Prosim o preventivku

[pietrodelarosa]

Logfile of random's system information tool 1.09 (written by random/random)
Run by Peter_O at 2013-06-20 13:15:14
Microsoft Windows 7 Ultimate
System drive C: has 449 GB (94%) free of 477 GB
Total RAM: 3002 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:15:30, on 20. 6. 2013
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16490)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\rundll32.exe
C:\Program Files\TeamViewer\Version8\TeamViewer.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Peter_O\Desktop\RSIT.exe
C:\Program Files\trend micro\Peter_O.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe

--
End of file - 4345 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-06-19 463272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14 4531320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-06-19 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-10-06 7772704]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2010-11-30 997408]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1173504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FFDS"=C:\PROGRA~1\COMBIN~1\Filters\FFDShow\ff_vfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-06-20 13:15:14 ----D---- C:\rsit
2013-06-20 13:15:14 ----D---- C:\Program Files\trend micro
2013-06-20 12:55:51 ----D---- C:\Users\Peter_O\AppData\Roaming\VitySoft
2013-06-20 12:03:38 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2013-06-20 12:00:52 ----SHD---- C:\Config.Msi
2013-06-20 11:03:48 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-06-20 11:03:48 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-06-20 11:03:47 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-06-20 11:03:47 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-06-20 11:03:46 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-06-20 11:03:46 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-06-20 11:03:46 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-06-20 11:03:42 ----A---- C:\Windows\system32\drivers\nvstor.sys
2013-06-20 11:03:40 ----A---- C:\Windows\system32\esent.dll
2013-06-20 11:03:40 ----A---- C:\Windows\system32\drivers\nvraid.sys
2013-06-20 11:03:39 ----A---- C:\Windows\system32\drivers\storport.sys
2013-06-20 11:03:39 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2013-06-20 11:03:39 ----A---- C:\Windows\system32\drivers\amdxata.sys
2013-06-20 11:03:39 ----A---- C:\Windows\system32\drivers\amdsata.sys
2013-06-20 11:03:38 ----A---- C:\Windows\system32\fsutil.exe
2013-06-20 11:03:38 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2013-06-20 11:03:27 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS
2013-06-20 11:03:27 ----A---- C:\Windows\system32\drivers\bthport.sys
2013-06-20 10:47:50 ----D---- C:\Program Files\TeamViewer
2013-06-20 10:18:32 ----A---- C:\Windows\system32\FNTCACHE.DAT
2013-06-19 16:54:22 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2013-06-19 16:54:22 ----A---- C:\Windows\system32\PresentationHost.exe
2013-06-19 16:54:22 ----A---- C:\Windows\system32\netfxperf.dll
2013-06-19 16:54:22 ----A---- C:\Windows\system32\mscoree.dll
2013-06-19 16:54:22 ----A---- C:\Windows\system32\dfshim.dll
2013-06-19 16:38:54 ----D---- C:\Windows\system32\Wat
2013-06-19 16:35:24 ----A---- C:\Windows\system32\atmlib.dll
2013-06-19 16:35:24 ----A---- C:\Windows\system32\atmfd.dll
2013-06-19 16:34:50 ----A---- C:\Windows\system32\msv1_0.dll
2013-06-19 16:15:08 ----A---- C:\Windows\system32\MRT.exe
2013-06-19 16:14:29 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2013-06-19 16:14:28 ----A---- C:\Windows\system32\Wdfres.dll
2013-06-19 16:14:28 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-06-19 16:13:22 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2013-06-19 16:13:22 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2013-06-19 16:13:21 ----A---- C:\Windows\system32\WUDFSvc.dll
2013-06-19 16:13:21 ----A---- C:\Windows\system32\WUDFPlatform.dll
2013-06-19 16:13:19 ----A---- C:\Windows\system32\WUDFx.dll
2013-06-19 16:13:19 ----A---- C:\Windows\system32\WUDFHost.exe
2013-06-19 16:13:19 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2013-06-19 16:11:37 ----A---- C:\Windows\system32\wmi.dll
2013-06-19 16:11:37 ----A---- C:\Windows\system32\imagehlp.dll
2013-06-19 16:11:37 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2013-06-19 16:10:13 ----A---- C:\Windows\system32\wininet.dll
2013-06-19 16:10:13 ----A---- C:\Windows\system32\urlmon.dll
2013-06-19 16:10:13 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-06-19 16:10:13 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-06-19 16:10:13 ----A---- C:\Windows\system32\msrating.dll
2013-06-19 16:10:13 ----A---- C:\Windows\system32\msls31.dll
2013-06-19 16:10:13 ----A---- C:\Windows\system32\mshtmler.dll
2013-06-19 16:10:13 ----A---- C:\Windows\system32\msfeedssync.exe
2013-06-19 16:10:13 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-06-19 16:10:13 ----A---- C:\Windows\system32\jsproxy.dll
2013-06-19 16:10:13 ----A---- C:\Windows\system32\iertutil.dll
2013-06-19 16:10:13 ----A---- C:\Windows\system32\ieakeng.dll
2013-06-19 16:10:13 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-06-19 16:10:12 ----A---- C:\Windows\system32\ieui.dll
2013-06-19 16:10:12 ----A---- C:\Windows\system32\iesysprep.dll
2013-06-19 16:10:12 ----A---- C:\Windows\system32\iesetup.dll
2013-06-19 16:10:12 ----A---- C:\Windows\system32\iernonce.dll
2013-06-19 16:10:12 ----A---- C:\Windows\system32\ieframe.dll
2013-06-19 16:10:12 ----A---- C:\Windows\system32\ieapfltr.dll
2013-06-19 16:10:12 ----A---- C:\Windows\system32\ieapfltr.dat
2013-06-19 16:10:12 ----A---- C:\Windows\system32\ie4uinit.exe
2013-06-19 16:10:12 ----A---- C:\Windows\system32\icardie.dll
2013-06-19 16:10:12 ----A---- C:\Windows\system32\dxtrans.dll
2013-06-19 16:10:12 ----A---- C:\Windows\system32\dxtmsft.dll
2013-06-19 16:10:11 ----A---- C:\Windows\system32\wextract.exe
2013-06-19 16:10:11 ----A---- C:\Windows\system32\webcheck.dll
2013-06-19 16:10:11 ----A---- C:\Windows\system32\vbscript.dll
2013-06-19 16:10:11 ----A---- C:\Windows\system32\url.dll
2013-06-19 16:10:11 ----A---- C:\Windows\system32\mshtmled.dll
2013-06-19 16:10:11 ----A---- C:\Windows\system32\mshtml.dll
2013-06-19 16:10:11 ----A---- C:\Windows\system32\msfeeds.dll
2013-06-19 16:10:11 ----A---- C:\Windows\system32\licmgr10.dll
2013-06-19 16:10:11 ----A---- C:\Windows\system32\inseng.dll
2013-06-19 16:10:11 ----A---- C:\Windows\system32\iexpress.exe
2013-06-19 16:10:11 ----A---- C:\Windows\system32\iedkcs32.dll
2013-06-19 16:10:10 ----A---- C:\Windows\system32\pngfilt.dll
2013-06-19 16:10:10 ----A---- C:\Windows\system32\occache.dll
2013-06-19 16:10:10 ----A---- C:\Windows\system32\mshta.exe
2013-06-19 16:10:10 ----A---- C:\Windows\system32\jscript9.dll
2013-06-19 16:10:10 ----A---- C:\Windows\system32\jscript.dll
2013-06-19 16:10:10 ----A---- C:\Windows\system32\imgutil.dll
2013-06-19 16:10:10 ----A---- C:\Windows\system32\ieUnatt.exe
2013-06-19 16:10:10 ----A---- C:\Windows\system32\iepeers.dll
2013-06-19 16:10:10 ----A---- C:\Windows\system32\ieakui.dll
2013-06-19 16:10:10 ----A---- C:\Windows\system32\ieaksie.dll
2013-06-19 16:10:10 ----A---- C:\Windows\system32\admparse.dll
2013-06-19 16:08:04 ----A---- C:\Windows\system32\browserchoice.exe
2013-06-19 16:02:49 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2013-06-19 16:02:49 ----A---- C:\Windows\system32\drivers\ks.sys
2013-06-19 16:00:58 ----A---- C:\Windows\system32\spoolsv.exe
2013-06-19 16:00:55 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-06-19 16:00:51 ----A---- C:\Windows\system32\ole32.dll
2013-06-19 16:00:47 ----A---- C:\Windows\system32\usp10.dll
2013-06-19 16:00:43 ----A---- C:\Windows\system32\drivers\srv2.sys
2013-06-19 16:00:43 ----A---- C:\Windows\system32\drivers\srv.sys
2013-06-19 16:00:42 ----A---- C:\Windows\system32\drivers\srvnet.sys
2013-06-19 16:00:39 ----A---- C:\Windows\system32\drivers\afd.sys
2013-06-19 16:00:34 ----A---- C:\Windows\system32\drivers\usb8023.sys
2013-06-19 16:00:27 ----A---- C:\Windows\system32\ntdll.dll
2013-06-19 16:00:25 ----A---- C:\Windows\system32\win32k.sys
2013-06-19 16:00:23 ----A---- C:\Windows\system32\wintrust.dll
2013-06-19 15:59:39 ----A---- C:\Windows\system32\xmllite.dll
2013-06-19 15:59:37 ----A---- C:\Windows\system32\dpnet.dll
2013-06-19 15:59:34 ----A---- C:\Windows\system32\prevhost.exe
2013-06-19 15:59:03 ----A---- C:\Windows\system32\win32spl.dll
2013-06-19 15:59:01 ----A---- C:\Windows\system32\dnsrslvr.dll
2013-06-19 15:59:01 ----A---- C:\Windows\system32\dnsapi.dll
2013-06-19 15:59:00 ----A---- C:\Windows\system32\dnscacheugc.exe
2013-06-19 15:58:57 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-06-19 15:58:46 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-06-19 15:58:46 ----A---- C:\Windows\system32\ntkrnlpa.exe
