011-11-17 08:56 1347072 ----a-w- c:\program files (x86)\proDADMercalli20.dll
2011-11-17 08:53 . 2011-11-17 08:53 659456 ----a-w- c:\program files (x86)\sonymvd2pro_xp.dll
2011-11-17 08:53 . 2011-11-17 08:53 245760 ----a-w- c:\program files (x86)\log4net.dll
2010-04-20 08:21 . 2010-04-20 08:21 4275544 ----a-w- c:\program files (x86)\vidcap60.exe
2010-04-20 08:21 . 2010-04-20 08:21 820568 ----a-w- c:\program files (x86)\sftutor60.dll
2010-04-20 08:19 . 2010-04-20 08:19 1631576 ----a-w- c:\program files (x86)\sfs4rw.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2012-09-13 18:51 220608 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2012-09-13 18:51 220608 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2012-09-13 18:51 220608 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\SkyDriveShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"="c:\progra~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2005-02-17 221184]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2012-07-14 895376]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2012-08-11 1353080]
"AlcoholAutomount"="c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" [2010-08-20 33120]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-11 3672384]
"MediaGet2"="c:\users\Pavlik\AppData\Local\MediaGet2\mediaget.exe" [2012-08-12 9106664]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2011-02-22 1475584]
"Sony PC Companion"="c:\program files (x86)\Sony\Sony PC Companion\PCCompanion.exe" [2012-05-31 445624]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2012-07-13 17420464]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"STCAgent"="c:\program files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe" [2011-03-04 776064]
"ZyngaGamesAgent"="c:\program files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe" [2010-11-15 841544]
"ISUSScheduler"="c:\program files (x86)\Common Files\InstallShield\UpdateService\issch.exe" [2005-02-17 81920]
"4StoryPrePatch"="c:\program files (x86)\Zemi Interactive\4StoryUS\PrePatch.exe" [2010-11-19 319488]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2012-08-29 1996200]
"AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2012-09-25 386336]
.
c:\users\Pavlik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
CurseClientStartup.ccip [2012-9-15 0]
Nostromo Loadout Manager.lnk - c:\users\Pavlik\AppData\Roaming\Microsoft\Installer\{548C7B77-8B04-427E-ACD0-D0E6E6E59BCF}\NewShortcut2_548C7B778B04427EACD0D0E6E6E59BCF.exe [2012-9-17 45056]
PlayerScore.lnk - c:\program files (x86)\PlayerScoreClient\PlayerScore.exe [2012-8-28 253440]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
GamersFirst LIVE!.lnk - c:\program files (x86)\GamersFirst\LIVE!\Live.exe [2012-6-22 2720408]
Ralink Wireless Utility.lnk - c:\program files (x86)\TP-LINK\Common\TWCU.exe [2012-7-14 1638400]
TP-LINK Wireless Utility.lnk - c:\program files (x86)\TP-LINK\Common\TWCU.exe [2012-7-14 1638400]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer4"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
R3 dmvsc;dmvsc;c:\windows\system32\DRIVERS\dmvsc.sys [2011-02-22 71168]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys [x]
R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys [2012-09-04 30528]
R3 MSICDSetup;MSICDSetup;E:\CDriver64.sys [x]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2011-02-22 20992]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2011-02-22 88960]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\DRIVERS\terminpt.sys [2011-02-22 34816]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2011-02-22 59392]
R3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%;c:\windows\system32\DRIVERS\TsUsbGD.sys [2011-02-22 31232]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2011-02-22 117248]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-09-15 1255736]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2012-03-14 62496]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys [2011-01-10 21104]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2012-09-24 27800]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2012-03-14 209768]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2012-03-14 148528]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [2012-03-14 38288]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2012-09-25 84256]
S2 DES2 Service;DES2 Service for Energy Saving.;c:\program files (x86)\GIGABYTE\EnergySaver2\des2svr.exe [2011-08-22 57344]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [2012-03-07 913144]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-08-29 2369960]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]
S2 RalinkRegistryWriter64;Ralink Registry Writer 64;c:\program files (x86)\TP-LINK\Common\RaRegistry64.exe [2010-07-30 212256]
S2 SCBackService;Splashtop Connect Service;c:\program files (x86)\Splashtop\Splashtop Connect\BackService.exe [2010-11-15 477000]
S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-08-13 3064000]
S2 Smart TimeLock;Smart TimeLock Service;c:\program files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [2009-10-13 114688]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-05-15 382272]
S2 WCUService_STC_FF;Splashtop Connect Firefox Software Updater Service;c:\program files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe [2011-03-24 493384]
S2 WCUService_STC_IE;Splashtop Connect IE Software Updater Service;c:\program files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe [2011-03-22 497480]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys [2011-07-29 56960]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys [2011-07-29 79104]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2010-09-21 56344]
S3 netr28ux;TP-LINK 150Mbps Wireless Lite N Adapter;c:\windows\system32\DRIVERS\netr28ux.sys [2010-05-27 1121632]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2012-04-18 188736]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-01 535656]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
.
