malware?

[rpodhr]

Dobrý den,
od včerejška registruji problémy se zobrazováním stránek na internetu (firefox ani jiný prohlížeč nemůže najít servery antivirových programů i jiných a například z vůbec žádných stránek nemůžu stáhnout Comodo firewall). Také se mi nemůže aktualizovat iTunes a Google Chrom, hlásí chybu se zabezpečením). Chyba při načítání stránky se mi zobrazí i při pokusu stáhnout RSIT. Mám logy z UPM a hijackthis. Můžete se na to moc prosím podívat? Mám WIN 7, teď jsem zjistil, že se to projevuje jen, když jsem připojen přes WIFI a pokud se připojím přes UFONa, tak je to v pořádku stáhnul jsem RSIT a přkládám LOG vygenerovaný při připojení na wifi.

Díky Renek

[rpodhr]

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:25:45, on 9.1.2010
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files\ASUS\Splendid\ACMON.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\ACEngSvr.exe
C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\ASUSTPE.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Microsoft Security Essentials\msseces.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Tall Emu\Online Armor\oaui.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Tall Emu\Online Armor\OAhlp.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Mozilla Firefox 3.6 Beta 4\firefox.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceHelper.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\distnoted.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/icqskins/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [HControlUser] C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [AmIcoSinglun] C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ASUSTPE] C:\Windows\system32\ASUSTPE.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [MSSE] "c:\Program Files\Microsoft Security Essentials\msseces.exe" -hide
O4 - HKLM\..\Run: [@OnlineArmor GUI] "C:\Program Files\Tall Emu\Online Armor\OAui.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O13 - Gopher Prefix:
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GO36F4~1.DLL
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Web'n'walk Manager mobile equipment installation service (ameisvc) - Gemfor s.r.o. - C:\Program Files\T-Mobile\Web'n'walk Manager\ameisvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Desktop Manager 5.9.909.30391 (GoogleDesktopManager-093009-130223) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Online Armor Helper Service (OAcat) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\OAcat.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: Online Armor (SvcOnlineArmor) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\oasrv.exe
O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
O23 - Service: CryptoPlus XME Engine Service (xmengine service) - Monet+, a.s. - C:\Windows\system32\xmesrv.exe

--
End of file - 8865 bytes

[rpodhr]

Windows Vista SP 0 (build 7600)
Boot Mode: Normal
Ověření souborů Microsoftu: Ano
Whitelist: Ano
Internet Explorer v8.00.7600.16385 (win7_rtm.090713-1255)
Log vygenerován: 31.3.2010 14:43:29
================================================================

Běžící procesy
================================================================

C:\PROGRAM FILES\MICROSOFT SECURITY ESSENTIALS\MSMPENG.EXE
C:\WINDOWS\SYSTEM32\ATIESRXX.EXE
(rootkit?) audiodg.exe
C:\WINDOWS\SYSTEM32\ATIECLXX.EXE
C:\PROGRAM FILES\TALL EMU\ONLINE ARMOR\OACAT.EXE
C:\PROGRAM FILES\TALL EMU\ONLINE ARMOR\OASRV.EXE
C:\PROGRAM FILES\ASUS\ATK HOTKEY\ASLDRSRV.EXE
C:\PROGRAM FILES\ATKGFNEX\GFNEXSRV.EXE
C:\PROGRAM FILES\ASUS\ATK HOTKEY\HCONTROLUSER.EXE
C:\PROGRAM FILES\ASUS\ATKOSD2\ATKOSD2.EXE
C:\PROGRAM FILES\ASUS\ATK MEDIA\DMEDIA.EXE
C:\PROGRAM FILES\AMICOSINGLUN\AMICOSINGLUN.EXE
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPENH.EXE
C:\WINDOWS\SYSTEM32\ASUSTPE.EXE
C:\WINDOWS\RTHDVCPL.EXE
C:\PROGRAM FILES\MICROSOFT SECURITY ESSENTIALS\MSSECES.EXE
C:\PROGRAM FILES\ASUS\ATK HOTKEY\HCONTROL.EXE
C:\PROGRAM FILES\WIRELESS CONSOLE 2\WCOURIER.EXE
C:\PROGRAM FILES\P4G\BATTERYLIFE.EXE
C:\PROGRAM FILES\COMMON FILES\APPLE\MOBILE DEVICE SUPPORT\BIN\APPLEMOBILEDEVICESERVICE.EXE
C:\PROGRAM FILES\ASUS\ATK HOTKEY\ATKOSD.EXE
C:\PROGRAM FILES\ASUS\NB PROBE\SPM\SPMGR.EXE
C:\PROGRAM FILES\TALL EMU\ONLINE ARMOR\OAUI.EXE
C:\PROGRAM FILES\ASUS\ATK HOTKEY\KBFILTR.EXE
C:\PROGRAM FILES\TUNEUP UTILITIES 2010\TUNEUPUTILITIESSERVICE32.EXE
C:\PROGRAM FILES\ASUS\ATK HOTKEY\WDC.EXE
C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\WINDOWS LIVE\WLIDSVC.EXE
C:\PROGRAM FILES\DAEMON TOOLS LITE\DTLITE.EXE
C:\PROGRAM FILES\ROCKETDOCK\ROCKETDOCK.EXE
C:\WINDOWS\SYSTEM32\XMESRV.EXE
C:\PROGRAM FILES\TUNEUP UTILITIES 2010\TUNEUPUTILITIESAPP32.EXE
C:\PROGRAM FILES\ASUS\SPLENDID\ACMON.EXE
C:\PROGRAM FILES\TALL EMU\ONLINE ARMOR\OAHLP.EXE
C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\WINDOWS LIVE\WLIDSVCM.EXE
C:\PROGRAM FILES\REMOTE KITTEN\REMOTE KITTEN\REMOTE KITTEN.EXE
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\PROGRAM FILES\MOZILLA FIREFOX 3.6 BETA 4\FIREFOX.EXE
C:\TOTALCMD\TOTALCMD.EXE

Scanner
================================================================
[?] MsMpEng.exe
Ověřený Microsoft: Ne
Nemá okno
Soubor 12%

[?] atiesrxx.exe
Non Microsoft v System32:
Nemá okno

[S] audiodg.exe
Proces se nepodařilo otevřít
ROOTKIT? Skrytá cesta
Spouští se po startu HKCU Run [DAEMON Tools Lite]
Nelze otevřít

[?] atieclxx.exe
Non Microsoft v System32:

[?] oacat.exe
EntryPoint v sekci: CODE
|_ Celkový počet sekcí: 9
Nemá okno
Soubor 63%

[?] oasrv.exe
EntryPoint v sekci: CODE
|_ Celkový počet sekcí: 9
Nemá okno
Soubor 63%

[S] explorer.exe
Spouští se po startu HKLM Winlogon [Shell]

[?] AsLdrSrv.exe
Nemá okno
Soubor 7%

[?] GFNEXSrv.exe
Bez výrobce
Nemá okno
Soubor 12%

[?] HControlUser.exe
Spouští se po startu HKLM Run [HControlUser]
Soubor 14%

[?] ATKOSD2.exe
Podobná jména: ATKOSD2.EXE X ATKOSD.EXE
Spouští se po startu HKLM Run [ATKOSD2]
Soubor 14%

[?] DMedia.exe
Spouští se po startu HKLM Run [ATKMEDIA]
Soubor 14%

[?] AmIcoSinglun.exe
Spouští se po startu HKLM Run [AmIcoSinglun]
Soubor 7%

[?] SynTPEnh.exe
Spouští se po startu HKLM Run [SynTPEnh]

[?] ASUSTPE.exe
Non Microsoft v System32:
Spouští se po startu HKLM Run [ASUSTPE]
Soubor 7%

[?] RtHDVCpl.exe
Spouští se po startu HKLM Run [RtHDVCpl]

[?] msseces.exe
Ověřený Microsoft: Ne
Spouští se po startu HKLM Run [MSSE]
Soubor 12%

[?] HControl.exe
Soubor 7%

[?] wcourier.exe
Bez výrobce
Soubor 12%

[?] BatteryLife.exe
Soubor 14%

[?] AppleMobileDeviceService.exe
Nemá okno
Soubor 7%

[?] ATKOSD.exe
Podobná jména: ATKOSD.EXE X ATKOSD2.EXE
Soubor 14%

[?] spmgr.exe
Nemá okno
Soubor 7%

[?] oaui.exe
Spouští se po startu HKLM Run [@OnlineArmor GUI]
EntryPoint v sekci: CODE
|_ Celkový počet sekcí: 9
Soubor 63%

[?] KBFiltr.exe
Soubor 14%

[?] TuneUpUtilitiesService32.exe
Nemá okno
Soubor 7%

[?] WDC.exe
Soubor 14%

[?] WLIDSVC.EXE
Ověřený Microsoft: Ne
Podobná jména: WLIDSVC.EXE X WLIDSVCM.EXE
Nemá okno
Soubor 12%

[?] DTLite.exe
Spouští se po startu HKCU Run [DAEMON Tools Lite]
EntryPoint v sekci: .VMP1
|_ Celkový počet sekcí: 6
Soubor 70%

[?] RocketDock.exe
Bez výrobce
Spouští se po startu HKCU Run [RocketDock]
Soubor 12%

[?] xmesrv.exe
Non Microsoft v System32:
Nemá okno
Soubor 7%

[?] TuneUpUtilitiesApp32.exe
Soubor 14%

[?] ACMON.exe
Soubor 7%

[?] oahlp.exe
EntryPoint v sekci: CODE
|_ Celkový počet sekcí: 9
Soubor 63%

[?] WLIDSVCM.EXE
Ověřený Microsoft: Ne
Podobná jména: WLIDSVCM.EXE X WLIDSVC.EXE
Nemá okno
Soubor 12%

[S] sidebar.exe
Spouští se po startu HKCU Run [Sidebar]

[?] Remote Kitten.exe
EntryPoint v sekci:
|_ Celkový počet sekcí: 3
Soubor 7%

[?] firefox.exe
Soubor 14%

[?] TOTALCMD.EXE
Spouští se po startu HKCU Run [Total Commander 32 bit]
EntryPoint v sekci: CODE
|_ Celkový počet sekcí: 8
Soubor 63%

[S] SearchProtocolHost.exe
Proces se nepodařilo otevřít
ROOTKIT? Skrytá cesta
Spouští se po startu HKCU Run [DAEMON Tools Lite]
Nelze otevřít

[S] SearchFilterHost.exe
Proces se nepodařilo otevřít
ROOTKIT? Skrytá cesta
Spouští se po startu HKCU Run [DAEMON Tools Lite]
Nelze otevřít


Po spuštění
================================================================

HKCU Run
|_ [!][DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe -autorun
|_ [?][RocketDock] C:\Program Files\RocketDock\RocketDock.exe
|_ [!][Total Commander 32 bit] C:\totalcmd\TOTALCMD.EXE
|_ [S][Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

HKLM Run
|_ [?][HControlUser] C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
|_ [?][ATKOSD2] C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe
|_ [?][ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMedia.exe
|_ [?][AmIcoSinglun] C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
|_ [?][SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
|_ [?][ASUSTPE] C:\Windows\system32\ASUSTPE.exe
|_ [?][RtHDVCpl] C:\Windows\RtHDVCpl.exe
|_ [?][Skytel] C:\Windows\Skytel.exe
|_ [?][MSSE] c:\Program Files\Microsoft Security Essentials\msseces.exe -hide -runkey
|_ [!][@OnlineArmor GUI] C:\Program Files\Tall Emu\Online Armor\OAui.exe

HKLM ShellServiceObjectDelayLoad
|_ [X][WebCheck] (Soubor nenalezen)

HKLM IC
|_ [?][{89820200-ECBD-11cf-8B85-00AA005B4340}] regsvr32.exe /s /n /i:U shell32.dll

HKLM AppInit_DLLs
|_ [?][AppInit_DLLs] C:\PROGRA~1\Google\GOOGLE~1\GO36F4~1.DLL


HKLM BHO
|_ [?][{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
|_ [?][{3049C3E9-B461-4BC5-8870-4C09146192CA}] C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
|_ [?][{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
|_ [?][{9030D464-4C02-4ABF-8ECC-5164760863C6}] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
|_ [?][{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
|_ [?][{DBC80044-A445-435b-BC74-9C25C1C588A9}] C:\Program Files\Java\jre6\bin\jp2ssv.dll

HKCU IE WebBrowser Toolbar
|_ [X][{D4027C7F-154A-4066-A1AD-4243D8127440}] (Soubor nenalezen)
|_ [X][{472734EA-242A-422B-ADF8-83D1E48CC825}] (Soubor nenalezen)

