Dobry den,
pouzivam windows vista a pri spusteni akehokolvek exe programu vybehne hlaska Device attached system not functioning a program sa nespusti. Takisto v priehliadacoch sa po case prestanu uplne zobrazovat vysledky z vyhladavania z google.
Za pomoc vopred dakujem.
Logfile of random's system information tool 1.09 (written by random/random)
Run by douglascorrigan at 2012-08-25 13:48:13
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 96 GB (64%) free of 150 GB
Total RAM: 1981 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 1:48:21 PM, on 8/25/2012
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16448)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\RtHDVCpl.exe
C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe
C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe
C:\Program Files\Fujitsu\SSUtility\FJSSDMN.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Users\DOUGLA~1\AppData\Local\Temp\TeamViewer\Version7\TeamViewer.exe
C:\Windows\System32\cmd.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
C:\Users\douglascorrigan\Favorites\Downloads\RSIT.exe
C:\Program Files\trend micro\douglascorrigan.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R3 - URLSearchHook: Ashampoo US Toolbar - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - C:\Program Files\Ashampoo_US\prxtbAsha.dll
R3 - URLSearchHook: MyAshampoo Toolbar - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\tbMyAs.dll
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Ashampoo US - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - C:\Program Files\Ashampoo_US\prxtbAsha.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
O2 - BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\SEARCH~1\Datamngr\ToolBar\searchqudtx.dll (file missing)
O2 - BHO: MyAshampoo Toolbar - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\tbMyAs.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll
O2 - BHO: Vgrabber - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} - C:\Program Files\Vgrabber\prxtbVgra.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: Vgrabber Toolbar - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} - C:\Program Files\Vgrabber\prxtbVgra.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\SEARCH~1\Datamngr\ToolBar\searchqudtx.dll (file missing)
O3 - Toolbar: (no name) - !{07B18EA9-A523-4961-B6BB-170DE4475CCA} - (no file)
O3 - Toolbar: (no name) - !{EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: Ashampoo US Toolbar - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - C:\Program Files\Ashampoo_US\prxtbAsha.dll
O3 - Toolbar: MyAshampoo Toolbar - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\tbMyAs.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [IndicatorUtility] C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
O4 - HKLM\..\Run: [LoadFUJ02E3] C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
O4 - HKLM\..\Run: [LoadFujitsuQuickTouch] C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe
O4 - HKLM\..\Run: [LoadBtnHnd] C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe
O4 - HKLM\..\Run: [SSUtility] C:\Program Files\Fujitsu\SSUtility\FJSSDMN.exe
O4 - HKLM\..\Run: [RegWork] C:\Program Files\RegWork\RegWork.exe
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - .DEFAULT User Startup: CCC.lnk = ? (User 'Default user')
O4 - Startup: CCC.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.mcafee.com
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: o2flash - O2Micro International - C:\Windows\system32\o2flash.exe
O23 - Service: UpdateNaviInstallService - FUJITSU LIMITED - C:\Program Files\Fujitsu\fjdvrupd\updnvsrv.exe
--
End of file - 7245 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\Regwork.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{124d001a-bdcb-472f-aa59-bbe7e4bc3204}]
Ashampoo US Toolbar - C:\Program Files\Ashampoo_US\prxtbAsha.dll [2011-05-09 176936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-11-29 3908192]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}]
Searchqu Toolbar - C:\PROGRA~1\SEARCH~1\Datamngr\ToolBar\searchqudtx.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]
MyAshampoo Toolbar - C:\Program Files\MyAshampoo\tbMyAs.dll [2010-11-29 3908192]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2012-01-17 342128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll [2012-01-17 1003576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}]
Vgrabber Toolbar - C:\Program Files\Vgrabber\prxtbVgra.dll [2011-05-09 176936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-09-06 42272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
SingleInstance Class - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll [2008-07-28 160496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} - Vgrabber Toolbar - C:\Program Files\Vgrabber\prxtbVgra.dll [2011-05-09 176936]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2012-01-17 342128]
{99079a25-328f-4bd4-be04-00955acaa0a7} - Searchqu Toolbar - C:\PROGRA~1\SEARCH~1\Datamngr\ToolBar\searchqudtx.dll []
!{07B18EA9-A523-4961-B6BB-170DE4475CCA}
!{EF99BD32-C1FB-11D2-892F-0090271D4F88}
{124d001a-bdcb-472f-aa59-bbe7e4bc3204} - Ashampoo US Toolbar - C:\Program Files\Ashampoo_US\prxtbAsha.dll [2011-05-09 176936]
{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - MyAshampoo Toolbar - C:\Program Files\MyAshampoo\tbMyAs.dll [2010-11-29 3908192]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-11-29 3908192]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2006-11-19 4018176]
"IndicatorUtility"=C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe [2007-02-09 97072]
"LoadFUJ02E3"=C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe [2006-11-17 80688]
"LoadFujitsuQuickTouch"=C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe [2006-11-25 260912]
"LoadBtnHnd"=C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe [2006-11-12 68400]
"SSUtility"=C:\Program Files\Fujitsu\SSUtility\FJSSDMN.exe [2007-12-14 193832]
"RegWork"=C:\Program Files\RegWork\RegWork.exe []
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2012-03-26 931200]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-10 1233920]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FJUPDNV_Chitose]
C:\Program Files\Fujitsu\fjdvrupd\updatenv.exe [2007-02-05 167936]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2011-05-06 30192]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Picasa Media Detector]
C:\Program Files\Picasa2\PicasaMediaDetector.exe [2007-02-20 366400]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2006-11-13 52832]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]
C:\Users\douglascorrigan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
CCC.lnk - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2012-08-25 13:32:17 ----D---- C:\rsit
2012-08-25 13:32:17 ----D---- C:\Program Files\trend micro
