Dobrý den,
tak ještě jendou otravuji s prohlídkou. Tentokrát bude na ráně NB, zatím s ním problémy nemám, čistim pravidelně Ccleanerem a kontroluji s SAS.
Za prohlídku děkuji.
Logfile of random's system information tool 1.08 (written by random/random)
Run by Marek at 2010-07-29 23:41:34
Microsoft Windows 7 Home Premium
System drive C: has 561 GB (92%) free of 610 GB
Total RAM: 4061 MB (68% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:41:44, on 29.7.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
C:\Users\Marek\Documents\Benchmark + testy\RSIT.exe
C:\Program Files (x86)\Winamp\winamp.exe
C:\Program Files (x86)\trend micro\Marek.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 6t6804y708
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... 6t6804y708
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... 6t6804y708
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - (no file)
O2 - BHO: (no name) - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - (no file)
O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
O4 - HKLM\..\Run: [EgisTecLiveUpdate] "C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe"
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [ArcadeDeluxeAgent] "C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\Program Files (x86)\Acer Bio Protection\PwdBank.exe (file missing)
O9 - Extra 'Tools' menuitem: Quick-Launch Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - c:\Program Files (x86)\Acer Bio Protection\PwdBank.exe (file missing)
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9570 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3FEE66E-E034-436a-86E4-9690573BEE8A}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"BackupManagerTray"=C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [2009-08-21 261888]
"EgisTecLiveUpdate"=C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [2009-08-04 199464]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2009-08-27 1194504]
"ArcadeDeluxeAgent"=C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [2009-07-31 128296]
"PlayMovie"=C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe [2009-08-04 181480]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2007-08-24 33648]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2010-07-29 23:34:02 ----DC---- C:\rsit
2010-07-29 23:34:02 ----DC---- C:\Program Files (x86)\trend micro
2010-07-29 12:12:10 ----SHDC---- C:\Config.Msi
2010-07-27 19:50:56 ----DC---- C:\Program Files (x86)\Valve
2010-07-27 12:38:16 ----DC---- C:\Windows\AM
2010-07-23 11:34:05 ----DC---- C:\Program Files (x86)\Fillets
2010-07-23 01:13:33 ----DC---- C:\Program Files (x86)\YouTube Downloader
2010-07-23 01:00:12 ----DC---- C:\Users\Marek\AppData\Roaming\SoftDMA
2010-07-21 12:45:50 ----AC---- C:\Windows\SysWOW64\d3dx9_36.dll
2010-07-21 08:46:46 ----DC---- C:\Program Files (x86)\Application Updater
2010-07-20 23:41:11 ----DC---- C:\Users\Marek\AppData\Roaming\SoundSpectrum
2010-07-20 23:40:35 ----DC---- C:\Program Files (x86)\SoundSpectrum
2010-07-19 08:41:55 ----ASH---- C:\pagefile.sys