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2012-09-13 18:51 244672 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2012-09-13 18:51 244672 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2012-09-13 18:51 244672 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-06-17 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-06-17 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-06-17 416024]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-07-21 12632168]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2012-03-07 4081008]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-02-22 500208]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"RPMKickstart"="c:\program files\GIGABYTE\SMART6\Recovery\RPMKickstart.exe" [2011-03-30 2552320]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://g.live.com/1rewlive4startup/home
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files (x86)\Ask.com\GenericAskToolbar.dll
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Wow6432Node-HKLM-Run-ApnUpdater - c:\program files (x86)\Ask.com\Updater\Updater.exe
WebBrowser-{91397D20-1446-11D4-8AF4-0040CA1127B6} - (no file)
AddRemove-PunkBusterSvc - c:\users\PAVLIK\APB RELOADED\Binaries\pbsvc_apb.exe
AddRemove-{4FFBB818-B13C-11E0-931D-B2664824019B}_is1 - c:\program files (x86)\Complitly\unins000.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\TP-LINK\Common\RaRegistry.exe
c:\program files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
c:\program files (x86)\Belkin\Nostromo\nost_LM.exe
c:\program files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
c:\program files (x86)\Common Files\Steam\SteamService.exe
c:\program files (x86)\GIGABYTE\Smart6\Timelock\AlarmClock.exe
.
**************************************************************************
.
Celkový čas: 2012-10-07 08:30:05 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-10-07 06:30
ComboFix2.txt 2012-10-06 18:37
.
Před spuštěním: Volných bajtů: 18 841 989 120
Po spuštění: Volných bajtů: 18 599 976 960
.
- - End Of File - - 57E34FD047B77CE243622D774865ADB7
ComboFix 12-10-04.02 - Pavlik 07.10.2012 8:21.2.2 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.8109.5918 [GMT 2:00]
Spuštěný z: c:\users\Pavlik\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Pavlik\Desktop\CFScript.txt
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AV: ESET Smart Security 5.2 *Disabled/Outdated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: ESET Smart Security 5.2 *Disabled/Outdated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\System32\mscoree.dll"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2052839355-3687121303-2421454062-1000Core.job"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2052839355-3687121303-2421454062-1000UA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Ask.com
c:\program files (x86)\Ask.com\assets\oobe\b.png
c:\program files (x86)\Ask.com\assets\oobe\bl.png
c:\program files (x86)\Ask.com\assets\oobe\br.png
c:\program files (x86)\Ask.com\assets\oobe\l.png
c:\program files (x86)\Ask.com\assets\oobe\pointer.png
c:\program files (x86)\Ask.com\assets\oobe\r.png
c:\program files (x86)\Ask.com\assets\oobe\t.png
c:\program files (x86)\Ask.com\assets\oobe\tl.png
c:\program files (x86)\Ask.com\assets\oobe\tr.png
c:\program files (x86)\Ask.com\cobrand.ico
c:\program files (x86)\Ask.com\config.xml
c:\program files (x86)\Ask.com\favicon.ico
c:\program files (x86)\Ask.com\GenericAskToolbar.dll
c:\program files (x86)\Ask.com\mupcfg.xml
c:\program files (x86)\Ask.com\precache.exe
c:\program files (x86)\Ask.com\SaUpdate.exe
c:\program files (x86)\Ask.com\Updater\config.xml
c:\program files (x86)\Ask.com\Updater\Updater.exe
c:\program files (x86)\Ask.com\UpdateTask.exe
c:\program files (x86)\Yandex
c:\program files (x86)\Yandex\YandexBarIE\accelerators\search.ico
c:\program files (x86)\Yandex\YandexBarIE\accelerators\search.xml
c:\program files (x86)\Yandex\YandexBarIE\Apache Licence, version 2.0.rtf
c:\program files (x86)\Yandex\YandexBarIE\bar.ico
c:\program files (x86)\Yandex\YandexBarIE\basepackage.zip
c:\program files (x86)\Yandex\YandexBarIE\branding.zip
c:\program files (x86)\Yandex\YandexBarIE\default.xml
c:\program files (x86)\Yandex\YandexBarIE\facebook_ie_2_18.zip
c:\program files (x86)\Yandex\YandexBarIE\fastdial.dll
c:\program files (x86)\Yandex\YandexBarIE\games_cs_ie_1_9.zip
c:\program files (x86)\Yandex\YandexBarIE\license.rtf
c:\program files (x86)\Yandex\YandexBarIE\news_cs_ie_1_9.zip
c:\program files (x86)\Yandex\YandexBarIE\quotes_7.zip
c:\program files (x86)\Yandex\YandexBarIE\radio_ie_3_1.zip
c:\program files (x86)\Yandex\YandexBarIE\seznam_ie_1_12.zip
c:\program files (x86)\Yandex\YandexBarIE\seznamrank_ie_1_10.zip
c:\program files (x86)\Yandex\YandexBarIE\soc_ie_1_16.zip
c:\program files (x86)\Yandex\YandexBarIE\sport_ie_1_8.zip
c:\program files (x86)\Yandex\YandexBarIE\translator_ie_1_12.zip
c:\program files (x86)\Yandex\YandexBarIE\twitter_ie_3.zip
c:\program files (x86)\Yandex\YandexBarIE\video_cs_ie_1_6.zip
c:\program files (x86)\Yandex\YandexBarIE\xb-Gmail3_1.zip
c:\program files (x86)\Yandex\YandexBarIE\yndbar.dll
c:\program files (x86)\Yandex\YandexBarIE\yndhelper.exe
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2052839355-3687121303-2421454062-1000Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2052839355-3687121303-2421454062-1000UA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_X6VA009
-------\Service_X6va009
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-09-07 do 2012-10-07 )))))))))))))))))))))))))))))))
.