2012-08-25 13:01:00 ----A---- C:\RSIT.exe
2012-08-25 12:36:35 ----D---- C:\Users\douglascorrigan\AppData\Roaming\TeamViewer
2012-08-16 03:03:26 ----A---- C:\Windows\system32\localspl.dll
2012-08-16 03:02:49 ----A---- C:\Windows\system32\mshtmled.dll
2012-08-16 03:02:48 ----A---- C:\Windows\system32\ieui.dll
2012-08-16 03:02:48 ----A---- C:\Windows\system32\iertutil.dll
2012-08-16 03:02:47 ----A---- C:\Windows\system32\ieUnatt.exe
2012-08-16 03:02:46 ----A---- C:\Windows\system32\wininet.dll
2012-08-16 03:02:46 ----A---- C:\Windows\system32\jscript9.dll
2012-08-16 03:02:46 ----A---- C:\Windows\system32\jscript.dll
2012-08-16 03:02:45 ----A---- C:\Windows\system32\url.dll
2012-08-16 03:02:45 ----A---- C:\Windows\system32\jsproxy.dll
2012-08-16 03:02:44 ----A---- C:\Windows\system32\urlmon.dll
2012-08-16 03:02:41 ----A---- C:\Windows\system32\mshtml.dll
2012-08-16 03:02:40 ----A---- C:\Windows\system32\ieframe.dll
2012-08-16 03:02:15 ----A---- C:\Windows\system32\win32k.sys
======List of files/folders modified in the last 1 month======
2012-08-25 13:45:31 ----D---- C:\Windows\Temp
2012-08-25 13:32:17 ----RD---- C:\Program Files
2012-08-25 13:18:09 ----D---- C:\Windows\Prefetch
2012-08-25 13:15:46 ----SHD---- C:\$RECYCLE.BIN
2012-08-25 13:15:19 ----RD---- C:\Users
2012-08-22 17:30:47 ----D---- C:\Windows\Minidump
2012-08-22 17:30:16 ----D---- C:\Windows
2012-08-21 21:23:44 ----SHD---- C:\Windows\Installer
2012-08-21 11:36:13 ----D---- C:\Windows\system32\drivers
2012-08-21 11:36:08 ----D---- C:\Windows\system32\drivers\UMDF
2012-08-21 11:36:07 ----D---- C:\Windows\System32
2012-08-19 18:04:28 ----D---- C:\Users\douglascorrigan\AppData\Roaming\.minecraft
2012-08-16 09:05:51 ----D---- C:\Windows\system32\migration
2012-08-16 09:05:49 ----D---- C:\Program Files\Internet Explorer
2012-08-16 03:09:51 ----D---- C:\ProgramData\Microsoft Help
2012-08-16 03:03:57 ----A---- C:\Windows\system32\mrt.exe
2012-08-16 03:03:40 ----D---- C:\Windows\winsxs
2012-08-16 03:03:09 ----D---- C:\Windows\system32\catroot
2012-08-16 03:03:08 ----D---- C:\Windows\system32\catroot2
2012-08-12 13:20:39 ----D---- C:\Windows\inf
2012-08-12 13:20:39 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-07-28 21:55:33 ----D---- C:\ProgramData\Adobe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AtiPcie;ATI PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2006-10-29 7680]
R0 FBIOSDRV;FBIOSDRV; C:\Windows\system32\drivers\FBIOSDRV.SYS [2006-08-28 8960]
R0 FJGSDisk;G-Sensor Application Filter Driver; C:\Windows\system32\DRIVERS\FJGSDisk.sys [2007-10-25 12712]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2012-03-20 171064]
R0 O2MDRDR;O2MDRDR; C:\Windows\system32\DRIVERS\o2media.sys [2006-10-03 36640]
R0 O2SDRDR;O2SDRDR; C:\Windows\system32\DRIVERS\o2sd.sys [2006-10-12 33152]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2006-09-27 36560]
R2 irda;IrDA Protocol; C:\Windows\system32\DRIVERS\irda.sys [2008-01-18 95744]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2008-03-21 1203776]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-09-30 1184768]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-02-11 4450816]
R3 FUJ02B1;Fujitsu FUJ02B1 Device Driver; C:\Windows\system32\DRIVERS\FUJ02B1.sys [2006-11-01 5888]
R3 FUJ02E3;Fujitsu FUJ02E3 Device Driver; C:\Windows\system32\DRIVERS\FUJ02E3.sys [2006-11-01 5632]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2006-11-22 1652968]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2011-05-26 312096]
S1 bebczpam;bebczpam; \??\C:\Windows\system32\drivers\bebczpam.sys []
S1 itfhjgle;itfhjgle; \??\C:\Windows\system32\drivers\itfhjgle.sys []
S1 ketpzzin;ketpzzin; \??\C:\Windows\system32\drivers\ketpzzin.sys []
S1 ptbwhixl;ptbwhixl; \??\C:\Windows\system32\drivers\ptbwhixl.sys []
S1 shaeqjbg;shaeqjbg; \??\C:\Windows\system32\drivers\shaeqjbg.sys []
S1 wxvpgqww;wxvpgqww; \??\C:\Windows\system32\drivers\wxvpgqww.sys []
S3 ADVNTDRV;ADVNTDRV; C:\Windows\System32\drivers\ADVNTDRV.SYS [1999-11-18 3872]
S3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys []
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-18 5632]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2006-10-18 1380864]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-18 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-18 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-18 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-18 6016]
S3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2012-03-20 74112]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-02-11 4450816]
S3 SMSCIRDA;SMSC Infrared Device Driver; C:\Windows\system32\DRIVERS\SMSCirda.sys [2006-11-02 30720]
S3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2007-01-12 113792]
S3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2007-01-24 73728]
S3 tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2007-01-12 40576]
S3 WinUsb;WinUSB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2009-04-10 31616]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-09-30 40448]
S3 wtpfiltr;wtpfiltr; C:\Windows\system32\drivers\wtpfiltr.sys [2006-12-05 7680]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-18 83328]
S4 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2006-11-02 82432]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2008-03-18 13312]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2010-02-10 733184]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2012-03-26 11552]
R2 o2flash;o2flash; C:\Windows\system32\o2flash.exe [2005-09-13 57344]
R2 UpdateNaviInstallService;UpdateNaviInstallService; C:\Program Files\Fujitsu\fjdvrupd\updnvsrv.exe [2007-01-27 11776]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-05-02 135664]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-13 250056]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-03-29 31048]
S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2011-05-06 30192]
S3 gupdatem;Google Update Service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-05-02 135664]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-06-26 182768]
S3 IDriverT;InstallDriver Table Manager; c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2012-03-26 214952]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WPFFontCache_v0400;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
device attached system not functioning
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119519
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: device attached system not functioning
Zdravím!
1. Podívejte se do správce zařízení, zdy jsou nainstalovány všechny ovladače a zda některý hardware nehlásí chybu (žlutý vykřičník).
2. Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okona zkopírujte:
1. Podívejte se do správce zařízení, zdy jsou nainstalovány všechny ovladače a zda některý hardware nehlásí chybu (žlutý vykřičník).
2. Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okona zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT. V systému nevidím funkční antivir.:files
C:\Program Files\Ashampoo_US
C:\Program Files\MyAshampoo
C:\Program Files\ConduitEngine
C:\PROGRA~1\SEARCH~1\Datamngr\ToolBar
C:\Program Files\MyAshampoo
C:\Program Files\Google\Google Toolbar
C:\Program Files\Google\GoogleToolbarNotifier
C:\Program Files\Yahoo!\Companion
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\system32\drivers\bebczpam.sys
C:\Windows\system32\drivers\itfhjgle.sys
C:\Windows\system32\drivers\ketpzzin.sys
C:\Windows\system32\drivers\ptbwhixl.sys
C:\Windows\system32\drivers\shaeqjbg.sys
C:\Windows\system32\drivers\wxvpgqww.sys
:services
bebczpam
itfhjgle
ketpzzin
ptbwhixl
shaeqjbg
wxvpgqww
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{124d001a-bdcb-472f-aa59-bbe7e4bc3204}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: device attached system not functioning
Jak to tu vypadá? 
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: device attached system not functioning
Dobrý den,
pro neaktivitu je toto téma uzamknuto.
Pokud ho budete chtít odemknout, kontaktujte mě na email nebo některého z mých kolegů.
Děkujeme za pochopení
pro neaktivitu je toto téma uzamknuto.
Pokud ho budete chtít odemknout, kontaktujte mě na email nebo některého z mých kolegů.
Děkujeme za pochopení
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: device attached system not functioning
Na žádost odemknuto
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: device attached system not functioning
Diky. Ospravedlnujem sa za meskanie, ale tu su logy.
Logfile of random's system information tool 1.09 (written by random/random)
Run by douglascorrigan at 2012-10-14 14:25:39
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 71 GB (47%) free of 150 GB
Total RAM: 1981 MB (52% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 2:25:52 PM, on 10/14/2012
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16450)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe
C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe
C:\Program Files\Fujitsu\SSUtility\FJSSDMN.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Steam\New Folder\New Folder\Steam.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Users\DOUGLA~1\AppData\Local\Temp\TeamViewer\Version7\TeamViewer.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil32_11_4_402_278_ActiveX.exe
C:\Windows\System32\cmd.exe
C:\Users\douglascorrigan\Favorites\Downloads\RSIT.exe
C:\Program Files\trend micro\douglascorrigan.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R3 - URLSearchHook: (no name) - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - (no file)
R3 - URLSearchHook: (no name) - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Vgrabber - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} - C:\Program Files\Vgrabber\prxtbVgra.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [IndicatorUtility] C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
O4 - HKLM\..\Run: [LoadFUJ02E3] C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
O4 - HKLM\..\Run: [LoadFujitsuQuickTouch] C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe
O4 - HKLM\..\Run: [LoadBtnHnd] C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe
O4 - HKLM\..\Run: [SSUtility] C:\Program Files\Fujitsu\SSUtility\FJSSDMN.exe
O4 - HKLM\..\Run: [RegWork] C:\Program Files\RegWork\RegWork.exe
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\New Folder\New Folder\Steam.exe" -silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - .DEFAULT User Startup: CCC.lnk = ? (User 'Default user')
O4 - Startup: CCC.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.mcafee.com
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: o2flash - O2Micro International - C:\Windows\system32\o2flash.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: UpdateNaviInstallService - FUJITSU LIMITED - C:\Program Files\Fujitsu\fjdvrupd\updnvsrv.exe
--
End of file - 5956 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore1cda8ecb2baa231.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA1cda8ecb355e4cb.job
C:\Windows\tasks\Regwork.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-09-25 449512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}]
Vgrabber Toolbar - C:\Program Files\Vgrabber\prxtbVgra.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-09-25 157672]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2006-11-19 4018176]
"IndicatorUtility"=C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe [2007-02-09 97072]
"LoadFUJ02E3"=C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe [2006-11-17 80688]
"LoadFujitsuQuickTouch"=C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe [2006-11-25 260912]
"LoadBtnHnd"=C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe [2006-11-12 68400]
"SSUtility"=C:\Program Files\Fujitsu\SSUtility\FJSSDMN.exe [2007-12-14 193832]
"RegWork"=C:\Program Files\RegWork\RegWork.exe []
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2012-09-12 947176]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-10 1233920]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]
"Steam"=C:\Program Files\Steam\New Folder\New Folder\Steam.exe [2012-10-12 1353080]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FJUPDNV_Chitose]
C:\Program Files\Fujitsu\fjdvrupd\updatenv.exe [2007-02-05 167936]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2011-05-06 30192]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Picasa Media Detector]
C:\Program Files\Picasa2\PicasaMediaDetector.exe [2007-02-20 366400]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2006-11-13 52832]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]
C:\Users\douglascorrigan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
CCC.lnk - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2012-10-14 14:13:15 ----D---- C:\_OTM
2012-10-12 15:28:42 ----SHD---- C:\Config.Msi
2012-10-04 15:17:01 ----D---- C:\Program Files\NVIDIA Corporation
2012-10-04 15:16:40 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2012-10-04 15:16:38 ----A---- C:\Windows\system32\D3DX9_40.dll
2012-10-04 15:16:38 ----A---- C:\Windows\system32\d3dx10_40.dll
2012-10-04 15:16:38 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2012-10-04 15:16:37 ----A---- C:\Windows\system32\XAudio2_3.dll
