Prvni prohlidka noveho PC(hlavne log z HJT)

Zpráva

Frenc · #1 Příspěvek od **Frenc** » 29 srp 2010 11:13

Logfile of random's system information tool 1.08 (written by random/random)
Run by SONY at 2010-08-29 12:06:17
Microsoft Windows 7 Home Premium
System drive C: has 96 GB (61%) free of 159 GB
Total RAM: 3950 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:06:19, on 29.8.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Users\SONY\AppData\Roaming\QipGuard\QipGuard.exe
C:\Program Files (x86)\SONY\Media Gallery\ElbServer.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files\BatteryBar\BatteryBar.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\SONY\ISB Utility\ISBMgr.exe
C:\Program Files (x86)\SONY\PMB\PMBVolumeWatcher.exe
C:\Program Files (x86)\SONY\Marketing Tools\MarketingTools.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Sony\VAIO Care\VCSpt.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\Sony\VAIO Care\listener.exe
C:\Program Files\trend micro\SONY.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com?o=10148&l=dis
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: QIPBHO Class - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Users\SONY\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: QipLI - {6B5863A0-C43F-4C0A-982B-CC0E9125783F} - C:\Users\SONY\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: QIPBHO - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Users\SONY\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe"
O4 - HKLM\..\Run: [PMBVolumeWatcher] c:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
O4 - HKLM\..\Run: [MarketingTools] C:\Program Files (x86)\Sony\Marketing Tools\MarketingTools.exe
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SHTtray.exe] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [QIP Internet Guardian] C:\Users\SONY\AppData\Roaming\QipGuard\QipGuard.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Elbserver] C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe /Stay
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: BatteryBar.lnk = C:\Program Files\BatteryBar\BatteryBar.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PMBDeviceInfoProvider - Sony Corporation - c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Roxio UPnP Renderer 10 - Sonic Solutions - C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe
O23 - Service: Roxio Upnp Server 10 - Sonic Solutions - C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Sample Collector (SampleCollector) - Sony of America Corporation - C:\Program Files\Sony\VAIO Care\collsvc.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: VAIO Media plus Content Importer (SOHCImp) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
O23 - Service: VAIO Media plus Database Manager (SOHDBSvr) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
O23 - Service: VAIO Media plus Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
O23 - Service: VAIO Media plus Device Searcher (SOHDs) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
O23 - Service: VAIO Media plus Playlist Manager (SOHPlMgr) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
O23 - Service: VAIO Content Metadata Intelligent Network Service Manager (VcmINSMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VSNService - Sony Corporation - C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: VUAgent - Sony Corporation - C:\Program Files\Sony\VAIO Update 5\VUAgent.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14317 bytes

Frenc · #2 Příspěvek od **Frenc** » 29 srp 2010 11:18

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"
atieclxx
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Apoint\Apoint.exe"
"C:\Program Files\Apoint\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"C:\Program Files\Java\jre6\bin\jusched.exe"
"C:\Windows\WindowsMobile\wmdc.exe"
"C:\Users\SONY\AppData\Roaming\QipGuard\QipGuard.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\SONY\Media Gallery\ElbServer.exe" /Stay
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files\Apoint\Apvfb.exe"
"C:\Program Files\BatteryBar\BatteryBar.exe"
"Apntex.exe"
\??\C:\Windows\system32\conhost.exe
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\SONY\ISB Utility\ISBMgr.exe"
"C:\Program Files (x86)\SONY\PMB\PMBVolumeWatcher.exe"
"C:\Program Files (x86)\SONY\Marketing Tools\MarketingTools.exe"
"C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
"C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
taskeng.exe {F9799324-37FD-4BA8-ADEB-CC276B799142}
"taskhost.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
taskeng.exe {F96ABCCD-4CE4-45AF-A57A-99230777549E}
"C:\Program Files\Sony\VAIO Power Management\SPMgr.exe" /Start
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe"
"C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe"
"C:\Program Files\Sony\VAIO Care\VCSpt.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe"
"C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe"
"C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe"
C:\Windows\SysWOW64\DllHost.exe /Processid:{78FD0120-D39C-45D8-A9BE-2B802B3C23E5}
"C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe" /Stationary
"C:\Program Files\Sony\VAIO Smart Network\VSNService.exe"
/Device:000000a0
"C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe"
"C:\Program Files (x86)\SONY\VAIO Event Service\VESMgrSub.exe"
"C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe"
"C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\msiexec.exe /V
C:\Windows\system32\svchost.exe -k WindowsMobile
"C:\Program Files\Sony\VAIO Power Management\SPMService.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-ae97a182-2d30-49e4-a317-e7b8a35e3e42 -SystemEventPortName:HostProcess-751f5ad6-2fe5-415b-9027-e8ca9ce0bccb -IoCancelEventPortName:HostProcess-dc5122e0-a008-4df4-8d3e-8b9aa034b9b1 -NonStateChangingEventPortName:HostProcess-2d6ff435-287e-42b9-a877-dc384e51a731 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:2e915242-2b49-4104-a11b-c664d361f273
"C:\Program Files\Sony\VAIO Care\VCsystray.exe"
"C:\Program Files\Sony\VAIO Care\collsvc.exe" "/service" "/counter=\Processor(_Total)\% Processor Time:5" "/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:5" "/counter=\Network Interface(*)\Bytes Total/sec:5" "/directory=inteldata"
C:\Program Files\Sony\VAIO Care/listener.exe /silent /slot=0
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\SONY\Desktop\RSITx64.exe"