2013-06-19 15:58:45 ----A---- C:\Windows\system32\csrsrv.dll
2013-06-19 15:58:44 ----A---- C:\Windows\system32\smss.exe
2013-06-19 15:58:38 ----D---- C:\Program Files\MSXML 4.0
2013-06-19 15:58:34 ----A---- C:\Windows\system32\ir32_32.dll
2013-06-19 15:58:34 ----A---- C:\Windows\system32\iccvid.dll
2013-06-19 15:58:32 ----A---- C:\Windows\system32\t2embed.dll
2013-06-19 15:58:10 ----A---- C:\Windows\system32\winlogon.exe
2013-06-19 15:57:57 ----A---- C:\Windows\system32\cryptsvc.dll
2013-06-19 15:57:57 ----A---- C:\Windows\system32\crypt32.dll
2013-06-19 15:57:56 ----A---- C:\Windows\system32\cryptnet.dll
2013-06-19 15:57:40 ----A---- C:\Windows\system32\wcncsvc.dll
2013-06-19 15:57:12 ----A---- C:\Windows\system32\msdri.dll
2013-06-19 15:57:03 ----A---- C:\Windows\system32\psisdecd.dll
2013-06-19 15:56:52 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2013-06-19 15:56:42 ----A---- C:\Windows\system32\umpnpmgr.dll
2013-06-19 15:56:36 ----A---- C:\Windows\system32\taskschd.dll
2013-06-19 15:56:36 ----A---- C:\Windows\system32\schedsvc.dll
2013-06-19 15:56:35 ----A---- C:\Windows\system32\wmicmiplugin.dll
2013-06-19 15:56:35 ----A---- C:\Windows\system32\taskeng.exe
2013-06-19 15:56:35 ----A---- C:\Windows\system32\taskcomp.dll
2013-06-19 15:56:35 ----A---- C:\Windows\system32\schtasks.exe
2013-06-19 15:56:30 ----A---- C:\Windows\system32\rtutils.dll
2013-06-19 15:56:21 ----A---- C:\Windows\system32\msasn1.dll
2013-06-19 15:56:12 ----A---- C:\Windows\system32\schannel.dll
2013-06-19 15:56:12 ----A---- C:\Windows\system32\drivers\cng.sys
2013-06-19 15:56:11 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-06-19 15:56:11 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-06-19 15:56:03 ----A---- C:\Windows\system32\msxml3.dll
2013-06-19 15:55:52 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2013-06-19 15:55:51 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2013-06-19 15:55:51 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2013-06-19 15:55:45 ----A---- C:\Windows\system32\oleaut32.dll
2013-06-19 15:55:45 ----A---- C:\Windows\system32\oleacc.dll
2013-06-19 15:55:34 ----A---- C:\Windows\system32\odbc32.dll
2013-06-19 15:55:21 ----A---- C:\Windows\system32\tsgqec.dll
2013-06-19 15:55:21 ----A---- C:\Windows\system32\mstscax.dll
2013-06-19 15:55:21 ----A---- C:\Windows\system32\aaclient.dll
2013-06-19 15:55:09 ----A---- C:\Windows\system32\drivers\dfsc.sys
2013-06-19 15:55:06 ----A---- C:\Windows\system32\msxml6.dll
2013-06-19 15:55:04 ----A---- C:\Windows\system32\inetcomm.dll
2013-06-19 15:54:57 ----A---- C:\Windows\system32\CertEnroll.dll
2013-06-19 15:54:55 ----A---- C:\Windows\system32\winload.exe
2013-06-19 15:54:54 ----A---- C:\Windows\system32\winresume.exe
2013-06-19 15:54:21 ----A---- C:\Windows\system32\asycfilt.dll
2013-06-19 15:54:20 ----A---- C:\Windows\system32\comctl32.dll
2013-06-19 15:54:15 ----A---- C:\Windows\system32\mfc40u.dll
2013-06-19 15:54:15 ----A---- C:\Windows\system32\mfc40.dll
2013-06-19 15:54:13 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-06-19 15:54:12 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-06-19 15:54:09 ----A---- C:\Windows\system32\wmp.dll
2013-06-19 15:54:07 ----A---- C:\Windows\system32\wmploc.DLL
2013-06-19 15:54:05 ----A---- C:\Windows\system32\packager.dll
2013-06-19 15:53:30 ----A---- C:\Windows\system32\mssrch.dll
2013-06-19 15:53:29 ----A---- C:\Windows\system32\tquery.dll
2013-06-19 15:53:28 ----A---- C:\Windows\system32\SearchIndexer.exe
2013-06-19 15:53:28 ----A---- C:\Windows\system32\mssvp.dll
2013-06-19 15:53:28 ----A---- C:\Windows\system32\mssph.dll
2013-06-19 15:53:27 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2013-06-19 15:53:27 ----A---- C:\Windows\system32\SearchFilterHost.exe
2013-06-19 15:53:27 ----A---- C:\Windows\system32\mssphtb.dll
2013-06-19 15:53:27 ----A---- C:\Windows\system32\msscntrs.dll
2013-06-19 15:52:46 ----A---- C:\Windows\system32\FXSCOVER.exe
2013-06-19 15:52:44 ----A---- C:\Windows\system32\fontsub.dll
2013-06-19 15:52:43 ----A---- C:\Windows\system32\srcore.dll
2013-06-19 15:52:37 ----A---- C:\Windows\system32\EncDec.dll
2013-06-19 15:52:36 ----A---- C:\Windows\system32\netapi32.dll
2013-06-19 15:52:36 ----A---- C:\Windows\system32\browser.dll
2013-06-19 15:52:36 ----A---- C:\Windows\system32\browcli.dll
2013-06-19 15:52:34 ----A---- C:\Windows\system32\XpsPrint.dll
2013-06-19 15:52:32 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-06-19 15:52:29 ----A---- C:\Windows\system32\apphelp.dll
2013-06-19 15:52:26 ----A---- C:\Windows\system32\tsbyuv.dll
2013-06-19 15:52:26 ----A---- C:\Windows\system32\msyuv.dll
2013-06-19 15:52:26 ----A---- C:\Windows\system32\msvidc32.dll
2013-06-19 15:52:26 ----A---- C:\Windows\system32\msrle32.dll
2013-06-19 15:52:26 ----A---- C:\Windows\system32\mciavi32.dll
2013-06-19 15:52:26 ----A---- C:\Windows\system32\iyuv_32.dll
2013-06-19 15:52:26 ----A---- C:\Windows\system32\avifil32.dll
2013-06-19 15:52:09 ----A---- C:\Windows\system32\CPFilters.dll
2013-06-19 15:52:08 ----A---- C:\Windows\system32\sbe.dll
2013-06-19 15:51:54 ----A---- C:\Windows\system32\quartz.dll
2013-06-19 15:51:53 ----A---- C:\Windows\system32\qdvd.dll
2013-06-19 15:51:50 ----A---- C:\Windows\system32\kerberos.dll
2013-06-19 15:51:48 ----A---- C:\Windows\explorer.exe
2013-06-19 15:51:46 ----A---- C:\Windows\system32\msi.dll
2013-06-19 15:51:38 ----A---- C:\Windows\system32\d3d10level9.dll
2013-06-19 15:51:37 ----A---- C:\Windows\system32\mstsc.exe
2013-06-19 15:51:31 ----A---- C:\Windows\system32\Wpc.dll
2013-06-19 15:51:30 ----A---- C:\Windows\system32\gameux.dll
2013-06-19 15:51:11 ----A---- C:\Windows\system32\ncrypt.dll
2013-06-19 15:51:10 ----A---- C:\Windows\system32\lsasrv.dll
2013-06-19 15:51:09 ----A---- C:\Windows\system32\webio.dll
2013-06-19 15:51:08 ----A---- C:\Windows\system32\sspisrv.dll
2013-06-19 15:51:08 ----A---- C:\Windows\system32\sspicli.dll
2013-06-19 15:51:08 ----A---- C:\Windows\system32\secur32.dll
2013-06-19 15:51:08 ----A---- C:\Windows\system32\lsass.exe
2013-06-19 15:51:07 ----A---- C:\Windows\system32\odbcjt32.dll
2013-06-19 15:51:06 ----A---- C:\Windows\system32\odbccp32.dll
2013-06-19 15:51:05 ----A---- C:\Windows\system32\odbctrac.dll
2013-06-19 15:51:05 ----A---- C:\Windows\system32\odbccu32.dll
2013-06-19 15:51:05 ----A---- C:\Windows\system32\odbccr32.dll
2013-06-19 15:51:00 ----A---- C:\Windows\system32\rdrmemptylst.exe
2013-06-19 15:50:59 ----A---- C:\Windows\system32\rdpwsx.dll
2013-06-19 15:50:59 ----A---- C:\Windows\system32\rdpcorekmts.dll
2013-06-19 15:50:58 ----A---- C:\Windows\system32\msvcrt.dll
2013-06-19 15:50:53 ----A---- C:\Windows\system32\profsvc.dll
2013-06-19 15:50:49 ----A---- C:\Windows\system32\drivers\partmgr.sys
2013-06-19 15:50:47 ----A---- C:\Windows\system32\srvsvc.dll
2013-06-19 15:50:45 ----A---- C:\Windows\system32\synceng.dll
2013-06-19 15:50:37 ----A---- C:\Windows\system32\mf.dll
2013-06-19 15:50:37 ----A---- C:\Windows\system32\FntCache.dll
2013-06-19 15:50:36 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-06-19 15:50:35 ----A---- C:\Windows\system32\mfreadwrite.dll
2013-06-19 15:50:35 ----A---- C:\Windows\system32\ExplorerFrame.dll
2013-06-19 15:50:34 ----A---- C:\Windows\system32\XpsRasterService.dll
2013-06-19 15:50:31 ----A---- C:\Windows\system32\upnp.dll
2013-06-19 15:50:29 ----A---- C:\Windows\system32\wscsvc.dll
2013-06-19 15:50:29 ----A---- C:\Windows\system32\wscapi.dll
2013-06-19 15:50:29 ----A---- C:\Windows\system32\winhttp.dll
2013-06-19 15:50:29 ----A---- C:\Windows\system32\WebClnt.dll
2013-06-19 15:50:29 ----A---- C:\Windows\system32\slwga.dll
2013-06-19 15:50:29 ----A---- C:\Windows\system32\davclnt.dll
2013-06-19 15:50:27 ----A---- C:\Windows\system32\localspl.dll
2013-06-19 15:50:24 ----A---- C:\Windows\system32\wmpmde.dll
2013-06-19 15:50:19 ----A---- C:\Windows\system32\consent.exe
2013-06-19 15:50:10 ----A---- C:\Windows\system32\ntshrui.dll
2013-06-19 15:50:06 ----A---- C:\Windows\system32\secproc_isv.dll
2013-06-19 15:50:06 ----A---- C:\Windows\system32\secproc.dll
2013-06-19 15:50:06 ----A---- C:\Windows\system32\RMActivate_isv.exe
2013-06-19 15:50:05 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2013-06-19 15:50:05 ----A---- C:\Windows\system32\secproc_ssp.dll
2013-06-19 15:50:05 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2013-06-19 15:50:05 ----A---- C:\Windows\system32\RMActivate.exe
2013-06-19 15:50:04 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2013-06-19 15:50:02 ----A---- C:\Windows\system32\DWrite.dll
2013-06-19 15:50:02 ----A---- C:\Windows\system32\d3d10warp.dll
2013-06-19 15:50:02 ----A---- C:\Windows\system32\d2d1.dll
2013-06-19 15:50:01 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-06-19 15:50:01 ----A---- C:\Windows\system32\d3d10_1.dll
2013-06-19 15:49:58 ----A---- C:\Windows\system32\mfc42.dll
2013-06-19 15:49:57 ----A---- C:\Windows\system32\mfc42u.dll