2012-10-04 15:16:37 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2012-10-04 15:16:37 ----A---- C:\Windows\system32\xactengine3_3.dll
2012-10-04 15:16:37 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2012-10-04 15:16:36 ----A---- C:\Windows\system32\XAudio2_2.dll
2012-10-04 15:16:36 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2012-10-04 15:16:36 ----A---- C:\Windows\system32\xactengine3_2.dll
2012-10-04 15:16:36 ----A---- C:\Windows\system32\D3DX9_39.dll
2012-10-04 15:16:36 ----A---- C:\Windows\system32\d3dx10_39.dll
2012-10-04 15:16:36 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2012-10-04 15:16:35 ----A---- C:\Windows\system32\XAudio2_1.dll
2012-10-04 15:16:35 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2012-10-04 15:16:35 ----A---- C:\Windows\system32\xactengine3_1.dll
2012-10-04 15:16:35 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2012-10-04 15:16:34 ----A---- C:\Windows\system32\XAudio2_0.dll
2012-10-04 15:16:34 ----A---- C:\Windows\system32\D3DX9_38.dll
2012-10-04 15:16:34 ----A---- C:\Windows\system32\d3dx10_38.dll
2012-10-04 15:16:34 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2012-10-04 15:16:33 ----A---- C:\Windows\system32\xactengine3_0.dll
2012-10-04 15:16:33 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2012-10-04 15:16:33 ----A---- C:\Windows\system32\d3dx10_37.dll
2012-10-04 15:16:33 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2012-10-04 15:16:32 ----A---- C:\Windows\system32\xactengine2_10.dll
2012-10-04 15:16:32 ----A---- C:\Windows\system32\D3DX9_37.dll
2012-10-04 15:16:31 ----A---- C:\Windows\system32\xactengine2_9.dll
2012-10-04 15:16:31 ----A---- C:\Windows\system32\d3dx9_36.dll
2012-10-04 15:16:31 ----A---- C:\Windows\system32\d3dx10_36.dll
2012-10-04 15:16:31 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2012-10-04 15:16:30 ----A---- C:\Windows\system32\d3dx9_35.dll
2012-10-04 15:16:30 ----A---- C:\Windows\system32\d3dx10_35.dll
2012-10-04 15:16:30 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2012-10-04 15:16:29 ----A---- C:\Windows\system32\xactengine2_8.dll
2012-10-04 15:16:29 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2012-10-04 15:16:29 ----A---- C:\Windows\system32\d3dx9_34.dll
2012-10-04 15:16:29 ----A---- C:\Windows\system32\d3dx10_34.dll
2012-10-04 15:16:29 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2012-10-04 15:16:28 ----A---- C:\Windows\system32\xactengine2_7.dll
2012-10-04 15:16:28 ----A---- C:\Windows\system32\d3dx10_33.dll
2012-10-04 15:16:28 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2012-10-04 15:16:27 ----A---- C:\Windows\system32\xactengine2_6.dll
2012-10-04 15:16:27 ----A---- C:\Windows\system32\d3dx9_33.dll
2012-10-04 15:16:26 ----A---- C:\Windows\system32\xactengine2_5.dll
2012-10-04 15:16:26 ----A---- C:\Windows\system32\d3dx9_32.dll
2012-10-04 15:16:26 ----A---- C:\Windows\system32\d3dx10.dll
2012-10-04 15:16:25 ----A---- C:\Windows\system32\xactengine2_4.dll
2012-10-04 15:16:25 ----A---- C:\Windows\system32\xactengine2_3.dll
2012-10-04 15:16:25 ----A---- C:\Windows\system32\x3daudio1_1.dll
2012-10-04 15:16:25 ----A---- C:\Windows\system32\d3dx9_31.dll
2012-10-04 15:16:24 ----A---- C:\Windows\system32\xinput1_2.dll
2012-10-04 15:16:24 ----A---- C:\Windows\system32\xinput1_1.dll
2012-10-04 15:16:24 ----A---- C:\Windows\system32\xactengine2_2.dll
2012-10-04 15:16:24 ----A---- C:\Windows\system32\xactengine2_1.dll
2012-10-04 15:16:16 ----A---- C:\Windows\system32\xactengine2_0.dll
2012-10-04 15:16:16 ----A---- C:\Windows\system32\x3daudio1_0.dll
2012-10-04 15:16:16 ----A---- C:\Windows\system32\d3dx9_30.dll
2012-10-04 15:16:16 ----A---- C:\Windows\system32\d3dx9_29.dll
2012-10-04 15:16:15 ----A---- C:\Windows\system32\d3dx9_28.dll
2012-10-04 15:16:15 ----A---- C:\Windows\system32\d3dx9_27.dll
2012-10-04 15:16:14 ----A---- C:\Windows\system32\d3dx9_26.dll
2012-10-04 15:16:14 ----A---- C:\Windows\system32\d3dx9_25.dll
2012-10-04 15:16:14 ----A---- C:\Windows\system32\d3dx9_24.dll
2012-09-29 20:57:16 ----D---- C:\Program Files\MSBuild
2012-09-27 20:38:49 ----D---- C:\Program Files\Common Files\Steam
2012-09-25 18:35:03 ----D---- C:\Users\douglascorrigan\AppData\Roaming\.techniclauncher
2012-09-25 18:27:09 ----D---- C:\ProgramData\Ask
2012-09-25 18:27:03 ----D---- C:\Program Files\Common Files\Java
2012-09-25 18:26:52 ----A---- C:\Windows\system32\npDeployJava1.dll
2012-09-25 18:26:52 ----A---- C:\Windows\system32\javaws.exe
2012-09-25 18:26:30 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2012-09-25 18:26:30 ----A---- C:\Windows\system32\javaw.exe
2012-09-25 18:26:30 ----A---- C:\Windows\system32\java.exe
2012-09-25 18:19:14 ----D---- C:\Users\douglascorrigan\AppData\Roaming\.minecraft
2012-09-23 15:16:45 ----A---- C:\Windows\system32\vbscript.dll
2012-09-23 15:16:45 ----A---- C:\Windows\system32\mshtmled.dll
2012-09-23 15:16:44 ----A---- C:\Windows\system32\jsproxy.dll
2012-09-23 15:16:44 ----A---- C:\Windows\system32\ieui.dll
2012-09-23 15:16:43 ----A---- C:\Windows\system32\msfeeds.dll
2012-09-23 15:16:43 ----A---- C:\Windows\system32\ieUnatt.exe
2012-09-23 15:16:42 ----A---- C:\Windows\system32\wininet.dll
2012-09-23 15:16:42 ----A---- C:\Windows\system32\jscript.dll
2012-09-23 15:16:41 ----A---- C:\Windows\system32\url.dll
2012-09-23 15:16:41 ----A---- C:\Windows\system32\jscript9.dll
2012-09-23 15:16:40 ----A---- C:\Windows\system32\iertutil.dll
2012-09-23 15:16:39 ----A---- C:\Windows\system32\urlmon.dll
2012-09-23 15:16:37 ----A---- C:\Windows\system32\ieframe.dll
2012-09-23 15:16:36 ----A---- C:\Windows\system32\mshtml.dll
2012-09-23 13:14:34 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2012-09-23 13:07:59 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2012-09-23 13:07:58 ----A---- C:\Windows\system32\D3DX9_43.dll
2012-09-23 12:41:47 ----A---- C:\Windows\system32\localspl.dll
2012-09-23 12:31:01 ----A---- C:\Windows\system32\win32k.sys
2012-09-23 12:27:45 ----A---- C:\Windows\system32\msxml6.dll
2012-09-23 12:27:45 ----A---- C:\Windows\system32\msxml3.dll
2012-09-23 12:22:52 ----A---- C:\Windows\system32\schannel.dll
2012-09-23 12:22:51 ----A---- C:\Windows\system32\ncrypt.dll
2012-09-23 12:22:51 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-09-22 20:08:19 ----A---- C:\Windows\system32\D3DX9_42.dll
2012-09-22 20:08:19 ----A---- C:\Windows\system32\d3dx10_42.dll