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2009-08-06 132448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 6722448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 688528]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-05-21 43520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6B5863A0-C43F-4C0A-982B-CC0E9125783F}]
QipLI Class - C:\Users\SONY\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll [2010-06-16 48080]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}]
QIPBHO Class - C:\Users\SONY\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll [2010-06-16 149968]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-08-04 41760]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-12-16 9636896]
"Apoint"=C:\Program Files\Apoint\Apoint.exe [2009-11-04 208384]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2010-05-21 171520]
"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 660360]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"QIP Internet Guardian"=C:\Users\SONY\AppData\Roaming\QipGuard\QipGuard.exe [2010-06-16 190416]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]
"Elbserver"=C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe [2009-10-15 72192]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2009-11-21 284696]
"ISBMgr.exe"=C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [2009-08-26 320880]
"PMBVolumeWatcher"=c:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [2009-10-24 597792]
"MarketingTools"=C:\Program Files (x86)\Sony\Marketing Tools\MarketingTools.exe [2010-05-21 26624]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2010-06-28 2837864]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]
"SHTtray.exe"=C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe [2009-10-15 99624]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-05-27 98304]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Users\SONY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
BatteryBar.lnk - C:\Program Files\BatteryBar\BatteryBar.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-12-16 268800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 6722448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-08-29 12:06:18 ----D---- C:\Program Files\trend micro
2010-08-29 12:06:17 ----D---- C:\rsit
2010-08-26 18:01:29 ----D---- C:\ProgramData\ATI
2010-08-26 17:59:33 ----D---- C:\Program Files\ATI Technologies
2010-08-26 17:35:15 ----D---- C:\ATI
2010-08-25 22:10:17 ----D---- C:\Users\SONY\AppData\Roaming\PSpad
2010-08-25 22:10:09 ----D---- C:\Program Files (x86)\PSPad editor
2010-08-25 17:09:15 ----A---- C:\Windows\AutoKMS.exe
2010-08-25 17:01:41 ----D---- C:\Program Files\Common Files\DESIGNER
2010-08-25 17:00:51 ----D---- C:\Program Files\Microsoft Synchronization Services
2010-08-25 17:00:17 ----D---- C:\Windows\PCHEALTH
2010-08-25 17:00:17 ----D---- C:\Program Files\Microsoft Sync Framework
2010-08-25 17:00:17 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2010-08-25 16:59:03 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2010-08-25 16:58:08 ----D---- C:\Program Files\Microsoft Analysis Services
2010-08-25 16:58:08 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2010-08-25 16:57:44 ----D---- C:\Program Files\Microsoft Office
2010-08-25 16:57:24 ----RHD---- C:\MSOCache
2010-08-25 16:17:03 ----D---- C:\Program Files (x86)\Electronic Arts
2010-08-25 15:54:43 ----A---- C:\Windows\system32\drivers\sptd.sys
2010-08-25 15:54:10 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2010-08-25 15:53:34 ----D---- C:\Users\SONY\AppData\Roaming\DAEMON Tools Lite
2010-08-25 15:53:32 ----D---- C:\ProgramData\DAEMON Tools Lite
2010-08-25 15:08:11 ----D---- C:\Program Files\CPUID
2010-08-25 15:08:11 ----A---- C:\Windows\system32\drivers\cpuz134_x64.sys
2010-08-25 15:05:07 ----A---- C:\Windows\SYSWOW64\rmoc3260.dll
2010-08-25 15:05:07 ----A---- C:\Windows\SYSWOW64\pndx5032.dll
2010-08-25 15:05:07 ----A---- C:\Windows\SYSWOW64\pndx5016.dll
2010-08-25 15:05:06 ----A---- C:\Windows\SYSWOW64\unrar.dll
2010-08-25 15:05:06 ----A---- C:\Windows\SYSWOW64\pncrt.dll
2010-08-25 15:05:05 ----A---- C:\Windows\avisplitter.ini
2010-08-25 15:05:01 ----A---- C:\Windows\SYSWOW64\yv12vfw.dll
2010-08-25 15:05:01 ----A---- C:\Windows\SYSWOW64\xvidvfw.dll
2010-08-25 15:05:01 ----A---- C:\Windows\SYSWOW64\xvidcore.dll
2010-08-25 15:05:00 ----A---- C:\Windows\SYSWOW64\qt-dx331.dll
2010-08-25 15:05:00 ----A---- C:\Windows\SYSWOW64\dpl100.dll
2010-08-25 15:04:59 ----A---- C:\Windows\SYSWOW64\ff_vfw.dll.manifest
2010-08-25 15:04:59 ----A---- C:\Windows\SYSWOW64\ff_vfw.dll
2010-08-25 15:04:59 ----A---- C:\Windows\SYSWOW64\divx.dll
2010-08-25 15:04:58 ----D---- C:\Program Files (x86)\K-Lite Codec Pack
2010-08-25 14:26:29 ----D---- C:\Users\SONY\AppData\Roaming\Roxio
2010-08-25 14:26:29 ----D---- C:\ProgramData\Roxio
2010-08-25 13:01:35 ----D---- C:\Program Files (x86)\Microsoft.NET
2010-08-25 12:56:42 ----D---- C:\Users\SONY\AppData\Roaming\BatteryBar
2010-08-25 12:46:40 ----A---- C:\Windows\SYSWOW64\javaws.exe
2010-08-25 12:46:40 ----A---- C:\Windows\SYSWOW64\javaw.exe
2010-08-25 12:46:40 ----A---- C:\Windows\SYSWOW64\java.exe
2010-08-25 12:46:33 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2010-08-25 12:46:33 ----A---- C:\Windows\system32\oleaut32.dll
2010-08-25 11:23:07 ----D---- C:\Program Files\BatteryBar
2010-08-18 19:55:27 ----D---- C:\VAIO Entertainment
2010-08-18 19:47:02 ----D---- C:\ProgramData\Google
2010-08-18 18:27:41 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2010-08-18 18:27:41 ----A---- C:\Windows\system32\drivers\sdbus.sys
2010-08-18 18:27:18 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2010-08-18 18:09:20 ----D---- C:\Users\SONY\AppData\Roaming\Auslogics
2010-08-17 20:32:09 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2010-08-17 20:32:06 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2010-08-17 20:32:06 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2010-08-17 20:32:06 ----A---- C:\Windows\system32\XAudio2_7.dll
2010-08-17 20:32:06 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2010-08-17 20:32:05 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2010-08-17 20:32:05 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2010-08-17 20:32:05 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2010-08-17 20:32:05 ----A---- C:\Windows\system32\xactengine3_7.dll
2010-08-17 20:32:05 ----A---- C:\Windows\system32\d3dcsx_43.dll
2010-08-17 20:32:05 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2010-08-17 20:32:04 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2010-08-17 20:32:04 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2010-08-17 20:32:04 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2010-08-17 20:32:04 ----A---- C:\Windows\system32\D3DX9_43.dll
2010-08-17 20:32:04 ----A---- C:\Windows\system32\d3dx11_43.dll
2010-08-17 20:32:04 ----A---- C:\Windows\system32\d3dx10_43.dll
2010-08-17 20:32:03 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2010-08-17 20:32:03 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2010-08-17 20:32:03 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2010-08-17 20:32:03 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2010-08-17 20:32:03 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2010-08-17 20:32:03 ----A---- C:\Windows\system32\XAudio2_6.dll
2010-08-17 20:32:03 ----A---- C:\Windows\system32\XAudio2_5.dll
2010-08-17 20:32:03 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2010-08-17 20:32:03 ----A---- C:\Windows\system32\xactengine3_6.dll
2010-08-17 20:32:03 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2010-08-17 20:32:02 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2010-08-17 20:32:02 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2010-08-17 20:32:02 ----A---- C:\Windows\system32\xactengine3_5.dll
2010-08-17 20:32:02 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2010-08-17 20:32:00 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2010-08-17 20:32:00 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2010-08-17 20:32:00 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2010-08-17 20:32:00 ----A---- C:\Windows\system32\d3dx11_42.dll
2010-08-17 20:32:00 ----A---- C:\Windows\system32\d3dx10_42.dll
2010-08-17 20:32:00 ----A---- C:\Windows\system32\d3dcsx_42.dll
2010-08-17 20:31:59 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2010-08-17 20:31:59 ----A---- C:\Windows\system32\D3DX9_42.dll
2010-08-17 20:31:56 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2010-08-17 20:31:56 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2010-08-17 20:31:56 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2010-08-17 20:31:56 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2010-08-17 20:31:56 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2010-08-17 20:31:56 ----A---- C:\Windows\system32\XAudio2_4.dll
2010-08-17 20:31:56 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2010-08-17 20:31:56 ----A---- C:\Windows\system32\xactengine3_4.dll
2010-08-17 20:31:56 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2010-08-17 20:31:56 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2010-08-17 20:31:55 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2010-08-17 20:31:55 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2010-08-17 20:31:55 ----A---- C:\Windows\system32\D3DX9_40.dll
2010-08-17 20:31:55 ----A---- C:\Windows\system32\d3dx10_40.dll
2010-08-17 20:31:54 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2010-08-17 20:31:54 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2010-08-17 20:31:54 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2010-08-17 20:31:54 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2010-08-17 20:31:54 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2010-08-17 20:31:54 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2010-08-17 20:31:54 ----A---- C:\Windows\system32\XAudio2_3.dll
2010-08-17 20:31:54 ----A---- C:\Windows\system32\XAudio2_2.dll
2010-08-17 20:31:54 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2010-08-17 20:31:54 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2010-08-17 20:31:54 ----A---- C:\Windows\system32\xactengine3_3.dll
2010-08-17 20:31:54 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2010-08-17 20:31:53 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2010-08-17 20:31:53 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2010-08-17 20:31:53 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2010-08-17 20:31:53 ----A---- C:\Windows\system32\xactengine3_2.dll
2010-08-17 20:31:53 ----A---- C:\Windows\system32\d3dx10_39.dll
2010-08-17 20:31:53 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2010-08-17 20:31:52 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2010-08-17 20:31:52 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2010-08-17 20:31:52 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2010-08-17 20:31:52 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2010-08-17 20:31:52 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2010-08-17 20:31:52 ----A---- C:\Windows\system32\XAudio2_1.dll
2010-08-17 20:31:52 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2010-08-17 20:31:52 ----A---- C:\Windows\system32\xactengine3_1.dll
2010-08-17 20:31:52 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2010-08-17 20:31:52 ----A---- C:\Windows\system32\D3DX9_39.dll
2010-08-17 20:31:51 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2010-08-17 20:31:51 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2010-08-17 20:31:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2010-08-17 20:31:51 ----A---- C:\Windows\system32\D3DX9_38.dll
2010-08-17 20:31:51 ----A---- C:\Windows\system32\d3dx10_38.dll
2010-08-17 20:31:51 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2010-08-17 20:31:50 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2010-08-17 20:31:50 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2010-08-17 20:31:50 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2010-08-17 20:31:50 ----A---- C:\Windows\system32\XAudio2_0.dll
2010-08-17 20:31:50 ----A---- C:\Windows\system32\xactengine3_0.dll
2010-08-17 20:31:50 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2010-08-17 20:31:49 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2010-08-17 20:31:49 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2010-08-17 20:31:49 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2010-08-17 20:31:49 ----A---- C:\Windows\system32\D3DX9_37.dll
2010-08-17 20:31:49 ----A---- C:\Windows\system32\d3dx10_37.dll
2010-08-17 20:31:49 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2010-08-17 20:31:48 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2010-08-17 20:31:48 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2010-08-17 20:31:48 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2010-08-17 20:31:48 ----A---- C:\Windows\system32\xactengine2_10.dll
2010-08-17 20:31:48 ----A---- C:\Windows\system32\d3dx10_36.dll
2010-08-17 20:31:48 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2010-08-17 20:31:47 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2010-08-17 20:31:47 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2010-08-17 20:31:47 ----A---- C:\Windows\system32\xactengine2_9.dll
2010-08-17 20:31:47 ----A---- C:\Windows\system32\d3dx9_36.dll
2010-08-17 20:31:46 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2010-08-17 20:31:46 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2010-08-17 20:31:46 ----A---- C:\Windows\system32\d3dx9_35.dll
2010-08-17 20:31:46 ----A---- C:\Windows\system32\d3dx10_35.dll
2010-08-17 20:31:46 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2010-08-17 20:31:45 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2010-08-17 20:31:45 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2010-08-17 20:31:45 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2010-08-17 20:31:45 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2010-08-17 20:31:45 ----A---- C:\Windows\system32\xactengine2_8.dll
2010-08-17 20:31:45 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2010-08-17 20:31:45 ----A---- C:\Windows\system32\d3dx10_34.dll
2010-08-17 20:31:45 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2010-08-17 20:31:44 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2010-08-17 20:31:44 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2010-08-17 20:31:44 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2010-08-17 20:31:44 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2010-08-17 20:31:44 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2010-08-17 20:31:44 ----A---- C:\Windows\system32\xinput1_3.dll
2010-08-17 20:31:44 ----A---- C:\Windows\system32\xactengine2_7.dll
2010-08-17 20:31:44 ----A---- C:\Windows\system32\d3dx9_34.dll
2010-08-17 20:31:44 ----A---- C:\Windows\system32\d3dx10_33.dll
2010-08-17 20:31:44 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2010-08-17 20:31:43 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2010-08-17 20:31:43 ----A---- C:\Windows\system32\d3dx9_33.dll
2010-08-17 20:31:42 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2010-08-17 20:31:42 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2010-08-17 20:31:42 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2010-08-17 20:31:42 ----A---- C:\Windows\system32\xactengine2_6.dll
2010-08-17 20:31:42 ----A---- C:\Windows\system32\xactengine2_5.dll
2010-08-17 20:31:42 ----A---- C:\Windows\system32\d3dx10.dll
2010-08-17 20:31:40 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2010-08-17 20:31:40 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2010-08-17 20:31:40 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2010-08-17 20:31:40 ----A---- C:\Windows\system32\xactengine2_4.dll
2010-08-17 20:31:40 ----A---- C:\Windows\system32\x3daudio1_1.dll
2010-08-17 20:31:40 ----A---- C:\Windows\system32\d3dx9_31.dll
2010-08-17 20:31:38 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2010-08-17 20:31:38 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2010-08-17 20:31:38 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2010-08-17 20:31:38 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2010-08-17 20:31:38 ----A---- C:\Windows\system32\xinput1_2.dll
2010-08-17 20:31:38 ----A---- C:\Windows\system32\xinput1_1.dll
2010-08-17 20:31:38 ----A---- C:\Windows\system32\xactengine2_3.dll
2010-08-17 20:31:38 ----A---- C:\Windows\system32\xactengine2_2.dll
2010-08-17 20:31:36 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2010-08-17 20:31:36 ----A---- C:\Windows\system32\xactengine2_1.dll
2010-08-17 20:31:31 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2010-08-17 20:31:31 ----A---- C:\Windows\system32\d3dx9_30.dll
2010-08-17 20:31:30 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2010-08-17 20:31:30 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2010-08-17 20:31:30 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2010-08-17 20:31:30 ----A---- C:\Windows\system32\xactengine2_0.dll
2010-08-17 20:31:30 ----A---- C:\Windows\system32\x3daudio1_0.dll
2010-08-17 20:31:30 ----A---- C:\Windows\system32\d3dx9_29.dll
2010-08-17 20:31:29 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2010-08-17 20:31:29 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2010-08-17 20:31:29 ----A---- C:\Windows\system32\d3dx9_28.dll
2010-08-17 20:31:29 ----A---- C:\Windows\system32\d3dx9_27.dll
2010-08-17 20:31:28 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2010-08-17 20:31:28 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2010-08-17 20:31:28 ----A---- C:\Windows\system32\d3dx9_26.dll
2010-08-17 20:31:28 ----A---- C:\Windows\system32\d3dx9_25.dll
2010-08-17 20:31:27 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2010-08-17 20:31:27 ----A---- C:\Windows\system32\d3dx9_24.dll
2010-08-17 19:53:55 ----D---- C:\Program Files (x86)\Adobe
2010-08-17 19:33:25 ----D---- C:\Program Files (x86)\Steam
2010-08-17 18:22:08 ----D---- C:\Users\SONY\AppData\Roaming\GHISLER
2010-08-17 18:22:08 ----D---- C:\totalcmd
2010-08-17 18:22:08 ----A---- C:\Windows\UC.PIF
2010-08-17 18:22:08 ----A---- C:\Windows\RAR.PIF
2010-08-17 18:22:08 ----A---- C:\Windows\PKZIP.PIF
2010-08-17 18:22:08 ----A---- C:\Windows\PKUNZIP.PIF
2010-08-17 18:22:08 ----A---- C:\Windows\NOCLOSE.PIF
2010-08-17 18:22:08 ----A---- C:\Windows\LHA.PIF
2010-08-17 18:22:08 ----A---- C:\Windows\ARJ.PIF
2010-08-17 16:40:28 ----A---- C:\Windows\SYSWOW64\atiumdva.dll
2010-08-17 16:40:28 ----A---- C:\Windows\SYSWOW64\atiumdag.dll
2010-08-17 16:40:28 ----A---- C:\Windows\SYSWOW64\atipdlxx.dll
2010-08-17 16:40:28 ----A---- C:\Windows\SYSWOW64\atimpc32.dll
2010-08-17 16:39:39 ----A---- C:\Windows\SYSWOW64\imapi2.dll
2010-08-17 16:39:39 ----A---- C:\Windows\system32\imapi2.dll
2010-08-17 16:32:45 ----HD---- C:\SPLASH.SYS
2010-08-16 22:23:20 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-08-16 22:23:20 ----A---- C:\Windows\system32\drivers\srv.sys
2010-08-16 22:23:19 ----A---- C:\Windows\SYSWOW64\schannel.dll
2010-08-16 22:23:19 ----A---- C:\Windows\system32\schannel.dll
2010-08-16 22:23:19 ----A---- C:\Windows\system32\drivers\srvnet.sys
2010-08-16 22:22:57 ----A---- C:\Windows\system32\shell32.dll
2010-08-16 22:22:55 ----A---- C:\Windows\SYSWOW64\shell32.dll
2010-08-16 22:22:49 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-08-16 22:22:49 ----A---- C:\Windows\system32\drivers\tcpip.sys
2010-08-16 22:22:47 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2010-08-16 22:22:47 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2010-08-16 22:22:45 ----A---- C:\Windows\system32\mshtml.dll
2010-08-16 22:22:43 ----A---- C:\Windows\system32\ieframe.dll
2010-08-16 22:22:42 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2010-08-16 22:22:41 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2010-08-16 22:22:41 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2010-08-16 22:22:41 ----A---- C:\Windows\system32\wininet.dll
2010-08-16 22:22:41 ----A---- C:\Windows\system32\urlmon.dll
2010-08-16 22:22:40 ----A---- C:\Windows\SYSWOW64\wininet.dll
2010-08-16 22:22:40 ----A---- C:\Windows\SYSWOW64\mstime.dll
2010-08-16 22:22:40 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2010-08-16 22:22:40 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2010-08-16 22:22:40 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2010-08-16 22:22:40 ----A---- C:\Windows\SYSWOW64\ieui.dll
2010-08-16 22:22:40 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2010-08-16 22:22:40 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2010-08-16 22:22:40 ----A---- C:\Windows\system32\mstime.dll
2010-08-16 22:22:40 ----A---- C:\Windows\system32\msfeedssync.exe
2010-08-16 22:22:40 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-08-16 22:22:40 ----A---- C:\Windows\system32\jsproxy.dll
2010-08-16 22:22:40 ----A---- C:\Windows\system32\ieui.dll
2010-08-16 22:22:40 ----A---- C:\Windows\system32\iepeers.dll
2010-08-16 22:22:40 ----A---- C:\Windows\system32\iedkcs32.dll
2010-08-16 22:22:37 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2010-08-16 22:22:37 ----A---- C:\Windows\system32\rtutils.dll
2010-08-16 22:22:36 ----A---- C:\Windows\SYSWOW64\iccvid.dll
2010-08-16 22:22:36 ----A---- C:\Windows\system32\win32k.sys
2010-08-16 22:22:36 ----A---- C:\Windows\system32\msxml3.dll
2010-08-16 22:22:35 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2010-08-16 18:15:50 ----D---- C:\Users\SONY\AppData\Roaming\BSplayer Pro
2010-08-16 18:15:50 ----D---- C:\Users\SONY\AppData\Roaming\BSplayer
2010-08-16 18:15:50 ----D---- C:\Program Files (x86)\Webteh
2010-08-11 09:18:35 ----A---- C:\Windows\system32\drivers\TVicHW64.sys