2013-06-19 15:49:53 ----A---- C:\Windows\system32\drivers\volsnap.sys
2013-06-19 15:49:50 ----A---- C:\Windows\system32\StructuredQuery.dll
2013-06-19 15:49:50 ----A---- C:\Windows\system32\drivers\bowser.sys
2013-06-19 15:49:47 ----A---- C:\Windows\system32\shell32.dll
2013-06-19 15:49:44 ----A---- C:\Windows\system32\poqexec.exe
2013-06-19 15:49:42 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2013-06-19 15:49:24 ----A---- C:\Windows\system32\tzres.dll
2013-06-19 15:48:59 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-06-19 15:48:59 ----A---- C:\Windows\system32\winsrv.dll
2013-06-19 15:48:59 ----A---- C:\Windows\system32\KernelBase.dll
2013-06-19 15:48:59 ----A---- C:\Windows\system32\kernel32.dll
2013-06-19 15:48:59 ----A---- C:\Windows\system32\conhost.exe
2013-06-19 15:48:58 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-06-19 15:48:58 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-06-19 15:48:57 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-06-19 15:48:56 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-06-19 15:48:56 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-06-19 15:48:56 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-06-19 15:48:56 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-06-19 15:33:07 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-06-19 15:33:07 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-06-19 15:33:07 ----A---- C:\Windows\system32\cdd.dll
2013-06-19 15:20:38 ----D---- C:\Program Files\CCleaner
2013-06-19 15:18:31 ----D---- C:\Program Files\Common Files\Java
2013-06-19 15:18:09 ----A---- C:\Windows\system32\npDeployJava1.dll
2013-06-19 15:18:09 ----A---- C:\Windows\system32\javaws.exe
2013-06-19 15:18:03 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2013-06-19 15:18:03 ----A---- C:\Windows\system32\javaw.exe
2013-06-19 15:18:03 ----A---- C:\Windows\system32\java.exe
2013-06-19 15:17:48 ----D---- C:\Program Files\Java
2013-06-19 15:10:29 ----D---- C:\Users\Peter_O\AppData\Roaming\Skype
2013-06-19 15:10:23 ----D---- C:\Program Files\Common Files\Skype
2013-06-19 15:10:20 ----RD---- C:\Program Files\Skype
2013-06-19 15:10:14 ----D---- C:\ProgramData\Skype
2013-06-19 15:08:02 ----D---- C:\Users\Peter_O\AppData\Roaming\Macromedia
2013-06-19 14:44:31 ----D---- C:\Program Files\Common Files\Atheros
2013-06-19 14:44:11 ----D---- C:\Program Files\Bluetooth Suite
2013-06-19 14:44:10 ----D---- C:\Users\Peter_O\AppData\Roaming\Adobe
2013-06-19 14:42:56 ----D---- C:\ProgramData\Sun
2013-06-19 14:41:16 ----A---- C:\Windows\system32\deployJava1.dll
2013-06-19 14:38:46 ----D---- C:\Windows\system32\Macromed
2013-06-19 14:37:39 ----D---- C:\Users\Peter_O\AppData\Roaming\IrfanView
2013-06-19 14:37:38 ----D---- C:\Program Files\IrfanView
2013-06-19 14:34:31 ----A---- C:\Windows\system32\mdimon.dll
2013-06-19 14:31:55 ----D---- C:\Program Files\Microsoft Works
2013-06-19 14:30:49 ----D---- C:\Program Files\Microsoft Visual Studio
2013-06-19 14:30:48 ----D---- C:\Program Files\Common Files\DESIGNER
2013-06-19 14:29:12 ----D---- C:\Windows\PCHEALTH
2013-06-19 14:29:12 ----D---- C:\Program Files\Microsoft.NET
2013-06-19 14:28:47 ----A---- C:\Windows\system32\rdpcore.dll
2013-06-19 14:28:46 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2013-06-19 14:28:39 ----A---- C:\Windows\system32\cabview.dll
2013-06-19 14:26:01 ----D---- C:\IDE
2013-06-19 14:25:51 ----D---- C:\Program Files\Microsoft Visual Studio 8
2013-06-19 14:23:50 ----D---- C:\Program Files\Microsoft Office
2013-06-19 14:23:49 ----D---- C:\ProgramData\Microsoft Help
2013-06-19 14:23:15 ----RHD---- C:\MSOCache
2013-06-19 14:20:43 ----N---- C:\Windows\system32\MpSigStub.exe
2013-06-19 14:20:08 ----D---- C:\Program Files\Combined Community Codec Pack
2013-06-19 14:18:05 ----D---- C:\Users\Peter_O\AppData\Roaming\Ahead
2013-06-19 14:17:50 ----D---- C:\ProgramData\Ahead
2013-06-19 14:17:19 ----D---- C:\ProgramData\Nero
2013-06-19 14:17:19 ----D---- C:\Program Files\Nero
2013-06-19 14:17:19 ----D---- C:\Program Files\Common Files\Ahead
2013-06-19 14:14:25 ----A---- C:\Windows\system32\d3dx9_30.dll
2013-06-19 14:14:25 ----A---- C:\Windows\system32\d3dx9_28.dll
2013-06-19 14:08:39 ----D---- C:\Program Files\Microsoft Security Client
2013-06-19 14:06:26 ----D---- C:\Windows\system32\RTCOM
2013-06-19 14:06:05 ----A---- C:\Windows\system32\WavesLib.dll
2013-06-19 14:06:05 ----A---- C:\Windows\system32\SRSWOW.dll
2013-06-19 14:06:05 ----A---- C:\Windows\system32\SRSTSXT.dll
2013-06-19 14:06:05 ----A---- C:\Windows\system32\SRSTSHD.dll
2013-06-19 14:06:05 ----A---- C:\Windows\system32\SRSHP360.dll
2013-06-19 14:06:04 ----A---- C:\Windows\system32\RtkPgExt.dll
2013-06-19 14:06:04 ----A---- C:\Windows\system32\RtkCoInst.dll
2013-06-19 14:06:04 ----A---- C:\Windows\system32\RtkApoApi.dll
2013-06-19 14:06:04 ----A---- C:\Windows\system32\RtkAPO.dll
2013-06-19 14:06:01 ----A---- C:\Windows\system32\RTEEP32A.dll
2013-06-19 14:06:01 ----A---- C:\Windows\system32\RTEEL32A.dll
2013-06-19 14:06:01 ----A---- C:\Windows\system32\RTEEG32A.dll
2013-06-19 14:06:01 ----A---- C:\Windows\system32\RTEED32A.dll
2013-06-19 14:06:01 ----A---- C:\Windows\system32\RP3DHT32.dll
2013-06-19 14:06:01 ----A---- C:\Windows\system32\RP3DAA32.dll
2013-06-19 14:06:01 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2013-06-19 14:06:00 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2013-06-19 14:06:00 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2013-06-19 14:06:00 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2013-06-19 14:05:59 ----A---- C:\Windows\system32\FMAPO.dll
2013-06-19 14:05:58 ----A---- C:\Windows\system32\AERTARen.dll
2013-06-19 14:05:58 ----A---- C:\Windows\system32\AERTACap.dll
2013-06-19 14:05:53 ----HD---- C:\Program Files\Temp
2013-06-19 14:05:52 ----R---- C:\Windows\RtlExUpd.dll
2013-06-19 14:05:48 ----D---- C:\Program Files\Common Files\InstallShield
2013-06-19 14:04:46 ----A---- C:\Windows\system32\wups2.dll
2013-06-19 14:04:46 ----A---- C:\Windows\system32\wucltux.dll
2013-06-19 14:04:46 ----A---- C:\Windows\system32\wuaueng.dll
2013-06-19 14:04:46 ----A---- C:\Windows\system32\wuauclt.exe
2013-06-19 14:04:39 ----A---- C:\Windows\system32\wups.dll
2013-06-19 14:04:39 ----A---- C:\Windows\system32\wudriver.dll
2013-06-19 14:04:39 ----A---- C:\Windows\system32\wuapi.dll
2013-06-19 14:04:28 ----A---- C:\Windows\system32\wuwebv.dll
2013-06-19 14:04:28 ----A---- C:\Windows\system32\wuapp.exe
2013-06-19 14:00:10 ----D---- C:\Windows\system32\nn-NO
2013-06-19 14:00:10 ----D---- C:\Windows\Options
2013-06-19 14:00:10 ----A---- C:\Windows\system32\drivers\athr.sys
2013-06-19 14:00:10 ----A---- C:\Windows\system32\athihvui.dll
2013-06-19 14:00:10 ----A---- C:\Windows\system32\athihvs.dll
2013-06-19 13:59:50 ----D---- C:\Program Files\Cisco
2013-06-19 13:59:50 ----D---- C:\Program Files\Atheros
2013-06-19 13:59:30 ----D---- C:\Windows\Panther
2013-06-19 13:58:51 ----D---- C:\ProgramData\Atheros
2013-06-19 13:52:13 ----R---- C:\Windows\system32\drivers\rtl8187Se.sys
2013-06-19 13:52:10 ----D---- C:\Program Files\REALTEK RTL8187SE Wireless LAN Driver
2013-06-19 13:49:29 ----D---- C:\Program Files\DIFX
2013-06-19 13:30:48 ----A---- C:\Windows\system32\RTNUninst32.dll
2013-06-19 13:30:48 ----A---- C:\Windows\system32\RtNicProp32.dll
2013-06-19 13:30:48 ----A---- C:\Windows\system32\drivers\Rt86win7.sys
2013-06-19 13:30:45 ----HD---- C:\Program Files\InstallShield Installation Information
2013-06-19 13:30:45 ----D---- C:\Program Files\Realtek
2013-06-19 13:30:03 ----D---- C:\Program Files\Intel
2013-06-19 13:30:03 ----A---- C:\Windows\system32\CSVer.dll
2013-06-19 13:29:50 ----D---- C:\swsetup
2013-06-19 13:26:08 ----D---- C:\Users\Peter_O\AppData\Roaming\Media Player Classic
2013-06-19 13:23:16 ----D---- C:\Users\Peter_O\AppData\Roaming\WinRAR
2013-06-19 13:23:06 ----D---- C:\Program Files\WinRAR
2013-06-19 13:14:10 ----SHD---- C:\Windows\Installer
2013-06-19 13:13:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-06-19 13:08:35 ----D---- C:\Users\Peter_O\AppData\Roaming\Identities
2013-06-19 13:08:20 ----SD---- C:\Users\Peter_O\AppData\Roaming\Microsoft
2013-06-19 13:08:20 ----D---- C:\Users\Peter_O\AppData\Roaming\Media Center Programs
2013-06-19 13:06:55 ----SHD---- C:\Recovery
2013-06-19 13:06:55 ----SHD---- C:\ProgramData\Šablony
2013-06-19 13:06:55 ----SHD---- C:\ProgramData\Plocha
2013-06-19 13:06:55 ----SHD---- C:\ProgramData\Oblíbené položky
2013-06-19 13:06:55 ----SHD---- C:\ProgramData\Nabídka Start
2013-06-19 13:06:55 ----SHD---- C:\ProgramData\Dokumenty
2013-06-19 13:06:55 ----SHD---- C:\ProgramData\Data aplikací
2013-06-19 13:03:10 ----D---- C:\Windows\SoftwareDistribution
2013-06-19 13:00:20 ----D---- C:\Windows\Prefetch
2013-06-19 12:59:59 ----ASH---- C:\pagefile.sys
2013-06-19 12:59:58 ----SHD---- C:\System Volume Information
2013-06-19 12:59:58 ----ASH---- C:\hiberfil.sys