Služby (Zobraz běžící: True, Zobraz zastavené: False, Zobraz i bezpečné služby: False)
================================================================
[?] AMD External Events Utility
|_ Cesta: C:\Windows\system32\atiesrxx.exe
| |_ Výrobce: AMD
| |_ Popis: AMD External Events Service Module
| |_ MD5: B19505648F033393E907E2E419FDE8B3
|
|_ Jméno: AMD External Events Utility
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:

[?] Apple Mobile Device
|_ Cesta: C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
| |_ Výrobce: Apple Inc.
| |_ Popis: Apple Mobile Device Service
| |_ MD5: 4B5AE15E5C73EB4DC8DBEC2788230D41
|
|_ Jméno: Apple Mobile Device
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency: Tcpip

[?] ASLDR Service
|_ Cesta: C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
| |_ Výrobce: ASUS
| |_ Popis: ASLDR Service
| |_ MD5: 18E5C2F937F9DEB8C282DF66A3761925
|
|_ Jméno: ASLDRService
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:

[?] ATKGFNEX Service
|_ Cesta: C:\Program Files\ATKGFNEX\GFNEXSrv.exe
| |_ Výrobce: ?
| |_ Popis: GFNEXSrv
| |_ MD5: 7C157574A181B19B9DCF5F339E25337E
|
|_ Jméno: ATKGFNEXSrv
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency: ASMMAP

[X] Služba Google Update (gupdate)
|_ Cesta: C:\Program Files\Google\Update\GoogleUpdate.exe /svc
| |_ Výrobce:
| |_ Popis:
| |_ MD5:
|
|_ Jméno: gupdate
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Zastaveno
|_ Typ: Win32 Own Process
|_ Dependency: RPCSS

[?] Google Software Updater
|_ Cesta: C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
| |_ Výrobce: Google
| |_ Popis: gusvc
| |_ MD5: A420EE812D88AEF8C03E11EDD4B353DD
|
|_ Jméno: gusvc
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Zastaveno
|_ Typ: Win32 Own Process
|_ Dependency: RPCSS

[?] Microsoft Antimalware Service
|_ Cesta: c:\Program Files\Microsoft Security Essentials\MsMpEng.exe
| |_ Výrobce: Microsoft Corporation
| |_ Popis: AntiMalware Service Executable
| |_ MD5: FBE736AF381983A1D4ADBBF1FACF6976
|
|_ Jméno: MsMpSvc
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency: RpcSs

[!] Online Armor Helper Service
|_ Cesta: C:\Program Files\Tall Emu\Online Armor\OAcat.exe
| |_ Výrobce: Tall Emu
| |_ Popis: Online Armor Component
| |_ MD5: E39C22F9970F70ADEA735546BA4850C9
|
|_ Jméno: OAcat
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:

[?] spmgr
|_ Cesta: C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
| |_ Výrobce:
| |_ Popis: spmgr Module
| |_ MD5: 739DB668DBD812285ECC553E64A5E212
|
|_ Jméno: spmgr
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency: RPCSS

[!] Online Armor
|_ Cesta: C:\Program Files\Tall Emu\Online Armor\oasrv.exe
| |_ Výrobce: Tall Emu
| |_ Popis: Online Armor Component
| |_ MD5: 05CC0B4927E9110AFE68212771601A2F
|
|_ Jméno: SvcOnlineArmor
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:

[?] TuneUp Utilities Service
|_ Cesta: C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
| |_ Výrobce: TuneUp Software
| |_ Popis: TuneUp Utilities Service
| |_ MD5: CDD2A504035E841370D8299C21EEDCB8
|
|_ Jméno: TuneUp.UtilitiesSvc
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency: RPCSS

[?] TuneUp Theme Extension
|_ Cesta: C:\Windows\System32\svchost.exe
| |_ Výrobce: Microsoft Corporation
| |_ Popis: Host Process for Windows Services
| |_ MD5: 54A47F6B5E09A77E61649109C6A08866
|
|_ ServiceDLL: C:\Windows\System32\uxtuneup.dll
| |_ Výrobce: TuneUp Software
| |_ Popis: TuneUp Theme Extension
| |_ MD5: A7FEC274110574AF8FE23F4475F52433
|
|_ Jméno: UxTuneUp
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Share Process
|_ Dependency: Themes

[?] Windows Live ID Sign-in Assistant
|_ Cesta: C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
| |_ Výrobce: Microsoft Corporation
| |_ Popis: Microsoft® Windows Live ID Service
| |_ MD5: D9250B31B353EE3322C1CAD411997E38
|
|_ Jméno: wlidsvc
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:

[?] CryptoPlus XME Engine Service
|_ Cesta: C:\Windows\system32\xmesrv.exe
| |_ Výrobce: Monet+, a.s.
| |_ Popis: CryptoPlus XME Engine
| |_ MD5: 168C75B5B42D80E8946ABEF7BC28C584
|
|_ Jméno: xmengine service
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:


Ovladače (Zobraz běžící: True, Zobraz zastavené: False, Zobraz i bezpečné služby: False)
================================================================
[?] amdxata
|_ Cesta: C:\Windows\system32\DRIVERS\amdxata.sys
| |_ Výrobce: Advanced Micro Devices
| |_ Popis: Storage Filter Driver
| |_ MD5: B81C2B5616F6420A9941EA093A92B150
|
|_ Jméno: amdxata
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] AM USB Stroage Driver
|_ Cesta: C:\Windows\system32\drivers\AmUStor.SYS
| |_ Výrobce: Alcor Micro, Corp.
| |_ Popis: Alocr Micro USB Mass Storage Driver
| |_ MD5: 4CDC536166F3CADF6496BDAC857B0F58
|
|_ Jméno: AmUStor
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] ASMMAP
|_ Cesta: C:\Program Files\ATKGFNEX\ASMMAP.sys
| |_ Výrobce:
| |_ Popis:
| |_ MD5: 7B4D08D2017AC06689D422E06C43F0AA
|
|_ Jméno: ASMMAP
|_ StartName:
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Atheros Extensible Wireless LAN device driver
|_ Cesta: C:\Windows\system32\DRIVERS\athr.sys
| |_ Výrobce: Atheros Communications, Inc.
| |_ Popis: Atheros Extensible Wireless LAN device driver
| |_ MD5: B01751CC563AECAC09BBE36AAA21FBEF
|
|_ Jméno: athr
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] atikmdag
|_ Cesta: C:\Windows\system32\DRIVERS\atikmdag.sys
| |_ Výrobce: ATI Technologies Inc.
| |_ Popis: ATI Radeon Kernel Mode Driver
| |_ MD5: 04F09923A393E4E0E8453A8F78361E73
|
|_ Jméno: atikmdag
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Ethernet Packet Driver
|_ Cesta: C:\Windows\system32\DRIVERS\ethpdrv.sys
| |_ Výrobce: Gemfor s.r.o.
| |_ Popis: Ethernet Packet Driver
| |_ MD5: 66742188777CCA93B0402792DC1F1058
|
|_ Jméno: Ethpdrv
|_ StartName:
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] GEAR ASPI Filter Driver
|_ Cesta: C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
| |_ Výrobce: GEAR Software Inc.
| |_ Popis: CD DVD Filter
| |_ MD5: 8182FF89C65E4D38B2DE4BB0FB18564E
|
|_ Jméno: GEARAspiWDM
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] ghaio
|_ Cesta: C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys
| |_ Výrobce:
| |_ Popis:
| |_ MD5: 31B40F40E09513ADDC460F6A297AD474
|
|_ Jméno: ghaio
|_ StartName:
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Service for Realtek HD Audio (WDM)
|_ Cesta: C:\Windows\system32\drivers\RTKVHDA.sys
| |_ Výrobce: Realtek Semiconductor Corp.
| |_ Popis: Realtek(r) High Definition Audio Function Driver
| |_ MD5: D9B869A909CC93AEC507D4F7DFA24434
|
|_ Jméno: IntcAzAudAddService
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Keyboard Filter
|_ Cesta: C:\Windows\system32\DRIVERS\kbfiltr.sys
| |_ Výrobce:
| |_ Popis: Keyboard Filter Driver
| |_ MD5: 3EB803312987FF44265C87CB960DF6AB
|
|_ Jméno: kbfiltr
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] ATK0100 ACPI UTILITY
|_ Cesta: C:\Windows\system32\DRIVERS\ATKACPI.sys
| |_ Výrobce: ASUS
| |_ Popis: ATK0100 ACPI Utility
| |_ MD5: 2E71504A74BE4E3D4EA94568EFF7556E
|
|_ Jméno: MTsensor
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] OADriver
|_ Cesta: C:\Windows\system32\drivers\OADriver.sys
| |_ Výrobce: Tall Emu
| |_ Popis: OA Helper Driver
| |_ MD5: 57B641CD45E3DBD784ABA7174724F4E0
|
|_ Jméno: OADevice
|_ StartName:
|_ Typ spouštění: System Start
|_ Status: Spuštěno
|_ Typ: File System Driver
|_ Dependency: FltMgr

[?] OAmon
|_ Cesta: C:\Windows\system32\drivers\OAmon.sys
| |_ Výrobce: Tall Emu
| |_ Popis: TDI Helper Driver
| |_ MD5: F21B332DAB65C9601267D8FC8C04899B
|
|_ Jméno: OAmon
|_ StartName:
|_ Typ spouštění: System Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency: Tcpip

[?] OnlineArmor Service
|_ Cesta: C:\Windows\system32\DRIVERS\oanet.sys
| |_ Výrobce: Tall Emu Pty Ltd
| |_ Popis: OA Helper Driver
| |_ MD5: 543B10FE2213A850FB83FD617B7BD8EA
|
|_ Jméno: OAnet
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Service for HDMI
|_ Cesta: C:\Windows\system32\drivers\RtHDMIV.sys
| |_ Výrobce: Realtek Semiconductor Corp.
| |_ Popis: Realtek(r) High Definition Audio Function Driver
| |_ MD5: 3F521EE3308FE66BCFE688DBBC7ACF7F
|
|_ Jméno: RTHDMIAzAudService
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] SiS191/SiS190 – ovladač NDIS 6.0 zařízení sítě Ethernet
|_ Cesta: C:\Windows\system32\DRIVERS\SiSGB6.sys
| |_ Výrobce: Silicon Integrated Systems Corp.
| |_ Popis: NDIS 6.0 Miniport Driver for SiS191/SiS190 Ethernet Device
| |_ MD5: 6F0C643C7F49F2091B01D014EAE72E1A
|
|_ Jméno: SiSGbeLH
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] sptd
|_ Cesta: C:\Windows\System32\Drivers\sptd.sys
| |_ Výrobce:
| |_ Popis:
| |_ MD5:
|
|_ Jméno: sptd
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Synaptics TouchPad Driver
|_ Cesta: C:\Windows\system32\DRIVERS\SynTP.sys
| |_ Výrobce: Synaptics Incorporated
| |_ Popis: Synaptics Touchpad Driver
| |_ MD5: 3F4982DE07D89A1084861E9D59F7EBB1
|
|_ Jméno: SynTP
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] TuneUpUtilitiesDrv
|_ Cesta: C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys
| |_ Výrobce: TuneUp Software
| |_ Popis: TuneUp Utilities Driver
| |_ MD5: F2107C9D85EC0DF116939CCCE06AE697
|
|_ Jméno: TuneUpUtilitiesDrv
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Root Enumerated Hid Device for GenericBDA
|_ Cesta: C:\Windows\system32\DRIVERS\bvhidkb.sys
| |_ Výrobce: Generic
| |_ Popis: Virtual Hid Keyboard for GenericBDA
| |_ MD5: 7247ABD413E187588EF95DEDE1CB6FF2
|
|_ Jméno: vhidmini
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:


Moduly (Zobraz i bezpečné DLL: False, Jen bez výrobce: True, Zobraz registrované: False)
================================================================
[?] livessp.dll
|_ Cesta: C:\Windows\System32\LIVESSP.DLL
|_ MD5: 253145B96BC1AA7E22404A1BF1DBCB55
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ lsass.exe (568)

[?] mpasdesc.dll
|_ Cesta: C:\Program Files\Microsoft Security Essentials\MpAsDesc.dll
|_ MD5: 9AFC08E58269C9A4820BEB55B0F268DC
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ MsMpEng.exe (832)

[?] mpengine.dll
|_ Cesta: C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{56E977EF-EC15-43E6-8605-D7F5AAAA26C4}\mpengine.dll
|_ MD5: 38825010585BC287F5D5512FBB798594
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ MsMpEng.exe (832)