======List of files/folders modified in the last 1 months======

2010-08-29 12:06:19 ----D---- C:\Windows\Temp
2010-08-29 12:06:18 ----RD---- C:\Program Files
2010-08-29 12:01:54 ----HD---- C:\ProgramData
2010-08-29 12:01:42 ----SHD---- C:\Windows\Installer
2010-08-29 12:00:50 ----A---- C:\Windows\SYSWOW64\log.txt
2010-08-29 11:59:01 ----D---- C:\Windows\system32\config
2010-08-29 11:47:32 ----SHD---- C:\System Volume Information
2010-08-27 13:05:58 ----D---- C:\Windows\Prefetch
2010-08-27 12:58:14 ----D---- C:\Windows\system32\NDF
2010-08-26 20:21:32 ----D---- C:\Windows
2010-08-26 20:20:44 ----D---- C:\Windows\system32\catroot2
2010-08-26 20:19:07 ----D---- C:\Windows\SysWOW64
2010-08-26 20:19:07 ----D---- C:\Windows\System32
2010-08-26 18:28:28 ----D---- C:\Windows\system32\catroot
2010-08-26 18:28:25 ----D---- C:\ProgramData\Microsoft Help
2010-08-26 18:01:09 ----D---- C:\Program Files (x86)\ATI Technologies
2010-08-26 18:00:45 ----RSD---- C:\Windows\assembly
2010-08-26 18:00:03 ----D---- C:\Windows\system32\drivers
2010-08-26 18:00:01 ----D---- C:\Windows\inf
2010-08-26 17:59:58 ----D---- C:\Windows\system32\DriverStore
2010-08-26 17:59:48 ----SD---- C:\Users\SONY\AppData\Roaming\Microsoft
2010-08-26 17:59:44 ----D---- C:\Windows\winsxs
2010-08-26 17:59:41 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-08-26 17:36:39 ----D---- C:\Windows\Logs
2010-08-26 17:23:14 ----D---- C:\Windows\LiveKernelReports
2010-08-25 22:10:09 ----RD---- C:\Program Files (x86)
2010-08-25 21:39:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-08-25 19:49:23 ----D---- C:\Windows\Microsoft.NET
2010-08-25 17:09:15 ----D---- C:\Windows\system32\Tasks
2010-08-25 17:01:58 ----RSD---- C:\Windows\Fonts
2010-08-25 17:01:42 ----D---- C:\Windows\ShellNew
2010-08-25 17:01:41 ----D---- C:\Program Files\Common Files
2010-08-25 17:00:37 ----D---- C:\Program Files (x86)\MSBuild
2010-08-25 17:00:17 ----SD---- C:\ProgramData\Microsoft
2010-08-25 16:58:51 ----A---- C:\Windows\win.ini
2010-08-25 16:58:46 ----D---- C:\Program Files\Common Files\System
2010-08-25 16:57:53 ----D---- C:\Program Files (x86)\Microsoft Office
2010-08-25 16:10:17 ----D---- C:\ProgramData\Sonic
2010-08-25 16:05:04 ----D---- C:\Windows\AppPatch
2010-08-25 14:29:21 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2010-08-25 14:29:21 ----D---- C:\ProgramData\Sony Corporation
2010-08-25 13:04:33 ----D---- C:\Windows\SYSWOW64\cs-CZ
2010-08-25 13:04:33 ----D---- C:\Windows\system32\cs-CZ
2010-08-25 13:01:38 ----D---- C:\Windows\SYSWOW64\en-US
2010-08-25 13:01:38 ----D---- C:\Windows\system32\en-US
2010-08-25 12:47:04 ----D---- C:\Program Files (x86)\Common Files
2010-08-25 12:46:36 ----D---- C:\Program Files (x86)\Java
2010-08-25 11:55:05 ----RD---- C:\Program Files (x86)\Modern Warfare 2
2010-08-25 11:24:20 ----D---- C:\Windows\Downloaded Program Files
2010-08-23 14:20:13 ----D---- C:\Users\SONY\AppData\Roaming\uTorrent
2010-08-22 18:37:37 ----D---- C:\Users\SONY\AppData\Roaming\Sony Corporation
2010-08-18 22:00:01 ----D---- C:\Windows\system32\LogFiles
2010-08-18 19:47:02 ----D---- C:\Windows\Tasks
2010-08-18 18:59:06 ----D---- C:\Program Files (x86)\Google
2010-08-18 18:34:26 ----D---- C:\Update
2010-08-18 18:33:59 ----D---- C:\Program Files\Sony
2010-08-18 18:19:29 ----D---- C:\Windows\debug
2010-08-17 19:53:57 ----D---- C:\ProgramData\Adobe
2010-08-17 18:37:36 ----D---- C:\Users\SONY\AppData\Roaming\Adobe
2010-08-17 16:39:11 ----D---- C:\Windows\SoftwareDistribution
2010-08-17 16:33:20 ----D---- C:\Program Files (x86)\SONY
2010-08-17 16:32:44 ----D---- C:\Program Files (x86)\Downloaded Installations
2010-08-17 00:54:14 ----D---- C:\Windows\SYSWOW64\migration
2010-08-17 00:54:14 ----D---- C:\Windows\system32\migration
2010-08-17 00:54:14 ----D---- C:\Program Files\Internet Explorer
2010-08-17 00:54:14 ----D---- C:\Program Files (x86)\Internet Explorer
2010-08-17 00:49:04 ----D---- C:\Program Files (x86)\Microsoft Works
2010-08-16 14:59:21 ----D---- C:\Windows\system32\wdi
2010-08-03 20:52:33 ----A---- C:\Windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2009-11-21 537112]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2009-05-20 55280]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-08-25 834544]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-06-28 28752]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-06-28 121936]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-06-28 51280]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-06-28 20048]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-06-28 61008]
R2 cpuz134;cpuz134; \??\C:\Windows\system32\drivers\cpuz134_x64.sys [2010-07-09 21480]
R2 rimspci;rimspci; C:\Windows\system32\drivers\rimssne64.sys [2009-11-06 93696]
R2 risdsnpe;risdsnpe; C:\Windows\system32\drivers\risdsne64.sys [2009-09-15 75776]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-05-27 6856192]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-05-27 264192]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2009-11-04 253488]
R3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect; C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys [2009-05-26 19968]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-11-12 1542656]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\drivers\HECIx64.sys [2009-12-14 56344]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-12-16 2212640]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-10-10 109056]
R3 SFEP;Sony Firmware Extension Parser; C:\Windows\system32\drivers\SFEP.sys [2009-08-19 11392]
S3 ar9qspu9;ar9qspu9; C:\Windows\system32\drivers\ar9qspu9.sys []
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-05-27 6856192]
S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 551936]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 79360]
S3 btusbflt;Bluetooth USB Filter; C:\Windows\system32\drivers\btusbflt.sys [2009-11-18 52264]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-11-18 98344]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2009-11-18 132648]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-11-18 35104]
S3 btwrchid;btwrchid; C:\Windows\system32\drivers\btwrchid.sys [2009-11-18 21160]
S3 DIRECTIO;DIRECTIO; \??\E:\BurnInTest\DirectIo.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2009-08-06 61280]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-12-16 7778176]
S3 Impcd;Impcd; C:\Windows\system32\drivers\Impcd.sys [2009-11-13 151936]
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2009-12-16 244736]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2009-12-16 213280]
S3 TVICHW64;TVICHW64; \??\C:\Windows\system32\DRIVERS\TVICHW64.SYS [2010-08-11 21200]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2009-07-14 19968]
S3 WinUsb;Ovladač WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-05-27 203264]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-09-04 873248]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-11-21 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-12-14 268824]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider; c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [2009-10-24 360224]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 SampleCollector;Sample Collector; C:\Program Files\Sony\VAIO Care\collsvc.exe [2010-03-26 168448]
R2 SOHCImp;VAIO Media plus Content Importer; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2009-10-15 120104]
R2 SOHDBSvr;VAIO Media plus Database Manager; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe [2009-10-15 70952]
R2 SOHDms;VAIO Media plus Digital Media Server; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [2009-10-15 427304]
R2 SOHDs;VAIO Media plus Device Searcher; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [2009-10-15 75048]
R2 SOHPlMgr;VAIO Media plus Playlist Manager; C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe [2009-10-15 91432]
R2 uCamMonitor;CamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2008-09-18 104960]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-12-14 2320920]
R2 VAIO Event Service;VAIO Event Service; C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe [2010-05-28 205168]
R2 VCFw;VAIO Content Folder Watcher; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2009-09-14 642416]
R2 VSNService;VSNService; C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [2010-01-29 822784]
R2 VzCdbSvc;VAIO Entertainment Database Service; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [2009-09-14 206336]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-28 40384]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 VAIO Power Management;VAIO Power Management; C:\Program Files\Sony\VAIO Power Management\SPMService.exe [2009-11-30 571248]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 Roxio Upnp Server 10;Roxio Upnp Server 10; C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe [2009-08-31 362992]
S2 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager; C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2010-02-19 529776]
S2 VcmINSMgr;VAIO Content Metadata Intelligent Network Service Manager; C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [2010-02-19 386416]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 51456888]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 Roxio UPnP Renderer 10;Roxio UPnP Renderer 10; C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe [2009-08-31 313840]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2009-07-16 316664]
S3 VAIO Entertainment TV Device Arbitration Service;VAIO Entertainment TV Device Arbitration Service; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe [2009-09-14 69632]
S3 VUAgent;VUAgent; C:\Program Files\Sony\VAIO Update 5\VUAgent.exe [2010-04-09 1223024]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-07-07 1255736]

-----------------EOF-----------------

#3 Příspěvek od **motji** » 30 srp 2010 20:09

Dobrý večer

Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT

-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

Frenc · #4 Příspěvek od **Frenc** » 31 srp 2010 10:59

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Verze databáze: 4513

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

31.8.2010 11:58:25
mbam-log-2010-08-31 (11-58-25).txt

Typ skenu: Úplný sken (C:\|D:\|)
Skenované objekty: 371271
Uplynulý čas: 1 hodina(y), 7 minuta(y), 16 sekunda(y)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

#5 Příspěvek od **motji** » 31 srp 2010 13:08

Tento soubor otestujte na www.virustotal.com
C:\Windows\AutoKMS.exe
-Na virustotalu dáte procházet, a do spodního okénka nakopírujete přímo cestu k souboru a dáte odeslat
-z prohlížeče zkopírujete adresu ke stránce s výsledky
-pokud se Vás zeptá, dejte soubor otestovat znovu, tak aby to byl soubor z Vašeho počítače

Frenc · #6 Příspěvek od **Frenc** » 31 srp 2010 15:28

AutoKMS.exe
Submission date:
2010-08-25 13:09:13 (UTC)
Current status:
finished
Result:
20 /42 (47.6%)