.
2012-10-07 06:25 . 2012-10-07 06:25 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-10-06 13:32 . 2012-10-06 13:47 -------- d-----w- c:\program files\trend micro
2012-10-06 13:32 . 2012-10-06 13:32 -------- d-----w- C:\rsit
2012-10-06 12:24 . 2012-10-06 12:24 -------- d-----w- c:\programdata\F-Secure
2012-10-06 10:40 . 2012-10-06 10:40 -------- d-----w- c:\users\Pavlik\AppData\Roaming\Avira
2012-10-06 10:39 . 2012-10-01 15:14 129576 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-10-06 10:39 . 2012-09-24 07:58 27800 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2012-10-06 10:39 . 2012-09-13 13:52 99248 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2012-10-06 10:39 . 2012-10-06 10:39 -------- d-----w- c:\programdata\Avira
2012-10-06 10:39 . 2012-10-06 10:39 -------- d-----w- c:\program files (x86)\Avira
2012-10-06 10:30 . 2012-10-06 10:30 -------- d-----w- c:\program files (x86)\Common Files\Skype
2012-10-05 12:05 . 2012-08-30 07:27 9308616 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BAE288D5-034C-40B4-8CDB-B9998FE92E65}\mpengine.dll
2012-10-04 15:27 . 2012-10-04 15:27 -------- d-----w- c:\program files (x86)\Common Files\Java
2012-10-04 15:27 . 2012-10-04 15:27 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-10-04 15:27 . 2012-10-04 15:27 -------- d-----w- c:\program files (x86)\Java
2012-10-02 19:01 . 2012-10-02 19:06 -------- d-----w- c:\users\Pavlik\AppData\Roaming\TS3Client
2012-10-02 19:01 . 2012-10-02 19:01 -------- d-----w- c:\program files\TeamSpeak 3 Client
2012-09-27 17:54 . 2012-10-01 18:01 -------- d-----w- c:\program files (x86)\4StoryEG
2012-09-27 15:21 . 2012-09-27 15:21 -------- d-----w- c:\windows\4StoryEG
2012-09-26 12:09 . 2012-08-21 21:01 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2012-09-17 17:41 . 2012-09-17 17:41 -------- d-----w- c:\users\Pavlik\AppData\Roaming\Belkin
2012-09-17 17:41 . 2012-09-17 17:41 45056 ----a-r- c:\users\Pavlik\AppData\Roaming\Microsoft\Installer\{548C7B77-8B04-427E-ACD0-D0E6E6E59BCF}\NewShortcut3_548C7B778B04427EACD0D0E6E6E59BCF.exe
2012-09-17 17:41 . 2012-09-17 17:41 45056 ----a-r- c:\users\Pavlik\AppData\Roaming\Microsoft\Installer\{548C7B77-8B04-427E-ACD0-D0E6E6E59BCF}\NewShortcut2_548C7B778B04427EACD0D0E6E6E59BCF.exe
2012-09-17 17:41 . 2012-09-17 17:41 45056 ----a-r- c:\users\Pavlik\AppData\Roaming\Microsoft\Installer\{548C7B77-8B04-427E-ACD0-D0E6E6E59BCF}\NewShortcut1_548C7B778B04427EACD0D0E6E6E59BCF.exe
2012-09-17 17:41 . 2012-09-17 17:41 -------- d-----w- c:\program files (x86)\Belkin
2012-09-17 17:40 . 2012-09-17 17:40 -------- d-----w- c:\users\Pavlik\AppData\Local\Downloaded Installations
2012-09-15 14:36 . 2012-10-07 06:15 -------- d-----w- c:\users\Pavlik\AppData\Local\PlayerScore
2012-09-15 14:36 . 2012-09-15 14:37 -------- d-----w- c:\program files (x86)\PlayerScoreClient
2012-09-15 13:46 . 2012-09-15 13:46 -------- d-----w- c:\windows\SysWow64\Wat
2012-09-15 13:46 . 2012-09-15 13:46 -------- d-----w- c:\windows\system32\Wat
2012-09-15 13:11 . 2012-09-15 13:11 -------- d-----w- c:\windows\CheckSur
2012-09-15 13:10 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2012-09-15 12:54 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-09-15 12:54 . 2012-03-01 06:38 220672 ----a-w- c:\windows\system32\wintrust.dll
2012-09-15 12:54 . 2012-03-01 06:33 81408 ----a-w- c:\windows\system32\imagehlp.dll
2012-09-15 12:54 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2012-09-15 12:54 . 2012-03-01 05:37 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