[?] mprtp.dll
|_ Cesta: C:\Program Files\Microsoft Security Essentials\MpRTP.dll
|_ MD5: 40E375B603AFB94B0DD140FD77E3876D
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ MsMpEng.exe (832)

[?] mpclient.dll
|_ Cesta: C:\Program Files\Microsoft Security Essentials\MpClient.dll
|_ MD5: 7E29313848BD78A6B07805E224155974
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ MsMpEng.exe (832)
|_ msseces.exe (1088)

[?] mpsvc.dll
|_ Cesta: C:\Program Files\Microsoft Security Essentials\MpSvc.dll
|_ MD5: 699F203E80E048E665FCB49BFA1925D5
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ MsMpEng.exe (832)

[?] uxtuneup.dll
|_ Cesta: C:\Windows\System32\uxtuneup.dll
|_ MD5: A7FEC274110574AF8FE23F4475F52433
|_ Výrobce: TuneUp Software
|_ Procesy
|_ winlogon.exe (924)
|_ svchost.exe (1140)

[?] mdnsnsp.dll
|_ Cesta: C:\Program Files\Bonjour\mdnsNSP.dll
|_ MD5: 292F92469EFB2FD402E00742C06D539D
|_ Výrobce: Apple Inc.
|_ Procesy
|_ svchost.exe (996)
|_ svchost.exe (1140)
|_ svchost.exe (1280)
|_ svchost.exe (1372)
|_ oaui.exe (2704)
|_ firefox.exe (5508)
|_ UPM.exe (5700)
|_ UPM.exe (156)
|_ UPM.exe (3792)

[?] wlidnsp.dll
|_ Cesta: C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
|_ MD5: AFB04BDBF21DC965214A9EF1F16DA94C
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ svchost.exe (996)
|_ svchost.exe (1140)
|_ svchost.exe (1280)
|_ svchost.exe (1372)
|_ oaui.exe (2704)
|_ firefox.exe (5508)
|_ UPM.exe (5700)
|_ UPM.exe (156)
|_ UPM.exe (3792)

[?] oanetapi.dll
|_ Cesta: C:\Program Files\Tall Emu\Online Armor\OAnetApi.dll
|_ MD5: C493F5B49C1D952A80DA9EDC1D7AA092
|_ Výrobce: Tall Emu Pty Ltd
|_ Procesy
|_ oasrv.exe (1608)

[!] oawatch.dll
|_ Cesta: C:\Program Files\Tall Emu\Online Armor\oawatch.dll
|_ MD5: 63C4F240DBD56EE14BA197AA65460C1B
|_ Výrobce: Tall Emu
|_ Procesy
|_ dwm.exe (1720)
|_ explorer.exe (1744)
|_ HControlUser.exe (1636)
|_ ATKOSD2.exe (1964)
|_ DMedia.exe (1984)
|_ AmIcoSinglun.exe (436)
|_ taskhost.exe (2012)
|_ SynTPEnh.exe (716)
|_ ASUSTPE.exe (1380)
|_ RtHDVCpl.exe (1948)
|_ msseces.exe (1088)
|_ oaui.exe (2704)
|_ DTLite.exe (3184)
|_ RocketDock.exe (3268)
|_ taskeng.exe (3780)
|_ ACMON.exe (2120)
|_ oahlp.exe (2244)
|_ ACEngSvr.exe (2844)
|_ SynTPHelper.exe (4392)
|_ firefox.exe (5508)
|_ TOTALCMD.EXE (5532)
|_ UPM.exe (5700)
|_ UPM.exe (156)
|_ UPM.exe (3792)

[?] rocketdock.dll
|_ Cesta: C:\Program Files\RocketDock\RocketDock.dll
|_ MD5: 4A2A05B25DF4385F5AEC6F07B1C1E93D
|_ Výrobce:
|_ Procesy
|_ dwm.exe (1720)
|_ explorer.exe (1744)
|_ taskhost.exe (2012)
|_ msseces.exe (1088)
|_ RocketDock.exe (3268)
|_ oahlp.exe (2244)
|_ sidebar.exe (3160)
|_ firefox.exe (5508)
|_ TOTALCMD.EXE (5532)
|_ UPM.exe (156)
|_ UPM.exe (3792)

[!] oaevent.dll
|_ Cesta: C:\PROGRA~1\TALLEM~1\ONLINE~1\oaevent.dll
|_ MD5: 1D07B29CD15D480FEEAA77E98E4BE6AB
|_ Výrobce: Tall Emu
|_ Procesy
|_ explorer.exe (1744)
|_ RocketDock.exe (3268)

[?] shlext.dll
|_ Cesta: C:\Program Files\Miranda IM\plugins\shlext.dll
|_ MD5: 6D56A563DE1E01EAC3EE7406F550A190
|_ Výrobce:
|_ Procesy
|_ explorer.exe (1744)

[?] shellext.dll
|_ Cesta: C:\Program Files\Microsoft Security Essentials\shellext.dll
|_ MD5: 3B984B25C7EFA3937CB7C1A7D911D157
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ explorer.exe (1744)

[?] dseshext-x86.dll
|_ Cesta: C:\Program Files\TuneUp Utilities 2010\DseShExt-x86.dll
|_ MD5: A4E7FFD564F8711FCB255EC9607F424A
|_ Výrobce: TuneUp Software
|_ Procesy
|_ explorer.exe (1744)

[?] groovemisc.dll
|_ Cesta: C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll
|_ MD5: 872BF42CD340533AA1BFD362C05C9D93
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ explorer.exe (1744)
|_ RocketDock.exe (3268)

[?] grooveintlresource.dll
|_ Cesta: C:\Program Files\Microsoft Office\Office12\1029\GrooveIntlResource.dll
|_ MD5: 8DC4CA2C4F1E6B2C1C430A7980670AAE
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ explorer.exe (1744)

[?] groovesystemservices.dll
|_ Cesta: C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
|_ MD5: 68747446F9D982938DB6B110F2908271
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ explorer.exe (1744)
|_ SynTPEnh.exe (716)
|_ RocketDock.exe (3268)
|_ firefox.exe (5508)

[?] grooveshellextensions.dll
|_ Cesta: C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
|_ MD5: A6B5A41C0ED007AB6C43CAD899E533D8
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ explorer.exe (1744)
|_ SynTPEnh.exe (716)
|_ RocketDock.exe (3268)
|_ oahlp.exe (2244)
|_ firefox.exe (5508)
|_ TOTALCMD.EXE (5532)
|_ UPM.exe (156)

[?] atl80.dll
|_ Cesta: C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.4053_none_d1c738ec43578ea1\ATL80.dll
|_ MD5: 3E9A33113D663D8BD5ED38858E669652
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ explorer.exe (1744)
|_ SynTPEnh.exe (716)
|_ RocketDock.exe (3268)
|_ oahlp.exe (2244)
|_ firefox.exe (5508)
|_ TOTALCMD.EXE (5532)
|_ UPM.exe (156)

[?] groovenew.dll
|_ Cesta: C:\Program Files\Microsoft Office\Office12\GrooveNew.dll
|_ MD5: E4C4D1555B76F6F3DEB30AD45FB71337
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ explorer.exe (1744)
|_ SynTPEnh.exe (716)
|_ RocketDock.exe (3268)
|_ oahlp.exe (2244)
|_ firefox.exe (5508)
|_ TOTALCMD.EXE (5532)
|_ UPM.exe (156)

[?] grooveutil.dll
|_ Cesta: C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll
|_ MD5: D2182A69EAEE77ECF9ACDBEA64E6CDE7
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ explorer.exe (1744)
|_ SynTPEnh.exe (716)
|_ RocketDock.exe (3268)
|_ oahlp.exe (2244)
|_ firefox.exe (5508)
|_ TOTALCMD.EXE (5532)
|_ UPM.exe (156)

[?] sdshelex-win32.dll
|_ Cesta: C:\Program Files\TuneUp Utilities 2010\SDShelEx-win32.dll
|_ MD5: 0E92024D2942D96A1AB9669A54BCA08C
|_ Výrobce: TuneUp Software
|_ Procesy
|_ explorer.exe (1744)
|_ RocketDock.exe (3268)

[?] atkmethod.dll
|_ Cesta: C:\Program Files\ASUS\ATK Media\ATKMETHOD.dll
|_ MD5: 0DDBB330851C5506275EC86F31143E21
|_ Výrobce: ASUS
|_ Procesy
|_ DMedia.exe (1984)

[?] spdiskex.dll
|_ Cesta: C:\Program Files\ASUS\NB Probe\SPM\SPDISKEX.dll
|_ MD5: 89A3FADBE9B26453C71B3B365AB70F9B
|_ Výrobce:
|_ Procesy
|_ spmgr.exe (2596)

[?] sqmapi.dll
|_ Cesta: C:\Program Files\Common Files\microsoft shared\Windows Live\SQMAPI.DLL
|_ MD5: 5EB87BA0B93CA7E894FC8002E3CE4C2A
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ WLIDSVC.EXE (3004)

[?] engine.dll
|_ Cesta: C:\Program Files\DAEMON Tools Lite\Engine.dll
|_ MD5: 4EB846BBBE51C67D066C5F9FA997CD58
|_ Výrobce: DT Soft Ltd
|_ Procesy
|_ DTLite.exe (3184)

[!] imgengine.dll
|_ Cesta: C:\Program Files\DAEMON Tools Lite\imgengine.dll
|_ MD5: 21500EE9073A483752BD3162F39E34DB
|_ Výrobce: DT Soft Ltd.
|_ Procesy
|_ DTLite.exe (3184)

[?] dtcommonres.dll
|_ Cesta: C:\Program Files\DAEMON Tools Lite\DTCommonRes.dll
|_ MD5: D8F8768B624847472AF413DF94972986
|_ Výrobce: DT Soft Ltd
|_ Procesy
|_ DTLite.exe (3184)

[?] mfc80u.dll
|_ Cesta: C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_cbf21254470d8752\MFC80U.DLL
|_ MD5: 686B224B4987C22B153FBB545FEE9657
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ DTLite.exe (3184)

[?] plds4.dll
|_ Cesta: C:\Program Files\Mozilla Firefox 3.6 Beta 4\plds4.dll
|_ MD5: FE59E699CA3A88BE22600530874FC8D3
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (5508)

[?] smime3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox 3.6 Beta 4\smime3.dll
|_ MD5: 71A06935D621CCC5779BEC225CA5FA51
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (5508)

[?] nssutil3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox 3.6 Beta 4\nssutil3.dll
|_ MD5: FD89E3DC3144FEF7184F4826F777BA0A
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (5508)

[?] ssl3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox 3.6 Beta 4\ssl3.dll
|_ MD5: B7F168CF77985CE8E23F5730E0244943
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (5508)

[?] nss3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox 3.6 Beta 4\nss3.dll
|_ MD5: 07732816C8C9D1368656AEEA4B7EC23C
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (5508)

[?] softokn3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox 3.6 Beta 4\softokn3.dll
|_ MD5: CC579E1A88C865C880CE32D8B46C4734
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (5508)

[?] nssdbm3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox 3.6 Beta 4\nssdbm3.dll
|_ MD5: CBF614A2EA4FDAE7A45FB98097002F3B
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (5508)

[?] freebl3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox 3.6 Beta 4\freebl3.dll
|_ MD5: A67137616BB9668F46F595CE4C861AF4
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (5508)

[?] nssckbi.dll
|_ Cesta: C:\Program Files\Mozilla Firefox 3.6 Beta 4\nssckbi.dll
|_ MD5: 2C9CB16331B0303AD030CBD368D37862
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (5508)

[?] nspr4.dll
|_ Cesta: C:\Program Files\Mozilla Firefox 3.6 Beta 4\nspr4.dll
|_ MD5: BC852AC1122CAEC4419D7BE346BE731C
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (5508)

[?] rpmainbrowserrecordplugin.dll
|_ Cesta: C:\Program Files\Real\RealPlayer\browserrecord\rpmainbrowserrecordplugin.dll
|_ MD5: 50F9124CB00860A39934283222E39990
|_ Výrobce: RealPlayer
|_ Procesy
|_ firefox.exe (5508)

[?] nprpffbrowserrecordext.dll
|_ Cesta: C:\Program Files\Real\RealPlayer\browserrecord\firefox\ext\components\nprpffbrowserrecordext.dll
|_ MD5: 9005A51C551ED70F8BD0C02054B2BD58
|_ Výrobce: RealPlayer
|_ Procesy
|_ firefox.exe (5508)