2012-09-22 20:08:18 ----A---- C:\Windows\system32\xinput1_3.dll
2012-09-17 21:56:52 ----D---- C:\Program Files\Microsoft Games for Windows - LIVE
2012-09-17 20:04:31 ----D---- C:\Program Files\Steam
======List of files/folders modified in the last 1 month======
2012-10-14 14:25:52 ----D---- C:\Windows\Prefetch
2012-10-14 14:25:44 ----D---- C:\Program Files\trend micro
2012-10-14 14:24:03 ----D---- C:\Windows\Temp
2012-10-14 14:13:17 ----RD---- C:\Program Files
2012-10-14 14:13:17 ----D---- C:\Program Files\Google
2012-10-12 19:54:01 ----SHD---- C:\Windows\Installer
2012-10-12 19:44:43 ----D---- C:\Windows\Tasks
2012-10-12 19:44:43 ----D---- C:\Windows\system32\Tasks
2012-10-12 17:50:31 ----SHD---- C:\System Volume Information
2012-10-12 15:41:01 ----D---- C:\Windows\system32\catroot
2012-10-12 15:40:55 ----D---- C:\Windows\winsxs
2012-10-12 15:39:12 ----D---- C:\Windows\system32\catroot2
2012-10-07 20:45:00 ----D---- C:\Windows\System32
2012-10-07 20:45:00 ----D---- C:\Windows\inf
2012-10-07 20:45:00 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-10-04 22:59:54 ----SHD---- C:\$RECYCLE.BIN
2012-10-04 21:47:17 ----D---- C:\ProgramData\CyberLink
2012-10-04 15:17:22 ----D---- C:\Windows
2012-10-04 15:16:40 ----D---- C:\Program Files\Common Files
2012-10-04 15:16:23 ----RSD---- C:\Windows\assembly
2012-10-04 15:16:18 ----D---- C:\Windows\Microsoft.NET
2012-10-04 14:51:33 ----D---- C:\Program Files\Microsoft Security Client
2012-10-04 14:50:57 ----D---- C:\Windows\system32\drivers
2012-10-02 15:12:16 ----RD---- C:\Users
2012-09-30 14:17:55 ----D---- C:\Windows\Minidump
2012-09-28 03:02:38 ----D---- C:\Program Files\Microsoft Games
2012-09-25 21:12:03 ----D---- C:\Users\douglascorrigan\AppData\Roaming\Real
2012-09-25 18:27:09 ----HD---- C:\ProgramData
2012-09-25 18:25:51 ----A---- C:\Windows\system32\deployJava1.dll
2012-09-25 18:25:43 ----D---- C:\Program Files\Java
2012-09-25 18:22:58 ----D---- C:\ProgramData\McAfee
2012-09-23 16:16:44 ----D---- C:\Windows\registration
2012-09-23 16:16:28 ----D---- C:\Program Files\Internet Explorer
2012-09-23 16:06:58 ----D---- C:\Program Files\Real
2012-09-23 15:18:19 ----D---- C:\Windows\system32\migration
2012-09-23 13:12:45 ----SD---- C:\ProgramData\Microsoft
2012-09-23 13:12:22 ----SD---- C:\Users\douglascorrigan\AppData\Roaming\Microsoft
2012-09-23 12:42:43 ----D---- C:\ProgramData\Microsoft Help
2012-09-22 20:07:12 ----D---- C:\Program Files\Common Files\microsoft shared
2012-09-18 19:29:06 ----A---- C:\Windows\ntbtlog.txt
2012-09-18 16:50:18 ----D---- C:\Windows\system32\config
2012-09-18 16:49:45 ----D---- C:\Windows\system32\wbem
2012-09-18 16:49:45 ----D---- C:\Windows\system32\spool
2012-09-18 16:49:45 ----D---- C:\Windows\system32\Msdtc
2012-09-18 16:49:45 ----D---- C:\Windows\system32\drivers\UMDF
2012-09-18 16:49:45 ----D---- C:\Windows\system32\drivers\etc
2012-09-18 16:49:45 ----D---- C:\Windows\system32\CodeIntegrity
2012-09-18 16:49:45 ----D---- C:\Program Files\Windows Media Player
2012-09-18 16:49:28 ----D---- C:\ProgramData\Real
2012-09-18 15:33:49 ----D---- C:\ProgramData\Adobe
2012-09-17 21:55:03 ----D---- C:\Windows\Logs
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AtiPcie;ATI PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2006-10-29 7680]
R0 FBIOSDRV;FBIOSDRV; C:\Windows\system32\drivers\FBIOSDRV.SYS [2006-08-28 8960]
R0 FJGSDisk;G-Sensor Application Filter Driver; C:\Windows\system32\DRIVERS\FJGSDisk.sys [2007-10-25 12712]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2012-08-30 193552]
R0 O2MDRDR;O2MDRDR; C:\Windows\system32\DRIVERS\o2media.sys [2006-10-03 36640]
R0 O2SDRDR;O2SDRDR; C:\Windows\system32\DRIVERS\o2sd.sys [2006-10-12 33152]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2006-09-27 36560]
R2 irda;IrDA Protocol; C:\Windows\system32\DRIVERS\irda.sys [2008-01-18 95744]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-30 99272]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2008-03-21 1203776]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-09-30 1184768]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-02-11 4450816]
R3 FUJ02B1;Fujitsu FUJ02B1 Device Driver; C:\Windows\system32\DRIVERS\FUJ02B1.sys [2006-11-01 5888]
R3 FUJ02E3;Fujitsu FUJ02E3 Device Driver; C:\Windows\system32\DRIVERS\FUJ02E3.sys [2006-11-01 5632]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2006-11-22 1652968]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2011-05-26 312096]
S3 ADVNTDRV;ADVNTDRV; C:\Windows\System32\drivers\ADVNTDRV.SYS [1999-11-18 3872]
S3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys []
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-18 5632]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2006-10-18 1380864]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-18 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-18 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-18 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-18 6016]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-02-11 4450816]
S3 SMSCIRDA;SMSC Infrared Device Driver; C:\Windows\system32\DRIVERS\SMSCirda.sys [2006-11-02 30720]
S3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2007-01-12 113792]
S3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2007-01-24 73728]
S3 tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2007-01-12 40576]
S3 WinUsb;WinUSB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2009-04-10 31616]
S3 wtpfiltr;wtpfiltr; C:\Windows\system32\drivers\wtpfiltr.sys [2006-12-05 7680]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-18 83328]
S4 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2006-11-02 82432]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2008-03-18 13312]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2010-02-10 733184]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2012-09-12 20472]
R2 o2flash;o2flash; C:\Windows\system32\o2flash.exe [2005-09-13 57344]
R2 UpdateNaviInstallService;UpdateNaviInstallService; C:\Program Files\Fujitsu\fjdvrupd\updnvsrv.exe [2007-01-27 11776]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2012-09-12 287824]
R3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2012-10-12 529744]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-05-02 135664]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-03-29 31048]
S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2011-05-06 30192]