2012-09-15 12:54 . 2012-03-01 05:33 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2012-09-15 12:54 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2012-09-15 12:38 . 2012-10-07 06:16 -------- d-----w- c:\users\Pavlik\AppData\Local\Deployment
2012-09-15 11:32 . 2012-09-15 11:32 -------- d-----w- C:\Graphics
2012-09-15 11:32 . 2009-03-10 21:25 191488 ------w- c:\windows\SysWow64\mwgfx.dll
2012-09-15 11:32 . 2008-10-20 11:44 237056 ------w- c:\windows\SysWow64\mwgfx24.dll
2012-09-15 11:32 . 2008-09-05 06:32 104960 ------w- c:\windows\SysWow64\mwdds.dll
2012-09-15 11:32 . 2007-08-19 07:37 28672 ------w- c:\windows\SysWow64\mwgfxcopy.exe
2012-09-15 11:32 . 2004-05-14 09:13 56832 ------w- c:\windows\SysWow64\mwace.dll
2012-09-15 11:19 . 2012-06-09 05:43 14172672 ----a-w- c:\windows\system32\shell32.dll
2012-09-15 11:18 . 2011-04-29 03:06 467456 ----a-w- c:\windows\system32\drivers\srv.sys
2012-09-15 11:17 . 2011-05-03 05:29 976896 ----a-w- c:\windows\system32\inetcomm.dll
2012-09-15 11:15 . 2011-11-17 06:41 1731920 ----a-w- c:\windows\system32\ntdll.dll
2012-09-15 11:15 . 2011-11-17 05:38 1292080 ----a-w- c:\windows\SysWow64\ntdll.dll
2012-09-15 11:15 . 2011-11-19 14:58 77312 ----a-w- c:\windows\system32\packager.dll
2012-09-15 11:15 . 2011-11-19 14:01 67072 ----a-w- c:\windows\SysWow64\packager.dll
2012-09-14 11:55 . 2012-02-17 06:38 1031680 ----a-w- c:\windows\system32\rdpcore.dll
2012-09-14 11:55 . 2012-02-17 05:34 826880 ----a-w- c:\windows\SysWow64\rdpcore.dll
2012-09-14 11:55 . 2012-02-17 04:57 23552 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-09-14 11:52 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2012-09-14 11:52 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe
2012-09-14 11:52 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll
2012-09-14 11:52 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
2012-09-14 11:52 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll
2012-09-14 11:52 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll
2012-09-14 11:52 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll
2012-09-14 11:52 . 2012-06-02 13:19 186752 ----a-w- c:\windows\system32\wuwebv.dll
2012-09-14 11:52 . 2012-06-02 13:15 36864 ----a-w- c:\windows\system32\wuapp.exe
2012-09-13 18:57 . 2012-10-06 13:02 -------- d-----w- c:\users\Pavlik\Tracing
2012-09-13 18:54 . 2012-09-13 18:54 -------- d-----w- c:\windows\cs
2012-09-13 18:54 . 2012-09-13 18:54 -------- d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition
2012-09-13 18:53 . 2012-09-13 18:53 -------- dc----w- c:\windows\system32\DRVSTORE
2012-09-13 18:53 . 2012-07-28 00:15 57280 ----a-w- c:\windows\system32\drivers\fssfltr.sys
2012-09-13 18:53 . 2012-09-13 18:53 -------- d-----w- c:\program files\Windows Live
2012-09-13 18:53 . 2012-09-13 18:53 -------- d-----w- c:\windows\PCHEALTH
2012-09-13 18:53 . 2012-09-13 18:54 -------- d-----w- c:\program files (x86)\Windows Live
2012-09-13 18:51 . 2012-09-13 18:51 -------- d-----w- c:\program files (x86)\Microsoft SkyDrive
2012-09-13 18:51 . 2012-09-13 18:51 -------- d-----r- c:\users\Pavlik\SkyDrive
2012-09-13 18:51 . 2012-09-13 18:51 -------- d-----w- c:\programdata\Microsoft SkyDrive
2012-09-13 18:50 . 2012-09-18 18:10 -------- d-----w- c:\users\Pavlik\AppData\Local\Windows Live
2012-09-13 18:50 . 2012-09-13 18:50 -------- d-----w- c:\program files (x86)\Common Files\Windows Live
2012-09-08 17:43 . 2012-09-15 11:52 -------- d-----w- c:\users\Pavlik\AppData\Roaming\AOL
2012-09-08 17:43 . 2012-09-08 17:43 -------- d--h--w- c:\windows\AxInstSV
2012-09-08 17:41 . 2012-09-08 17:43 -------- d-----w- c:\users\Pavlik\AppData\Local\AOL