[?] rpnpshimswf.dll
|_ Cesta: C:\Program Files\Real\RealPlayer\browserrecord\thinshims\rpnpshimswf.dll
|_ MD5: 89B0D5DB4CAFC9ACC09A4863DD918158
|_ Výrobce: RealPlayer
|_ Procesy
|_ firefox.exe (5508)

[?] xul.dll
|_ Cesta: C:\Program Files\Mozilla Firefox 3.6 Beta 4\xul.dll
|_ MD5: A7F5E67490A0F9F730987DDEFFC5CFEE
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (5508)

[?] npswf32.dll
|_ Cesta: C:\Windows\System32\Macromed\Flash\NPSWF32.dll
|_ MD5: F8EFDCFC440A420D6C1ECD245AB20207
|_ Výrobce: ?
|_ Procesy
|_ firefox.exe (5508)

[?] googledesktopresources_en.dll
|_ Cesta: C:\Program Files\Google\Google Desktop Search\GoogleDesktopResources_en.dll
|_ MD5: 1EBC2FA9ACF2A79FEE142E14A1EB29D6
|_ Výrobce: Google
|_ Procesy
|_ firefox.exe (5508)

[?] js3250.dll
|_ Cesta: C:\Program Files\Mozilla Firefox 3.6 Beta 4\js3250.dll
|_ MD5: 3312B93BA4A011800BFCBCBF63D5F0AE
|_ Výrobce:
|_ Procesy
|_ firefox.exe (5508)

[?] mozcrt19.dll
|_ Cesta: C:\Program Files\Mozilla Firefox 3.6 Beta 4\mozcrt19.dll
|_ MD5: D07C9F2682AC74D81851FF0A29094BC8
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (5508)

[?] mpoav.dll
|_ Cesta: C:\PROGRA~1\MIF707~1\MpOAv.dll
|_ MD5: 7C71BB489B3ECEFE8534C6CD9F34FDBE
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ firefox.exe (5508)

[?] sqlite3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox 3.6 Beta 4\sqlite3.dll
|_ MD5: 687D6AAE54690D41A745AA42D2C22C33
|_ Výrobce: sqlite.org
|_ Procesy
|_ firefox.exe (5508)

[?] googledesktopcommon.dll
|_ Cesta: C:\Program Files\Google\Google Desktop Search\GoogleDesktopCommon.dll
|_ MD5: D57D4134AADBA1925A130A99FA6DBC39
|_ Výrobce: Google
|_ Procesy
|_ firefox.exe (5508)

[?] brwsrcmp.dll
|_ Cesta: C:\Program Files\Mozilla Firefox 3.6 Beta 4\components\brwsrcmp.dll
|_ MD5: 0DF4008C1F1996D01E1530F5984D1B7B
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (5508)

[?] go36f4~1.dll
|_ Cesta: C:\PROGRA~1\Google\GOOGLE~1\GO36F4~1.DLL
|_ MD5: 72A96413AC4C813CD2521FF37FE6FBB8
|_ Výrobce: Google
|_ Procesy
|_ firefox.exe (5508)

[?] xpcom.dll
|_ Cesta: C:\Program Files\Mozilla Firefox 3.6 Beta 4\xpcom.dll
|_ MD5: 9B29F33592835B7718D2626FAD131242
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (5508)

[?] browserdirprovider.dll
|_ Cesta: C:\Program Files\Mozilla Firefox 3.6 Beta 4\components\browserdirprovider.dll
|_ MD5: 3947667A9D4C15AE1F33EA68FCD7BB2B
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (5508)

[?] mscomctl.ocx
|_ Cesta: C:\Windows\System32\MSCOMCTL.OCX
|_ MD5: F7BBB7D79ADB9E3ADC13F3B3C33D3D4D
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ UPM.exe (5700)
|_ UPM.exe (156)
|_ UPM.exe (3792)


Výpis souborů
================================================================
\System32:
[?] 4GCleanup.exe 4GCLEA~1.EXE 14 no vrfy, {0A504928}
[?] acovcnt.exe 12 ncmpny, {3330979D}
[?] AERTACap.dll 7 no vrfy, {05DA12CA}
[?] AERTARen.dll 7 no vrfy, {468AAA2C}
[?] ASUSTPE.exe 7 no vrfy, {13ABAD57}
[?] authuitu.dll 7 no vrfy, {0500101C}
[!] avisynth.dll 63 no vrfy, cx (UPX1)?, {CBAD2AE7}
[X] CmdLineExt03.dll CMDLIN~1.DLL 100 ncmpny, cx (.petite)?, {397B9F98}
[?] D3DCompiler_33.dll D3DCOM~1.DLL 12 ncmpny, {3643F195}
[?] D3DCompiler_34.dll D3DCOM~2.DLL 12 ncmpny, {3D652F77}
[?] D3DCompiler_35.dll D3DCOM~3.DLL 12 ncmpny, {4BC4DCD8}
[?] D3DCompiler_36.dll D3DCOM~4.DLL 12 ncmpny, {AC686C2D}
[?] D3DCompiler_37.dll D36F72~1.DLL 12 ncmpny, {8B766EBF}
[?] D3DCompiler_38.dll D3B4B6~1.DLL 12 ncmpny, {D1F14970}
[?] D3DCompiler_39.dll D30AEA~1.DLL 12 ncmpny, {540C6E50}
[?] D3DCompiler_40.dll D3CEB0~1.DLL 12 ncmpny, {EDF25E1C}
[?] D3DCompiler_41.dll D314F4~1.DLL 12 ncmpny, {6445946A}
[?] D3DCompiler_42.dll D3F88C~1.DLL 12 ncmpny, {F79F5B0F}
[?] d3dcsx_42.dll D3DCSX~1.DLL 12 ncmpny, {5C4329EB}
[?] d3dx10.dll 12 ncmpny, {70C7D4EC}
[?] d3dx10_33.dll D3DX10~1.DLL 12 ncmpny, {6B35033F}
[?] d3dx10_34.dll D3DX10~2.DLL 12 ncmpny, {D5987E3E}
[?] d3dx10_35.dll D3DX10~3.DLL 12 ncmpny, {610AC441}
[?] d3dx10_36.dll D3DX10~4.DLL 12 ncmpny, {4EC5A3FA}
[?] d3dx10_37.dll D3D8CF~1.DLL 12 ncmpny, {B89EF35A}
[?] d3dx10_38.dll D38C64~1.DLL 12 ncmpny, {46C52F4F}
[?] d3dx10_39.dll D3610C~1.DLL 12 ncmpny, {41DB4A85}
[?] d3dx10_40.dll D37981~1.DLL 12 ncmpny, {925500F8}
[?] d3dx10_41.dll D3EBA2~1.DLL 12 ncmpny, {F2FCA1E6}
[?] d3dx10_42.dll D3DE19~1.DLL 12 ncmpny, {A2D6F165}
[?] d3dx11_42.dll D3DX11~1.DLL 12 ncmpny, {576C4CAA}
[?] d3dx9_24.dll 12 ncmpny, {603BDCA5}
[?] d3dx9_25.dll 12 ncmpny, {B54E8808}
[?] d3dx9_26.dll 12 ncmpny, {9E0104EE}
[?] d3dx9_27.dll 12 ncmpny, {A4CBCFB8}
[?] d3dx9_28.dll 12 ncmpny, {CB42899A}
[?] d3dx9_29.dll 12 ncmpny, {309E4072}
[?] d3dx9_30.dll 12 ncmpny, {F659E555}
[?] d3dx9_31.dll 12 ncmpny, {A3AD5B58}
[?] d3dx9_32.dll 12 ncmpny, {7683A8D7}
[?] d3dx9_33.dll 12 ncmpny, {A9975507}
[?] d3dx9_34.dll 12 ncmpny, {D937437C}
[?] d3dx9_35.dll 12 ncmpny, {0D0C5865}
[?] d3dx9_36.dll 12 ncmpny, {E7AB1CA1}
[?] D3DX9_37.dll 12 ncmpny, {71BF899A}
[?] D3DX9_38.dll 12 ncmpny, {871C9253}
[?] D3DX9_39.dll 12 ncmpny, {54FCEF38}
[?] D3DX9_40.dll 12 ncmpny, {526D610B}
[?] D3DX9_41.dll 12 ncmpny, {3926F24C}
[?] D3DX9_42.dll 12 ncmpny, {8C8C0454}
[?] deploytk.dll 14 no vrfy, {034CCF47}
[?] dns-sd.exe 7 no vrfy, {A08F841D}
[?] dnssd.dll 7 no vrfy, {3712B5A9}
[X] dtssource.ax DTSSOU~1.AX 100 ncmpny, cx (UPX1)?, {F42DF627}
[?] ff_vfw.dll 12 ncmpny, {B476BDD7}
[?] FM20.DLL 12 ncmpny, {8FCB7F48}
[?] java.exe 7 no vrfy, {2DEB8E01}
[?] javaw.exe 7 no vrfy, {46DD6CC5}
[?] javaws.exe 7 no vrfy, {25471B20}
[?] LIVESSP.DLL 12 ncmpny, {6764D6D7}
[?] MpSigStub.exe MPSIGS~1.EXE 12 ncmpny, {57032E42}
[?] MRT.exe 25 ncmpny, {8B3EB07D}
[?] MSCOMCTL.OCX 12 ncmpny, {49BE9D83}
[?] msidcrl40.dll MSIDCR~1.DLL 12 ncmpny, {F48788A9}
[?] msonpmon.dll 12 ncmpny, {1152B5D2}
[?] MSSTDFMT.DLL 12 ncmpny, {67AC6AAA}
[?] msxml4.dll 12 ncmpny, {FF338033}
[?] PnkBstrA.exe 12 ncmpny, {3FFF00C6}
[?] pthreadGC2.dll PTHREA~1.DLL 7 no vrfy, {1CD34C5C}
[?] pwdrvio.sys 25 ncmpny, {E1365CF2}
[?] pwdspio.sys 25 ncmpny, {D80028A4}
[?] pwNative.exe 12 ncmpny, {5C15D1E3}
[?] QuickTime.qts QUICKT~1.QTS 7 no vrfy, {6AFF2FE4}
[?] QuickTimeVR.qtx QUICKT~1.QTX 7 no vrfy, {749197CD}
[?] rmoc3260.dll 7 no vrfy, {39ED1480}
[?] RP3DAA32.dll 14 no vrfy, {1928C087}
[?] RP3DHT32.dll 14 no vrfy, {83D9E8AD}
[?] RTEED32A.dll 7 no vrfy, {C1285ED9}
[?] RTEEG32A.dll 7 no vrfy, {4D7812CD}
[?] RTEEL32A.dll 7 no vrfy, {33CB839A}
[?] RTEEP32A.dll 14 no vrfy, {99946398}
[?] SCP32.DLL 12 ncmpny, {505ABB76}
[?] TPESetting.dll TPESET~1.DLL 7 no vrfy, {9B51BEDF}
[?] TURegOpt.exe 7 no vrfy, {A47E38F5}
[?] uxtuneup.dll 7 no vrfy, {31306CD4}
[?] VBAME.DLL 12 ncmpny, {8E415C62}
[?] VendorCmdRW.dll VENDOR~1.DLL 12 ncmpny, {784D8058}
[?] VSFilter.dll 7 no vrfy, {FB88203D}
[?] x3daudio1_0.dll X3DAUD~1.DLL 12 ncmpny, {A1FF49EB}
[?] x3daudio1_1.dll X3DAUD~2.DLL 12 ncmpny, {84512576}
[?] X3DAudio1_2.dll X3DAUD~3.DLL 12 ncmpny, {45ACDE70}
[?] X3DAudio1_3.dll X3DAUD~4.DLL 12 ncmpny, {C9CD6A68}
[?] X3DAudio1_4.dll X35DF7~1.DLL 12 ncmpny, {A000BA0A}
[?] X3DAudio1_5.dll X39727~1.DLL 12 ncmpny, {9D6A52A2}
[?] X3DAudio1_6.dll X3B29F~1.DLL 12 ncmpny, {264B9CBE}
[?] X3DAudio1_7.dll X3A2A4~1.DLL 12 ncmpny, {09C26C37}
[?] xactengine2_0.dll XACTEN~1.DLL 12 ncmpny, {FD2EF32B}
[?] xactengine2_1.dll XACTEN~2.DLL 12 ncmpny, {59F74897}
[?] xactengine2_10.dll XABFC4~1.DLL 12 ncmpny, {E07E9CE8}
[?] xactengine2_2.dll XACTEN~3.DLL 12 ncmpny, {8AA83E8C}
[?] xactengine2_3.dll XACTEN~4.DLL 12 ncmpny, {9A8074F2}
[?] xactengine2_4.dll XA17D5~1.DLL 12 ncmpny, {1BF602A4}
[?] xactengine2_5.dll XA6C0A~1.DLL 12 ncmpny, {BC123075}
[?] xactengine2_6.dll XAB14E~1.DLL 12 ncmpny, {7783B7B4}
[?] xactengine2_7.dll XA0772~1.DLL 12 ncmpny, {E1662632}
[?] xactengine2_8.dll XAEB0A~1.DLL 12 ncmpny, {14D6BF90}
[?] xactengine2_9.dll XAC0A1~1.DLL 12 ncmpny, {1F9B9735}
[?] xactengine3_0.dll XAAA16~1.DLL 12 ncmpny, {5219CD0A}
[?] xactengine3_1.dll XA8FAD~1.DLL 12 ncmpny, {EF87C5B9}
[?] xactengine3_2.dll XAD4E1~1.DLL 12 ncmpny, {7AA2DD34}
[?] xactengine3_3.dll XA2A16~1.DLL 12 ncmpny, {9B5D71BD}
[?] xactengine3_4.dll XABF6C~1.DLL 12 ncmpny, {2ED550E8}
[?] xactengine3_5.dll XAF99B~1.DLL 12 ncmpny, {83E000A6}
[?] xactengine3_6.dll XA1504~1.DLL 12 ncmpny, {A4F9F4FD}
[?] XAPOFX1_0.dll XAPOFX~1.DLL 12 ncmpny, {ECA53181}
[?] XAPOFX1_1.dll XAPOFX~2.DLL 12 ncmpny, {A9DBC8C7}
[?] XAPOFX1_2.dll XAPOFX~3.DLL 12 ncmpny, {05CAB707}
[?] XAPOFX1_3.dll XAPOFX~4.DLL 12 ncmpny, {230E40CD}
[?] XAPOFX1_4.dll XA1C74~1.DLL 12 ncmpny, {2A08E798}
[?] XAudio2_0.dll XAUDIO~1.DLL 12 ncmpny, {DF7812CC}
[?] XAudio2_1.dll XAUDIO~2.DLL 12 ncmpny, {49B65670}
[?] XAudio2_2.dll XAUDIO~3.DLL 12 ncmpny, {13006CFB}
[?] XAudio2_3.dll XAUDIO~4.DLL 12 ncmpny, {8330A2CA}
[?] XAudio2_4.dll XA93B1~1.DLL 12 ncmpny, {94EBA273}
[?] XAudio2_5.dll XAE8E5~1.DLL 12 ncmpny, {03DD1DAE}
[?] XAudio2_6.dll XA3E1A~1.DLL 12 ncmpny, {BEF6CF43}
[?] xinput1_1.dll XINPUT~1.DLL 12 ncmpny, {2446350D}
[?] xinput1_2.dll XINPUT~2.DLL 12 ncmpny, {A91B190C}
[?] xinput1_3.dll XINPUT~3.DLL 12 ncmpny, {F18D8B9B}
[?] xlive.dll 25 ncmpny, {1C2FB79A}
[?] xliveinstall.dll XLIVEI~1.DLL 12 ncmpny, {F282D5F7}
[?] xliveinstallhost.exe XLIVEI~1.EXE 12 ncmpny, {0A18CC67}
[?] xmesrv.exe 7 no vrfy, {3005CCA9}
[?] xvid.ax 12 ncmpny, {16C10943}
[?] xvidcore.dll 12 ncmpny, {C41F810D}
[?] xvidvfw.dll 12 ncmpny, {F4CF24AB}