VT Community

not reviewed
Safety score: -
Compact
Print results
Antivirus Version Last Update Result
AhnLab-V3 2010.08.25.01 2010.08.25 -
AntiVir 8.2.4.38 2010.08.25 SPR/Tool.Keygen.61
Antiy-AVL 2.0.3.7 2010.08.23 -
Authentium 5.2.0.5 2010.08.25 -
Avast 4.8.1351.0 2010.08.25 -
Avast5 5.0.594.0 2010.08.25 Win32:PUP-gen
AVG 9.0.0.851 2010.08.25 Generic18.QAW
BitDefender 7.2 2010.08.25 Application.Keygen.BI
CAT-QuickHeal 11.00 2010.08.24 -
ClamAV 0.96.2.0-git 2010.08.25 -
Comodo 5852 2010.08.25 -
DrWeb 5.0.2.03300 2010.08.25 -
Emsisoft 5.0.0.37 2010.08.25 HackTool.Win32.Ke!IK
eSafe 7.0.17.0 2010.08.24 Win32.SPRTool.Keygen
eTrust-Vet 36.1.7815 2010.08.25 -
F-Prot 4.6.1.107 2010.08.25 -
F-Secure 9.0.15370.0 2010.08.25 Application.Keygen.BI
Fortinet 4.1.143.0 2010.08.25 W32/Dx.TIR!tr
GData 21 2010.08.25 Application.Keygen.BI
Ikarus T3.1.1.88.0 2010.08.25 HackTool.Win32.Ke
Jiangmin 13.0.900 2010.08.25 SuspiciousPacker.Multi.j
Kaspersky 7.0.0.125 2010.08.25 -
McAfee 5.400.0.1158 2010.08.25 Generic.dx!tir
McAfee-GW-Edition 2010.1B 2010.08.25 Generic.dx!tir
Microsoft 1.6103 2010.08.25 HackTool:Win32/Keygen
NOD32 5396 2010.08.25 -
Norman 6.05.11 2010.08.25 Suspicious_Gen2.BPRGF
nProtect 2010-08-25.02 2010.08.25 -
Panda 10.0.2.7 2010.08.25 Trj/CI.A
PCTools 7.0.3.5 2010.08.25 Trojan.ADH
Prevx 3.0 2010.08.25 -
Rising 22.62.02.04 2010.08.25 Trojan.Win32.Generic.521F856D
Sophos 4.56.0 2010.08.25 -
Sunbelt 6788 2010.08.25 HackTool.Win32.Keygen
SUPERAntiSpyware 4.40.0.1006 2010.08.25 -
Symantec 20101.1.1.7 2010.08.25 Trojan.ADH
TheHacker 6.5.2.1.355 2010.08.25 -
TrendMicro 9.120.0.1004 2010.08.25 -
TrendMicro-HouseCall 9.120.0.1004 2010.08.25 -
VBA32 3.12.14.0 2010.08.25 -
ViRobot 2010.8.25.4007 2010.08.25 -
VirusBuster 5.0.27.0 2010.08.24 -
Additional information
Show all
MD5 : cad828e8083941389e86f5b791b9031d
SHA1 : 6d215f0b8d8cd77007947c447f58a952b931ed45
SHA256: 4f47938c1424a4c5968c86bb743ed5e88b6313494c80d8f98aa53f151732726a

#7 Příspěvek od **motji** » 31 srp 2010 21:02

Stahněte OTL http://oldtimer.geekstogo.com/OTL.exe
-uložte ho na plochu a spustte soubor OTL.exe.
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
tcpip.sys
cryptsvc.dll
Changer.sys
JakNDis.sys
isapnp.sys
cdrom.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
CREATERESTOREPOINT

- zaškrtněte okénko Pro všechny uživatele.
-označte okénka Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
- Klikněte na tlačítko Prohledat
-po dokončení skenu se objeví logy OTL.Txt a Extras.txt, vložte je zde

Frenc · #8 Příspěvek od **Frenc** » 31 srp 2010 21:35

Behem skenu to vyhodilo chybovou hlasku pak se scan zastavil...

ze pry neco nemuze ulozit nebo vxtvorit uz si tedka nejsem jistej .. Slo mi hlavne o ten zahnusenej log z hjt neslo by to fixnout prez nej?

#9 Příspěvek od **motji** » 31 srp 2010 21:44

Zkuste ještě jednou bez toho skriptu, to už by mělo jít

Fixnout by to šlo, ale tohle je daleko lepší

Frenc · #10 Příspěvek od **Frenc** » 01 zář 2010 10:00

OTL logfile created on: 01/09/2010 10:32:44 - Run 2
OTL by OldTimer - Version 3.2.11.0 Folder = C:\Users\SONY\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000809 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

4.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 64.00% Memory free
8.00 Gb Paging File | 6.00 Gb Available in Paging File | 77.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 155.46 Gb Total Space | 94.08 Gb Free Space | 60.51% Space Free | Partition Type: NTFS
Drive D: | 295.99 Gb Total Space | 232.23 Gb Free Space | 78.46% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loadeds
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: SONY-VAIO
Current User Name: SONY
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/08/31 22:08:46 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\SONY\Desktop\OTL.exe
PRC - [2010/07/30 20:30:04 | 000,071,680 | ---- | M] (Osiris Development) -- C:\Program Files\BatteryBar\BatteryBar.exe
PRC - [2010/07/26 00:49:04 | 000,014,808 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
PRC - [2010/07/26 00:49:03 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2010/06/28 22:57:18 | 002,837,864 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010/06/28 22:57:15 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2010/06/16 11:52:40 | 000,190,416 | ---- | M] () -- C:\Users\SONY\AppData\Roaming\QipGuard\QipGuard.exe
PRC - [2010/05/28 11:14:24 | 000,205,168 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe
PRC - [2010/05/21 11:08:02 | 000,026,624 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\Marketing Tools\MarketingTools.exe
PRC - [2010/04/27 08:46:06 | 000,022,896 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\VAIO Care\VCSpt.exe
PRC - [2010/04/01 11:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
PRC - [2009/12/22 17:39:54 | 000,077,824 | ---- | M] (Sony of America Corporation) -- C:\Program Files\Sony\VAIO Care\listener.exe
PRC - [2009/12/14 22:06:24 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2009/12/14 22:06:08 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2009/12/01 23:03:52 | 000,112,488 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\VAIO Event Service\VESMgrSub.exe
PRC - [2009/11/21 01:25:24 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2009/11/21 01:25:22 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2009/10/24 04:18:54 | 000,360,224 | ---- | M] (Sony Corporation) -- c:\Program Files (x86)\SONY\PMB\PMBDeviceInfoProvider.exe
PRC - [2009/10/24 04:18:52 | 000,597,792 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\PMB\PMBVolumeWatcher.exe
PRC - [2009/10/15 17:34:36 | 000,427,304 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
PRC - [2009/10/15 17:34:36 | 000,091,432 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
PRC - [2009/10/15 17:34:36 | 000,075,048 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
PRC - [2009/10/15 17:34:34 | 000,120,104 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
PRC - [2009/10/15 17:34:34 | 000,099,624 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe
PRC - [2009/10/15 17:34:34 | 000,070,952 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
PRC - [2009/10/15 15:17:10 | 000,072,192 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\Media Gallery\ElbServer.exe
PRC - [2009/09/14 20:24:08 | 000,206,336 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
PRC - [2009/09/14 19:53:48 | 000,642,416 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
PRC - [2009/08/26 20:24:00 | 000,320,880 | ---- | M] (Sony Corporation) -- C:\Program Files (x86)\SONY\ISB Utility\ISBMgr.exe
PRC - [2009/07/14 03:14:47 | 000,254,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
PRC - [2008/09/18 11:59:10 | 000,104,960 | ---- | M] (ArcSoft, Inc.) -- C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe

========== Modules (SafeList) ==========

MOD - [2010/08/31 22:08:46 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\SONY\Desktop\OTL.exe
MOD - [2009/07/14 03:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2009/07/14 03:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll

========== Win32 Services (SafeList) ==========

SRV:64bit: - [2010/06/28 22:57:15 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV:64bit: - [2010/06/28 22:57:15 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV:64bit: - [2010/06/28 22:57:15 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2010/05/27 18:59:40 | 000,203,264 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2010/04/09 13:37:36 | 001,223,024 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\VAIO Update 5\VUAgent.exe -- (VUAgent)
SRV:64bit: - [2010/03/26 00:47:34 | 000,168,448 | ---- | M] (Sony of America Corporation) [Auto | Running] -- C:\Program Files\Sony\VAIO Care\collsvc.exe -- (SampleCollector)
SRV:64bit: - [2010/03/25 10:41:00 | 051,456,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV:64bit: - [2010/02/19 20:19:24 | 000,529,776 | ---- | M] (Sony Corporation) [Auto | Stopped] -- C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe -- (VcmIAlzMgr)
SRV:64bit: - [2010/02/19 19:19:26 | 000,386,416 | ---- | M] (Sony Corporation) [Auto | Stopped] -- C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe -- (VcmINSMgr)
SRV:64bit: - [2010/01/29 10:30:34 | 000,822,784 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files\Sony\VAIO Smart Network\VSNService.exe -- (VSNService)
SRV:64bit: - [2010/01/09 21:20:56 | 000,174,440 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose64)
SRV:64bit: - [2009/11/30 20:51:18 | 000,571,248 | ---- | M] (Sony Corporation) [On_Demand | Running] -- C:\Program Files\Sony\VAIO Power Management\SPMService.exe -- (VAIO Power Management)
SRV:64bit: - [2009/09/04 23:35:12 | 000,873,248 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2010/05/28 11:14:24 | 000,205,168 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe -- (VAIO Event Service)
SRV - [2010/03/18 14:27:14 | 000,138,576 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_64)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/18 12:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)
SRV - [2009/12/14 22:06:24 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) Intel(R)
SRV - [2009/12/14 22:06:08 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) Intel(R)
SRV - [2009/11/21 01:25:24 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) Intel(R)
SRV - [2009/10/24 04:18:54 | 000,360,224 | ---- | M] (Sony Corporation) [Auto | Running] -- c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe -- (PMBDeviceInfoProvider)
SRV - [2009/10/15 17:34:36 | 000,427,304 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe -- (SOHDms)
SRV - [2009/10/15 17:34:36 | 000,091,432 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe -- (SOHPlMgr)
SRV - [2009/10/15 17:34:36 | 000,075,048 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe -- (SOHDs)
SRV - [2009/10/15 17:34:34 | 000,120,104 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe -- (SOHCImp)
SRV - [2009/10/15 17:34:34 | 000,070,952 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe -- (SOHDBSvr)
SRV - [2009/09/14 20:24:08 | 000,206,336 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe -- (VzCdbSvc)
SRV - [2009/09/14 20:24:08 | 000,069,632 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe -- (VAIO Entertainment TV Device Arbitration Service)
SRV - [2009/09/14 19:53:48 | 000,642,416 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe -- (VCFw)
SRV - [2009/08/31 02:59:30 | 000,362,992 | ---- | M] (Sonic Solutions) [Auto | Stopped] -- C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe -- (Roxio Upnp Server 10)
SRV - [2009/08/31 02:59:18 | 000,313,840 | ---- | M] (Sonic Solutions) [On_Demand | Stopped] -- C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe -- (Roxio UPnP Renderer 10)
SRV - [2009/08/05 23:48:42 | 000,704,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe -- (fsssvc)
SRV - [2009/07/16 17:04:16 | 000,316,664 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2008/09/18 11:59:10 | 000,104,960 | ---- | M] (ArcSoft, Inc.) [Auto | Running] -- C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe -- (uCamMonitor)
SRV - [2007/05/31 18:11:54 | 000,443,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2007/05/31 18:11:46 | 000,225,672 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2010/08/25 15:54:43 | 000,834,544 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2010/08/11 09:18:35 | 000,021,200 | ---- | M] (EnTech Taiwan) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TVicHW64.sys -- (TVICHW64)
DRV:64bit: - [2010/07/09 13:19:02 | 000,021,480 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\cpuz134_x64.sys -- (cpuz134)
DRV:64bit: - [2010/06/28 22:33:00 | 000,061,008 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2010/05/27 19:39:12 | 006,856,192 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2010/05/27 19:39:12 | 006,856,192 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2010/05/27 18:25:36 | 000,264,192 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2009/12/16 22:03:59 | 000,244,736 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud) Intel(R)
DRV:64bit: - [2009/12/16 22:03:04 | 007,778,176 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/12/16 04:49:48 | 000,213,280 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtHDMIVX.sys -- (RTHDMIAzAudService)
DRV:64bit: - [2009/12/14 22:06:07 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel(R)
DRV:64bit: - [2009/11/21 01:09:48 | 000,537,112 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009/11/18 06:30:44 | 000,021,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid)
DRV:64bit: - [2009/11/18 06:30:32 | 000,132,648 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt)
DRV:64bit: - [2009/11/18 06:30:32 | 000,098,344 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio)
DRV:64bit: - [2009/11/18 06:30:21 | 000,052,264 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btusbflt.sys -- (btusbflt)
DRV:64bit: - [2009/11/18 06:23:46 | 000,035,104 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap)
DRV:64bit: - [2009/11/13 22:08:21 | 000,151,936 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:64bit: - [2009/11/12 22:16:19 | 000,395,264 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009/11/12 22:06:44 | 001,542,656 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2009/11/06 22:27:30 | 000,093,696 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rimssne64.sys -- (rimspci)
DRV:64bit: - [2009/11/04 11:59:59 | 000,253,488 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Apfiltr.sys -- (ApfiltrService)
DRV:64bit: - [2009/10/10 04:41:20 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2009/09/15 22:09:08 | 000,075,776 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\risdsne64.sys -- (risdsnpe)
DRV:64bit: - [2009/08/19 22:09:21 | 000,011,392 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SFEP.sys -- (SFEP)
DRV:64bit: - [2009/08/06 00:24:16 | 000,061,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2009/07/14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/14 02:09:50 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx)
DRV:64bit: - [2009/06/10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/26 15:32:04 | 000,019,968 | ---- | M] (ArcSoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ArcSoftKsUFilter.sys -- (ArcSoftKsUFilter)
DRV:64bit: - [2009/05/20 12:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)