2012-09-08 17:41 . 2012-09-08 17:41 -------- d-----w- c:\programdata\Viewpoint
2012-09-08 17:41 . 2012-09-08 17:41 -------- d-----w- c:\program files (x86)\Viewpoint
2012-09-08 17:41 . 2012-09-15 13:45 -------- d-----w- c:\program files (x86)\Common Files\AOL
2012-09-08 17:40 . 2012-09-15 11:52 -------- d-----w- c:\programdata\AOL
2012-09-08 17:40 . 2012-09-08 17:40 -------- d-----w- c:\programdata\AOL OCP
2012-09-08 17:36 . 2012-09-08 17:36 -------- d-----w- c:\programdata\AOL Downloads
2012-09-08 17:28 . 2012-09-08 17:28 -------- d-----w- c:\programdata\Nexon
2012-09-08 17:16 . 2012-09-08 17:16 -------- d-----w- c:\program files (x86)\BandiMPEG1
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-07 06:26 . 2012-07-11 21:01 25640 ----a-w- c:\windows\gdrv.sys
2012-10-04 15:27 . 2012-07-11 21:10 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-10-04 15:27 . 2012-07-11 21:10 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-09-06 11:59 . 2012-09-05 12:58 281288 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2012-09-06 11:59 . 2012-09-05 12:57 281288 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2012-09-05 17:53 . 2012-09-05 12:58 281288 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2012-09-05 12:57 . 2012-09-05 12:57 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2012-09-04 10:20 . 2012-07-11 21:27 30528 ----a-w- c:\windows\GVTDrv64.sys
2012-08-06 00:04 . 2012-08-31 15:35 4670000 ----a-w- c:\windows\SysWow64\GameMon.des
2012-07-28 01:09 . 2012-07-28 01:09 57792 ----a-w- c:\windows\SysWow64\sirenacm.dll
2012-07-28 00:54 . 2012-07-28 00:54 321472 ----a-w- c:\windows\WLXPGSS.SCR
2012-07-26 17:08 . 2012-07-26 17:08 862664 ----a-w- c:\windows\SysWow64\msvcr110.dll
2012-07-26 17:08 . 2012-07-26 17:08 534480 ----a-w- c:\windows\SysWow64\msvcp110.dll
2012-07-26 17:08 . 2012-07-26 17:08 251864 ----a-w- c:\windows\SysWow64\vccorlib110.dll
2012-07-26 17:08 . 2012-07-26 17:08 153536 ----a-w- c:\windows\SysWow64\atl110.dll
2012-07-26 17:08 . 2012-07-26 17:08 115656 ----a-w- c:\windows\SysWow64\vcomp110.dll
2012-07-26 15:49 . 2012-07-26 15:43 560184 ----a-w- c:\windows\system32\drivers\sptd.sys
2012-07-26 13:22 . 2012-07-26 13:22 828872 ----a-w- c:\windows\system32\msvcr110.dll
2012-07-26 13:22 . 2012-07-26 13:22 661448 ----a-w- c:\windows\system32\msvcp110.dll
2012-07-26 13:22 . 2012-07-26 13:22 354264 ----a-w- c:\windows\system32\vccorlib110.dll
2012-07-26 13:22 . 2012-07-26 13:22 177096 ----a-w- c:\windows\system32\atl110.dll
2012-07-26 13:22 . 2012-07-26 13:22 124360 ----a-w- c:\windows\system32\vcomp110.dll
2012-07-17 13:14 . 2012-07-17 13:14 253184 ----a-w- c:\windows\system32\LIVESSP.DLL
2012-07-17 12:49 . 2012-07-17 12:49 209648 ----a-w- c:\windows\SysWow64\LIVESSP.DLL
2012-07-17 12:37 . 2012-07-17 12:37 19736 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-07-11 21:43 . 2012-07-11 21:44 111960 ----a-w- c:\windows\dxsdkuninst.exe
2012-04-27 13:45 . 2012-04-27 13:45 435544 ----a-w- c:\program files (x86)\Sony.MediaSoftware.XDCAMExp.dll
2012-04-27 13:45 . 2012-04-27 13:45 730456 ----a-w- c:\program files (x86)\WidgetLibrary.dll
2012-04-27 13:45 . 2012-04-27 13:45 865624 ----a-w- c:\program files (x86)\Sony.MediaSoftware.VideoEffectsUI.dll
2012-04-27 13:45 . 2012-04-27 13:45 8820568 ----a-w- c:\program files (x86)\vegas110k.dll
2012-04-27 13:45 . 2012-04-27 13:45 17651544 ----a-w- c:\program files (x86)\vegas110.exe
2012-04-27 13:45 . 2012-04-27 13:45 5361496 ----a-w- c:\program files (x86)\sftutor.dll
2012-04-27 13:45 . 2012-04-27 13:45 108376 ----a-w- c:\program files (x86)\Sony.Vegas.RenderAs.dll