2010-07-16 22:10:31 ----DC---- C:\ProgramData\TrackMania
2010-07-16 22:08:48 ----AC---- C:\Windows\SysWOW64\xinput1_1.dll
2010-07-16 22:08:48 ----AC---- C:\Windows\SysWOW64\xactengine2_2.dll
2010-07-16 22:08:46 ----AC---- C:\Windows\SysWOW64\xactengine2_1.dll
2010-07-16 22:08:37 ----AC---- C:\Windows\SysWOW64\d3dx9_30.dll
2010-07-16 22:08:34 ----AC---- C:\Windows\SysWOW64\xactengine2_0.dll
2010-07-16 22:08:34 ----AC---- C:\Windows\SysWOW64\x3daudio1_0.dll
2010-07-16 22:08:34 ----AC---- C:\Windows\SysWOW64\d3dx9_29.dll
2010-07-16 22:08:33 ----AC---- C:\Windows\SysWOW64\d3dx9_28.dll
2010-07-16 22:08:32 ----AC---- C:\Windows\SysWOW64\d3dx9_27.dll
2010-07-16 22:08:31 ----AC---- C:\Windows\SysWOW64\d3dx9_26.dll
2010-07-16 22:08:28 ----AC---- C:\Windows\SysWOW64\d3dx9_25.dll
2010-07-16 22:08:27 ----AC---- C:\Windows\SysWOW64\d3dx9_24.dll
2010-07-16 22:06:08 ----DC---- C:\Program Files (x86)\TmNationsForever
2010-07-16 12:16:06 ----AC---- C:\Windows\wininit.ini
2010-07-15 12:43:35 ----DC---- C:\Users\Marek\AppData\Roaming\skypePM
2010-07-14 16:25:05 ----DC---- C:\OscarData
2010-07-14 16:24:36 ----DC---- C:\Program Files (x86)\OSCAR Editor
2010-07-14 16:23:39 ----DC---- C:\Oscar
2010-07-14 15:48:13 ----AC---- C:\Windows\SysWOW64\D3DX9_42.dll
2010-07-14 15:48:13 ----AC---- C:\Windows\SysWOW64\d3dx9_31.dll
2010-07-14 15:47:10 ----DC---- C:\Program Files (x86)\Winamp Detect
2010-07-14 15:47:00 ----DC---- C:\Users\Marek\AppData\Roaming\Winamp
2010-07-14 15:47:00 ----DC---- C:\Program Files (x86)\Winamp
2010-07-14 09:44:36 ----DC---- C:\Program Files (x86)\MSXML 4.0
2010-07-14 01:33:09 ----DC---- C:\Windows\SysWOW64\Wat
2010-07-13 23:29:28 ----A---- C:\Windows\SysWOW64\msv1_0.dll
2010-07-13 23:26:08 ----A---- C:\Windows\SysWOW64\PresentationHostProxy.dll
2010-07-13 23:26:07 ----A---- C:\Windows\SysWOW64\PresentationHost.exe
2010-07-13 23:26:07 ----A---- C:\Windows\SysWOW64\netfxperf.dll
2010-07-13 23:26:07 ----A---- C:\Windows\SysWOW64\mscoree.dll
2010-07-13 23:26:07 ----A---- C:\Windows\SysWOW64\dfshim.dll
2010-07-13 23:19:05 ----DC---- C:\Users\Marek\AppData\Roaming\SUPERAntiSpyware.com
2010-07-13 23:19:05 ----DC---- C:\ProgramData\SUPERAntiSpyware.com
2010-07-13 23:19:00 ----DC---- C:\ProgramData\!SASCORE
2010-07-13 22:52:38 ----DC---- C:\Program Files (x86)\Google
2010-07-13 22:37:00 ----A---- C:\Windows\SysWOW64\wmp.dll
2010-07-13 22:36:58 ----A---- C:\Windows\SysWOW64\CertEnroll.dll
2010-07-13 22:36:57 ----A---- C:\Windows\SysWOW64\wmploc.DLL
2010-07-13 22:34:18 ----A---- C:\Windows\SysWOW64\CPFilters.dll
2010-07-13 22:34:16 ----A---- C:\Windows\SysWOW64\psisdecd.dll
2010-07-13 22:32:32 ----A---- C:\Windows\SysWOW64\shell32.dll
2010-07-13 22:32:31 ----A---- C:\Windows\SysWOW64\sspicli.dll
2010-07-13 22:32:31 ----A---- C:\Windows\SysWOW64\secur32.dll
2010-07-13 22:30:55 ----A---- C:\Windows\SysWOW64\explorer.exe
2010-07-13 22:30:55 ----A---- C:\Windows\explorer.exe
2010-07-13 22:30:43 ----A---- C:\Windows\SysWOW64\secproc_isv.dll
2010-07-13 22:30:43 ----A---- C:\Windows\SysWOW64\secproc.dll
2010-07-13 22:30:43 ----A---- C:\Windows\SysWOW64\RMActivate_isv.exe