======List of files/folders modified in the last 1 month======

2013-06-20 13:15:14 ----RD---- C:\Program Files
2013-06-20 13:14:58 ----D---- C:\Windows\Temp
2013-06-20 12:44:36 ----D---- C:\Windows\system32\config
2013-06-20 12:44:32 ----D---- C:\Windows\winsxs
2013-06-20 12:31:19 ----D---- C:\Windows\System32
2013-06-20 12:31:19 ----D---- C:\Windows\inf
2013-06-20 12:28:17 ----D---- C:\Windows\system32\wdi
2013-06-20 12:15:39 ----D---- C:\Windows\system32\drivers
2013-06-20 12:15:39 ----D---- C:\Windows\system32\cs-CZ
2013-06-20 12:15:37 ----D---- C:\Windows\system32\DriverStore
2013-06-20 12:14:36 ----D---- C:\Windows
2013-06-20 12:12:44 ----RSD---- C:\Windows\assembly
2013-06-20 12:09:47 ----D---- C:\Windows\system32\catroot
2013-06-20 12:04:46 ----D---- C:\Windows\Microsoft.NET
2013-06-20 12:03:58 ----D---- C:\Windows\system32\catroot2
2013-06-20 11:55:15 ----D---- C:\Program Files\Common Files\microsoft shared
2013-06-20 11:55:14 ----RSD---- C:\Windows\Fonts
2013-06-20 11:52:44 ----A---- C:\Windows\win.ini
2013-06-20 11:52:43 ----D---- C:\Program Files\Common Files\System
2013-06-20 10:48:52 ----D---- C:\Windows\system32\Tasks
2013-06-19 18:42:11 ----D---- C:\Windows\Logs
2013-06-19 18:42:11 ----D---- C:\Windows\debug
2013-06-19 17:35:42 ----D---- C:\Windows\system32\en-US
2013-06-19 17:17:03 ----D---- C:\Windows\system32\drivers\UMDF
2013-06-19 16:59:24 ----D---- C:\Windows\AppPatch
2013-06-19 16:59:24 ----D---- C:\Program Files\Windows Mail
2013-06-19 16:59:22 ----D---- C:\Windows\ehome
2013-06-19 16:39:19 ----D---- C:\Program Files\Windows Journal
2013-06-19 16:39:17 ----D---- C:\Windows\system32\Boot
2013-06-19 16:39:15 ----D---- C:\Program Files\Windows Media Player
2013-06-19 16:39:10 ----D---- C:\Windows\system32\wbem
2013-06-19 16:39:10 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-06-19 16:39:08 ----D---- C:\Program Files\Internet Explorer
2013-06-19 16:39:07 ----D---- C:\Windows\system32\migration
2013-06-19 16:39:07 ----D---- C:\Windows\PolicyDefinitions
2013-06-19 15:18:31 ----D---- C:\Program Files\Common Files
2013-06-19 15:15:21 ----SD---- C:\ProgramData\Microsoft
2013-06-19 15:10:14 ----HD---- C:\ProgramData
2013-06-19 14:31:10 ----D---- C:\Program Files\MSBuild
2013-06-19 14:30:44 ----D---- C:\Windows\ShellNew
2013-06-19 14:00:10 ----D---- C:\Windows\system32\zh-TW
2013-06-19 14:00:10 ----D---- C:\Windows\system32\zh-CN
2013-06-19 14:00:10 ----D---- C:\Windows\system32\tr-TR
2013-06-19 14:00:10 ----D---- C:\Windows\system32\sv-SE
2013-06-19 14:00:10 ----D---- C:\Windows\system32\ru-RU
2013-06-19 14:00:10 ----D---- C:\Windows\system32\pt-PT
2013-06-19 14:00:10 ----D---- C:\Windows\system32\pl-PL
2013-06-19 14:00:10 ----D---- C:\Windows\system32\nl-NL
2013-06-19 14:00:10 ----D---- C:\Windows\system32\ko-KR
2013-06-19 14:00:10 ----D---- C:\Windows\system32\ja-JP
2013-06-19 14:00:10 ----D---- C:\Windows\system32\it-IT
2013-06-19 14:00:10 ----D---- C:\Windows\system32\hu-HU
2013-06-19 14:00:10 ----D---- C:\Windows\system32\fr-FR
2013-06-19 14:00:10 ----D---- C:\Windows\system32\fi-FI
2013-06-19 14:00:10 ----D---- C:\Windows\system32\es-ES
2013-06-19 14:00:10 ----D---- C:\Windows\system32\el-GR
2013-06-19 14:00:10 ----D---- C:\Windows\system32\de-DE
2013-06-19 14:00:10 ----D---- C:\Windows\system32\da-DK
2013-06-19 13:59:04 ----D---- C:\Windows\Setup
2013-06-19 13:35:29 ----D---- C:\Windows\system32\NDF
2013-06-19 13:30:26 ----RD---- C:\Users
2013-06-19 13:18:05 ----D---- C:\Windows\system32\CodeIntegrity
2013-06-19 13:14:33 ----D---- C:\Windows\system32\restore
2013-06-19 13:08:31 ----SHD---- C:\$Recycle.Bin
2013-06-19 13:07:08 ----D---- C:\Windows\rescache
2013-06-19 13:06:55 ----D---- C:\Program Files\Windows NT
2013-06-19 13:04:05 ----D---- C:\Windows\system32\sysprep
2013-06-19 13:00:52 ----D---- C:\Windows\CSC

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2010-10-24 165264]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2011-04-21 2171904]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-10-06 2779104]
R3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2010-10-24 43392]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2011-03-05 348776]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393216]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2010-10-24 54144]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2010-11-11 11736]
R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-05-14 3289208]
R2 TeamViewer8;TeamViewer 8; C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe [2013-06-13 4150112]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-06-03 162408]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-04-13 792112]
S3 NisSrv;@c:\Program Files\Microsoft Security Client\Antimalware\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 206360]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-05-16 271920]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-06-19 1343400]

-----------------EOF-----------------

[vyosek]

Zdravim

Jen se zeptam pouzivate legalni operacni system, nejvyssi licence Ultimate zrovna neni bezna.

Poprosim i o druhy log z RSIT s nazvem info.txt, je ulozen v c:\rsit

[pietrodelarosa]

Vopred sa ospravedlnujem, som PC amater - laik, moja situacia je asi taka - notebook som si kupil v elektro expert, vsetko aj s legalnym OS myslim Win 7 home premium. Chytil som nejaky virus ministerstvo vnutra, alebo tak nejak. Volal som jednemu kolegovy, že to nejak spravíme cez viry cz ale este predtym som si zavolal ineho kolegu, ktorý zrejme preinstaloval notebook a obavam sa ci mi nevymazal originalny OS. Este dodam, ze uz nemam recovery manager tak neviem ako dalej.