========== Standard Registry (All) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)

IE - HKU\S-1-5-20\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)

IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com?o=10148&l=dis
IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\..\URLSearchHook: {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Users\SONY\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "QIP Search"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://cs.start3.mozilla.com/firefox?cl ... s:official"
FF - prefs.js..extensions.enabledItems: QipCounter@qip.ru:1.0
FF - prefs.js..extensions.enabledItems: {32a1fd71-835e-4b11-8e54-886fda0b4c89}:1.1
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.8
FF - prefs.js..extensions.enabledItems: nasanightlaunch@example.com:0.6.20100805
FF - prefs.js..keyword.URL: "http://search.qip.ru/search?from=FF&query="

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2010/08/25 15:05:09 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2010/08/25 15:05:09 | 000,000,000 | ---D | M]

[2010/07/07 21:03:32 | 000,000,000 | ---D | M] -- C:\Users\SONY\AppData\Roaming\Mozilla\Extensions
[2010/07/07 21:03:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SONY\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2010/08/31 16:35:56 | 000,000,000 | ---D | M] -- C:\Users\SONY\AppData\Roaming\Mozilla\Firefox\Profiles\b059koti.default\extensions
[2010/07/07 22:42:41 | 000,000,000 | ---D | M] (QipAuthorizer) -- C:\Users\SONY\AppData\Roaming\Mozilla\Firefox\Profiles\b059koti.default\extensions\{32a1fd71-835e-4b11-8e54-886fda0b4c89}
[2010/08/17 17:27:16 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\SONY\AppData\Roaming\Mozilla\Firefox\Profiles\b059koti.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010/08/17 17:27:15 | 000,000,000 | ---D | M] -- C:\Users\SONY\AppData\Roaming\Mozilla\Firefox\Profiles\b059koti.default\extensions\nasanightlaunch@example.com
[2010/07/22 17:38:37 | 000,000,000 | ---D | M] -- C:\Users\SONY\AppData\Roaming\Mozilla\Firefox\Profiles\b059koti.default\extensions\QipCounter@qip.ru
[2010/07/22 17:38:37 | 000,002,062 | ---- | M] () -- C:\Users\SONY\AppData\Roaming\Mozilla\Firefox\Profiles\b059koti.default\searchplugins\qip-search.xml
[2010/08/31 16:35:56 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2010/07/26 00:49:04 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2010/08/25 12:46:42 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010/07/26 00:49:03 | 000,023,512 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\Mozilla Firefox\components\browserdirprovider.dll
[2010/07/26 00:49:03 | 000,138,712 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\Mozilla Firefox\components\brwsrcmp.dll
[2010/07/17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2010/07/26 00:49:04 | 000,064,984 | ---- | M] (mozilla.org) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npnul32.dll
[2010/08/13 07:03:40 | 000,103,864 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll
[2010/04/16 20:00:00 | 000,140,864 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\nppl3260.dll
[2010/04/16 20:00:00 | 000,098,304 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\nprpjplug.dll
[2010/06/26 10:27:08 | 000,002,371 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\google.xml
[2010/06/26 10:27:08 | 000,000,638 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\jyxo-cz.xml
[2010/06/26 10:27:08 | 000,001,687 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\mall-cz.xml
[2010/06/26 10:27:08 | 000,001,367 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\seznam-cz.xml
[2010/06/26 10:27:08 | 000,000,654 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\slunecnice-cz.xml
[2010/06/26 10:27:08 | 000,001,179 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-cz.xml

O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Windows Live Family Safety Browser Helper Class) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (QipLI Class) - {6B5863A0-C43F-4C0A-982B-CC0E9125783F} - C:\Users\SONY\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll (TODO: <Company name>)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (QIPBHO Class) - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Users\SONY\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O4:64bit: - HKLM..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe (Alps Electric Co., Ltd.)
O4:64bit: - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4:64bit: - HKLM..\Run: [Windows Mobile Device Center] C:\Windows\WindowsMobile\wmdc.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [ISBMgr.exe] C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe (Sony Corporation)
O4 - HKLM..\Run: [MarketingTools] C:\Program Files (x86)\SONY\Marketing Tools\MarketingTools.exe (Sony Corporation)
O4 - HKLM..\Run: [PMBVolumeWatcher] c:\Program Files (x86)\SONY\PMB\PMBVolumeWatcher.exe (Sony Corporation)
O4 - HKLM..\Run: [SHTtray.exe] C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe (Sony Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-3431995957-999424538-2857315487-1000..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-3431995957-999424538-2857315487-1000..\Run: [Elbserver] C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe (Sony Corporation)
O4 - HKU\S-1-5-21-3431995957-999424538-2857315487-1000..\Run: [QIP Internet Guardian] C:\Users\SONY\AppData\Roaming\QipGuard\QipGuard.exe ()
O4 - HKU\S-1-5-21-3431995957-999424538-2857315487-1000..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O4 - Startup: C:\Users\SONY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\BatteryBar.lnk = C:\Program Files\BatteryBar\BatteryBar.exe (Osiris Development)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O7 - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:64bit: - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8:64bit: - Extra context menu item: Od&eslat do aplikace OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Od&eslat do aplikace OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:64bit: - Extra Button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:64bit: - Extra 'Tools' menuitem : P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:64bit: - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysNative\nlaapi.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysNative\winrnr.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysNative\NapiNSP.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\SysNative\wshbth.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWOW64\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWOW64\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWOW64\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\SysWOW64\wshbth.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O18:64bit: - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysNative\inetcomm.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)