2010-07-13 22:30:42 ----A---- C:\Windows\SysWOW64\secproc_ssp_isv.dll
2010-07-13 22:30:42 ----A---- C:\Windows\SysWOW64\secproc_ssp.dll
2010-07-13 22:30:42 ----A---- C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2010-07-13 22:30:42 ----A---- C:\Windows\SysWOW64\RMActivate_ssp.exe
2010-07-13 22:30:42 ----A---- C:\Windows\SysWOW64\RMActivate.exe
2010-07-13 22:30:33 ----A---- C:\Windows\SysWOW64\ntdll.dll
2010-07-13 22:30:30 ----A---- C:\Windows\SysWOW64\inetcomm.dll
2010-07-13 22:30:29 ----A---- C:\Windows\SysWOW64\t2embed.dll
2010-07-13 22:30:27 ----A---- C:\Windows\SysWOW64\jscript.dll
2010-07-13 22:30:26 ----A---- C:\Windows\SysWOW64\vbscript.dll
2010-07-13 22:30:25 ----A---- C:\Windows\SysWOW64\asycfilt.dll
2010-07-13 22:30:20 ----A---- C:\Windows\SysWOW64\wow32.dll
2010-07-13 22:30:20 ----A---- C:\Windows\SysWOW64\user.exe
2010-07-13 22:30:20 ----A---- C:\Windows\SysWOW64\setup16.exe
2010-07-13 22:30:20 ----A---- C:\Windows\SysWOW64\ntvdm64.dll
2010-07-13 22:30:20 ----A---- C:\Windows\SysWOW64\instnm.exe
2010-07-13 22:30:09 ----A---- C:\Windows\SysWOW64\mshtml.dll
2010-07-13 22:30:05 ----A---- C:\Windows\SysWOW64\ieframe.dll
2010-07-13 22:30:04 ----A---- C:\Windows\SysWOW64\mstime.dll
2010-07-13 22:30:03 ----A---- C:\Windows\SysWOW64\urlmon.dll
2010-07-13 22:30:02 ----A---- C:\Windows\SysWOW64\wininet.dll
2010-07-13 22:30:02 ----A---- C:\Windows\SysWOW64\msfeedsbs.dll
2010-07-13 22:30:02 ----A---- C:\Windows\SysWOW64\jsproxy.dll
2010-07-13 22:30:02 ----A---- C:\Windows\SysWOW64\iedkcs32.dll
2010-07-13 22:30:00 ----A---- C:\Windows\SysWOW64\quartz.dll
2010-07-13 22:29:59 ----A---- C:\Windows\SysWOW64\tsbyuv.dll
2010-07-13 22:29:59 ----A---- C:\Windows\SysWOW64\msyuv.dll
2010-07-13 22:29:59 ----A---- C:\Windows\SysWOW64\msvidc32.dll
2010-07-13 22:29:59 ----A---- C:\Windows\SysWOW64\msrle32.dll
2010-07-13 22:29:59 ----A---- C:\Windows\SysWOW64\mciavi32.dll
2010-07-13 22:29:59 ----A---- C:\Windows\SysWOW64\iyuv_32.dll
2010-07-13 22:29:59 ----A---- C:\Windows\SysWOW64\avifil32.dll
2010-07-13 22:29:57 ----A---- C:\Windows\SysWOW64\tzres.dll
2010-07-13 22:29:52 ----A---- C:\Windows\SysWOW64\ntoskrnl.exe
2010-07-13 22:29:51 ----A---- C:\Windows\SysWOW64\ntkrnlpa.exe
2010-07-13 22:29:51 ----A---- C:\Windows\SysWOW64\msasn1.dll
2010-07-13 22:27:23 ----A---- C:\Windows\SysWOW64\fontsub.dll
2010-07-13 22:27:23 ----A---- C:\Windows\SysWOW64\atmlib.dll
2010-07-13 22:27:23 ----A---- C:\Windows\SysWOW64\atmfd.dll
2010-07-13 22:15:39 ----DC---- C:\Users\Marek\AppData\Roaming\BatteryBar
2010-07-13 22:03:25 ----A---- C:\Windows\SysWOW64\wintrust.dll
2010-07-13 22:03:23 ----A---- C:\Windows\SysWOW64\cabview.dll
2010-07-13 21:58:40 ----DC---- C:\ProgramData\NVIDIA
2010-07-13 21:30:07 ----AC---- C:\Windows\SysWOW64\SynTPCOM.dll
2010-07-13 21:30:07 ----AC---- C:\Windows\SysWOW64\SynCtrl.dll
2010-07-13 21:30:07 ----AC---- C:\Windows\SysWOW64\SynCOM.dll
2010-07-13 20:46:51 ----DC---- C:\Users\Marek\AppData\Roaming\Mozilla
2010-07-13 20:15:08 ----DC---- C:\Users\Marek\AppData\Roaming\vlc
2010-07-13 20:15:08 ----DC---- C:\Users\Marek\AppData\Roaming\dvdcss