2012-04-27 13:45 . 2012-04-27 13:45 812376 ----a-w- c:\program files (x86)\Sony.MediaSoftware.TextGen.CoreGraphics.dll
2012-04-27 13:45 . 2012-04-27 13:45 460120 ----a-w- c:\program files (x86)\Sony.MediaSoftware.TextGen.CoreGraphics.XmlSerializers.dll
2012-04-27 13:45 . 2012-04-27 13:45 54616 ----a-w- c:\program files (x86)\CorePrimitives.dll
2012-04-27 13:45 . 2012-04-27 13:45 320856 ----a-w- c:\program files (x86)\CoreUI.XmlSerializers.dll
2012-04-27 13:45 . 2012-04-27 13:45 24920 ----a-w- c:\program files (x86)\Interop.dll
2012-04-27 13:45 . 2012-04-27 13:45 2027352 ----a-w- c:\program files (x86)\CoreGraphics.Native.dll
2012-04-27 13:45 . 2012-04-27 13:45 124248 ----a-w- c:\program files (x86)\CoreUI.dll
2012-04-27 13:45 . 2012-04-27 13:45 46424 ----a-w- c:\program files (x86)\ControlLibrary.dll
2012-04-27 13:45 . 2012-04-27 13:45 370008 ----a-w- c:\program files (x86)\Sony.Vegas.dll
2012-04-27 13:45 . 2012-04-27 13:45 21336 ----a-w- c:\program files (x86)\Sony.MediaSoftware.SfBdMuxCom.dll
2012-04-27 13:45 . 2012-04-27 13:45 79192 ----a-w- c:\program files (x86)\Sony.Vegas.Publish.dll
2012-04-27 13:45 . 2012-04-27 13:45 111960 ----a-w- c:\program files (x86)\Sony.MediaSoftware.ExternalVideoDevice.dll
2012-04-27 13:45 . 2012-04-27 13:45 382296 ----a-w- c:\program files (x86)\Sony.MediaSoftware.clrshared.dll
2012-04-27 13:45 . 2012-04-27 13:45 238936 ----a-w- c:\program files (x86)\Sony.MediaSoftware.DeviceExp.dll
2012-04-27 13:45 . 2012-04-27 13:45 234840 ----a-w- c:\program files (x86)\Sony.Capture.dll
2012-04-27 13:45 . 2012-04-27 13:45 71000 ----a-w- c:\program files (x86)\Sony.MediaSoftware.Skins.dll
2012-04-27 13:45 . 2012-04-27 13:45 3476824 ----a-w- c:\program files (x86)\sfvstwrap.dll
2012-04-27 13:45 . 2012-04-27 13:45 3169112 ----a-w- c:\program files (x86)\sfvstserver.exe
2012-04-27 13:45 . 2012-04-27 13:45 2275672 ----a-w- c:\program files (x86)\sfpublish.dll
2012-04-27 13:45 . 2012-04-27 13:45 19288 ----a-w- c:\program files (x86)\sfvstproxystubx86.dll
2012-04-27 13:45 . 2012-04-27 13:45 3885912 ----a-w- c:\program files (x86)\ApplicationRegistration.exe
2012-04-27 13:45 . 2012-04-27 13:45 2338648 ----a-w- c:\program files (x86)\sfapprw.dll
2012-04-27 13:45 . 2012-04-27 13:45 1653080 ----a-w- c:\program files (x86)\eula.dll
2012-04-27 13:45 . 2012-04-27 13:45 361816 ----a-w- c:\program files (x86)\Sony.MediaSoftware.TextGen.OFXInterop.dll
2012-04-27 13:45 . 2012-04-27 13:45 18776 ----a-w- c:\program files (x86)\NGenTool.exe
2012-04-27 13:45 . 2012-04-27 13:45 79192 ----a-w- c:\program files (x86)\Sony.Monitor3D.dll
2012-04-27 13:44 . 2012-04-27 13:44 2327384 ----a-w- c:\program files (x86)\sfmarket2.dll
2012-04-27 13:44 . 2012-04-27 13:44 6033752 ----a-w- c:\program files (x86)\ffplugsk32.dll
2012-04-27 13:44 . 2012-04-27 13:44 3294552 ----a-w- c:\program files (x86)\FileIOSurrogate.exe
2012-04-27 13:44 . 2012-04-27 13:44 1814872 ----a-w- c:\program files (x86)\discdrv.dll
2012-04-27 13:44 . 2012-04-27 13:44 46424 ----a-w- c:\program files (x86)\FileIOProxyStubx86.dll
2012-04-27 13:44 . 2012-04-27 13:44 38232 ----a-w- c:\program files (x86)\DecklinkVideoProperties.dll
2012-04-27 13:44 . 2012-04-27 13:44 38232 ----a-w- c:\program files (x86)\AjaVideoProperties.dll
2012-04-27 13:44 . 2012-04-27 13:44 23896 ----a-w- c:\program files (x86)\CreateMinidumpx86.exe
2012-04-27 13:44 . 2012-04-27 13:44 73048 ----a-w- c:\program files (x86)\PRSConfig.exe
2012-04-27 13:44 . 2012-04-27 13:44 6071640 ----a-w- c:\program files (x86)\ErrorReportClient.exe
2012-04-27 13:44 . 2012-04-27 13:44 20312 ----a-w- c:\program files (x86)\ErrorReportLauncher.exe