\Drivers:
[?] axtmvflt.sys 21 no vrfy, {DDE02573}
[?] axtmvmdm.sys 7 no vrfy, {F60B9C78}
[?] axtmvprt.sys 7 no vrfy, {BFAB899A}
[?] bvhidkb.sys 21 no vrfy, {A93574DA}
[?] OADriver.sys 7 no vrfy, {15979D50}
[?] OAmon.sys 7 no vrfy, {E16E30B1}
[?] OAnet.sys 14 no vrfy, {FCAEA9D8}
[?] TridVid.sys 25 ncmpny, {7603C5CD}

Access violations - HKCU
================================================================


================================================================
Ultimate Process Manager v4.1.3 - [ Lodus Software ]

[rpodhr]

Logfile of random's system information tool 1.06 (written by random/random)
Run by rpodhr at 2010-03-31 19:28:19
Microsoft Windows 7 Home Premium Service Pack 3
System drive C: has 118 GB (50%) free of 238 GB
Total RAM: 3071 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:28:24, on 31.3.2010
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\ASUSTPE.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Microsoft Security Essentials\msseces.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Tall Emu\Online Armor\oaui.exe
C:\Program Files\Tall Emu\Online Armor\OAhlp.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\ASUS\Splendid\ACMON.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.Exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Windows\System32\ACEngSvr.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\Remote Kitten\Remote Kitten\Remote Kitten.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Users\rpodhr\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\rpodhr.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O4 - HKLM\..\Run: [HControlUser] C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [AmIcoSinglun] C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ASUSTPE] C:\Windows\system32\ASUSTPE.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [MSSE] "c:\Program Files\Microsoft Security Essentials\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [@OnlineArmor GUI] "C:\Program Files\Tall Emu\Online Armor\OAui.exe"
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [Total Commander 32 bit] C:\totalcmd\TOTALCMD.EXE
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Remote Kitten.lnk = ?
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - C:\Program Files\ICQ7.0\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O13 - Gopher Prefix:
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GO36F4~1.DLL
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Desktop Manager 5.9.909.30391 (GoogleDesktopManager-093009-130223) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Online Armor Helper Service (OAcat) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\OAcat.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: Online Armor (SvcOnlineArmor) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\oasrv.exe
O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
O23 - Service: CryptoPlus XME Engine Service (xmengine service) - Monet+, a.s. - C:\Windows\system32\xmesrv.exe

--
End of file - 8631 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Google Software Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}]
C:\PROGRA~1\Crawler\Toolbar\ctbr.dll [2010-03-30 1234384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-12-01 329312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2009-11-28 761840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-01-11 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
Locked
{4B3803EA-5230-4DC3-A7FC-33638F3D3542} - &Crawler lišta - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll [2010-03-30 1234384]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"HControlUser"=C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"ATKOSD2"=C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe [2009-08-17 6859392]
"ATKMEDIA"=C:\Program Files\ASUS\ATK Media\DMedia.exe [2009-08-19 170624]
"AmIcoSinglun"=C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe [2009-07-31 233472]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-08-17 1549608]
"ASUSTPE"=C:\Windows\system32\ASUSTPE.exe [2007-10-11 106496]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-07-17 6253088]
"Skytel"=C:\Windows\Skytel.exe [2008-07-17 1833504]
"MSSE"=c:\Program Files\Microsoft Security Essentials\msseces.exe [2010-02-21 1093208]
"@OnlineArmor GUI"=C:\Program Files\Tall Emu\Online Armor\OAui.exe [2009-12-05 6622920]
"SpywareTerminator"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2010-03-31 2176512]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]
"Total Commander 32 bit"=C:\totalcmd\TOTALCMD.EXE [2009-09-24 3520256]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1173504]

C:\Users\rpodhr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Remote Kitten.lnk - C:\Users\rpodhr\AppData\Roaming\Microsoft\Installer\{9E4C8C01-8420-4D28-BCB0-F19CD9574931}\_3C537437D0ABBD59D4F2EC.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~1\GO36F4~1.DLL"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
"{4F07DA45-8170-4859-9B5F-037EF2970034}"=C:\PROGRA~1\TALLEM~1\ONLINE~1\oaevent.dll [2009-12-05 923336]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"EnableShellExecuteHooks"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{92562892-e281-11de-ab72-0022154e1fc1}]
shell\AutoRun\command - G:\Support\AutoRun\AutoRun.exe