2010-07-13 20:04:13 ----DC---- C:\Users\Marek\AppData\Roaming\ESET
2010-07-13 20:03:25 ----DC---- C:\ProgramData\ESET
2010-07-13 19:40:33 ----DC---- C:\Program Files (x86)\Microsoft Visual Studio
2010-07-13 19:40:33 ----DC---- C:\Program Files (x86)\Common Files\DESIGNER
2010-07-13 19:39:58 ----DC---- C:\Windows\PCHEALTH
2010-07-13 19:39:58 ----DC---- C:\Program Files (x86)\Microsoft.NET
2010-07-13 19:33:07 ----DC---- C:\Program Files (x86)\Lavalys
2010-07-13 19:32:44 ----DC---- C:\Users\Marek\AppData\Roaming\WinRAR
2010-07-13 19:30:36 ----DC---- C:\ProgramData\EgisTec
2010-07-13 19:28:02 ----DC---- C:\Program Files (x86)\DAEMON Tools Lite
2010-07-13 19:27:35 ----DC---- C:\Users\Marek\AppData\Roaming\DAEMON Tools Lite
2010-07-13 19:27:33 ----DC---- C:\ProgramData\DAEMON Tools Lite
2010-07-13 19:26:36 ----DC---- C:\Program Files (x86)\Common Files\PX Storage Engine
2010-07-13 19:26:06 ----DC---- C:\Program Files (x86)\Mozilla Firefox
2010-07-13 19:25:26 ----DC---- C:\Program Files (x86)\VideoLAN
2010-07-13 19:24:42 ----DC---- C:\Program Files (x86)\Common Files\Adobe
2010-07-13 19:24:19 ----DC---- C:\Program Files (x86)\WinRAR
2010-07-13 19:24:00 ----DC---- C:\Users\Marek\AppData\Roaming\GHISLER
2010-07-13 19:24:00 ----DC---- C:\totalcmd
2010-07-13 19:24:00 ----AC---- C:\Windows\UC.PIF
2010-07-13 19:24:00 ----AC---- C:\Windows\RAR.PIF
2010-07-13 19:24:00 ----AC---- C:\Windows\PKZIP.PIF
2010-07-13 19:24:00 ----AC---- C:\Windows\PKUNZIP.PIF
2010-07-13 19:24:00 ----AC---- C:\Windows\NOCLOSE.PIF
2010-07-13 19:24:00 ----AC---- C:\Windows\LHA.PIF
2010-07-13 19:24:00 ----AC---- C:\Windows\ARJ.PIF
2010-07-13 19:23:08 ----DC---- C:\Program Files (x86)\CCleaner
2010-07-13 19:20:42 ----DC---- C:\Users\Marek\AppData\Roaming\Skype
2010-07-13 19:20:26 ----DC---- C:\Program Files (x86)\Common Files\Skype
2010-07-13 19:20:25 ----RDC---- C:\Program Files (x86)\Skype
2010-07-13 19:20:17 ----DC---- C:\ProgramData\Skype
2010-07-13 19:19:51 ----DC---- C:\Program Files (x86)\QIP
2010-07-13 06:54:24 ----DC---- C:\Windows\SysWOW64\cs
2010-07-13 06:54:23 ----DC---- C:\Windows\SysWOW64\XPSViewer
2010-07-13 06:54:23 ----DC---- C:\Windows\SysWOW64\drivers\cs-CZ
2010-07-13 06:54:23 ----DC---- C:\Windows\cs-CZ
2010-07-13 06:48:29 ----DC---- C:\Windows\NAPP_Dism_Log
2010-07-13 06:41:29 ----AC---- C:\Windows\UNINST32.EXE
2010-07-13 06:41:29 ----AC---- C:\Windows\SysWOW64\drivers\DKbFltr.sys
2010-07-13 06:37:29 ----DC---- C:\Windows\Lan
2010-07-13 06:37:17 ----AC---- C:\Windows\WISMVIMG.EXE
2010-07-13 06:37:17 ----AC---- C:\Windows\PATCHFUL.EXE
2010-07-13 06:37:16 ----AC---- C:\Windows\WisGAPasx64.exe
2010-07-13 06:37:16 ----AC---- C:\Windows\ParseModule_X64.exe
2010-07-13 06:37:15 ----AC---- C:\Windows\WisGAPas.exe
2010-07-13 06:37:15 ----AC---- C:\Windows\ParseModule_X86.exe
2010-07-13 06:25:24 ----AC---- C:\Windows\WPatchProgress.ini
2010-07-12 22:25:38 ----DC---- C:\Users\Marek\AppData\Roaming\Google
2010-07-12 22:14:20 ----DC---- C:\Users\Marek\AppData\Roaming\CyberLink
2010-07-12 22:14:14 ----DC---- C:\Users\Marek\AppData\Roaming\PowerCinema