Frenc · #11 Příspěvek od **Frenc** » 01 zář 2010 10:00

O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O20 - Winlogon\Notify\VESWinlogon: DllName - VESWinlogon.dll - C:\Windows\SysWow64\VESWinlogon.dll (Sony Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O29:64bit: - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O30:64bit: - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (kerberos) - C:\Windows\SysNative\kerberos.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (schannel) - C:\Windows\SysNative\schannel.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (wdigest) - C:\Windows\SysNative\wdigest.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (tspkg) - C:\Windows\SysNative\tspkg.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (pku2u) - C:\Windows\SysNative\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\SysWow64\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\SysWow64\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\SysWow64\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\SysWow64\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{c8f9b3a4-b050-11df-abb0-0024bec52105}\Shell - "" = AutoRun
O33 - MountPoints2\{c8f9b3a4-b050-11df-abb0-0024bec52105}\Shell\AutoRun\command - "" = H:\Setup.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010/08/31 22:08:44 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Users\SONY\Desktop\OTL.exe
[2010/08/31 10:50:44 | 000,000,000 | ---D | C] -- C:\Users\SONY\AppData\Roaming\Malwarebytes
[2010/08/31 10:50:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010/08/31 10:50:33 | 000,024,664 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2010/08/31 10:50:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010/08/29 12:06:18 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010/08/29 12:06:17 | 000,000,000 | ---D | C] -- C:\rsit
[2010/08/29 12:03:27 | 000,396,288 | ---- | C] (Trend Micro Inc.) -- C:\Users\SONY\Desktop\hijackthis.exe
[2010/08/26 18:01:29 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2010/08/26 17:59:33 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2010/08/26 17:35:15 | 000,000,000 | ---D | C] -- C:\ATI
[2010/08/25 22:10:17 | 000,000,000 | ---D | C] -- C:\Users\SONY\AppData\Roaming\PSpad
[2010/08/25 22:10:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PSPad editor
[2010/08/25 18:35:26 | 000,000,000 | ---D | C] -- C:\Users\SONY\Documents\BFBC2
[2010/08/25 17:01:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2010/08/25 17:00:51 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Synchronization Services
[2010/08/25 17:00:17 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2010/08/25 17:00:17 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Sync Framework
[2010/08/25 17:00:17 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2010/08/25 16:59:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8
[2010/08/25 16:58:08 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Analysis Services
[2010/08/25 16:58:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Analysis Services
[2010/08/25 16:57:54 | 000,000,000 | ---D | C] -- C:\Users\SONY\AppData\Local\Microsoft Help
[2010/08/25 16:57:44 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010/08/25 16:57:24 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2010/08/25 16:39:46 | 000,000,000 | ---D | C] -- C:\Users\SONY\Documents\NFS SHIFT
[2010/08/25 16:17:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Electronic Arts
[2010/08/25 15:54:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2010/08/25 15:53:34 | 000,000,000 | ---D | C] -- C:\Users\SONY\AppData\Roaming\DAEMON Tools Lite
[2010/08/25 15:53:32 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2010/08/25 15:08:11 | 000,021,480 | ---- | C] (Windows (R) Win 7 DDK provider) -- C:\Windows\SysNative\drivers\cpuz134_x64.sys
[2010/08/25 15:08:11 | 000,000,000 | ---D | C] -- C:\Program Files\CPUID
[2010/08/25 15:05:07 | 000,185,920 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
[2010/08/25 15:05:07 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
[2010/08/25 15:05:07 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
[2010/08/25 15:05:06 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\Windows\SysWow64\pncrt.dll
[2010/08/25 15:05:01 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\Windows\SysWow64\lameACM.acm
[2010/08/25 15:05:01 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\Windows\SysWow64\yv12vfw.dll
[2010/08/25 15:05:01 | 000,151,552 | ---- | C] (fccHandler) -- C:\Windows\SysWow64\ac3acm.acm
[2010/08/25 15:05:00 | 000,090,112 | ---- | C] (DivX, Inc.) -- C:\Windows\SysWow64\dpl100.dll
[2010/08/25 15:04:59 | 000,685,056 | ---- | C] (DivX, Inc.) -- C:\Windows\SysWow64\divx.dll
[2010/08/25 15:04:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\K-Lite Codec Pack
[2010/08/25 14:26:29 | 000,000,000 | ---D | C] -- C:\Users\SONY\AppData\Roaming\Roxio
[2010/08/25 14:26:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Roxio
[2010/08/25 13:01:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2010/08/25 12:56:42 | 000,000,000 | ---D | C] -- C:\Users\SONY\AppData\Roaming\BatteryBar
[2010/08/25 12:47:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2010/08/25 12:46:40 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010/08/25 12:46:40 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010/08/25 12:46:40 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010/08/25 12:46:33 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2010/08/25 11:23:55 | 000,554,264 | ---- | C] (Microsoft Corporation) -- C:\Users\SONY\Desktop\Mats_Run.power.exe
[2010/08/25 11:23:07 | 000,000,000 | ---D | C] -- C:\Program Files\BatteryBar
[2010/08/22 18:05:13 | 000,000,000 | ---D | C] -- C:\Users\SONY\Desktop\skate videa
[2010/08/18 19:55:27 | 000,000,000 | ---D | C] -- C:\VAIO Entertainment
[2010/08/18 19:47:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
[2010/08/18 19:12:37 | 000,000,000 | ---D | C] -- C:\Users\SONY\Documents\Sony PMB
[2010/08/18 19:10:13 | 000,000,000 | ---D | C] -- C:\Users\SONY\AppData\Local\Evernote
[2010/08/18 18:27:41 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sdbus.sys
[2010/08/18 18:27:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2010/08/18 18:09:20 | 000,000,000 | ---D | C] -- C:\Users\SONY\AppData\Roaming\Auslogics
[2010/08/17 20:32:15 | 000,000,000 | ---D | C] -- C:\Users\SONY\AppData\Local\2K Games
[2010/08/17 20:32:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2010/08/17 20:32:06 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2010/08/17 20:32:06 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2010/08/17 20:32:06 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2010/08/17 20:32:06 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2010/08/17 20:32:05 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2010/08/17 20:32:05 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2010/08/17 20:32:05 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2010/08/17 20:32:05 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2010/08/17 20:32:05 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2010/08/17 20:32:05 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2010/08/17 20:32:04 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll
[2010/08/17 20:32:04 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2010/08/17 20:32:04 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll
[2010/08/17 20:32:04 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2010/08/17 20:32:04 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll
[2010/08/17 20:32:04 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2010/08/17 20:32:03 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2010/08/17 20:32:03 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2010/08/17 20:32:03 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2010/08/17 20:32:03 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll
[2010/08/17 20:32:03 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2010/08/17 20:32:03 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2010/08/17 20:32:03 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2010/08/17 20:32:03 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2010/08/17 20:32:03 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2010/08/17 20:32:03 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2010/08/17 20:32:02 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2010/08/17 20:32:02 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2010/08/17 20:32:02 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2010/08/17 20:32:02 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2010/08/17 20:32:00 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2010/08/17 20:32:00 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2010/08/17 20:32:00 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll
[2010/08/17 20:32:00 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll
[2010/08/17 20:32:00 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2010/08/17 20:32:00 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2010/08/17 20:31:59 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2010/08/17 20:31:59 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2010/08/17 20:31:56 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2010/08/17 20:31:56 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2010/08/17 20:31:56 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2010/08/17 20:31:56 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2010/08/17 20:31:56 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2010/08/17 20:31:56 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2010/08/17 20:31:56 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2010/08/17 20:31:56 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2010/08/17 20:31:56 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2010/08/17 20:31:56 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2010/08/17 20:31:55 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2010/08/17 20:31:55 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2010/08/17 20:31:55 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2010/08/17 20:31:55 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2010/08/17 20:31:54 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2010/08/17 20:31:54 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2010/08/17 20:31:54 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2010/08/17 20:31:54 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2010/08/17 20:31:54 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2010/08/17 20:31:54 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2010/08/17 20:31:54 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2010/08/17 20:31:54 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2010/08/17 20:31:54 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2010/08/17 20:31:54 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2010/08/17 20:31:54 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2010/08/17 20:31:54 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2010/08/17 20:31:53 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2010/08/17 20:31:53 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2010/08/17 20:31:53 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2010/08/17 20:31:53 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2010/08/17 20:31:53 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2010/08/17 20:31:53 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2010/08/17 20:31:52 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2010/08/17 20:31:52 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2010/08/17 20:31:52 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2010/08/17 20:31:52 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2010/08/17 20:31:52 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2010/08/17 20:31:52 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2010/08/17 20:31:52 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2010/08/17 20:31:52 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2010/08/17 20:31:52 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2010/08/17 20:31:52 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2010/08/17 20:31:51 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2010/08/17 20:31:51 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2010/08/17 20:31:51 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2010/08/17 20:31:51 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2010/08/17 20:31:51 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2010/08/17 20:31:51 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2010/08/17 20:31:50 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2010/08/17 20:31:50 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2010/08/17 20:31:50 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2010/08/17 20:31:50 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2010/08/17 20:31:50 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2010/08/17 20:31:50 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2010/08/17 20:31:49 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2010/08/17 20:31:49 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2010/08/17 20:31:49 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2010/08/17 20:31:49 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2010/08/17 20:31:49 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2010/08/17 20:31:49 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2010/08/17 20:31:48 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2010/08/17 20:31:48 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2010/08/17 20:31:48 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2010/08/17 20:31:48 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2010/08/17 20:31:48 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2010/08/17 20:31:48 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2010/08/17 20:31:47 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2010/08/17 20:31:47 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2010/08/17 20:31:47 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2010/08/17 20:31:47 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2010/08/17 20:31:46 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2010/08/17 20:31:46 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll
[2010/08/17 20:31:46 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2010/08/17 20:31:46 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2010/08/17 20:31:46 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2010/08/17 20:31:45 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2010/08/17 20:31:45 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2010/08/17 20:31:45 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2010/08/17 20:31:45 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2010/08/17 20:31:45 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2010/08/17 20:31:45 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2010/08/17 20:31:45 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2010/08/17 20:31:45 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2010/08/17 20:31:44 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2010/08/17 20:31:44 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2010/08/17 20:31:44 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2010/08/17 20:31:44 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2010/08/17 20:31:44 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2010/08/17 20:31:44 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2010/08/17 20:31:44 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2010/08/17 20:31:44 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2010/08/17 20:31:44 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2010/08/17 20:31:44 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2010/08/17 20:31:43 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2010/08/17 20:31:43 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2010/08/17 20:31:42 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2010/08/17 20:31:42 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2010/08/17 20:31:42 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2010/08/17 20:31:42 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2010/08/17 20:31:42 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2010/08/17 20:31:42 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2010/08/17 20:31:40 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2010/08/17 20:31:40 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2010/08/17 20:31:40 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2010/08/17 20:31:40 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2010/08/17 20:31:40 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2010/08/17 20:31:40 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2010/08/17 20:31:38 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2010/08/17 20:31:38 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2010/08/17 20:31:38 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2010/08/17 20:31:38 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2010/08/17 20:31:38 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2010/08/17 20:31:38 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2010/08/17 20:31:38 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2010/08/17 20:31:38 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2010/08/17 20:31:36 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2010/08/17 20:31:36 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2010/08/17 20:31:31 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2010/08/17 20:31:31 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2010/08/17 20:31:30 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2010/08/17 20:31:30 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2010/08/17 20:31:30 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2010/08/17 20:31:30 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2010/08/17 20:31:30 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2010/08/17 20:31:30 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2010/08/17 20:31:29 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2010/08/17 20:31:29 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2010/08/17 20:31:29 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2010/08/17 20:31:29 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2010/08/17 20:31:28 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2010/08/17 20:31:28 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2010/08/17 20:31:28 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2010/08/17 20:31:28 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2010/08/17 20:31:27 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2010/08/17 20:31:27 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2010/08/17 19:53:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2010/08/17 19:53:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2010/08/17 19:33:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam
[2010/08/17 19:33:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steam
[2010/08/17 18:37:36 | 000,000,000 | ---D | C] -- C:\Users\SONY\AppData\Local\Adobe
[2010/08/17 18:23:48 | 000,000,000 | ---D | C] -- C:\Users\SONY\AppData\Local\GHISLER
[2010/08/17 18:22:08 | 000,000,000 | ---D | C] -- C:\totalcmd
[2010/08/17 18:22:08 | 000,000,000 | ---D | C] -- C:\Users\SONY\AppData\Roaming\GHISLER
[2010/08/17 18:06:40 | 000,000,000 | ---D | C] -- C:\Users\SONY\Desktop\od marťase
[2010/08/17 16:40:28 | 003,798,528 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\atiumdag.dll
[2010/08/17 16:40:28 | 003,025,408 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdva.dll
[2010/08/17 16:40:28 | 000,356,352 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\atipdlxx.dll
[2010/08/17 16:40:28 | 000,052,736 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atimpc32.dll
[2010/08/17 16:39:39 | 000,504,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imapi2.dll
[2010/08/17 16:39:39 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imapi2.dll
[2010/08/17 16:32:45 | 000,000,000 | -H-D | C] -- C:\SPLASH.SYS
[2010/08/16 22:22:49 | 005,507,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2010/08/16 22:22:47 | 003,955,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2010/08/16 22:22:47 | 003,899,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2010/08/16 22:22:40 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2010/08/16 22:22:40 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2010/08/16 22:22:40 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2010/08/16 22:22:40 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2010/08/16 22:22:40 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2010/08/16 22:22:40 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2010/08/16 22:22:37 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll
[2010/08/16 22:22:37 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rtutils.dll
[2010/08/16 22:22:36 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll
[2010/08/16 18:15:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Webteh
[2010/08/16 18:15:50 | 000,000,000 | ---D | C] -- C:\Users\SONY\AppData\Roaming\BSplayer Pro
[2010/08/16 18:15:50 | 000,000,000 | ---D | C] -- C:\Users\SONY\AppData\Roaming\BSplayer
[2010/08/11 09:18:35 | 000,021,200 | ---- | C] (EnTech Taiwan) -- C:\Windows\SysNative\drivers\TVicHW64.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/09/01 10:32:43 | 001,572,864 | ---- | M] () -- C:\Users\SONY\NTUSER.DAT
[2010/09/01 10:21:24 | 000,010,096 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010/09/01 10:21:24 | 000,010,096 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010/09/01 10:13:19 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/09/01 10:13:06 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/09/01 10:12:58 | 3106,480,128 | -HS- | M] () -- C:\hiberfil.sys
[2010/08/31 22:39:07 | 004,414,578 | -H-- | M] () -- C:\Users\SONY\AppData\Local\IconCache.db
[2010/08/31 22:08:46 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Users\SONY\Desktop\OTL.exe
[2010/08/31 21:46:54 | 183,435,748 | ---- | M] () -- C:\Users\SONY\Desktop\IT Crowd S04E06.hdtv.xvid-fqm.avi
[2010/08/31 21:28:46 | 000,030,942 | ---- | M] () -- C:\Users\SONY\Desktop\IT Crowd S04E06.hdtv.xvid-fqm.srt
[2010/08/31 21:26:15 | 183,170,502 | ---- | M] () -- C:\Users\SONY\Desktop\the-it-crowd-s04e05.avi
[2010/08/31 21:15:57 | 000,027,003 | ---- | M] () -- C:\Users\SONY\Desktop\the-it-crowd-s04e05.srt
[2010/08/31 21:13:59 | 183,137,766 | ---- | M] () -- C:\Users\SONY\Desktop\the-it-crowd-s04e04-ws-pdtv-xvid-carat-vtv.avi
[2010/08/31 20:56:56 | 000,025,851 | ---- | M] () -- C:\Users\SONY\Desktop\the-it-crowd-s04e04-ws-pdtv-xvid-carat-vtv.srt
[2010/08/30 17:35:06 | 007,139,668 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/08/30 17:35:06 | 000,692,630 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat
[2010/08/30 17:35:06 | 000,682,246 | ---- | M] () -- C:\Windows\SysNative\prfh0816.dat
[2010/08/30 17:35:06 | 000,635,084 | ---- | M] () -- C:\Windows\SysNative\perfh00E.dat
[2010/08/30 17:35:06 | 000,634,546 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2010/08/30 17:35:06 | 000,620,472 | ---- | M] () -- C:\Windows\SysNative\perfh01D.dat
[2010/08/30 17:35:06 | 000,618,912 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/08/30 17:35:06 | 000,613,106 | ---- | M] () -- C:\Windows\SysNative\perfh01F.dat
[2010/08/30 17:35:06 | 000,554,674 | ---- | M] () -- C:\Windows\SysNative\perfh008.dat
[2010/08/30 17:35:06 | 000,465,076 | ---- | M] () -- C:\Windows\SysNative\perfh006.dat
[2010/08/30 17:35:06 | 000,436,292 | ---- | M] () -- C:\Windows\SysNative\perfh00B.dat
[2010/08/30 17:35:06 | 000,149,154 | ---- | M] () -- C:\Windows\SysNative\perfc00E.dat
[2010/08/30 17:35:06 | 000,135,684 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat
[2010/08/30 17:35:06 | 000,134,596 | ---- | M] () -- C:\Windows\SysNative\prfc0816.dat
[2010/08/30 17:35:06 | 000,124,584 | ---- | M] () -- C:\Windows\SysNative\perfc01D.dat
[2010/08/30 17:35:06 | 000,123,104 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2010/08/30 17:35:06 | 000,122,370 | ---- | M] () -- C:\Windows\SysNative\perfc01F.dat
[2010/08/30 17:35:06 | 000,107,232 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/08/30 17:35:06 | 000,090,280 | ---- | M] () -- C:\Windows\SysNative\perfc008.dat
[2010/08/30 17:35:06 | 000,082,992 | ---- | M] () -- C:\Windows\SysNative\perfc00B.dat
[2010/08/30 17:35:06 | 000,080,648 | ---- | M] () -- C:\Windows\SysNative\perfc006.dat
[2010/08/29 18:26:56 | 000,000,774 | ---- | M] () -- C:\Users\Public\Desktop\Mafia II.lnk
[2010/08/29 12:05:57 | 000,832,273 | ---- | M] () -- C:\Users\SONY\Desktop\RSITx64.exe
[2010/08/29 12:03:28 | 000,396,288 | ---- | M] (Trend Micro Inc.) -- C:\Users\SONY\Desktop\hijackthis.exe
[2010/08/26 18:03:25 | 000,001,038 | ---- | M] () -- C:\Users\SONY\Desktop\BFBC2Game.exe – zástupce.lnk
[2010/08/25 22:33:09 | 000,118,904 | ---- | M] () -- C:\Users\SONY\AppData\Local\GDIPFONTCACHEV1.DAT
[2010/08/25 22:31:28 | 000,453,496 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010/08/25 22:15:55 | 000,001,122 | ---- | M] () -- C:\Users\SONY\Desktop\BS.Player FREE.lnk
[2010/08/25 16:58:51 | 000,000,510 | ---- | M] () -- C:\Windows\win.ini
[2010/08/25 15:54:43 | 000,834,544 | ---- | M] () -- C:\Windows\SysNative\drivers\sptd.sys
[2010/08/25 15:08:12 | 000,000,869 | ---- | M] () -- C:\Users\Public\Desktop\CPUID CPU-Z.lnk
[2010/08/25 12:56:15 | 000,001,746 | ---- | M] () -- C:\Users\SONY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\BatteryBar.lnk
[2010/08/25 11:23:55 | 000,554,264 | ---- | M] (Microsoft Corporation) -- C:\Users\SONY\Desktop\Mats_Run.power.exe
[2010/08/24 21:21:36 | 000,129,607 | ---- | M] () -- C:\test.xml
[2010/08/18 20:13:00 | 000,000,918 | ---- | M] () -- C:\Users\SONY\Desktop\Centrum zařízení Windows Mobile.lnk
[2010/08/17 19:44:29 | 000,000,989 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
[2010/08/17 16:32:59 | 000,000,076 | -H-- | M] () -- C:\splash.idx
[2010/08/11 09:18:35 | 000,021,200 | ---- | M] (EnTech Taiwan) -- C:\Windows\SysNative\drivers\TVicHW64.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/08/31 21:28:51 | 183,435,748 | ---- | C] () -- C:\Users\SONY\Desktop\IT Crowd S04E06.hdtv.xvid-fqm.avi
[2010/08/31 21:28:46 | 000,030,942 | ---- | C] () -- C:\Users\SONY\Desktop\IT Crowd S04E06.hdtv.xvid-fqm.srt
[2010/08/31 21:16:04 | 183,170,502 | ---- | C] () -- C:\Users\SONY\Desktop\the-it-crowd-s04e05.avi
[2010/08/31 21:15:56 | 000,027,003 | ---- | C] () -- C:\Users\SONY\Desktop\the-it-crowd-s04e05.srt
[2010/08/31 20:57:16 | 183,137,766 | ---- | C] () -- C:\Users\SONY\Desktop\the-it-crowd-s04e04-ws-pdtv-xvid-carat-vtv.avi
[2010/08/31 20:56:53 | 000,025,851 | ---- | C] () -- C:\Users\SONY\Desktop\the-it-crowd-s04e04-ws-pdtv-xvid-carat-vtv.srt
[2010/08/29 18:26:56 | 000,000,774 | ---- | C] () -- C:\Users\Public\Desktop\Mafia II.lnk
[2010/08/29 12:05:56 | 000,832,273 | ---- | C] () -- C:\Users\SONY\Desktop\RSITx64.exe
[2010/08/26 18:03:25 | 000,001,038 | ---- | C] () -- C:\Users\SONY\Desktop\BFBC2Game.exe – zástupce.lnk
[2010/08/25 22:15:55 | 000,001,122 | ---- | C] () -- C:\Users\SONY\Desktop\BS.Player FREE.lnk
[2010/08/25 17:09:15 | 000,416,522 | ---- | C] () -- C:\Windows\AutoKMS.exe
[2010/08/25 15:54:43 | 000,834,544 | ---- | C] () -- C:\Windows\SysNative\drivers\sptd.sys
[2010/08/25 15:08:12 | 000,000,869 | ---- | C] () -- C:\Users\Public\Desktop\CPUID CPU-Z.lnk
[2010/08/25 15:05:06 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2010/08/25 15:05:05 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2010/08/25 15:05:02 | 000,000,414 | ---- | C] () -- C:\Windows\SysWow64\lame_acm.xml
[2010/08/25 15:05:01 | 000,881,664 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2010/08/25 15:05:01 | 000,205,824 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2010/08/25 15:05:00 | 003,596,288 | ---- | C] () -- C:\Windows\SysWow64\qt-dx331.dll
[2010/08/25 15:04:59 | 000,085,504 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2010/08/25 15:04:59 | 000,000,547 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll.manifest
[2010/08/25 12:56:15 | 000,001,746 | ---- | C] () -- C:\Users\SONY\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\BatteryBar.lnk
[2010/08/18 20:13:00 | 000,000,918 | ---- | C] () -- C:\Users\SONY\Desktop\Centrum zařízení Windows Mobile.lnk
[2010/08/18 18:17:54 | 000,129,607 | ---- | C] () -- C:\test.xml
[2010/08/17 19:33:25 | 000,000,989 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
[2010/08/17 18:22:08 | 000,000,545 | ---- | C] () -- C:\Windows\UC.PIF
[2010/08/17 18:22:08 | 000,000,545 | ---- | C] () -- C:\Windows\RAR.PIF
[2010/08/17 18:22:08 | 000,000,545 | ---- | C] () -- C:\Windows\PKZIP.PIF
[2010/08/17 18:22:08 | 000,000,545 | ---- | C] () -- C:\Windows\PKUNZIP.PIF
[2010/08/17 18:22:08 | 000,000,545 | ---- | C] () -- C:\Windows\NOCLOSE.PIF
[2010/08/17 18:22:08 | 000,000,545 | ---- | C] () -- C:\Windows\LHA.PIF
[2010/08/17 18:22:08 | 000,000,545 | ---- | C] () -- C:\Windows\ARJ.PIF
[2009/12/26 02:43:03 | 000,208,896 | ---- | C] () -- C:\Windows\SysWow64\iglhsip32.dll
[2009/12/26 02:43:03 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\iglhcp32.dll
[2009/07/14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll

========== LOP Check ==========

[2010/08/18 18:18:52 | 000,000,000 | ---D | M] -- C:\Users\SONY\AppData\Roaming\Auslogics
[2010/08/25 13:17:26 | 000,000,000 | ---D | M] -- C:\Users\SONY\AppData\Roaming\BatteryBar
[2010/08/25 22:18:34 | 000,000,000 | ---D | M] -- C:\Users\SONY\AppData\Roaming\BSplayer
[2010/08/16 18:15:50 | 000,000,000 | ---D | M] -- C:\Users\SONY\AppData\Roaming\BSplayer Pro
[2010/08/25 16:10:49 | 000,000,000 | ---D | M] -- C:\Users\SONY\AppData\Roaming\DAEMON Tools Lite
[2010/08/17 18:22:08 | 000,000,000 | ---D | M] -- C:\Users\SONY\AppData\Roaming\GHISLER
[2010/07/25 20:54:59 | 000,000,000 | ---D | M] -- C:\Users\SONY\AppData\Roaming\IrfanView
[2010/07/22 17:38:37 | 000,000,000 | ---D | M] -- C:\Users\SONY\AppData\Roaming\QipGuard
[2010/08/23 14:20:13 | 000,000,000 | ---D | M] -- C:\Users\SONY\AppData\Roaming\uTorrent
[2009/07/14 07:08:49 | 000,027,782 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

< End of report >

#12 Příspěvek od **motji** » 01 zář 2010 21:26

Spustte OTL
-do bílého okna dole skopírujte tento skript:

Kód: Vybrat vše

:OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com?o=10148&l=dis
IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-3431995957-999424538-2857315487-1000\..\URLSearchHook: {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Users\SONY\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll (qip.ru)
FF - prefs.js..browser.search.defaultenginename: "QIP Search"
FF - prefs.js..extensions.enabledItems: QipCounter@qip.ru:1.0
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found

:files
C:\WINDOWS\system32\*.tmp.dll /s
C:\WINDOWS\system32\SET*.tmp /s
C:\WINDOWS\*.tmp /s
 C:\Windows\AutoKMS.exe

:commands
[emptytemp]
[EMPTYFLASH]
[Reboot]