[rpodhr]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2010-03-31 19:23:42 ----D---- C:\rsit
2010-03-31 16:07:07 ----D---- C:\Program Files\Crawler
2010-03-31 15:59:47 ----D---- C:\Users\rpodhr\AppData\Roaming\Spyware Terminator
2010-03-31 15:59:37 ----D---- C:\ProgramData\Spyware Terminator
2010-03-31 15:59:27 ----D---- C:\Program Files\Spyware Terminator
2010-03-31 14:38:42 ----D---- C:\Program Files\Ultimate Process Manager
2010-03-30 19:09:08 ----A---- C:\Windows\system32\mshtml.dll
2010-03-30 19:09:07 ----A---- C:\Windows\system32\mstime.dll
2010-03-30 19:09:07 ----A---- C:\Windows\system32\ieframe.dll
2010-03-30 19:09:06 ----A---- C:\Windows\system32\wininet.dll
2010-03-30 19:09:06 ----A---- C:\Windows\system32\urlmon.dll
2010-03-30 19:09:06 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-03-30 19:09:06 ----A---- C:\Windows\system32\iedkcs32.dll
2010-03-23 23:15:26 ----SHD---- C:\ProgramData\SecuROM
2010-03-23 23:09:15 ----D---- C:\Users\rpodhr\AppData\Roaming\Bioshock2
2010-03-23 22:47:24 ----D---- C:\Program Files\BioShock 2
2010-03-22 19:37:25 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2010-03-22 19:37:24 ----A---- C:\Windows\system32\XAudio2_6.dll
2010-03-22 19:37:24 ----A---- C:\Windows\system32\xactengine3_6.dll
2010-03-22 19:37:24 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2010-03-22 19:36:36 ----HD---- C:\Windows\msdownld.tmp
2010-03-22 19:36:30 ----D---- C:\Windows\system32\directx
2010-03-21 16:03:31 ----D---- C:\Windows\system32\xlive
2010-03-21 16:03:15 ----D---- C:\Program Files\Microsoft Games for Windows - LIVE
2010-03-20 17:51:56 ----A---- C:\Windows\system32\CmdLineExt03.dll
2010-03-20 14:50:40 ----D---- C:\Program Files\ATI
2010-03-20 14:46:56 ----D---- C:\Users\rpodhr\AppData\Roaming\Microsoft Games
2010-03-20 14:11:48 ----D---- C:\Program Files\Common Files\Microsoft Games
2010-03-14 18:07:57 ----D---- C:\Program Files\AviSynth 2.5
2010-03-14 18:07:37 ----D---- C:\Program Files\Gabest
2010-03-14 18:06:47 ----D---- C:\Program Files\GordianKnot
2010-03-11 14:31:02 ----D---- C:\Users\rpodhr\AppData\Roaming\STOIK
2010-03-11 14:30:56 ----D---- C:\Program Files\STOIK Imaging
2010-03-11 01:43:26 ----A---- C:\Windows\system32\PnkBstrA.exe
2010-03-10 22:21:48 ----D---- C:\Windows\Temp~~e5.0001.dir.0009
2010-03-10 22:20:30 ----D---- C:\Windows\Temp~~e5.0001.dir.0008
2010-03-10 22:20:20 ----D---- C:\Windows\Temp~~e5.0001.dir.0007
2010-03-10 21:52:48 ----D---- C:\Windows\Temp~~e5.0001.dir.0006
2010-03-10 21:48:38 ----D---- C:\Windows\Temp~~e5.0001.dir.0005
2010-03-10 21:47:17 ----D---- C:\Windows\Temp~~e5.0001.dir.0004
2010-03-10 21:46:01 ----D---- C:\Windows\Temp~~e5.0001.dir.0003
2010-03-10 21:44:48 ----D---- C:\Windows\Temp~~e5.0001.dir.0002
2010-03-10 21:44:06 ----D---- C:\Windows\Temp~~e5.0001.dir.0001
2010-03-10 21:43:23 ----D---- C:\Windows\Temp~~e5.0001.dir.0000
2010-03-10 21:05:15 ----D---- C:\Program Files\EA GAMES
2010-03-10 17:50:06 ----A---- C:\Program Files\ID3renamer.exe
2010-03-10 15:41:36 ----D---- C:\Filmy Honza Kment
2010-03-10 15:00:50 ----D---- C:\Hry
2010-03-10 02:53:24 ----D---- C:\Program Files\Electronic Arts
2010-03-08 23:29:29 ----D---- C:\Program Files\BitLord2
2010-03-07 14:14:07 ----D---- C:\ProgramData\Sun
2010-03-07 14:14:04 ----D---- C:\Program Files\Common Files\Java
2010-03-07 14:13:48 ----A---- C:\Windows\system32\javaws.exe
2010-03-07 14:13:48 ----A---- C:\Windows\system32\javaw.exe
2010-03-07 14:13:48 ----A---- C:\Windows\system32\java.exe
2010-03-05 14:56:50 ----A---- C:\Windows\system32\browserchoice.exe
2010-03-03 23:17:52 ----D---- C:\Users\rpodhr\AppData\Roaming\Download Manager
2010-03-03 22:06:19 ----AD---- C:\ProgramData\TEMP
2010-02-26 08:01:35 ----D---- C:\Windows\Minidump
2010-02-24 18:09:48 ----A---- C:\Windows\system32\jscript.dll
2010-02-24 18:09:45 ----A---- C:\Windows\system32\CPFilters.dll
2010-02-24 18:09:44 ----A---- C:\Windows\system32\psisdecd.dll
2010-02-24 18:09:44 ----A---- C:\Windows\system32\msdri.dll
2010-02-24 18:09:42 ----A---- C:\Windows\system32\tzres.dll
2010-02-21 14:39:13 ----D---- C:\Xtra
2010-02-18 14:52:13 ----D---- C:\Windows\pss
2010-02-15 18:22:48 ----D---- C:\Users\rpodhr\AppData\Roaming\ImgBurn
2010-02-15 18:21:21 ----D---- C:\Program Files\ImgBurn
2010-02-13 20:26:32 ----D---- C:\Program Files\ICQ7.0
2010-02-10 12:40:11 ----A---- C:\Windows\system32\tsbyuv.dll
2010-02-10 12:40:11 ----A---- C:\Windows\system32\quartz.dll
2010-02-10 12:40:11 ----A---- C:\Windows\system32\msyuv.dll
2010-02-10 12:40:11 ----A---- C:\Windows\system32\msvidc32.dll
2010-02-10 12:40:11 ----A---- C:\Windows\system32\msrle32.dll
2010-02-10 12:40:11 ----A---- C:\Windows\system32\mciavi32.dll
2010-02-10 12:40:11 ----A---- C:\Windows\system32\iyuv_32.dll
2010-02-10 12:40:11 ----A---- C:\Windows\system32\avifil32.dll
2010-02-10 12:40:10 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-02-10 12:40:10 ----A---- C:\Windows\system32\kernel32.dll
2010-02-10 12:40:09 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-02-10 12:40:09 ----A---- C:\Windows\system32\apphelp.dll
2010-02-10 12:39:43 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-02-10 12:39:43 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-02-10 12:39:43 ----A---- C:\Windows\system32\secproc_isv.dll
2010-02-10 12:39:43 ----A---- C:\Windows\system32\secproc.dll
2010-02-10 12:39:43 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-02-10 12:39:43 ----A---- C:\Windows\system32\RMActivate.exe
2010-02-10 12:39:42 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-02-10 12:39:42 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-02-04 13:10:46 ----D---- C:\Program Files\iPod
2010-02-04 13:10:45 ----D---- C:\Program Files\iTunes
2010-02-01 19:09:44 ----A---- C:\Windows\ODBC.INI
2010-02-01 19:05:04 ----D---- C:\Program Files\Axesstel
2010-01-26 23:24:55 ----A---- C:\Windows\system32\winlogon.exe
2010-01-26 23:24:55 ----A---- C:\Windows\explorer.exe
2010-01-25 18:27:03 ----D---- C:\Program Files\JPEG Resampler
2010-01-21 14:59:12 ----A---- C:\Windows\iScreensaver.ini
2010-01-21 14:58:23 ----D---- C:\Users\rpodhr\AppData\Roaming\iScreensaver
2010-01-18 16:34:11 ----D---- C:\Windows\Ubisoft
2010-01-18 16:22:13 ----D---- C:\Program Files\Ubi Soft
2010-01-18 14:01:36 ----D---- C:\Program Files\Adobe
2010-01-18 13:21:50 ----D---- C:\Program Files\ESET
2010-01-17 14:25:30 ----D---- C:\Program Files\PlayReady
2010-01-17 14:02:12 ----D---- C:\Users\rpodhr\AppData\Roaming\RemoteKitten
2010-01-17 14:01:14 ----D---- C:\Program Files\Remote Kitten
2010-01-14 20:41:39 ----D---- C:\Program Files\CDex_170b2
2010-01-14 19:30:53 ----D---- C:\Program Files\SpeedFan
2010-01-14 14:13:59 ----A---- C:\Windows\system32\pwNative.exe
2010-01-14 14:12:14 ----D---- C:\Program Files\Partition Wizard Home Edition 4.2
2010-01-14 13:52:33 ----D---- C:\Users\rpodhr\AppData\Roaming\Miranda
2010-01-14 13:52:17 ----D---- C:\Program Files\Miranda IM
2010-01-14 13:29:16 ----HD---- C:\Windows\Icons
2010-01-13 11:35:26 ----A---- C:\Windows\system32\t2embed.dll
2010-01-13 11:35:26 ----A---- C:\Windows\system32\fontsub.dll
2010-01-10 12:30:08 ----D---- C:\Program Files\WoW
2010-01-09 22:00:06 ----D---- C:\Users\rpodhr\AppData\Roaming\PeerNetworking
2010-01-09 17:25:24 ----D---- C:\Program Files\Trend Micro
2010-01-04 18:09:32 ----D---- C:\Program Files\XTB-Trader
2010-01-02 18:27:10 ----D---- C:\Users\rpodhr\AppData\Roaming\GHISLER
2010-01-02 18:27:10 ----D---- C:\totalcmd
2010-01-02 17:20:11 ----D---- C:\ProgramData\ICQ

======List of files/folders modified in the last 3 months======

2010-03-31 19:23:10 ----D---- C:\Windows\Temp
2010-03-31 17:50:46 ----D---- C:\Windows\Prefetch
2010-03-31 17:39:25 ----D---- C:\Windows\system32\config
2010-03-31 17:32:05 ----D---- C:\Windows\tracing
2010-03-31 17:31:19 ----D---- C:\Windows\Tasks
2010-03-31 16:07:07 ----RD---- C:\Program Files
2010-03-31 15:59:55 ----D---- C:\Windows\system32\drivers
2010-03-31 15:59:37 ----HD---- C:\ProgramData
2010-03-31 13:20:51 ----D---- C:\Program Files\Mozilla Thunderbird
2010-03-31 12:20:49 ----SHD---- C:\System Volume Information
2010-03-30 19:57:47 ----D---- C:\Program Files\Mozilla Firefox 3.6 Beta 4
2010-03-30 19:14:15 ----D---- C:\Windows\system32\catroot2
2010-03-30 19:13:14 ----D---- C:\Windows\winsxs
2010-03-30 19:10:34 ----D---- C:\Windows\System32
2010-03-30 19:10:34 ----D---- C:\Program Files\Internet Explorer
2010-03-30 19:07:44 ----D---- C:\Windows\system32\catroot
2010-03-28 18:39:36 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-03-28 18:39:35 ----D---- C:\Windows\inf
2010-03-23 23:04:51 ----SHD---- C:\Windows\Installer
2010-03-23 23:04:05 ----RSD---- C:\Windows\assembly
2010-03-23 22:47:37 ----HD---- C:\Program Files\InstallShield Installation Information
2010-03-22 19:36:36 ----D---- C:\Windows
2010-03-22 17:23:13 ----D---- C:\Program Files\Microsoft Games
2010-03-21 00:56:08 ----SD---- C:\Users\rpodhr\AppData\Roaming\Microsoft
2010-03-20 23:50:43 ----D---- C:\Users\rpodhr\AppData\Roaming\ICQ
2010-03-20 19:39:35 ----D---- C:\Windows\system32\Tasks
2010-03-20 14:11:48 ----D---- C:\Program Files\Common Files
2010-03-17 14:57:16 ----D---- C:\Windows\system32\wdi
2010-03-15 11:35:08 ----D---- C:\ProgramData\Real
2010-03-15 11:34:59 ----D---- C:\Users\rpodhr\AppData\Roaming\Real
2010-03-12 10:43:30 ----SHD---- C:\Boot
2010-03-10 22:52:52 ----D---- C:\ProgramData\OnlineArmor
2010-03-10 22:50:40 ----D---- C:\Windows\system32\DriverStore
2010-03-10 19:13:57 ----D---- C:\Users\rpodhr\AppData\Roaming\ID3 renamer
2010-03-09 22:19:29 ----D---- C:\ProgramData\Microsoft Help
2010-03-09 22:19:07 ----D---- C:\Windows\AppPatch
2010-03-09 22:18:33 ----D---- C:\Program Files\Microsoft Security Essentials
2010-03-08 23:39:07 ----D---- C:\Users\rpodhr\AppData\Roaming\OnlineArmor
2010-03-07 14:13:34 ----D---- C:\Program Files\Java
2010-03-02 07:30:12 ----A---- C:\Windows\system32\MRT.exe
2010-03-01 00:56:48 ----D---- C:\Program Files\ASUS
2010-02-26 08:32:09 ----D---- C:\Windows\rescache
2010-02-25 09:24:42 ----D---- C:\Program Files\Google
2010-02-24 19:20:01 ----D---- C:\Windows\Microsoft.NET
2010-02-24 18:11:13 ----D---- C:\Windows\system32\cs-CZ
2010-02-24 18:10:54 ----D---- C:\Windows\ehome
2010-02-24 11:16:06 ----N---- C:\Windows\system32\MpSigStub.exe
2010-02-23 20:25:06 ----RD---- C:\Users
2010-02-23 20:24:30 ----HD---- C:\Windows\system32\GroupPolicy
2010-02-15 18:03:15 ----D---- C:\Windows\system32\NDF
2010-02-04 13:10:45 ----D---- C:\Program Files\Common Files\Apple
2010-02-01 19:17:16 ----D---- C:\Windows\ModemLogs
2010-01-21 13:31:00 ----D---- C:\Users\rpodhr\AppData\Roaming\Thunderbird
2010-01-21 00:23:02 ----D---- C:\Program Files\Microsoft Silverlight
2010-01-18 14:01:45 ----D---- C:\Program Files\Common Files\Adobe
2010-01-18 14:01:44 ----D---- C:\ProgramData\Adobe
2010-01-17 14:25:30 ----SD---- C:\ProgramData\Microsoft
2010-01-14 16:17:12 ----D---- C:\PerfLogs
2010-01-13 23:38:57 ----A---- C:\Windows\ATKPF.ini
2010-01-13 20:47:13 ----D---- C:\Users\rpodhr\AppData\Roaming\Nero
2010-01-13 18:47:35 ----D---- C:\ProgramData\ASUS