2010-07-12 22:14:05 ----DC---- C:\Users\Marek\AppData\Roaming\GameConsole
2010-07-12 22:13:57 ----DC---- C:\Users\Marek\AppData\Roaming\Adobe
2010-07-12 22:13:55 ----SHDC---- C:\Users\Marek\AppData\Roaming\.#
2010-07-12 21:58:57 ----DC---- C:\Program Files (x86)\Microsoft Visual Studio 8
2010-07-12 21:53:42 ----AC---- C:\Windows\SysWOW64\d3dx9_32.dll
2010-07-12 21:53:17 ----DC---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2010-07-12 21:52:26 ----DC---- C:\Program Files (x86)\Microsoft
2010-07-12 21:52:00 ----DC---- C:\Program Files (x86)\Windows Live
2010-07-12 21:50:26 ----DC---- C:\Program Files (x86)\Common Files\Windows Live
2010-07-12 21:31:46 ----DC---- C:\BOOK
2010-07-12 21:28:04 ----AC---- C:\Windows\SysWOW64\msxml4r.dll
2010-07-12 21:28:04 ----AC---- C:\Windows\SysWOW64\msxml4a.dll
2010-07-12 21:26:48 ----DC---- C:\Program Files (x86)\Cyberlink
2010-07-12 21:24:18 ----DC---- C:\Program Files (x86)\Acer Arcade Deluxe
2010-07-12 21:24:13 ----DC---- C:\ProgramData\CyberLink
2010-07-12 21:24:12 ----DC---- C:\ProgramData\Temp
2010-07-12 21:23:50 ----DC---- C:\Users\Marek\AppData\Roaming\Macromedia
2010-07-12 21:23:17 ----DC---- C:\Program Files (x86)\Launch Manager
2010-07-12 21:23:05 ----DC---- C:\AuthLog
2010-07-12 21:20:44 ----DC---- C:\Windows\SysWOW64\RTCOM
2010-07-12 21:20:16 ----HDC---- C:\Program Files (x86)\Temp
2010-07-12 21:20:15 ----AC---- C:\Windows\RtlExUpd.dll
2010-07-12 21:20:09 ----DC---- C:\Program Files (x86)\Common Files\InstallShield
2010-07-12 21:16:50 ----DC---- C:\Users\Marek\AppData\Roaming\Identities
2010-07-12 21:15:16 ----SDC---- C:\Users\Marek\AppData\Roaming\Microsoft
2010-07-12 21:15:16 ----DC---- C:\Users\Marek\AppData\Roaming\Media Center Programs
2010-07-12 21:15:01 ----SHDC---- C:\Recovery
2010-07-12 21:15:01 ----SHD---- C:\ProgramData\Šablony
2010-07-12 21:15:01 ----SHD---- C:\ProgramData\Plocha
2010-07-12 21:15:01 ----SHD---- C:\ProgramData\Oblíbené položky
2010-07-12 21:15:01 ----SHD---- C:\ProgramData\Nabídka Start
2010-07-12 21:15:01 ----SHD---- C:\ProgramData\Dokumenty
2010-07-12 21:15:01 ----SHD---- C:\ProgramData\Data aplikací
2010-07-12 21:11:26 ----DC---- C:\Windows\SoftwareDistribution
2010-07-12 21:07:43 ----SHD---- C:\System Volume Information
2010-07-12 21:07:43 ----ASH---- C:\hiberfil.sys
======List of files/folders modified in the last 1 months======
2010-07-29 23:41:41 ----DC---- C:\Windows\Temp
2010-07-29 23:39:01 ----DC---- C:\Windows\Prefetch
2010-07-29 23:34:02 ----RDC---- C:\Program Files (x86)
2010-07-29 23:33:33 ----ADC---- C:\Windows
2010-07-29 12:12:44 ----SHDC---- C:\Windows\Installer
2010-07-29 12:11:53 ----DC---- C:\Windows\SysWOW64
2010-07-28 21:20:04 ----DC---- C:\Windows\System32
2010-07-28 21:20:04 ----DC---- C:\Windows\inf
2010-07-27 23:59:49 ----DC---- C:\ProgramData\Adobe
2010-07-27 19:50:56 ----HDC---- C:\Program Files (x86)\InstallShield Installation Information
2010-07-26 20:57:10 ----D---- C:\Windows\rescache
2010-07-24 10:19:30 ----D---- C:\Windows\winsxs
2010-07-24 00:27:19 ----DC---- C:\Program Files (x86)\Internet Explorer
2010-07-23 01:31:09 ----DC---- C:\Windows\Tasks