info.txt logfile of random's system information tool 1.09 2013-06-20 13:15:33

======Uninstall list======

-->C:\Program Files\Nero\Nero 7\\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\Windows\UNNeroBackItUp.exe /UNINSTALL
-->C:\Windows\UNNeroVision.exe /UNINSTALL
-->C:\Windows\UNRecode.exe /UNINSTALL
Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Aktualizácia Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-041B-0000-0000000FF1CE} /uninstall {9A8C39B0-D27F-4F81-BE74-2FECF164707E}
Aktualizácia Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-041B-0000-0000000FF1CE} /uninstall {CE23B3DC-18CC-46FC-A309-81D6670F8D3D}
Aktualizácia Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-041B-0000-0000000FF1CE} /uninstall {D6DBF512-87C0-4F6A-8FB9-AC3A389D9DE5}
Atheros Driver Installation Program-->"C:\Program Files\InstallShield Installation Information\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}\Setup.exe" -runfromtemp -l0x0405
Balíček ovladače systému Windows - Intel (NETw5s32) net (09/15/2009 13.0.0.107)-->C:\PROGRA~1\DIFX\25C232B9F73C1237\DPInst32.exe /u C:\Windows\System32\DriverStore\FileRepository\netw5s32.inf_x86_neutral_5456a2e0e3eb171f\netw5s32.inf
Balíček ovladače systému Windows - Intel (NETw5v32) net (09/15/2009 13.0.0.107)-->C:\PROGRA~1\DIFX\25C232B9F73C1237\DPInst32.exe /u C:\Windows\System32\DriverStore\FileRepository\netw5v32.inf_x86_neutral_c85c6946bf8cb617\netw5v32.inf
Bluetooth Win7 Suite-->MsiExec.exe /X{101A497C-7EF6-4001-834D-E5FA1C70FEFA}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Cisco EAP-FAST Module-->MsiExec.exe /I{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}
Cisco LEAP Module-->MsiExec.exe /I{51C7AD07-C3F6-4635-8E8A-231306D810FE}
Cisco PEAP Module-->MsiExec.exe /I{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}
Combined Community Codec Pack 2010-10-10-->"C:\Program Files\Combined Community Codec Pack\unins000.exe"
IrfanView (remove only)-->C:\Program Files\IrfanView\iv_uninstall.exe
Java 7 Update 25-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83217025FF}
Microsoft .NET Framework 4 Client Profile CSY Language Pack-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\Setup.exe /repair /x86 /lcid 1029 /parameterfolder ClientLP
Microsoft .NET Framework 4 Client Profile CSY Language Pack-->MsiExec.exe /X{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}
Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}
Microsoft Antimalware Service CS-CZ Language Pack-->MsiExec.exe /X{F6197679-051D-4E3E-9757-4D5CDA6D658B}
Microsoft Antimalware-->MsiExec.exe /X{774088D4-0777-4D78-904D-E435B318F5D2}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {6E107EB7-8B55-48BF-ACCB-199F86A2CD93}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0015-041B-0000-0000000FF1CE} /uninstall {4754EB3B-ED3D-4095-A2FD-684A3058A4FF}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0016-041B-0000-0000000FF1CE} /uninstall {4754EB3B-ED3D-4095-A2FD-684A3058A4FF}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0018-041B-0000-0000000FF1CE} /uninstall {4754EB3B-ED3D-4095-A2FD-684A3058A4FF}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0019-041B-0000-0000000FF1CE} /uninstall {4754EB3B-ED3D-4095-A2FD-684A3058A4FF}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001A-041B-0000-0000000FF1CE} /uninstall {4754EB3B-ED3D-4095-A2FD-684A3058A4FF}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001B-041B-0000-0000000FF1CE} /uninstall {4754EB3B-ED3D-4095-A2FD-684A3058A4FF}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0044-041B-0000-0000000FF1CE} /uninstall {4754EB3B-ED3D-4095-A2FD-684A3058A4FF}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-006E-041B-0000-0000000FF1CE} /uninstall {8382BA92-20E3-47B6-971B-F673F0492D4E}
Microsoft Office Access MUI (Slovak) 2007-->MsiExec.exe /X{90120000-0015-041B-0000-0000000FF1CE}
Microsoft Office Excel MUI (Slovak) 2007-->MsiExec.exe /X{90120000-0016-041B-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Slovak) 2007-->MsiExec.exe /X{90120000-0044-041B-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Slovak) 2007-->MsiExec.exe /X{90120000-001A-041B-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Slovak) 2007-->MsiExec.exe /X{90120000-0018-041B-0000-0000000FF1CE}
Microsoft Office Professional Plus 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
Microsoft Office Proof (Czech) 2007-->MsiExec.exe /X{90120000-001F-0405-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Hungarian) 2007-->MsiExec.exe /X{90120000-001F-040E-0000-0000000FF1CE}
Microsoft Office Proof (Slovak) 2007-->MsiExec.exe /X{90120000-001F-041B-0000-0000000FF1CE}
Microsoft Office Proofing (Slovak) 2007-->MsiExec.exe /X{90120000-002C-041B-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0405-0000-0000000FF1CE} /uninstall {0B7A4B67-2A38-42B1-9857-662FAB361E08}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {928D7B99-2BEA-49F9-83B8-20FA57860643}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {1FF96026-A04A-4C3E-B50A-BB7022654D0F}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-040E-0000-0000000FF1CE} /uninstall {0AD4BB83-13B4-4C9D-9BAC-7F64E0B2D5D7}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-041B-0000-0000000FF1CE} /uninstall {FDF9A959-241A-4662-A8DE-7DED9C22D160}
Microsoft Office Publisher MUI (Slovak) 2007-->MsiExec.exe /X{90120000-0019-041B-0000-0000000FF1CE}
Microsoft Office Shared MUI (Slovak) 2007-->MsiExec.exe /X{90120000-006E-041B-0000-0000000FF1CE}
Microsoft Office Word MUI (Slovak) 2007-->MsiExec.exe /X{90120000-001B-041B-0000-0000000FF1CE}
Microsoft Security Client CS-CZ Language Pack-->MsiExec.exe /I{859B9BCA-5376-4566-9F88-C6C9DAA7A925}
Microsoft Security Client-->MsiExec.exe /I{77A776C4-D10F-416D-88F0-53F2D9DCD9B3}
Microsoft Security Essentials-->C:\Program Files\Microsoft Security Client\Setup.exe /x
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Nero 7 Ultra Edition-->MsiExec.exe /X{D98C0C51-F9BB-4EE4-B791-22BF6EE31051}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Realtek Ethernet Controller Driver-->C:\Program Files\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -removeonly
REALTEK Wireless LAN Driver-->C:\Program Files\InstallShield Installation Information\{D4EEC21C-04F0-4CF4-8078-82C11E38EF11}\Install.exe -uninst -l0x1B
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {67A5F99B-5EBA-3812-8D2E-BC251490DD3F} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4952F442-5C1A-38EB-8C23-B18EFE77E20C} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {CD6D9B8A-BBC4-3FA7-B24D-D74CE90630CF} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {ECBEE23D-AB7E-3DAA-B66B-CD52003198F1} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {788818B1-B191-3217-A210-7ACFDE19CE4A} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {B7C20E16-9A3A-3F05-A6B5-E15AA09200E0} /parameterfolder Client
Skype Click to Call-->MsiExec.exe /I{B6CF2967-C81E-40C0-9815-C05774FEF120}
Skype™ 6.5-->MsiExec.exe /X{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
TeamViewer 8-->C:\Program Files\TeamViewer\Version8\uninstall.exe
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5D9961AC-7C99-36A2-9EF0-34678AED5384} /parameterfolder Client
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817327) 32-Bit Edition-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {2343F7D1-9E41-4CD7-AC67-264E8E9968BD}
WinRAR 4.00 (32-bit)-->C:\Program Files\WinRAR\uninstall.exe

======System event log======

Computer Name: 37L4247D28-05
Event Code: 7036
Message: Stav služby Distributed Link Tracking Client byl změněn na: stopped
Record Number: 5
Source Name: Service Control Manager
Time Written: 20090714045645.074339-000
Event Type: Informace
User:

Computer Name: 37L4247D28-05
Event Code: 7036
Message: Stav služby Security Center byl změněn na: stopped
Record Number: 4
Source Name: Service Control Manager
Time Written: 20090714045645.074339-000
Event Type: Informace
User:

Computer Name: 37L4247D28-05
Event Code: 7036
Message: Stav služby Desktop Window Manager Session Manager byl změněn na: stopped
Record Number: 3
Source Name: Service Control Manager
Time Written: 20090714045645.074339-000
Event Type: Informace
User:

Computer Name: 37L4247D28-05
Event Code: 7036
Message: Stav služby Diagnostic Policy Service byl změněn na: stopped
Record Number: 2
Source Name: Service Control Manager
Time Written: 20090714045645.074339-000
Event Type: Informace
User:

Computer Name: 37L4247D28-05
Event Code: 7036
Message: Stav služby Microsoft Software Shadow Copy Provider byl změněn na: stopped
Record Number: 1
Source Name: Service Control Manager
Time Written: 20090714045645.074339-000
Event Type: Informace
User:

=====Application event log=====

Computer Name: 37L4247D28-05
Event Code: 412
Message: Catalog Database (1100) Catalog Database: Ze záhlaví souboru protokolu C:\Windows\system32\CatRoot2\edb.log nelze číst. Chyba -546
Record Number: 5
Source Name: ESENT
Time Written: 20130619110105.000000-000
Event Type: Chyba
User:

Computer Name: 37L4247D28-05
Event Code: 5617
Message: Windows Management Instrumentation Service subsystems initialized successfully
Record Number: 4
Source Name: Microsoft-Windows-WMI
Time Written: 20130619110102.000000-000
Event Type: Informace
User:

Computer Name: 37L4247D28-05
Event Code: 5615
Message: Windows Management Instrumentation Service started sucessfully
Record Number: 3
Source Name: Microsoft-Windows-WMI
Time Written: 20130619110058.000000-000
Event Type: Informace
User:

Computer Name: 37L4247D28-05
Event Code: 1531
Message: Služba Profil uživatele byla úspěšně spuštěna.


Record Number: 2
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20130619110053.258910-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: 37L4247D28-05
Event Code: 4625
Message: Subsystém EventSystem zabraňuje vytváření duplicitních záznamů v protokolu událostí po dobu 86400 sekund. Tuto dobu lze změnit pomocí hodnoty REG_DWORD s názvem SuppressDuplicateDuration v následujícím klíči registru: HKLM\Software\Microsoft\EventSystem\EventLog.
Record Number: 1
Source Name: Microsoft-Windows-EventSystem
Time Written: 20130619110053.000000-000
Event Type: Informace
User:

=====Security event log=====

Computer Name: 37L4247D28-05
Event Code: 4735
Message: Byla změněna zabezpečená místní skupina.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: 37L4247D28-05$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin

Změněné atributy:
Název účtu SAM: -
Historie identifikátoru zabezpečení: -

Další informace:
Oprávnění: -
Record Number: 5
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20130619110018.970050-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247D28-05
Event Code: 4731
Message: Byla vytvořena zabezpečená místní skupina.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: 37L4247D28-05$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Nová skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin

Atributy:
Název účtu SAM: Backup Operators
Historie identifikátoru zabezpečení: -

Další informace:
Oprávnění: -
Record Number: 4
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20130619110018.970050-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247D28-05
Event Code: 4902
Message: Tabulka zásad auditu pro jednotlivé uživatele byla vytvořena.