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 blbdrive;blbdrive; C:\Windows\system32\DRIVERS\blbdrive.sys [2009-07-14 35328]
R1 DfsC;@%systemroot%\system32\drivers\dfsc.sys,-101; C:\Windows\System32\Drivers\dfsc.sys [2009-07-14 78336]
R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; C:\Windows\System32\drivers\discache.sys [2009-07-14 32256]
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2009-12-02 149040]
R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; C:\Windows\system32\drivers\nsiproxy.sys [2009-07-14 16896]
R1 OADevice;OADriver; \??\C:\Windows\system32\drivers\OADriver.sys [2009-12-05 223312]
R1 OAmon;OAmon; \??\C:\Windows\system32\drivers\OAmon.sys [2009-12-05 24656]
R1 RDPENCDD;@%systemroot%\system32\drivers\RDPENCDD.sys,-101; C:\Windows\system32\drivers\rdpencdd.sys [2009-07-14 6656]
R1 RDPREFMP;@%systemroot%\system32\drivers\RdpRefMp.sys,-101; C:\Windows\system32\drivers\rdprefmp.sys [2009-07-14 7168]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\Windows\system32\drivers\sp_rsdrv2.sys [2010-03-31 142592]
R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; C:\Windows\system32\DRIVERS\tdx.sys [2009-07-14 74240]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R1 Wanarpv6;@%systemroot%\system32\rascfg.dll,-32012; C:\Windows\system32\DRIVERS\wanarp.sys [2009-07-14 63488]
R1 WfpLwf;WFP Lightweight Filter; C:\Windows\system32\DRIVERS\wfplwf.sys [2009-07-14 9728]
R2 ASMMAP;ASMMAP; \??\C:\Program Files\ATKGFNEX\ASMMAP.sys [2007-07-24 13880]
R2 Ethpdrv;Ethernet Packet Driver; C:\Windows\system32\DRIVERS\ethpdrv.sys [2007-08-01 16376]
R2 ghaio;ghaio; \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [2007-08-03 20936]
R2 lltdio;Link-Layer Topology Discovery Mapper I/O Driver; C:\Windows\system32\DRIVERS\lltdio.sys [2009-07-14 48128]
R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; C:\Windows\system32\drivers\luafv.sys [2009-07-14 86528]
R2 PEAUTH;PEAUTH; C:\Windows\system32\drivers\peauth.sys [2009-07-14 586752]
R2 rspndr;Link-Layer Topology Discovery Responder; C:\Windows\system32\DRIVERS\rspndr.sys [2009-07-14 60928]
R2 tcpipreg;TCP/IP Registry Compatibility; C:\Windows\System32\drivers\tcpipreg.sys [2009-07-14 34816]
R3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2009-07-24 25600]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2009-10-05 1221632]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]
R3 bowser;@%systemroot%\system32\browser.dll,-102; C:\Windows\system32\DRIVERS\bowser.sys [2009-07-14 69632]
R3 CmBatt;Ovladač baterie Microsoft ACPI Control Method Battery; C:\Windows\system32\DRIVERS\CmBatt.sys [2009-07-14 14080]
R3 CompositeBus;Ovladač rozpoznávacího modulu složené sběrnice; C:\Windows\system32\DRIVERS\CompositeBus.sys [2009-07-14 31232]
R3 DXGKrnl;LDDM Graphics Subsystem; C:\Windows\System32\drivers\dxgkrnl.sys [2009-10-02 728648]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HDAudBus;Ovladač sběrnice Microsoft UAA pro zvuk High Definition Audio; C:\Windows\system32\DRIVERS\HDAudBus.sys [2009-07-14 108544]
R3 HidUsb;Ovladač třídy standardu HID Microsoft; C:\Windows\system32\DRIVERS\hidusb.sys [2009-07-14 24064]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-07-17 2156312]
R3 intelppm;Ovladač procesoru Intel; C:\Windows\system32\DRIVERS\intelppm.sys [2009-07-14 53760]
R3 kbdhid;Ovladač klávesnice standardu HID; C:\Windows\system32\DRIVERS\kbdhid.sys [2009-07-14 28160]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 13880]
R3 monitor;Služba ovladače funkce třídy monitorů Microsoft; C:\Windows\system32\DRIVERS\monitor.sys [2009-07-14 23552]
R3 mouhid;Ovladač myši standardu HID; C:\Windows\system32\DRIVERS\mouhid.sys [2009-07-14 26112]
R3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; C:\Windows\System32\drivers\mpsdrv.sys [2009-07-14 60416]
R3 mrxsmb10;@%systemroot%\system32\wkssvc.dll,-1004; C:\Windows\system32\DRIVERS\mrxsmb10.sys [2010-01-08 221184]
R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; C:\Windows\system32\DRIVERS\mrxsmb20.sys [2009-07-14 95744]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2009-05-13 14392]
R3 NativeWifiP;NativeWiFi Filter; C:\Windows\system32\DRIVERS\nwifi.sys [2009-07-14 267264]
R3 OAnet;OnlineArmor Service; C:\Windows\system32\DRIVERS\oanet.sys [2009-12-05 30800]
R3 RasAgileVpn;WAN Miniport (IKEv2); C:\Windows\system32\DRIVERS\AgileVpn.sys [2009-07-14 49152]
R3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; C:\Windows\system32\DRIVERS\rassstp.sys [2009-07-14 75264]
R3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIV.sys [2009-07-17 155648]
R3 SiSGbeLH;SiS191/SiS190 – ovladač NDIS 6.0 zařízení sítě Ethernet; C:\Windows\system32\DRIVERS\SiSGB6.sys [2009-07-14 48128]
R3 srv2;@%systemroot%\system32\srvsvc.dll,-104; C:\Windows\System32\DRIVERS\srv2.sys [2009-07-14 306688]
R3 srvnet;srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [2009-12-08 113664]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-08-17 223920]
R3 tssecsrv;@%SystemRoot%\System32\DRIVERS\tssecsrv.sys,-101; C:\Windows\System32\DRIVERS\tssecsrv.sys [2009-07-14 30208]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2009-10-14 10064]
R3 tunnel;Microsoft Tunnel Miniport Adapter Driver; C:\Windows\system32\DRIVERS\tunnel.sys [2009-07-14 108544]
R3 umbus;Ovladač sběrnice UMBus Enumerator; C:\Windows\system32\DRIVERS\umbus.sys [2009-07-14 39936]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\Windows\system32\DRIVERS\usbccgp.sys [2009-07-14 75264]
R3 usbehci;Ovladač miniportu vylepšeného hostitelského řadiče Microsoft USB 2.0; C:\Windows\system32\DRIVERS\usbehci.sys [2009-07-14 41472]
R3 usbhub;Ovladač standardního rozbočovače USB; C:\Windows\system32\DRIVERS\usbhub.sys [2009-07-14 258560]
R3 usbohci;Ovladač miniportu otevřeného hostitelského řadiče Microsoft USB; C:\Windows\system32\DRIVERS\usbohci.sys [2009-07-14 20480]
R3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2009-07-14 146176]
R3 vhidmini;Root Enumerated Hid Device for GenericBDA; C:\Windows\system32\DRIVERS\bvhidkb.sys [2006-08-16 5632]
R3 vwifibus;Ovladač sběrnice Virtual WiFi; C:\Windows\system32\DRIVERS\vwifibus.sys [2009-07-14 19968]
R3 WudfPf;User Mode Driver Frameworks Platform Driver; C:\Windows\system32\drivers\WudfPf.sys [2009-07-14 92672]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2009-07-14 132224]
S3 1394ohci;1394 OHCI Compliant Host Controller; C:\Windows\system32\DRIVERS\1394ohci.sys [2009-07-14 163328]
S3 AcpiPmi;ACPI Power Meter Driver; C:\Windows\system32\DRIVERS\acpipmi.sys [2009-07-14 9728]
S3 adp94xx;adp94xx; C:\Windows\system32\DRIVERS\adp94xx.sys [2009-07-14 422976]
S3 adpahci;adpahci; C:\Windows\system32\DRIVERS\adpahci.sys [2009-07-14 297552]
S3 adpu320;adpu320; C:\Windows\system32\DRIVERS\adpu320.sys [2009-07-14 146512]
S3 aefeda7q;aefeda7q; C:\Windows\system32\drivers\aefeda7q.sys []
S3 agp440;Intel AGP Bus Filter; C:\Windows\system32\DRIVERS\agp440.sys [2009-07-14 53312]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 amdide;amdide; C:\Windows\system32\DRIVERS\amdide.sys [2009-07-14 14912]
S3 AmdK8;AMD K8 Processor Driver; C:\Windows\system32\DRIVERS\amdk8.sys [2009-07-14 55296]
S3 AmdPPM;AMD Processor Driver; C:\Windows\system32\DRIVERS\amdppm.sys [2009-07-14 52736]
S3 amdsata;amdsata; C:\Windows\system32\DRIVERS\amdsata.sys [2009-07-14 79952]
S3 amdsbs;amdsbs; C:\Windows\system32\DRIVERS\amdsbs.sys [2009-07-14 159312]
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\Windows\system32\drivers\appid.sys [2009-07-14 50176]
S3 arc;arc; C:\Windows\system32\DRIVERS\arc.sys [2009-07-14 76368]
S3 arcsas;arcsas; C:\Windows\system32\DRIVERS\arcsas.sys [2009-07-14 86608]
S3 Axtmvflt;Axesstel USB Filter Service; C:\Windows\system32\DRIVERS\Axtmvflt.sys [2007-03-22 3456]
S3 Axtmvmdm;Axesstel USB Modem; C:\Windows\system32\DRIVERS\Axtmvmdm.sys [2007-03-26 40064]
S3 Axtmvprt;Axesstel Diagnostic Port; C:\Windows\System32\Drivers\Axtmvprt.sys [2007-03-26 38784]
S3 b06bdrv;Broadcom NetXtreme II VBD; C:\Windows\system32\DRIVERS\bxvbdx.sys [2009-07-14 430080]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BrFiltLo;Brother USB Mass-Storage Lower Filter Driver; C:\Windows\system32\DRIVERS\BrFiltLo.sys [2009-07-14 13568]
S3 BrFiltUp;Brother USB Mass-Storage Upper Filter Driver; C:\Windows\system32\DRIVERS\BrFiltUp.sys [2009-07-14 5248]
S3 Bridge;@%SystemRoot%\system32\bridgeres.dll,-3; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 Brserid;Brother MFC Serial Port Interface Driver (WDM); C:\Windows\System32\Drivers\Brserid.sys [2009-07-14 272128]
S3 BrSerWdm;Brother WDM Serial driver; C:\Windows\System32\Drivers\BrSerWdm.sys [2009-07-14 62336]
S3 BrUsbMdm;Brother MFC USB Fax Only Modem; C:\Windows\System32\Drivers\BrUsbMdm.sys [2009-07-14 12160]
S3 BrUsbSer;Brother MFC USB Serial WDM Driver; C:\Windows\System32\Drivers\BrUsbSer.sys [2009-07-14 11904]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
S3 BTHMODEM;Ovladač pro sériovou komunikaci protokolem Bluetooth; C:\Windows\system32\DRIVERS\bthmodem.sys [2009-07-14 56320]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 392704]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 58880]
S3 circlass;Consumer IR Devices; C:\Windows\system32\DRIVERS\circlass.sys [2009-07-14 37888]
S3 ebdrv;Broadcom NetXtreme II 10 GigE VBD; C:\Windows\system32\DRIVERS\evbdx.sys [2009-07-14 3100160]
S3 elxstor;elxstor; C:\Windows\system32\DRIVERS\elxstor.sys [2009-07-14 453712]
S3 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\DRIVERS\errdev.sys [2009-07-14 7168]
S3 exfat;exFAT File System Driver; C:\Windows\system32\drivers\exfat.sys [2009-07-14 142336]
S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; C:\Windows\system32\drivers\filetrace.sys [2009-07-14 28160]
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\Windows\System32\drivers\FsDepends.sys [2009-07-14 46160]
S3 gagp30kx;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms; C:\Windows\system32\DRIVERS\gagp30kx.sys [2009-07-14 57936]
S3 GemCCID;GemCCID; C:\Windows\System32\Drivers\GemCCID.sys [2009-08-10 89600]
S3 hcw85cir;Hauppauge Consumer Infrared Receiver; C:\Windows\system32\drivers\hcw85cir.sys [2009-07-14 26624]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-07-14 304128]
S3 HidBatt;HID UPS Battery Driver; C:\Windows\system32\DRIVERS\HidBatt.sys [2009-07-14 21504]
S3 HidBth;Miniport Microsoft Bluetooth HID; C:\Windows\system32\DRIVERS\hidbth.sys [2009-07-14 91136]
S3 HidIr;Microsoft Infrared HID Driver; C:\Windows\system32\DRIVERS\hidir.sys [2009-07-14 37888]
S3 HpSAMD;HpSAMD; C:\Windows\system32\DRIVERS\HpSAMD.sys [2009-07-14 67152]
S3 iaStorV;iaStorV; C:\Windows\system32\DRIVERS\iaStorV.sys [2009-07-14 332352]
S3 iirsp;iirsp; C:\Windows\system32\DRIVERS\iirsp.sys [2009-07-14 41040]
S3 intelide;intelide; C:\Windows\system32\DRIVERS\intelide.sys [2009-07-14 15424]
S3 IPMIDRV;IPMIDRV; C:\Windows\system32\DRIVERS\IPMIDrv.sys [2009-07-14 65536]
S3 IpwP;IPWireless 3G Network Adapter; C:\Windows\system32\DRIVERS\ipw3gnet.sys [2008-10-10 51040]
S3 isapnp;isapnp; C:\Windows\system32\DRIVERS\isapnp.sys [2009-07-14 46656]
S3 iScsiPrt;iScsiPort Driver; C:\Windows\system32\DRIVERS\msiscsi.sys [2009-07-14 186960]
S3 LSI_FC;LSI_FC; C:\Windows\system32\DRIVERS\lsi_fc.sys [2009-07-14 95824]
S3 LSI_SAS;LSI_SAS; C:\Windows\system32\DRIVERS\lsi_sas.sys [2009-07-14 89168]
S3 LSI_SAS2;LSI_SAS2; C:\Windows\system32\DRIVERS\lsi_sas2.sys [2009-07-14 54864]
S3 LSI_SCSI;LSI_SCSI; C:\Windows\system32\DRIVERS\lsi_scsi.sys [2009-07-14 96848]
S3 megasas;megasas; C:\Windows\system32\DRIVERS\megasas.sys [2009-07-14 30800]
S3 MegaSR;MegaSR; C:\Windows\system32\DRIVERS\MegaSR.sys [2009-07-14 235584]
S3 mpio;mpio; C:\Windows\system32\DRIVERS\mpio.sys [2009-07-14 130624]
S3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2009-12-02 42368]
S3 msahci;msahci; C:\Windows\system32\DRIVERS\msahci.sys [2009-07-14 27712]
S3 msdsm;msdsm; C:\Windows\system32\DRIVERS\msdsm.sys [2009-07-14 115792]
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\Windows\System32\drivers\mshidkmdf.sys [2009-07-14 4096]
S3 MsRPC;MsRPC; C:\Windows\system32\drivers\MsRPC.sys [2009-07-14 162896]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2009-07-14 6144]
S3 MTConfig;Microsoft Input Configuration Driver; C:\Windows\system32\DRIVERS\MTConfig.sys [2009-07-14 12288]
S3 NdisCap;NDIS Capture LightWeight Filter; C:\Windows\system32\DRIVERS\ndiscap.sys [2009-07-14 27136]
S3 nfrd960;nfrd960; C:\Windows\system32\DRIVERS\nfrd960.sys [2009-07-14 44624]
S3 nv_agp;NVIDIA nForce AGP Bus Filter; C:\Windows\system32\DRIVERS\nv_agp.sys [2009-07-14 105024]
S3 nvraid;nvraid; C:\Windows\system32\DRIVERS\nvraid.sys [2009-07-14 117312]
S3 nvstor;nvstor; C:\Windows\system32\DRIVERS\nvstor.sys [2009-07-14 142416]
S3 ohci1394;1394 OHCI Compliant Host Controller (Legacy); C:\Windows\system32\DRIVERS\ohci1394.sys [2009-07-14 62464]
S3 pwdrvio;pwdrvio; \??\C:\Windows\system32\pwdrvio.sys [2009-11-04 16456]
S3 pwdspio;pwdspio; \??\C:\Windows\system32\pwdspio.sys [2009-11-04 11088]
S3 ql2300;ql2300; C:\Windows\system32\DRIVERS\ql2300.sys [2009-07-14 1383488]
S3 ql40xx;ql40xx; C:\Windows\system32\DRIVERS\ql40xx.sys [2009-07-14 106064]
S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; C:\Windows\system32\drivers\qwavedrv.sys [2009-07-14 31744]
S3 rdpbus;Remote Desktop Device Redirector Bus Driver; C:\Windows\system32\DRIVERS\rdpbus.sys [2009-07-14 18944]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 sbp2port;sbp2port; C:\Windows\system32\DRIVERS\sbp2port.sys [2009-07-14 85568]
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\Windows\System32\DRIVERS\scfilter.sys [2009-07-14 26624]
S3 sermouse;Serial Mouse Driver; C:\Windows\system32\DRIVERS\sermouse.sys [2009-07-14 19968]
S3 sffdisk;SFF Storage Class Driver; C:\Windows\system32\DRIVERS\sffdisk.sys [2009-07-14 11264]
S3 sffp_mmc;SFF Storage Protocol Driver for MMC; C:\Windows\system32\DRIVERS\sffp_mmc.sys [2009-07-14 12288]
S3 sffp_sd;SFF Storage Protocol Driver for SDBus; C:\Windows\system32\DRIVERS\sffp_sd.sys [2009-07-14 12800]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 SiSRaid2;SiSRaid2; C:\Windows\system32\DRIVERS\SiSRaid2.sys [2009-07-14 40016]
S3 SiSRaid4;SiSRaid4; C:\Windows\system32\DRIVERS\sisraid4.sys [2009-07-14 77888]
S3 Smb;@%SystemRoot%\system32\tcpipcfg.dll,-50005; C:\Windows\system32\DRIVERS\smb.sys [2009-07-14 71168]
S3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys []
S3 stexstor;stexstor; C:\Windows\system32\DRIVERS\stexstor.sys [2009-07-14 21072]
S3 TCPIP6;Microsoft IPv6 Protocol Driver; C:\Windows\system32\DRIVERS\tcpip.sys [2009-07-14 1285712]
S3 TridVid;TM5600 TV Service; C:\Windows\system32\DRIVERS\TridVid.sys [2007-04-17 154112]
S3 uagp35;Microsoft AGPv3.5 Filter; C:\Windows\system32\DRIVERS\uagp35.sys [2009-07-14 55888]
S3 uliagpkx;Uli AGP Bus Filter; C:\Windows\system32\DRIVERS\uliagpkx.sys [2009-07-14 57424]
S3 UmPass;Ovladač Microsoft UMPass; C:\Windows\system32\DRIVERS\umpass.sys [2009-07-14 8192]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2009-08-28 40448]
S3 usbcir;eHome Infrared Receiver (USBCIR); C:\Windows\system32\DRIVERS\usbcir.sys [2009-07-14 86016]
S3 usbprint;Microsoft USB PRINTER Class; C:\Windows\system32\DRIVERS\usbprint.sys [2009-07-14 19968]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\Windows\system32\DRIVERS\USBSTOR.SYS [2009-07-14 74752]
S3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\Windows\system32\DRIVERS\usbuhci.sys [2009-07-14 24064]
S3 vga;vga; C:\Windows\system32\DRIVERS\vgapnp.sys [2009-07-14 26112]
S3 vhdmp;vhdmp; C:\Windows\system32\DRIVERS\vhdmp.sys [2009-07-14 159824]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vsmraid;vsmraid; C:\Windows\system32\DRIVERS\vsmraid.sys [2009-07-14 141904]
S3 WacomPen;Wacom Serial Pen HID Driver; C:\Windows\system32\DRIVERS\wacompen.sys [2009-07-14 21632]
S3 Wd;Wd; C:\Windows\system32\DRIVERS\wd.sys [2009-07-14 19024]
S3 WIMMount;WIMMount; C:\Windows\system32\drivers\wimmount.sys [2009-07-14 19008]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]
S3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2009-07-14 11264]
S4 crcdisk;Crcdisk Filter Driver; C:\Windows\system32\DRIVERS\crcdisk.sys [2009-07-14 22096]
S4 ws2ifsl;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\Windows\system32\drivers\ws2ifsl.sys [2009-07-14 16384]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 176128]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672]
R2 ASLDRService;ASLDR Service; C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe [2009-06-15 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [2007-08-08 94208]
R2 AudioEndpointBuilder;@%SystemRoot%\system32\audiosrv.dll,-204; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 DPS;@%systemroot%\system32\dps.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\Windows\System32\lsass.exe [2009-07-14 22528]
R2 gpsvc;@gpapi.dll,-112; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 IPBusEnum;@%systemroot%\system32\IPBusEnum.dll,-102; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 iphlpsvc;@%SystemRoot%\system32\iphlpsvc.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 MpsSvc;@%SystemRoot%\system32\FirewallAPI.dll,-23090; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Essentials\MsMpEng.exe [2009-12-09 17904]
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 OAcat;Online Armor Helper Service; C:\Program Files\Tall Emu\Online Armor\OAcat.exe [2009-12-05 1282248]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2010-03-31 488960]
R2 spmgr;spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [2007-08-03 125496]
R2 SvcOnlineArmor;Online Armor; C:\Program Files\Tall Emu\Online Armor\oasrv.exe [2009-12-05 3291336]
R2 SysMain;@%SystemRoot%\system32\sysmain.dll,-1000; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2009-12-18 1044808]
R2 UxSms;@%SystemRoot%\system32\dwm.exe,-2000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 Wlansvc;@%SystemRoot%\System32\wlansvc.dll,-257; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 1533808]
R2 WSearch;Windows Search; C:\Windows\system32\SearchIndexer.exe [2009-07-14 428032]
R2 wudfsvc;@%SystemRoot%\system32\wudfsvc.dll,-1000; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 xmengine service;CryptoPlus XME Engine Service; C:\Windows\system32\xmesrv.exe [2009-10-09 34696]
R3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2010-01-22 545576]
R3 KeyIso;@keyiso.dll,-100; C:\Windows\system32\lsass.exe [2009-07-14 22528]
R3 netprofm;@%SystemRoot%\system32\netprofm.dll,-202; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 WdiServiceHost;@%systemroot%\system32\wdi.dll,-502; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R3 WinHttpAutoProxySvc;@%SystemRoot%\system32\winhttp.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 WPDBusEnum;@%SystemRoot%\system32\wpdbusenum.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-11-28 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-11-28 194032]
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\Windows\system32\sppsvc.exe [2009-07-14 3179520]
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
S3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 clr_optimization_v2.0.50727_32;Microsoft .NET Framework NGEN v2.0.50727_X86; C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2009-06-10 66384]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 ehRecvr;@%SystemRoot%\ehome\ehrecvr.exe,-101; C:\Windows\ehome\ehRecvr.exe [2009-07-14 557056]
S3 ehSched;@%SystemRoot%\ehome\ehsched.exe,-101; C:\Windows\ehome\ehsched.exe [2009-07-14 94720]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2009-07-14 522752]
S3 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2009-06-10 42856]
S3 GoogleDesktopManager-093009-130223;Google Desktop Manager 5.9.909.30391; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2009-11-27 30192]
S3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 idsvc;@%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8193; C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2009-06-10 878416]
S3 KtmRm;@comres.dll,-2946; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Mcx2Svc;Služba zařízení Media Center Extender; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 pla;@%systemroot%\system32\pla.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SDRSVC;@%SystemRoot%\system32\sdrsvc.dll,-107; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; C:\Windows\System32\snmptrap.exe [2009-07-14 12800]
S3 sppuinotify;@%SystemRoot%\system32\sppuinotify.dll,-103; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 TBS;@%SystemRoot%\system32\tbssvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; C:\Windows\servicing\TrustedInstaller.exe [2009-07-14 204800]
S3 TuneUp.Defrag;@C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2009-12-27 435016]
S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; C:\Windows\system32\UI0Detect.exe [2009-07-14 35840]
S3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; C:\Windows\system32\lsass.exe [2009-07-14 22528]
S3 vds;@%SystemRoot%\system32\vds.exe,-100; C:\Windows\System32\vds.exe [2009-07-14 452608]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2009-07-14 1202688]
S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 wcncsvc;@%SystemRoot%\system32\wcncsvc.dll,-3; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WcsPlugInService;@%SystemRoot%\system32\WcsPlugInService.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Wecsvc;@%SystemRoot%\system32\wecsvc.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 wercplsupport;@%SystemRoot%\System32\wercplsupport.dll,-101; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WerSvc;@%SystemRoot%\System32\wersvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WinDefend;@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WinRM;@%Systemroot%\system32\wsmsvc.dll,-101; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\wmpnetwk.exe [2009-07-14 1121280]
S3 WPCSvc;@%SystemRoot%\system32\wpcsvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 WwanSvc;@%SystemRoot%\System32\wwansvc.dll,-257; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S4 ameisvc;Web'n'walk Manager mobile equipment installation service; C:\Program Files\T-Mobile\Web'n'walk Manager\ameisvc.exe [2009-07-21 66288]
S4 NetTcpPortSharing;@%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8201; C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2009-06-10 128848]