2010-07-21 01:08:47 ----DC---- C:\Program Files (x86)\Common Files\microsoft shared
2010-07-21 00:12:57 ----DC---- C:\Windows\registration
2010-07-21 00:12:48 ----DC---- C:\Program Files (x86)\Windows Media Player
2010-07-19 10:40:05 ----SHDC---- C:\$Recycle.Bin
2010-07-17 23:01:28 ----DC---- C:\Windows\LiveKernelReports
2010-07-16 22:10:31 ----HDC---- C:\ProgramData
2010-07-16 22:08:46 ----RSDC---- C:\Windows\assembly
2010-07-16 22:08:39 ----DC---- C:\Windows\Microsoft.NET
2010-07-14 16:04:38 ----DC---- C:\Windows\Logs
2010-07-14 13:48:17 ----DC---- C:\Windows\debug
2010-07-14 13:45:55 ----DC---- C:\Program Files (x86)\Microsoft Silverlight
2010-07-14 13:44:18 ----SDC---- C:\ProgramData\Microsoft
2010-07-14 10:32:15 ----DC---- C:\ProgramData\Microsoft Help
2010-07-14 01:32:30 ----AC---- C:\Windows\win.ini
2010-07-13 23:33:40 ----DC---- C:\Program Files (x86)\Windows Mail
2010-07-13 23:33:39 ----DC---- C:\Windows\SysWOW64\cs-CZ
2010-07-13 23:33:39 ----DC---- C:\Windows\AppPatch
2010-07-13 23:33:38 ----DC---- C:\Windows\ehome
2010-07-13 23:33:36 ----DC---- C:\Windows\SysWOW64\migration
2010-07-13 23:18:56 ----RDC---- C:\Program Files
2010-07-13 21:56:13 ----DC---- C:\Windows\Help
2010-07-13 19:41:01 ----DC---- C:\Program Files (x86)\Microsoft Works
2010-07-13 19:40:52 ----DC---- C:\Program Files (x86)\MSBuild
2010-07-13 19:40:45 ----DC---- C:\Program Files (x86)\Microsoft Office
2010-07-13 19:40:33 ----DC---- C:\Program Files (x86)\Common Files
2010-07-13 19:40:27 ----DC---- C:\Windows\ShellNew
2010-07-13 19:40:06 ----RSDC---- C:\Windows\Fonts
2010-07-13 19:24:42 ----DC---- C:\Program Files (x86)\Adobe
2010-07-13 06:58:03 ----DC---- C:\Windows\LP
2010-07-13 06:57:46 ----DC---- C:\Windows\SysWOW64\winrm
2010-07-13 06:57:46 ----DC---- C:\Windows\SysWOW64\WCN
2010-07-13 06:57:46 ----DC---- C:\Windows\SysWOW64\slmgr
2010-07-13 06:57:46 ----DC---- C:\Windows\SysWOW64\en-US
2010-07-13 06:57:46 ----DC---- C:\Windows\SysWOW64\en
2010-07-13 06:57:46 ----DC---- C:\Windows\SysWOW64\drivers\en-US
2010-07-13 06:57:46 ----DC---- C:\Windows\en-US
2010-07-13 06:57:46 ----D---- C:\Windows\SysWOW64\DriverStore
2010-07-13 06:57:46 ----D---- C:\Windows\servicing
2010-07-13 06:57:45 ----DC---- C:\Windows\Speech
2010-07-13 06:54:25 ----DC---- C:\Program Files (x86)\Windows Sidebar
2010-07-13 06:54:25 ----DC---- C:\Program Files (x86)\Windows Photo Viewer
2010-07-13 06:54:25 ----DC---- C:\Program Files (x86)\Windows Defender
2010-07-13 06:54:24 ----DC---- C:\Windows\SysWOW64\migwiz
2010-07-13 06:54:23 ----DC---- C:\Windows\SysWOW64\wbem
2010-07-13 06:54:23 ----DC---- C:\Windows\SysWOW64\Printing_Admin_Scripts
2010-07-13 06:54:23 ----DC---- C:\Windows\SysWOW64\MUI
2010-07-13 06:54:23 ----DC---- C:\Windows\SysWOW64\Dism
2010-07-13 06:54:23 ----DC---- C:\Windows\SysWOW64\com
2010-07-13 06:54:23 ----DC---- C:\Windows\PolicyDefinitions
2010-07-13 06:54:23 ----DC---- C:\Windows\IME
2010-07-12 22:36:26 ----DC---- C:\ProgramData\McAfee
2010-07-12 22:35:45 ----DC---- C:\ProgramData\Partner
2010-07-12 22:16:03 ----DC---- C:\Program Files (x86)\Acer