S3 gupdatem;Google Update Service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-05-02 135664]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-10-12 194032]
S3 IDriverT;InstallDriver Table Manager; c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WPFFontCache_v0400;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
-----------------EOF-----------------
Logfile of random's system information tool 1.09 (written by random/random)
Run by douglascorrigan at 2012-10-14 14:25:39
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 71 GB (47%) free of 150 GB
Total RAM: 1981 MB (52% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 2:25:52 PM, on 10/14/2012
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16450)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe
C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe
C:\Program Files\Fujitsu\SSUtility\FJSSDMN.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Steam\New Folder\New Folder\Steam.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Users\DOUGLA~1\AppData\Local\Temp\TeamViewer\Version7\TeamViewer.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil32_11_4_402_278_ActiveX.exe
C:\Windows\System32\cmd.exe
C:\Users\douglascorrigan\Favorites\Downloads\RSIT.exe
C:\Program Files\trend micro\douglascorrigan.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R3 - URLSearchHook: (no name) - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - (no file)
R3 - URLSearchHook: (no name) - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Vgrabber - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} - C:\Program Files\Vgrabber\prxtbVgra.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [IndicatorUtility] C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
O4 - HKLM\..\Run: [LoadFUJ02E3] C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
O4 - HKLM\..\Run: [LoadFujitsuQuickTouch] C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe
O4 - HKLM\..\Run: [LoadBtnHnd] C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe
O4 - HKLM\..\Run: [SSUtility] C:\Program Files\Fujitsu\SSUtility\FJSSDMN.exe
O4 - HKLM\..\Run: [RegWork] C:\Program Files\RegWork\RegWork.exe
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\New Folder\New Folder\Steam.exe" -silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - .DEFAULT User Startup: CCC.lnk = ? (User 'Default user')
O4 - Startup: CCC.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.mcafee.com
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: o2flash - O2Micro International - C:\Windows\system32\o2flash.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: UpdateNaviInstallService - FUJITSU LIMITED - C:\Program Files\Fujitsu\fjdvrupd\updnvsrv.exe
--
End of file - 5956 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore1cda8ecb2baa231.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA1cda8ecb355e4cb.job
C:\Windows\tasks\Regwork.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-09-25 449512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}]
Vgrabber Toolbar - C:\Program Files\Vgrabber\prxtbVgra.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-09-25 157672]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2006-11-19 4018176]
"IndicatorUtility"=C:\Program Files\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe [2007-02-09 97072]
"LoadFUJ02E3"=C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe [2006-11-17 80688]
"LoadFujitsuQuickTouch"=C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe [2006-11-25 260912]
"LoadBtnHnd"=C:\Program Files\Fujitsu\BtnHnd\BtnHnd.exe [2006-11-12 68400]
"SSUtility"=C:\Program Files\Fujitsu\SSUtility\FJSSDMN.exe [2007-12-14 193832]
"RegWork"=C:\Program Files\RegWork\RegWork.exe []
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2012-09-12 947176]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-10 1233920]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]
"Steam"=C:\Program Files\Steam\New Folder\New Folder\Steam.exe [2012-10-12 1353080]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FJUPDNV_Chitose]
C:\Program Files\Fujitsu\fjdvrupd\updatenv.exe [2007-02-05 167936]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2011-05-06 30192]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Picasa Media Detector]
C:\Program Files\Picasa2\PicasaMediaDetector.exe [2007-02-20 366400]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2006-11-13 52832]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]
C:\Users\douglascorrigan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
CCC.lnk - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2012-10-14 14:13:15 ----D---- C:\_OTM
2012-10-12 15:28:42 ----SHD---- C:\Config.Msi
2012-10-04 15:17:01 ----D---- C:\Program Files\NVIDIA Corporation
2012-10-04 15:16:40 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2012-10-04 15:16:38 ----A---- C:\Windows\system32\D3DX9_40.dll
2012-10-04 15:16:38 ----A---- C:\Windows\system32\d3dx10_40.dll
2012-10-04 15:16:38 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2012-10-04 15:16:37 ----A---- C:\Windows\system32\XAudio2_3.dll
2012-10-04 15:16:37 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2012-10-04 15:16:37 ----A---- C:\Windows\system32\xactengine3_3.dll
2012-10-04 15:16:37 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2012-10-04 15:16:36 ----A---- C:\Windows\system32\XAudio2_2.dll
2012-10-04 15:16:36 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2012-10-04 15:16:36 ----A---- C:\Windows\system32\xactengine3_2.dll
2012-10-04 15:16:36 ----A---- C:\Windows\system32\D3DX9_39.dll
2012-10-04 15:16:36 ----A---- C:\Windows\system32\d3dx10_39.dll
2012-10-04 15:16:36 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2012-10-04 15:16:35 ----A---- C:\Windows\system32\XAudio2_1.dll
2012-10-04 15:16:35 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2012-10-04 15:16:35 ----A---- C:\Windows\system32\xactengine3_1.dll
2012-10-04 15:16:35 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2012-10-04 15:16:34 ----A---- C:\Windows\system32\XAudio2_0.dll
2012-10-04 15:16:34 ----A---- C:\Windows\system32\D3DX9_38.dll
2012-10-04 15:16:34 ----A---- C:\Windows\system32\d3dx10_38.dll
2012-10-04 15:16:34 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2012-10-04 15:16:33 ----A---- C:\Windows\system32\xactengine3_0.dll