-----------------EOF-----------------

[motji]

Dobrý večer

Z mého podpisu stahněte Ccleaner
- nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru

záložka čistič
- nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
- po analýze klikněte na Spustit Ccleaner

záložka Registry
- klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy -- udělat zálohu registrů - nemusíte
- kliknete opravit všechny problémy ok zavřít

Záložka Nástroje
- zde můžete odinstalovat programy. Je to důkladnější odinstalace než u přidat/odebrat programy ve Windows.

Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.


Stahněte OTC a použijte
http://oldtimer.geekstogo.com/OTC.exe
-vyčistí tempy a po použitých programech



Combofix stahněte takto:
- pravým myšítkem klikněte na odkaz combofixu --uložit jako.. ,a teď ho přejmenujte na Potvora.com a uložte.


Stáhněte na plochu, ukončete všechna aktivní okna a spusťte ComboFix - http://download.bleepingcomputer.com/sUBs/ComboFix.exe

-souhlaste s instalací konzole pro zotavení

- ComboFix je třeba spustit pod účtem s právy administrátora

- Před použitím vypněte všechny rezidentní bezpečnostní programy - antiviry, firewally, antispywary

- Po spuštění se zobrazí podmínky užití, potvrďte je stiskem tlačítka Ano

- Dále postupujte dle pokynů, během aplikování ComboFixu neklikejte do zobrazujícího se okna

- Po dokončení skenování, trvajícího maximálně 10 minut, by měl program vytvořit log - C:\ComboFix.txt, zkopírujte celý jeho obsah sem