2010-07-12 21:58:36 ----DC---- C:\Program Files (x86)\Common Files\System
2010-07-12 21:34:09 ----DC---- C:\Windows\Panther
2010-07-12 21:31:49 ----ADC---- C:\Windows\DeployWinRE2
2010-07-12 21:31:16 ----DC---- C:\ProgramData\OEM
2010-07-12 21:30:02 ----HDC---- C:\OEM
2010-07-12 21:23:25 ----DC---- C:\Windows\SysWOW64\drivers
2010-07-12 21:20:16 ----DC---- C:\Program Files (x86)\Realtek
2010-07-12 21:15:35 ----AC---- C:\Windows\WisLangCode.ini
2010-07-12 21:15:16 ----RDC---- C:\Users
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys []
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys []
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys []
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys []
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys []
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys []
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2010-02-17 14920]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2010-02-17 12360]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys []
R2 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys []
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys []
R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys []
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\agrsm64.sys []
R3 DKbFltr;Dritek Keyboard Filter Driver (64-bit); C:\Windows\SysWOW64\Drivers\DKbFltr.sys [2009-03-26 25608]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []
R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x64.sys []
R3 NETw5s64;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\NETw5s64.sys []
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys []
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys []
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys []
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys []
R3 winbondcir;Winbond IR Transceiver; C:\Windows\system32\DRIVERS\winbondcir.sys []
S3 al7do8h0;al7do8h0; C:\Windows\SysWOW64\drivers\al7do8h0.sys []
S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys []
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys []
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys []
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys []
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys []
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys []
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys []
S3 KMWDFILTER;HIDServiceDesc; C:\Windows\system32\DRIVERS\KMWDFILTER.sys []
S3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20); C:\Windows\system32\DRIVERS\L1E62x64.sys []
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys []
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys []
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys []
S3 RtsUIR;Realtek IR Driver; C:\Windows\system32\DRIVERS\Rts516xIR.sys []
S3 USBCCID;Realtek Smartcard Reader Driver; C:\Windows\system32\DRIVERS\RtsUCcid.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2010-06-29 128752]