2012-10-04 15:16:33 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2012-10-04 15:16:33 ----A---- C:\Windows\system32\d3dx10_37.dll
2012-10-04 15:16:33 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2012-10-04 15:16:32 ----A---- C:\Windows\system32\xactengine2_10.dll
2012-10-04 15:16:32 ----A---- C:\Windows\system32\D3DX9_37.dll
2012-10-04 15:16:31 ----A---- C:\Windows\system32\xactengine2_9.dll
2012-10-04 15:16:31 ----A---- C:\Windows\system32\d3dx9_36.dll
2012-10-04 15:16:31 ----A---- C:\Windows\system32\d3dx10_36.dll
2012-10-04 15:16:31 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2012-10-04 15:16:30 ----A---- C:\Windows\system32\d3dx9_35.dll
2012-10-04 15:16:30 ----A---- C:\Windows\system32\d3dx10_35.dll
2012-10-04 15:16:30 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2012-10-04 15:16:29 ----A---- C:\Windows\system32\xactengine2_8.dll
2012-10-04 15:16:29 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2012-10-04 15:16:29 ----A---- C:\Windows\system32\d3dx9_34.dll
2012-10-04 15:16:29 ----A---- C:\Windows\system32\d3dx10_34.dll
2012-10-04 15:16:29 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2012-10-04 15:16:28 ----A---- C:\Windows\system32\xactengine2_7.dll
2012-10-04 15:16:28 ----A---- C:\Windows\system32\d3dx10_33.dll
2012-10-04 15:16:28 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2012-10-04 15:16:27 ----A---- C:\Windows\system32\xactengine2_6.dll
2012-10-04 15:16:27 ----A---- C:\Windows\system32\d3dx9_33.dll
2012-10-04 15:16:26 ----A---- C:\Windows\system32\xactengine2_5.dll
2012-10-04 15:16:26 ----A---- C:\Windows\system32\d3dx9_32.dll
2012-10-04 15:16:26 ----A---- C:\Windows\system32\d3dx10.dll
2012-10-04 15:16:25 ----A---- C:\Windows\system32\xactengine2_4.dll
2012-10-04 15:16:25 ----A---- C:\Windows\system32\xactengine2_3.dll
2012-10-04 15:16:25 ----A---- C:\Windows\system32\x3daudio1_1.dll
2012-10-04 15:16:25 ----A---- C:\Windows\system32\d3dx9_31.dll
2012-10-04 15:16:24 ----A---- C:\Windows\system32\xinput1_2.dll
2012-10-04 15:16:24 ----A---- C:\Windows\system32\xinput1_1.dll
2012-10-04 15:16:24 ----A---- C:\Windows\system32\xactengine2_2.dll
2012-10-04 15:16:24 ----A---- C:\Windows\system32\xactengine2_1.dll
2012-10-04 15:16:16 ----A---- C:\Windows\system32\xactengine2_0.dll
2012-10-04 15:16:16 ----A---- C:\Windows\system32\x3daudio1_0.dll
2012-10-04 15:16:16 ----A---- C:\Windows\system32\d3dx9_30.dll
2012-10-04 15:16:16 ----A---- C:\Windows\system32\d3dx9_29.dll
2012-10-04 15:16:15 ----A---- C:\Windows\system32\d3dx9_28.dll
2012-10-04 15:16:15 ----A---- C:\Windows\system32\d3dx9_27.dll
2012-10-04 15:16:14 ----A---- C:\Windows\system32\d3dx9_26.dll
2012-10-04 15:16:14 ----A---- C:\Windows\system32\d3dx9_25.dll
2012-10-04 15:16:14 ----A---- C:\Windows\system32\d3dx9_24.dll
2012-09-29 20:57:16 ----D---- C:\Program Files\MSBuild
2012-09-27 20:38:49 ----D---- C:\Program Files\Common Files\Steam
2012-09-25 18:35:03 ----D---- C:\Users\douglascorrigan\AppData\Roaming\.techniclauncher
2012-09-25 18:27:09 ----D---- C:\ProgramData\Ask
2012-09-25 18:27:03 ----D---- C:\Program Files\Common Files\Java
2012-09-25 18:26:52 ----A---- C:\Windows\system32\npDeployJava1.dll
2012-09-25 18:26:52 ----A---- C:\Windows\system32\javaws.exe
2012-09-25 18:26:30 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2012-09-25 18:26:30 ----A---- C:\Windows\system32\javaw.exe
2012-09-25 18:26:30 ----A---- C:\Windows\system32\java.exe
2012-09-25 18:19:14 ----D---- C:\Users\douglascorrigan\AppData\Roaming\.minecraft
2012-09-23 15:16:45 ----A---- C:\Windows\system32\vbscript.dll
2012-09-23 15:16:45 ----A---- C:\Windows\system32\mshtmled.dll
2012-09-23 15:16:44 ----A---- C:\Windows\system32\jsproxy.dll
2012-09-23 15:16:44 ----A---- C:\Windows\system32\ieui.dll
2012-09-23 15:16:43 ----A---- C:\Windows\system32\msfeeds.dll
2012-09-23 15:16:43 ----A---- C:\Windows\system32\ieUnatt.exe
2012-09-23 15:16:42 ----A---- C:\Windows\system32\wininet.dll
2012-09-23 15:16:42 ----A---- C:\Windows\system32\jscript.dll
2012-09-23 15:16:41 ----A---- C:\Windows\system32\url.dll
2012-09-23 15:16:41 ----A---- C:\Windows\system32\jscript9.dll
2012-09-23 15:16:40 ----A---- C:\Windows\system32\iertutil.dll
2012-09-23 15:16:39 ----A---- C:\Windows\system32\urlmon.dll
2012-09-23 15:16:37 ----A---- C:\Windows\system32\ieframe.dll
2012-09-23 15:16:36 ----A---- C:\Windows\system32\mshtml.dll
2012-09-23 13:14:34 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2012-09-23 13:07:59 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2012-09-23 13:07:58 ----A---- C:\Windows\system32\D3DX9_43.dll
2012-09-23 12:41:47 ----A---- C:\Windows\system32\localspl.dll
2012-09-23 12:31:01 ----A---- C:\Windows\system32\win32k.sys
2012-09-23 12:27:45 ----A---- C:\Windows\system32\msxml6.dll
2012-09-23 12:27:45 ----A---- C:\Windows\system32\msxml3.dll
2012-09-23 12:22:52 ----A---- C:\Windows\system32\schannel.dll
2012-09-23 12:22:51 ----A---- C:\Windows\system32\ncrypt.dll
2012-09-23 12:22:51 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-09-22 20:08:19 ----A---- C:\Windows\system32\D3DX9_42.dll
2012-09-22 20:08:19 ----A---- C:\Windows\system32\d3dx10_42.dll
2012-09-22 20:08:18 ----A---- C:\Windows\system32\xinput1_3.dll
2012-09-17 21:56:52 ----D---- C:\Program Files\Microsoft Games for Windows - LIVE
2012-09-17 20:04:31 ----D---- C:\Program Files\Steam
======List of files/folders modified in the last 1 month======
2012-10-14 14:25:52 ----D---- C:\Windows\Prefetch
2012-10-14 14:25:44 ----D---- C:\Program Files\trend micro
2012-10-14 14:24:03 ----D---- C:\Windows\Temp
2012-10-14 14:13:17 ----RD---- C:\Program Files
2012-10-14 14:13:17 ----D---- C:\Program Files\Google
2012-10-12 19:54:01 ----SHD---- C:\Windows\Installer
2012-10-12 19:44:43 ----D---- C:\Windows\Tasks
2012-10-12 19:44:43 ----D---- C:\Windows\system32\Tasks
2012-10-12 17:50:31 ----SHD---- C:\System Volume Information
2012-10-12 15:41:01 ----D---- C:\Windows\system32\catroot
2012-10-12 15:40:55 ----D---- C:\Windows\winsxs
2012-10-12 15:39:12 ----D---- C:\Windows\system32\catroot2
2012-10-07 20:45:00 ----D---- C:\Windows\System32
2012-10-07 20:45:00 ----D---- C:\Windows\inf
2012-10-07 20:45:00 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-10-04 22:59:54 ----SHD---- C:\$RECYCLE.BIN
2012-10-04 21:47:17 ----D---- C:\ProgramData\CyberLink
2012-10-04 15:17:22 ----D---- C:\Windows
2012-10-04 15:16:40 ----D---- C:\Program Files\Common Files