2012-04-27 13:44 . 2012-04-27 13:44 61272 ----a-w- c:\program files (x86)\ErrorReport.dll
2012-04-27 13:44 . 2012-04-27 13:44 41304 ----a-w- c:\program files (x86)\sfspti.dll
2012-04-27 13:44 . 2012-04-27 13:44 1664856 ----a-w- c:\program files (x86)\sfscsi.dll
2012-04-27 13:44 . 2012-04-27 13:44 1654616 ----a-w- c:\program files (x86)\sfldsim.ldd.dll
2012-04-27 13:44 . 2012-04-27 13:44 1653592 ----a-w- c:\program files (x86)\sfprnsim.pdd.dll
2012-04-27 13:44 . 2012-04-27 13:44 4107608 ----a-w- c:\program files (x86)\sfcdix.dll
2012-04-27 13:44 . 2012-04-27 13:44 2387800 ----a-w- c:\program files (x86)\sfdvd.dll
2012-04-27 13:44 . 2012-04-27 13:44 21848 ----a-w- c:\program files (x86)\sfcdsim.cdd.dll
2012-04-27 13:44 . 2012-04-27 13:44 1679704 ----a-w- c:\program files (x86)\sfcdfs.dll
2012-04-27 13:44 . 2012-04-27 13:44 1316184 ----a-w- c:\program files (x86)\sfld.ldd.dll
2012-04-27 13:44 . 2012-04-27 13:44 1657176 ----a-w- c:\program files (x86)\fargo.pdd.dll
2012-04-27 13:44 . 2012-04-27 13:44 1103704 ----a-w- c:\program files (x86)\sfcd.cdd.dll
2011-11-17 09:00 . 2011-11-17 09:00 13312 ----a-w- c:\program files (x86)\ProDiscAPI.dll
2011-11-17 08:59 . 2011-11-17 08:59 2936832 ----a-w- c:\program files (x86)\AAFCOAPI.dll
2011-11-17 08:59 . 2011-11-17 08:59 1045128 ----a-w- c:\program files (x86)\dbghelp.dll
2011-11-17 08:56 . 2011-11-17 08:56 1347072 ----a-w- c:\program files (x86)\proDADMercalli20.dll
2011-11-17 08:53 . 2011-11-17 08:53 659456 ----a-w- c:\program files (x86)\sonymvd2pro_xp.dll
2011-11-17 08:53 . 2011-11-17 08:53 245760 ----a-w- c:\program files (x86)\log4net.dll
2010-04-20 08:21 . 2010-04-20 08:21 4275544 ----a-w- c:\program files (x86)\vidcap60.exe
2010-04-20 08:21 . 2010-04-20 08:21 820568 ----a-w- c:\program files (x86)\sftutor60.dll
2010-04-20 08:19 . 2010-04-20 08:19 1631576 ----a-w- c:\program files (x86)\sfs4rw.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2012-09-13 18:51 220608 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2012-09-13 18:51 220608 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2012-09-13 18:51 220608 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\SkyDriveShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"="c:\progra~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2005-02-17 221184]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2012-07-14 895376]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2012-08-11 1353080]
"AlcoholAutomount"="c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" [2010-08-20 33120]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-11 3672384]
"MediaGet2"="c:\users\Pavlik\AppData\Local\MediaGet2\mediaget.exe" [2012-08-12 9106664]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2011-02-22 1475584]
"Sony PC Companion"="c:\program files (x86)\Sony\Sony PC Companion\PCCompanion.exe" [2012-05-31 445624]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2012-07-13 17420464]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"STCAgent"="c:\program files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe" [2011-03-04 776064]
"ZyngaGamesAgent"="c:\program files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe" [2010-11-15 841544]
"ISUSScheduler"="c:\program files (x86)\Common Files\InstallShield\UpdateService\issch.exe" [2005-02-17 81920]
"4StoryPrePatch"="c:\program files (x86)\Zemi Interactive\4StoryUS\PrePatch.exe" [2010-11-19 319488]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2012-08-29 1996200]
"AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2012-09-25 386336]
.