Počet prvků: 0
ID zásady: 0x23f3e
Record Number: 3
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20130619110018.658049-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247D28-05
Event Code: 4624
Message: Účet byl úspěšně přihlášen.

Předmět:
ID zabezpečení: S-1-0-0
Název účtu: -
Doména účtu: -
ID přihlášení: 0x0

Typ přihlášení: 0

Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3e7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Informace o procesu:
ID procesu: 0x4
Název procesu:

Informace o síti:
Název pracovní stanice: -
Adresa zdrojové sítě -
Zdrojový port: -

Podrobné informace o ověření:
Proces přihlášení: -
Balíček ověření: -
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0

Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.

Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.

Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).

Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.

Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.

Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 2
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20130619110017.082446-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247D28-05
Event Code: 4608
Message: Spouští se systém Windows.

Tato událost je zaznamenána při spuštění procesu LSASS.EXE a inicializaci kontrolního podsystému.
Record Number: 1
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20130619110017.004446-000
Event Type: Úspěšný audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=2
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 10, GenuineIntel
"PROCESSOR_REVISION"=170a

-----------------EOF-----------------

[vyosek]

Tak tomu kolegovi muzete pekne podekovat, ze vam zcela zprznil vasi legalni a zaplacneou licenci na W7 HP a vystavil vas tak hrozbe vysokeho financniho postihu. Kolega je zrejme "odbornik", kdyz resi takoveto problemy reinstalem a jeste na nejvyssi a hoodne drahou licenci, kdyz mate zakoupenou licenci na jiny system. Navic funkce z te nejvyssi licenci ani omylem nemuzete vyuzit...No to je ale uz vase vec jak se s nim vyporadate...

Dle pravidel fora a charty mezinarodni aliance ASAP se zde vsak nelegalnimi systemy nezabyvame - nepodporuje porusovani autorskych prav piratskym SW a tim pachani trestneho cinu.

Doporucuji preinstalovat zpet na W7 Home Premium (instalacni DVD si klidne nekde pujcte), pri instalaci pouzijete sve seriove cislo, ktere je uvedeno na COA stitku nalepenem na notebooku

[pietrodelarosa]

Ja som pôvodne mal win7 home premium 64 bit verziu. Terajsi operacny sistem nechcem - celkom urcite sa ho chcem zbavyt. Mam to chapat tak, ze ak si najdem niekoho, kto ma na dvd vypalenu zalohu (win7 home premium x64), a to dvd pouzijem s tym ze pri registracii zadam moje seriove cislo, bude moj OS legalny?

[vyosek]

Ne zalohu, ale primo instalacni DVD, to muzete klidne nekde i stahnout (ale pozor, at je ciste, zadna cinknuta predaktivovana verze), tak jej muzete klidne pouzit...

Defakto z jednoho DVD muzete nainstalovat systemu kolik chcete, pouze ke kazdemu musite mist licenci (seriove cislo)...

Polopatisticky, ano, pokud sezete od nekoho DVD a pouzijete sve cislo, tak je to legalni cesta. Pripadne se obratte s dotazy primo na podporu microsoftu, kde vysvetli a overi postup...

[pietrodelarosa]

Takze cely môj problem by mal byt zazehnany. Najprv som volal technicku podporu microsoft slovensko a tam mi poradily, ze nakolko v mojom NTB som mal predinstalovany OS, musím sa obratit na vyrobcu NTB. Zavolal som technicku podporu HP-slovensko, nadyktoval som im serial, ktory sa ukríva pod bateriou. Nahradny - legalny OS win7 home premium x64 aj s drivermi mi bude dorucena kurierom na moju adresu uplne zdarma.

[vyosek]

No vidite, ze se podarilo

[pietrodelarosa]

Po instalacii OS vam tu vlozim RSIT aby ste to skontrolovali ak vam to nebude vadit. Viete ako sa vravi "dôveruj ale preveruj". Malo by mi to dôjst behom buduceho tyzdna.

[vyosek]

OK, tema tedy nebudu zamykat

[pietrodelarosa]

Zdravím,
tak a mam to, skontrolujte legalnost OS

Logfile of random's system information tool 1.09 (written by random/random)
Run by peter at 2013-06-29 08:25:10
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 430 GB (94%) free of 459 GB
Total RAM: 3002 MB (36% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:25:16, on 29. 6. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files\trend micro\peter.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDF
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=CMNTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com?pc=CMNTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files (x86)\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP Auto (HPAuto) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XobniService - Xobni Corporation - C:\Program Files (x86)\Xobni\XobniService.exe

--
End of file - 9686 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 2790512
\??\C:\Windows\system32\conhost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
"C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe"
"C:\Program Files (x86)\PDF Complete\pdfsvc.exe" /startedbyscm:66B66708-40E2BE4D-pdfcService
"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
taskeng.exe {0E0D301C-42FC-4748-B5F5-46AC48E06B4A}
WLIDSvcM.exe 1284
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe"
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe"
"C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version8\TeamViewer8_Logfile.log
"C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version8\TeamViewer8_Logfile.log
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"c:\program files (x86)\teamviewer\version8\TeamViewer_Desktop.exe" --IPCport 5939
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe" /hidden
"C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe"
"C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe" "<hpNotification><Toast><Title>HP Wireless Assistant</Title><Text>Combo: On</Text><IconPath>C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WA_tray_32_on.ico</IconPath><ID>1725256065</ID><Path>C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe</Path><Parameters></Parameters></Toast></hpNotification>"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000690
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min /NOSPLASH /SETUPSTART
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
"C:\Windows\system32\wuauclt.exe"
C:\Windows\servicing\TrustedInstaller.exe
"C:\Windows\system32\wuauclt.exe" /RunHandlerComServer
"taskhost.exe"
"C:\Program Files (x86)\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:5324 CREDAT:145409
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1723824935-819675097-3283950788-100017_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1723824935-819675097-3283950788-100017 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe18_ Global\UsGthrCtrlFltPipeMssGthrPipe18 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Users\peter\Desktop\RSITx64.exe"