2012-10-04 15:16:23 ----RSD---- C:\Windows\assembly
2012-10-04 15:16:18 ----D---- C:\Windows\Microsoft.NET
2012-10-04 14:51:33 ----D---- C:\Program Files\Microsoft Security Client
2012-10-04 14:50:57 ----D---- C:\Windows\system32\drivers
2012-10-02 15:12:16 ----RD---- C:\Users
2012-09-30 14:17:55 ----D---- C:\Windows\Minidump
2012-09-28 03:02:38 ----D---- C:\Program Files\Microsoft Games
2012-09-25 21:12:03 ----D---- C:\Users\douglascorrigan\AppData\Roaming\Real
2012-09-25 18:27:09 ----HD---- C:\ProgramData
2012-09-25 18:25:51 ----A---- C:\Windows\system32\deployJava1.dll
2012-09-25 18:25:43 ----D---- C:\Program Files\Java
2012-09-25 18:22:58 ----D---- C:\ProgramData\McAfee
2012-09-23 16:16:44 ----D---- C:\Windows\registration
2012-09-23 16:16:28 ----D---- C:\Program Files\Internet Explorer
2012-09-23 16:06:58 ----D---- C:\Program Files\Real
2012-09-23 15:18:19 ----D---- C:\Windows\system32\migration
2012-09-23 13:12:45 ----SD---- C:\ProgramData\Microsoft
2012-09-23 13:12:22 ----SD---- C:\Users\douglascorrigan\AppData\Roaming\Microsoft
2012-09-23 12:42:43 ----D---- C:\ProgramData\Microsoft Help
2012-09-22 20:07:12 ----D---- C:\Program Files\Common Files\microsoft shared
2012-09-18 19:29:06 ----A---- C:\Windows\ntbtlog.txt
2012-09-18 16:50:18 ----D---- C:\Windows\system32\config
2012-09-18 16:49:45 ----D---- C:\Windows\system32\wbem
2012-09-18 16:49:45 ----D---- C:\Windows\system32\spool
2012-09-18 16:49:45 ----D---- C:\Windows\system32\Msdtc
2012-09-18 16:49:45 ----D---- C:\Windows\system32\drivers\UMDF
2012-09-18 16:49:45 ----D---- C:\Windows\system32\drivers\etc
2012-09-18 16:49:45 ----D---- C:\Windows\system32\CodeIntegrity
2012-09-18 16:49:45 ----D---- C:\Program Files\Windows Media Player
2012-09-18 16:49:28 ----D---- C:\ProgramData\Real
2012-09-18 15:33:49 ----D---- C:\ProgramData\Adobe
2012-09-17 21:55:03 ----D---- C:\Windows\Logs
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AtiPcie;ATI PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2006-10-29 7680]
R0 FBIOSDRV;FBIOSDRV; C:\Windows\system32\drivers\FBIOSDRV.SYS [2006-08-28 8960]
R0 FJGSDisk;G-Sensor Application Filter Driver; C:\Windows\system32\DRIVERS\FJGSDisk.sys [2007-10-25 12712]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2012-08-30 193552]
R0 O2MDRDR;O2MDRDR; C:\Windows\system32\DRIVERS\o2media.sys [2006-10-03 36640]
R0 O2SDRDR;O2SDRDR; C:\Windows\system32\DRIVERS\o2sd.sys [2006-10-12 33152]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2006-09-27 36560]
R2 irda;IrDA Protocol; C:\Windows\system32\DRIVERS\irda.sys [2008-01-18 95744]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-30 99272]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2008-03-21 1203776]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-09-30 1184768]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-02-11 4450816]
R3 FUJ02B1;Fujitsu FUJ02B1 Device Driver; C:\Windows\system32\DRIVERS\FUJ02B1.sys [2006-11-01 5888]
R3 FUJ02E3;Fujitsu FUJ02E3 Device Driver; C:\Windows\system32\DRIVERS\FUJ02E3.sys [2006-11-01 5632]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2006-11-22 1652968]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2011-05-26 312096]
S3 ADVNTDRV;ADVNTDRV; C:\Windows\System32\drivers\ADVNTDRV.SYS [1999-11-18 3872]
S3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys []
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-18 5632]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2006-10-18 1380864]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-18 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-18 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-18 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-18 6016]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-02-11 4450816]
S3 SMSCIRDA;SMSC Infrared Device Driver; C:\Windows\system32\DRIVERS\SMSCirda.sys [2006-11-02 30720]
S3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys [2007-01-12 113792]
S3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys [2007-01-24 73728]
S3 tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys [2007-01-12 40576]
S3 WinUsb;WinUSB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2009-04-10 31616]
S3 wtpfiltr;wtpfiltr; C:\Windows\system32\drivers\wtpfiltr.sys [2006-12-05 7680]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-18 83328]
S4 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2006-11-02 82432]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2008-03-18 13312]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2010-02-10 733184]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2012-09-12 20472]
R2 o2flash;o2flash; C:\Windows\system32\o2flash.exe [2005-09-13 57344]
R2 UpdateNaviInstallService;UpdateNaviInstallService; C:\Program Files\Fujitsu\fjdvrupd\updnvsrv.exe [2007-01-27 11776]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2012-09-12 287824]
R3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2012-10-12 529744]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-05-02 135664]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-03-29 31048]
S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2011-05-06 30192]
S3 gupdatem;Google Update Service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-05-02 135664]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-10-12 194032]
S3 IDriverT;InstallDriver Table Manager; c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WPFFontCache_v0400;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119519
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: device attached system not functioning
Dvouklikem na soubor C:\Program Files\trend micro\douglascorrigan.exe spustte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.R3 - URLSearchHook: (no name) - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - (no file)
R3 - URLSearchHook: (no name) - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - (no file)
O2 - BHO: Vgrabber - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} - C:\Program Files\Vgrabber\prxtbVgra.dll (file missing)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: device attached system not functioning
Diky moc za pomoc a trpezlivost, NB sa zlepsil a hlaska zmizla. Este raz diky.
-
Rudy
- Site Admin
- Příspěvky: 119519
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: device attached system not functioning
Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?