R2 Application Updater;Application Updater; C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe [2010-02-19 380928]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2009-09-11 735960]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2009-08-05 844320]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-06-05 354840]
R2 MWLService;MyWinLocker Service; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-08-07 311592]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-08-21 62720]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-06-18 144640]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe []
R2 Updater Service;Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-07-23 136176]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-09-11 23296]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2007-08-24 68464]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-06-18 50432]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe []
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivní prohlídka mého NB
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Sunshinekx
- Návštěvník
- Příspěvky: 75
- Registrován: 29 črc 2010 00:11
- Bydliště: Aš
- Kontaktovat uživatele:
Re: Preventivní prohlídka mého NB
Zdravim a pekny vecer preji 
S dovolenim se Vas opet ujmu
Nespustil jste RSIT pro x64 bit systemy, ale nevadi...ja mam na x64 radeji OTL, takze poprosim o logy z nej - navod vizte nize 
Stahnete OTL (viz muj podpis) a ulozte jej na plochu
S dovolenim se Vas opet ujmu
Nespustil jste RSIT pro x64 bit systemy, ale nevadi...ja mam na x64 radeji OTL, takze poprosim o logy z nej - navod vizte nize Stahnete OTL (viz muj podpis) a ulozte jej na plochu
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Zaskrtnete okenko Pro vsechny uzivatele
- Zaskrtnete okenko Kontrola na havet "LOP"
- Zaskrtnete okenko Kontrola na havet "Purity"
- Stari souboru zmente z 30 dnu na 7 dnu
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
netsvcs drivers32 HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s c:\windows\*.* /U %SYSTEMDRIVE%\*.exe %ALLUSERSPROFILE%\Application Data\*. %ALLUSERSPROFILE%\Application Data\*.exe /s %APPDATA%\*. %APPDATA%\*.exe /s /md5start eventlog.dll scecli.dll netlogon.dll cngaudit.dll sceclt.dll ntelogon.dll logevent.dll iaStor.sys nvstor.sys atapi.sys IdeChnDr.sys viasraid.sys AGP440.sys vaxscsi.sys nvatabus.sys viamraid.sys nvata.sys nvgts.sys iastorv.sys ViPrt.sys eNetHook.dll ahcix86.sys KR10N.sys nvstor32.sys ahcix86s.sys nvrd32.sys symmpi.sys adp3132.sys mv61xx.sys nvraid.sys ndis.sys winlogon.exe explorer.exe userinit.exe lsass.exe svchost.exe smss.exe hal.dll ws2_32.dll tcpip.sys cryptsvc.dll Changer.sys JakNDis.sys isapnp.sys cdrom.sys autochk.exe /md5stop %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job /lockedfiles %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\System32\config\*.sav %systemroot%\system32\*.dll /lockedfiles reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c %systemroot%\system32\drivers\*.sys /3 %systemroot%\system32\*.* /3 CREATERESTOREPOINT- Kliknete na tlacitko Prohledat
- Po dokonceni skenu (cca 5min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?