c:\users\Pavlik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
CurseClientStartup.ccip [2012-9-15 0]
Nostromo Loadout Manager.lnk - c:\users\Pavlik\AppData\Roaming\Microsoft\Installer\{548C7B77-8B04-427E-ACD0-D0E6E6E59BCF}\NewShortcut2_548C7B778B04427EACD0D0E6E6E59BCF.exe [2012-9-17 45056]
PlayerScore.lnk - c:\program files (x86)\PlayerScoreClient\PlayerScore.exe [2012-8-28 253440]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
GamersFirst LIVE!.lnk - c:\program files (x86)\GamersFirst\LIVE!\Live.exe [2012-6-22 2720408]
Ralink Wireless Utility.lnk - c:\program files (x86)\TP-LINK\Common\TWCU.exe [2012-7-14 1638400]
TP-LINK Wireless Utility.lnk - c:\program files (x86)\TP-LINK\Common\TWCU.exe [2012-7-14 1638400]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer4"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
R3 dmvsc;dmvsc;c:\windows\system32\DRIVERS\dmvsc.sys [2011-02-22 71168]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys [x]
R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys [2012-09-04 30528]
R3 MSICDSetup;MSICDSetup;E:\CDriver64.sys [x]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2011-02-22 20992]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2011-02-22 88960]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\DRIVERS\terminpt.sys [2011-02-22 34816]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2011-02-22 59392]
R3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%;c:\windows\system32\DRIVERS\TsUsbGD.sys [2011-02-22 31232]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2011-02-22 117248]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-09-15 1255736]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2012-03-14 62496]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys [2011-01-10 21104]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2012-09-24 27800]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2012-03-14 209768]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2012-03-14 148528]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [2012-03-14 38288]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2012-09-25 84256]
S2 DES2 Service;DES2 Service for Energy Saving.;c:\program files (x86)\GIGABYTE\EnergySaver2\des2svr.exe [2011-08-22 57344]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [2012-03-07 913144]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-08-29 2369960]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]
S2 RalinkRegistryWriter64;Ralink Registry Writer 64;c:\program files (x86)\TP-LINK\Common\RaRegistry64.exe [2010-07-30 212256]
S2 SCBackService;Splashtop Connect Service;c:\program files (x86)\Splashtop\Splashtop Connect\BackService.exe [2010-11-15 477000]
S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-08-13 3064000]
S2 Smart TimeLock;Smart TimeLock Service;c:\program files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [2009-10-13 114688]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-05-15 382272]
S2 WCUService_STC_FF;Splashtop Connect Firefox Software Updater Service;c:\program files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe [2011-03-24 493384]
S2 WCUService_STC_IE;Splashtop Connect IE Software Updater Service;c:\program files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe [2011-03-22 497480]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys [2011-07-29 56960]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys [2011-07-29 79104]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2010-09-21 56344]
S3 netr28ux;TP-LINK 150Mbps Wireless Lite N Adapter;c:\windows\system32\DRIVERS\netr28ux.sys [2010-05-27 1121632]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2012-04-18 188736]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-01 535656]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
.
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2012-09-13 18:51 244672 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2012-09-13 18:51 244672 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2012-09-13 18:51 244672 ----a-w- c:\users\Pavlik\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-06-17 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-06-17 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-06-17 416024]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-07-21 12632168]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2012-03-07 4081008]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-02-22 500208]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"RPMKickstart"="c:\program files\GIGABYTE\SMART6\Recovery\RPMKickstart.exe" [2011-03-30 2552320]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://g.live.com/1rewlive4startup/home
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{D4027C7F-154A-4066-A1AD-4243D8127440} - c:\program files (x86)\Ask.com\GenericAskToolbar.dll
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Wow6432Node-HKLM-Run-ApnUpdater - c:\program files (x86)\Ask.com\Updater\Updater.exe
WebBrowser-{91397D20-1446-11D4-8AF4-0040CA1127B6} - (no file)
AddRemove-PunkBusterSvc - c:\users\PAVLIK\APB RELOADED\Binaries\pbsvc_apb.exe
AddRemove-{4FFBB818-B13C-11E0-931D-B2664824019B}_is1 - c:\program files (x86)\Complitly\unins000.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\TP-LINK\Common\RaRegistry.exe
c:\program files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
c:\program files (x86)\Belkin\Nostromo\nost_LM.exe
c:\program files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
c:\program files (x86)\Common Files\Steam\SteamService.exe
c:\program files (x86)\GIGABYTE\Smart6\Timelock\AlarmClock.exe
.
**************************************************************************
.
Celkový čas: 2012-10-07 08:30:05 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-10-07 06:30
ComboFix2.txt 2012-10-06 18:37
.
Před spuštěním: Volných bajtů: 18 841 989 120
Po spuštění: Volných bajtů: 18 599 976 960
.
- - End Of File - - 57E34FD047B77CE243622D774865ADB7
-
Rudy
- Site Admin
- Příspěvky: 119515
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: SkypeVir
Log již vypadá čistý.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?