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-05-03 49440]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-06-29 463272]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-03-01 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-06-29 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-09-07 161304]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-09-07 386584]
"Persistence"=C:\Windows\system32\igfxpers.exe [2010-09-07 415256]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2011-01-12 6602856]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-12-21 2480936]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-03-01 615584]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-03-01 379552]
"HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2010-07-21 8192]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-06-03 19603048]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-09-13 283160]
"HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2010-11-09 586296]
"PDF Complete"=C:\Program Files (x86)\PDF Complete\pdfsty.exe [2011-02-01 656920]
"HPOSD"=C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [2010-12-13 318520]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2013-06-29 345312]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-08-25 271360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-06-29 08:25:10 ----D---- C:\rsit
2013-06-29 08:25:10 ----D---- C:\Program Files\trend micro
2013-06-29 08:20:56 ----A---- C:\Windows\system32\MRT.exe
2013-06-29 08:12:09 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-06-29 08:12:09 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-06-29 08:12:05 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-06-29 08:12:05 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-06-29 08:12:05 ----A---- C:\Windows\SYSWOW64\java.exe
2013-06-29 08:11:57 ----D---- C:\Program Files (x86)\Java
2013-06-29 07:56:21 ----D---- C:\Users\peter\AppData\Roaming\VitySoft
2013-06-29 07:55:28 ----D---- C:\Program Files\WinRAR
2013-06-29 07:54:39 ----D---- C:\Users\peter\AppData\Roaming\Avira
2013-06-29 07:51:13 ----D---- C:\Users\peter\AppData\Roaming\WinRAR
2013-06-29 07:49:51 ----A---- C:\Windows\system32\drivers\avnetflt.sys
2013-06-29 07:49:04 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2013-06-29 07:49:04 ----A---- C:\Windows\system32\drivers\avipbb.sys
2013-06-29 07:49:04 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2013-06-29 07:49:03 ----D---- C:\ProgramData\Avira
2013-06-29 07:49:03 ----D---- C:\Program Files (x86)\Avira
2013-06-29 07:48:22 ----SHD---- C:\Config.Msi
2013-06-29 07:35:35 ----D---- C:\Program Files\CCleaner
2013-06-29 07:31:01 ----D---- C:\Users\peter\AppData\Roaming\CyberLink
2013-06-29 06:15:27 ----A---- C:\Windows\SYSWOW64\packager.dll
2013-06-29 06:15:27 ----A---- C:\Windows\system32\packager.dll
2013-06-29 01:41:34 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2013-06-29 01:41:34 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2013-06-29 01:41:34 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2013-06-29 01:41:34 ----A---- C:\Windows\system32\drivers\bowser.sys
2013-06-29 01:41:25 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-06-29 01:41:25 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-06-29 01:41:06 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2013-06-29 01:41:06 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2013-06-29 01:41:06 ----A---- C:\Windows\system32\dnsrslvr.dll
2013-06-29 01:41:06 ----A---- C:\Windows\system32\dnscacheugc.exe
2013-06-29 01:41:06 ----A---- C:\Windows\system32\dnsapi.dll
2013-06-29 01:40:57 ----A---- C:\Windows\system32\drivers\srvnet.sys
2013-06-29 01:40:57 ----A---- C:\Windows\system32\drivers\srv2.sys
2013-06-29 01:40:57 ----A---- C:\Windows\system32\drivers\srv.sys
2013-06-29 01:40:33 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-06-29 01:40:33 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-06-29 01:40:33 ----A---- C:\Windows\system32\atmlib.dll
2013-06-29 01:40:33 ----A---- C:\Windows\system32\atmfd.dll
2013-06-29 01:40:24 ----A---- C:\Windows\system32\win32k.sys
2013-06-29 01:40:14 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2013-06-29 01:40:14 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2013-06-29 01:40:14 ----A---- C:\Windows\system32\mfc42u.dll
2013-06-29 01:40:14 ----A---- C:\Windows\system32\mfc42.dll
2013-06-29 01:39:58 ----A---- C:\Windows\system32\winresume.exe
2013-06-29 01:39:58 ----A---- C:\Windows\system32\winload.exe
2013-06-29 01:39:58 ----A---- C:\Windows\system32\kdusb.dll
2013-06-29 01:39:58 ----A---- C:\Windows\system32\kdcom.dll
2013-06-29 01:39:58 ----A---- C:\Windows\system32\kd1394.dll
2013-06-29 01:39:46 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2013-06-29 01:39:46 ----A---- C:\Windows\system32\inetcomm.dll
2013-06-29 01:38:56 ----A---- C:\Windows\system32\FXSCOVER.exe
2013-06-29 01:36:58 ----D---- C:\Windows\ehome
2013-06-29 01:34:58 ----SHD---- C:\System Volume Information
2013-06-28 20:45:13 ----D---- C:\HP_TOOLS_mountHPSF
2013-06-28 17:10:15 ----D---- C:\Users\peter\AppData\Roaming\Skype
2013-06-28 17:10:09 ----RD---- C:\Program Files (x86)\Skype
2013-06-28 17:06:56 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2013-06-28 17:06:56 ----A---- C:\Windows\system32\rdpcore.dll
2013-06-28 17:06:56 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2013-06-28 17:06:56 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2013-06-28 17:04:31 ----D---- C:\Program Files (x86)\TeamViewer
2013-06-28 17:01:43 ----A---- C:\Windows\system32\wups2.dll
2013-06-28 17:01:43 ----A---- C:\Windows\system32\wucltux.dll
2013-06-28 17:01:43 ----A---- C:\Windows\system32\wuaueng.dll
2013-06-28 17:01:43 ----A---- C:\Windows\system32\wuauclt.exe
2013-06-28 17:01:34 ----A---- C:\Windows\system32\wups.dll
2013-06-28 17:01:34 ----A---- C:\Windows\system32\wudriver.dll
2013-06-28 17:01:34 ----A---- C:\Windows\system32\wuapi.dll
2013-06-28 17:01:20 ----D---- C:\Users\peter\AppData\Roaming\Macromedia
2013-06-28 17:01:19 ----D---- C:\Users\peter\AppData\Roaming\Adobe
2013-06-28 17:01:08 ----A---- C:\Windows\system32\wuwebv.dll
2013-06-28 17:01:08 ----A---- C:\Windows\system32\wuapp.exe
2013-06-28 16:58:56 ----D---- C:\Users\peter\AppData\Roaming\Intel Corporation
2013-06-28 16:58:56 ----D---- C:\Users\peter\AppData\Roaming\hpqLog
2013-06-28 16:58:55 ----D---- C:\Users\peter\AppData\Roaming\Synaptics
2013-06-28 16:58:35 ----D---- C:\Users\peter\AppData\Roaming\Identities
2013-06-28 16:56:14 ----D---- C:\Users\peter\AppData\Roaming\Hewlett-Packard
2013-06-28 16:54:23 ----D---- C:\ProgramData\WinZip
2013-06-28 16:54:20 ----D---- C:\Program Files (x86)\WinZip
2013-06-28 16:53:35 ----SD---- C:\Users\peter\AppData\Roaming\Microsoft
2013-06-28 16:53:35 ----D---- C:\Users\peter\AppData\Roaming\Media Center Programs
2013-06-28 16:51:21 ----ASH---- C:\pagefile.sys
2013-06-28 16:17:11 ----ASH---- C:\hiberfil.sys
2013-06-28 16:08:20 ----D---- C:\Program Files (x86)\Microsoft
2013-06-28 16:07:51 ----D---- C:\ProgramData\Norton
2013-06-28 16:07:22 ----D---- C:\ProgramData\NortonInstaller
2013-06-28 16:05:46 ----D---- C:\Program Files (x86)\CyberLink
2013-06-28 16:04:34 ----D---- C:\ProgramData\Temp
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\url.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\ieakui.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\ieaksie.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\ieakeng.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-06-28 15:59:18 ----A---- C:\Windows\SYSWOW64\admparse.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\wininet.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\wextract.exe
2013-06-28 15:59:18 ----A---- C:\Windows\system32\webcheck.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\vbscript.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\urlmon.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\url.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-06-28 15:59:18 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-06-28 15:59:18 ----A---- C:\Windows\system32\pngfilt.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\occache.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\msrating.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\msls31.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\mshtmler.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\mshtmled.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\mshtml.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\mshta.exe
2013-06-28 15:59:18 ----A---- C:\Windows\system32\msfeedssync.exe
2013-06-28 15:59:18 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\msfeeds.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\licmgr10.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\jsproxy.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\jscript9.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\jscript.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\inseng.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\imgutil.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\iexpress.exe
2013-06-28 15:59:18 ----A---- C:\Windows\system32\ieUnatt.exe
2013-06-28 15:59:18 ----A---- C:\Windows\system32\ieui.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\iesysprep.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\iesetup.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\iertutil.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\iernonce.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\iepeers.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\ieframe.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\iedkcs32.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\ieapfltr.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\ieapfltr.dat
2013-06-28 15:59:18 ----A---- C:\Windows\system32\ieakui.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\ieaksie.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\ieakeng.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\ie4uinit.exe
2013-06-28 15:59:18 ----A---- C:\Windows\system32\icardie.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\dxtrans.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\dxtmsft.dll
2013-06-28 15:59:18 ----A---- C:\Windows\system32\admparse.dll
2013-06-28 15:58:43 ----D---- C:\Windows\Hewlett-Packard
2013-06-28 15:54:25 ----D---- C:\Program Files (x86)\Bluetooth Suite
2013-06-28 15:53:34 ----D---- C:\Windows\system32\nn-NO
2013-06-28 15:53:34 ----D---- C:\Windows\Options
2013-06-28 15:53:34 ----A---- C:\Windows\system32\drivers\athrx.sys
2013-06-28 15:53:34 ----A---- C:\Windows\system32\athihvui.dll
2013-06-28 15:53:33 ----A---- C:\Windows\system32\athihvs.dll
2013-06-28 15:53:22 ----D---- C:\Program Files (x86)\Cisco
2013-06-28 15:53:22 ----D---- C:\Program Files (x86)\Atheros
2013-06-28 15:52:34 ----D---- C:\ProgramData\Atheros
2013-06-28 15:52:16 ----D---- C:\Program Files\Synaptics
2013-06-28 15:51:43 ----D---- C:\Windows\SYSWOW64\sda
2013-06-28 15:51:33 ----A---- C:\Windows\SYSWOW64\RtsPStorIcon.dll
2013-06-28 15:51:33 ----A---- C:\Windows\system32\drivers\RtsPStor.sys
2013-06-28 15:50:35 ----A---- C:\Windows\system32\RTNUninst64.dll
2013-06-28 15:50:35 ----A---- C:\Windows\system32\RtNicProp64.dll
2013-06-28 15:50:35 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2013-06-28 15:50:15 ----D---- C:\Windows\SYSWOW64\RTCOM
2013-06-28 15:50:15 ----D---- C:\Program Files\Realtek
2013-06-28 15:50:02 ----A---- C:\Windows\system32\drivers\RTHDAEQ0.dat
2013-06-28 15:50:02 ----A---- C:\Windows\system32\drivers\RTEQEX0.dat
2013-06-28 15:50:00 ----A---- C:\Windows\system32\SRSWOW64.dll
2013-06-28 15:50:00 ----A---- C:\Windows\system32\SRSTSX64.dll
2013-06-28 15:49:59 ----A---- C:\Windows\system32\RtPgEx64.dll
2013-06-28 15:49:59 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2013-06-28 15:49:59 ----A---- C:\Windows\system32\RtkCfg64.dll
2013-06-28 15:49:59 ----A---- C:\Windows\system32\RtkAPO64.dll
2013-06-28 15:49:59 ----A---- C:\Windows\system32\RtkApi64.dll
2013-06-28 15:49:59 ----A---- C:\Windows\system32\RTEEP64A.dll
2013-06-28 15:49:59 ----A---- C:\Windows\system32\RTEEL64A.dll
2013-06-28 15:49:59 ----A---- C:\Windows\system32\RTEEG64A.dll
2013-06-28 15:49:59 ----A---- C:\Windows\system32\RTEED64A.dll
2013-06-28 15:49:59 ----A---- C:\Windows\system32\RTCOM64.dll
2013-06-28 15:49:59 ----A---- C:\Windows\system32\RP3DHT64.dll
2013-06-28 15:49:59 ----A---- C:\Windows\system32\RP3DAA64.dll
2013-06-28 15:49:59 ----A---- C:\Windows\system32\RCoInst64.dll
2013-06-28 15:49:59 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2013-06-28 15:49:57 ----D---- C:\Program Files (x86)\Realtek
2013-06-28 15:49:57 ----A---- C:\Windows\system32\AERTAR64.dll
2013-06-28 15:49:57 ----A---- C:\Windows\system32\AERTAC64.dll
2013-06-28 15:49:56 ----HD---- C:\Program Files (x86)\Temp
2013-06-28 15:49:56 ----A---- C:\Windows\RtlExUpd.dll
2013-06-28 15:49:28 ----A---- C:\Windows\system32\drivers\iaStor.sys
2013-06-28 15:49:13 ----A---- C:\Windows\SYSWOW64\CSVer.dll
2013-06-28 15:49:04 ----D---- C:\Program Files (x86)\Intel
2013-06-28 15:48:20 ----D---- C:\Intel
2013-06-28 15:47:58 ----D---- C:\Windows\SoftwareDistribution
2013-06-28 15:43:21 ----D---- C:\Windows\Prefetch

======List of files/folders modified in the last 1 month======

2013-06-29 08:25:15 ----D---- C:\Windows\winsxs
2013-06-29 08:25:15 ----D---- C:\Windows\Temp
2013-06-29 08:25:10 ----RD---- C:\Program Files
2013-06-29 08:20:57 ----D---- C:\Windows\debug
2013-06-29 08:20:56 ----D---- C:\Windows\System32
2013-06-29 08:20:06 ----D---- C:\Windows\system32\catroot
2013-06-29 08:19:20 ----D---- C:\Windows\system32\catroot2
2013-06-29 08:14:37 ----D---- C:\Windows
2013-06-29 08:13:56 ----D---- C:\Windows\SysWOW64
2013-06-29 08:12:16 ----SHD---- C:\Windows\Installer
2013-06-29 08:12:16 ----D---- C:\Program Files (x86)\Common Files
2013-06-29 08:11:58 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-06-29 08:11:57 ----RD---- C:\Program Files (x86)
2013-06-29 08:11:13 ----D---- C:\Windows\system32\config
2013-06-29 07:49:51 ----D---- C:\Windows\system32\drivers
2013-06-29 07:49:03 ----HD---- C:\ProgramData
2013-06-29 07:47:23 ----D---- C:\Windows\inf
2013-06-29 07:47:23 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-06-29 07:41:39 ----D---- C:\ProgramData\PDFC
2013-06-29 07:39:13 ----D---- C:\Program Files\Common Files
2013-06-29 07:36:33 ----SD---- C:\ProgramData\Microsoft
2013-06-29 07:35:38 ----D---- C:\Windows\system32\Tasks
2013-06-29 01:40:00 ----D---- C:\Windows\system32\Boot
2013-06-29 01:38:43 ----A---- C:\Windows\CSUP.txt
2013-06-29 01:36:58 ----D---- C:\Windows\SYSWOW64\wbem
2013-06-29 01:36:58 ----D---- C:\Program Files\Microsoft Games
2013-06-29 01:36:58 ----D---- C:\Program Files\DVD Maker
2013-06-29 01:36:57 ----D---- C:\Windows\system32\wbem
2013-06-28 20:21:52 ----D---- C:\Windows\system32\LogFiles
2013-06-28 17:17:01 ----D---- C:\Windows\system32\sk-SK
2013-06-28 17:17:01 ----D---- C:\Windows\system32\en-US
2013-06-28 17:17:01 ----D---- C:\Windows\system32\cs-CZ
2013-06-28 17:16:34 ----D---- C:\Windows\system32\wdi
2013-06-28 17:10:13 ----D---- C:\ProgramData\Skype
2013-06-28 17:05:53 ----D---- C:\Windows\Logs
2013-06-28 17:04:35 ----RSD---- C:\Windows\Fonts
2013-06-28 16:58:29 ----SHD---- C:\$Recycle.Bin
2013-06-28 16:58:17 ----RD---- C:\SWSetup
2013-06-28 16:56:09 ----RD---- C:\Program Files (x86)\Online Services
2013-06-28 16:55:56 ----D---- C:\Program Files\Windows Sidebar
2013-06-28 16:55:56 ----D---- C:\Program Files (x86)\Windows Sidebar
2013-06-28 16:54:49 ----D---- C:\Windows\system32\restore
2013-06-28 16:54:48 ----HD---- C:\SYSTEM.SAV
2013-06-28 16:54:42 ----SHD---- C:\Recovery
2013-06-28 16:54:42 ----D---- C:\Windows\system32\Recovery
2013-06-28 16:53:34 ----RD---- C:\Users
2013-06-28 16:53:20 ----D---- C:\Windows\rescache
2013-06-28 16:51:53 ----D---- C:\Windows\Panther
2013-06-28 16:18:34 ----D---- C:\ProgramData\Hewlett-Packard
2013-06-28 16:17:49 ----D---- C:\Windows\system32\sysprep
2013-06-28 16:09:07 ----HD---- C:\HP
2013-06-28 16:07:45 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-06-28 16:06:46 ----D---- C:\Program Files (x86)\Hewlett-Packard
2013-06-28 16:06:40 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-06-28 16:06:40 ----D---- C:\Windows\system32\DriverStore
2013-06-28 16:00:58 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-06-28 16:00:58 ----D---- C:\Windows\PolicyDefinitions
2013-06-28 16:00:58 ----D---- C:\Program Files\Internet Explorer
2013-06-28 16:00:58 ----D---- C:\Program Files (x86)\Internet Explorer
2013-06-28 16:00:57 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-06-28 16:00:56 ----D---- C:\Windows\SYSWOW64\migration
2013-06-28 16:00:56 ----D---- C:\Windows\SYSWOW64\en-US
2013-06-28 16:00:55 ----D---- C:\Windows\system32\migration
2013-06-28 15:53:34 ----D---- C:\Windows\system32\zh-TW
2013-06-28 15:53:34 ----D---- C:\Windows\system32\zh-CN
2013-06-28 15:53:34 ----D---- C:\Windows\system32\tr-TR
2013-06-28 15:53:34 ----D---- C:\Windows\system32\sv-SE
2013-06-28 15:53:34 ----D---- C:\Windows\system32\ru-RU
2013-06-28 15:53:34 ----D---- C:\Windows\system32\pt-PT
2013-06-28 15:53:34 ----D---- C:\Windows\system32\pl-PL
2013-06-28 15:53:34 ----D---- C:\Windows\system32\nl-NL
2013-06-28 15:53:34 ----D---- C:\Windows\system32\ko-KR
2013-06-28 15:53:34 ----D---- C:\Windows\system32\ja-JP
2013-06-28 15:53:34 ----D---- C:\Windows\system32\it-IT
2013-06-28 15:53:34 ----D---- C:\Windows\system32\hu-HU
2013-06-28 15:53:34 ----D---- C:\Windows\system32\fr-FR
2013-06-28 15:53:34 ----D---- C:\Windows\system32\fi-FI
2013-06-28 15:53:34 ----D---- C:\Windows\system32\es-ES
2013-06-28 15:53:34 ----D---- C:\Windows\system32\el-GR
2013-06-28 15:53:34 ----D---- C:\Windows\system32\de-DE
2013-06-28 15:53:34 ----D---- C:\Windows\system32\da-DK
2013-06-28 15:52:08 ----D---- C:\Windows\Microsoft.NET
2013-06-28 15:51:50 ----RSD---- C:\Windows\assembly
2013-06-28 15:47:36 ----D---- C:\Windows\SYSWOW64\drivers

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-09-13 437272]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2013-06-29 130016]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2013-06-29 28600]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2013-06-29 100712]
R3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-03-01 36000]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-02-22 2736640]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-03-01 298656]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-03-01 28832]
R3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-03-01 201376]
R3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-03-01 55456]
R3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-03-01 154272]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-03-01 280224]
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2010-11-21 80384]
R3 clwvd;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2011-02-09 31088]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2010-08-25 10611552]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-01-12 2709224]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI; C:\Windows\system32\drivers\IntcHdmi.sys [2010-03-15 145408]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2011-02-15 335464]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-03-05 436840]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-12-21 1402416]
S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2009-06-10 1311232]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2010-11-21 552448]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AERTFilters;Andrea RT Filters Service; C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-06-29 110816]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-06-29 86752]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-03-01 138400]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-03-01 76448]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2010-12-01 126520]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-07-21 103992]
R2 HPAuto;HP Auto; C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [2011-02-16 682040]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-02-04 92216]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2010-11-09 26680]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-09-13 13336]
R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2010-12-28 1817088]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [2011-02-01 1127448]
R2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-06-13 4150112]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2011-02-04 797240]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-06-03 162408]
S2 XobniService;XobniService; C:\Program Files (x86)\Xobni\XobniService.exe [2011-02-25 62184]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]

-----------------EOF-----------------

[vyosek]

Zdravim

Stahnete na plochu CKScanner

• Spustte a kliknete na Search for files
• Po dokonceni skenu kliknete na Save List to File a nasledne OK
• Na plose se Vam vytvori log s nazvem ckfiles.txt, jeho obsah mi sem vlozte

Dle kolegy spustte

Stahnete WVCheck http://wvcheck.artellos.com/WVCheck.exe , ulozte ho na plochu a spustte.
Zmacknete Enter a program zacne pracovat.
Az skonci, sam vytvori na plose log (poznamkovy blok s nazvem WVCheck_cas_datum). Jeho obsah sem zkopirujte.

[pietrodelarosa]

Nejde mi ckscaner, po spusteni programu mi na hornej liste vypise ze program nereaguje, pripajam screenshot http://imageshack.us/photo/my-images/829/x4hz.jpg/

WVCheck log

Windows Validation Check
Version: 1.9.12.5
Log Created On: 0906_30-06-2013
-----------------------

Windows Information
-----------------------
Windows Version: Windows 7 Service Pack 1
Windows Mode: Normal
Systemroot Path: C:\Windows

WVCheck's Auto Update Check
-----------------------
Auto-Update Option: Download updates and install them automatically.
-----------------------
Last Success Time for Update Detection: 2013-06-30 06:42:18
Last Success Time for Update Download: 2013-06-30 06:28:09
Last Success Time for Update Installation: 2013-06-30 06:34:26


WVCheck's Registry Check Check
-----------------------
Antiwpa: Not Found
-----------------------
Chew7Hale: Not Found
-----------------------


WVCheck's File Dump
-----------------------
C:\Windows\System32\slwga.dll
Size: 14336 bytes
Creation; 21/11/2010 4:23:48
Modification; 21/11/2010 4:23:48
MD5; 19f75d71e4256f5113d64ce2bb66b838
Matched: slwga.dll
-----------------------
C:\Windows\SysWOW64\slwga.dll
Size: 14336 bytes
Creation; 21/11/2010 4:23:48
Modification; 21/11/2010 4:23:48
MD5; 19f75d71e4256f5113d64ce2bb66b838
Matched: slwga.dll
-----------------------
C:\Windows\winsxs\amd64_microsoft-windows-security-spp-wga_31bf3856ad364e35_6.1.7601.17514_none_5d778f71b9f4fd55\slwga.dll
Size: 15360 bytes
Creation; 21/11/2010 4:24:21
Modification; 21/11/2010 4:24:21
MD5; b6d6886149573278cba6abd44c4317f5
Matched: slwga.dll
-----------------------
C:\Windows\winsxs\x86_microsoft-windows-security-spp-wga_31bf3856ad364e35_6.1.7601.17514_none_0158f3ee01978c1f\slwga.dll
Size: 14336 bytes
Creation; 21/11/2010 4:23:48
Modification; 21/11/2010 4:23:48
MD5; 19f75d71e4256f5113d64ce2bb66b838
Matched: slwga.dll
-----------------------


WVCheck's Dir Dump
-----------------------
WVCheck found no known bad directories.


WVCheck's Missing File Check
-----------------------
WVCheck found no missing Windows files.


WVCheck's HOSTS File Check
-----------------------
WVCheck found no bad lines in the hosts file.


WVCheck's MD5 Check
EXPERIMENTAL!!
-----------------------
user32.dll - 5e0db2d8b2750543cd2ebb9ea8e6cdd3


-------- End of File, program close at 0908_30-06-2013 --------

[vyosek]

Fajn, log se mi zda OK, je s PC nejaky problem??

[pietrodelarosa]

S pc momentalne nemam ziaden problem nakolko OS je natiahnuty nanovo. Ja vam dakujem za spolupracu a som rad, že moj notebook je konečne spraveny tak jak ma byt. S pozdravom Peter.