-klikněte na tlačítko opravit.
-Následně se pc restartuje.
- Log vložte zde

Frenc · #13 Příspěvek od **Frenc** » 02 zář 2010 16:16

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Search_URL| /E : value set successfully!
HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\SearchDefaultBranded| /E : value set successfully!
HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKU\S-1-5-21-3431995957-999424538-2857315487-1000\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-3431995957-999424538-2857315487-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-3431995957-999424538-2857315487-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}\ deleted successfully.
C:\Users\SONY\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll moved successfully.
Prefs.js: "QIP Search" removed from browser.search.defaultenginename
Prefs.js: QipCounter@qip.ru:1.0 removed from extensions.enabledItems
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
========== FILES ==========
File\Folder C:\WINDOWS\system32\*.tmp.dll not found.
File\Folder C:\WINDOWS\system32\SET*.tmp not found.
C:\WINDOWS\msdownld.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP560B.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPA1AB.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAPDD8.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAP2644.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAP2AF6.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder moved successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder moved successfully.
C:\WINDOWS\Installer\MSI1421.tmp moved successfully.
C:\WINDOWS\Installer\MSI144F.tmp moved successfully.
C:\WINDOWS\Installer\MSI16D7.tmp moved successfully.
C:\WINDOWS\Installer\MSI2DF7.tmp moved successfully.
C:\WINDOWS\Installer\MSI59AF.tmp moved successfully.
C:\WINDOWS\Installer\MSI6AB8.tmp moved successfully.
C:\WINDOWS\Installer\MSI83F.tmp moved successfully.
C:\WINDOWS\Installer\MSI853B.tmp moved successfully.
C:\WINDOWS\Installer\MSI8FF1.tmp moved successfully.
C:\WINDOWS\Installer\MSIA7B5.tmp moved successfully.
C:\WINDOWS\Installer\MSICCA6.tmp moved successfully.
C:\WINDOWS\Installer\MSIFEDC.tmp moved successfully.
C:\WINDOWS\SoftwareDistribution\AuthCabs\7971f918-a847-4430-9279-4a52d1efe18d\wltF844.tmp moved successfully.
C:\WINDOWS\Temp\CFG109.tmp moved successfully.
C:\WINDOWS\Temp\CFG119C.tmp moved successfully.
C:\WINDOWS\Temp\CFG1304.tmp moved successfully.
C:\WINDOWS\Temp\CFG1555.tmp moved successfully.
C:\WINDOWS\Temp\CFG168C.tmp moved successfully.
C:\WINDOWS\Temp\CFG16BA.tmp moved successfully.
C:\WINDOWS\Temp\CFG1756.tmp moved successfully.
C:\WINDOWS\Temp\CFG1757.tmp moved successfully.
C:\WINDOWS\Temp\CFG1789.tmp moved successfully.
C:\WINDOWS\Temp\CFG18DC.tmp moved successfully.
C:\WINDOWS\Temp\CFG199.tmp moved successfully.
C:\WINDOWS\Temp\CFG1BAA.tmp moved successfully.
C:\WINDOWS\Temp\CFG1CE2.tmp moved successfully.
C:\WINDOWS\Temp\CFG1DAD.tmp moved successfully.
C:\WINDOWS\Temp\CFG201D.tmp moved successfully.
C:\WINDOWS\Temp\CFG22FE.tmp moved successfully.
C:\WINDOWS\Temp\CFG2319.tmp moved successfully.
C:\WINDOWS\Temp\CFG23D4.tmp moved successfully.
C:\WINDOWS\Temp\CFG2490.tmp moved successfully.
C:\WINDOWS\Temp\CFG251.tmp moved successfully.
C:\WINDOWS\Temp\CFG25A8.tmp moved successfully.
C:\WINDOWS\Temp\CFG25E7.tmp moved successfully.
C:\WINDOWS\Temp\CFG2693.tmp moved successfully.
C:\WINDOWS\Temp\CFG2809.tmp moved successfully.
C:\WINDOWS\Temp\CFG28A6.tmp moved successfully.
C:\WINDOWS\Temp\CFG28B4.tmp moved successfully.
C:\WINDOWS\Temp\CFG2950.tmp moved successfully.
C:\WINDOWS\Temp\CFG298F.tmp moved successfully.
C:\WINDOWS\Temp\CFG29FD.tmp moved successfully.
C:\WINDOWS\Temp\CFG2A4B.tmp moved successfully.
C:\WINDOWS\Temp\CFG2A9C.tmp moved successfully.
C:\WINDOWS\Temp\CFG2E9E.tmp moved successfully.
C:\WINDOWS\Temp\CFG3016.tmp moved successfully.
C:\WINDOWS\Temp\CFG3265.tmp moved successfully.
C:\WINDOWS\Temp\CFG36F7.tmp moved successfully.
C:\WINDOWS\Temp\CFG3999.tmp moved successfully.
C:\WINDOWS\Temp\CFG3A81.tmp moved successfully.
C:\WINDOWS\Temp\CFG3B79.tmp moved successfully.
C:\WINDOWS\Temp\CFG3CA2.tmp moved successfully.
C:\WINDOWS\Temp\CFG3D2F.tmp moved successfully.
C:\WINDOWS\Temp\CFG3D5E.tmp moved successfully.
C:\WINDOWS\Temp\CFG3D61.tmp moved successfully.
C:\WINDOWS\Temp\CFG3E7.tmp moved successfully.
C:\WINDOWS\Temp\CFG3EF3.tmp moved successfully.
C:\WINDOWS\Temp\CFG4327.tmp moved successfully.
C:\WINDOWS\Temp\CFG46C1.tmp moved successfully.
C:\WINDOWS\Temp\CFG492.tmp moved successfully.
C:\WINDOWS\Temp\CFG4AF4.tmp moved successfully.
C:\WINDOWS\Temp\CFG4D48.tmp moved successfully.
C:\WINDOWS\Temp\CFG4D84.tmp moved successfully.
C:\WINDOWS\Temp\CFG5091.tmp moved successfully.
C:\WINDOWS\Temp\CFG50ED.tmp moved successfully.
C:\WINDOWS\Temp\CFG51D7.tmp moved successfully.
C:\WINDOWS\Temp\CFG51E6.tmp moved successfully.
C:\WINDOWS\Temp\CFG52A1.tmp moved successfully.
C:\WINDOWS\Temp\CFG52D0.tmp moved successfully.
C:\WINDOWS\Temp\CFG537C.tmp moved successfully.
C:\WINDOWS\Temp\CFG5A6E.tmp moved successfully.
C:\WINDOWS\Temp\CFG5DAD.tmp moved successfully.
C:\WINDOWS\Temp\CFG5F6D.tmp moved successfully.
C:\WINDOWS\Temp\CFG5FA.tmp moved successfully.
C:\WINDOWS\Temp\CFG6145.tmp moved successfully.
C:\WINDOWS\Temp\CFG624D.tmp moved successfully.
C:\WINDOWS\Temp\CFG6334.tmp moved successfully.
C:\WINDOWS\Temp\CFG642E.tmp moved successfully.
C:\WINDOWS\Temp\CFG6529.tmp moved successfully.
C:\WINDOWS\Temp\CFG65A5.tmp moved successfully.
C:\WINDOWS\Temp\CFG6891.tmp moved successfully.
C:\WINDOWS\Temp\CFG69DA.tmp moved successfully.
C:\WINDOWS\Temp\CFG6B01.tmp moved successfully.
C:\WINDOWS\Temp\CFG70C0.tmp moved successfully.
C:\WINDOWS\Temp\CFG739B.tmp moved successfully.
C:\WINDOWS\Temp\CFG7454.tmp moved successfully.
C:\WINDOWS\Temp\CFG7477.tmp moved successfully.
C:\WINDOWS\Temp\CFG77A0.tmp moved successfully.
C:\WINDOWS\Temp\CFG78E.tmp moved successfully.
C:\WINDOWS\Temp\CFG79B1.tmp moved successfully.
C:\WINDOWS\Temp\CFG7B85.tmp moved successfully.
C:\WINDOWS\Temp\CFG7C11.tmp moved successfully.
C:\WINDOWS\Temp\CFG80B.tmp moved successfully.
C:\WINDOWS\Temp\CFG81AD.tmp moved successfully.
C:\WINDOWS\Temp\CFG83D3.tmp moved successfully.
C:\WINDOWS\Temp\CFG84DA.tmp moved successfully.
C:\WINDOWS\Temp\CFG87A9.tmp moved successfully.
C:\WINDOWS\Temp\CFG8AB2.tmp moved successfully.
C:\WINDOWS\Temp\CFG8AF1.tmp moved successfully.
C:\WINDOWS\Temp\CFG8C85.tmp moved successfully.
C:\WINDOWS\Temp\CFG90F9.tmp moved successfully.
C:\WINDOWS\Temp\CFG926F.tmp moved successfully.
C:\WINDOWS\Temp\CFG9443.tmp moved successfully.
C:\WINDOWS\Temp\CFG9FBB.tmp moved successfully.
C:\WINDOWS\Temp\CFG9FE6.tmp moved successfully.
C:\WINDOWS\Temp\CFGA22A.tmp moved successfully.
C:\WINDOWS\Temp\CFGA41B.tmp moved successfully.
C:\WINDOWS\Temp\CFGA41C.tmp moved successfully.
C:\WINDOWS\Temp\CFGA498.tmp moved successfully.
C:\WINDOWS\Temp\CFGA592.tmp moved successfully.
C:\WINDOWS\Temp\CFGA7B3.tmp moved successfully.
C:\WINDOWS\Temp\CFGA805.tmp moved successfully.
C:\WINDOWS\Temp\CFGA929.tmp moved successfully.
C:\WINDOWS\Temp\CFGAA90.tmp moved successfully.
C:\WINDOWS\Temp\CFGAF8.tmp moved successfully.
C:\WINDOWS\Temp\CFGB3A5.tmp moved successfully.
C:\WINDOWS\Temp\CFGB3D6.tmp moved successfully.
C:\WINDOWS\Temp\CFGB8C4.tmp moved successfully.
C:\WINDOWS\Temp\CFGB99E.tmp moved successfully.
C:\WINDOWS\Temp\CFGBA9B.tmp moved successfully.
C:\WINDOWS\Temp\CFGBAB6.tmp moved successfully.
C:\WINDOWS\Temp\CFGBB04.tmp moved successfully.
C:\WINDOWS\Temp\CFGBB23.tmp moved successfully.
C:\WINDOWS\Temp\CFGBDF1.tmp moved successfully.
C:\WINDOWS\Temp\CFGC005.tmp moved successfully.
C:\WINDOWS\Temp\CFGC0CE.tmp moved successfully.
C:\WINDOWS\Temp\CFGC225.tmp moved successfully.
C:\WINDOWS\Temp\CFGC4F6.tmp moved successfully.
C:\WINDOWS\Temp\CFGC570.tmp moved successfully.
C:\WINDOWS\Temp\CFGC6E6.tmp moved successfully.
C:\WINDOWS\Temp\CFGC6E7.tmp moved successfully.
C:\WINDOWS\Temp\CFGCAFB.tmp moved successfully.
C:\WINDOWS\Temp\CFGCB4A.tmp moved successfully.
C:\WINDOWS\Temp\CFGCC92.tmp moved successfully.
C:\WINDOWS\Temp\CFGCDB9.tmp moved successfully.
C:\WINDOWS\Temp\CFGCDEC.tmp moved successfully.
C:\WINDOWS\Temp\CFGCFBC.tmp moved successfully.
C:\WINDOWS\Temp\CFGD670.tmp moved successfully.
C:\WINDOWS\Temp\CFGD6D0.tmp moved successfully.
C:\WINDOWS\Temp\CFGD6FD.tmp moved successfully.
C:\WINDOWS\Temp\CFGD858.tmp moved successfully.
C:\WINDOWS\Temp\CFGD95E.tmp moved successfully.
C:\WINDOWS\Temp\CFGDAC4.tmp moved successfully.
C:\WINDOWS\Temp\CFGDB32.tmp moved successfully.
C:\WINDOWS\Temp\CFGDC4A.tmp moved successfully.
C:\WINDOWS\Temp\CFGDC79.tmp moved successfully.
C:\WINDOWS\Temp\CFGDDA2.tmp moved successfully.
C:\WINDOWS\Temp\CFGDDB1.tmp moved successfully.
C:\WINDOWS\Temp\CFGDF66.tmp moved successfully.
C:\WINDOWS\Temp\CFGDFA4.tmp moved successfully.
C:\WINDOWS\Temp\CFGE0AD.tmp moved successfully.
C:\WINDOWS\Temp\CFGE771.tmp moved successfully.
C:\WINDOWS\Temp\CFGE945.tmp moved successfully.
C:\WINDOWS\Temp\CFGEA5E.tmp moved successfully.
C:\WINDOWS\Temp\CFGEB4B.tmp moved successfully.
C:\WINDOWS\Temp\CFGECBE.tmp moved successfully.
C:\WINDOWS\Temp\CFGED6A.tmp moved successfully.
C:\WINDOWS\Temp\CFGEE16.tmp moved successfully.
C:\WINDOWS\Temp\CFGEE44.tmp moved successfully.
C:\WINDOWS\Temp\CFGEE64.tmp moved successfully.
C:\WINDOWS\Temp\CFGEE77.tmp moved successfully.
C:\WINDOWS\Temp\CFGF067.tmp moved successfully.
C:\WINDOWS\Temp\CFGF0D.tmp moved successfully.
C:\WINDOWS\Temp\CFGF133.tmp moved successfully.
C:\WINDOWS\Temp\CFGF314.tmp moved successfully.
C:\WINDOWS\Temp\CFGF315.tmp moved successfully.
C:\WINDOWS\Temp\CFGF382.tmp moved successfully.
C:\WINDOWS\Temp\CFGF40E.tmp moved successfully.
C:\WINDOWS\Temp\CFGF9F7.tmp moved successfully.
C:\WINDOWS\Temp\CFGFA84.tmp moved successfully.
C:\WINDOWS\Temp\CFGFD80.tmp moved successfully.
C:\WINDOWS\Temp\CFGFEB8.tmp moved successfully.
C:\WINDOWS\Temp\_avast5_\unp119899258.tmp moved successfully.
C:\WINDOWS\Temp\_avast5_\unp138729380.tmp moved successfully.
C:\Windows\AutoKMS.exe moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

User: SONY
->Temp folder emptied: 16944854 bytes
->Temporary Internet Files folder emptied: 32637353 bytes
->Java cache emptied: 17032892 bytes
->FireFox cache emptied: 90722793 bytes
->Flash cache emptied: 12635 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 131674 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 211661 bytes
RecycleBin emptied: 9308729047 bytes

Total Files Cleaned = 9,028.00 mb

[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Public

User: SONY
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0.00 mb

OTL by OldTimer - Version 3.2.11.0 log created on 09022010_170504

Files\Folders moved on Reboot...
C:\Users\SONY\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File move failed. C:\Windows\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

#14 Příspěvek od **motji** » 02 zář 2010 20:57

Jak to ted vypadá s počítačem?

Ještě znovu spustte OTL, klikněte na tlačítko vyčisti, uklidí po sobě

VIRY.CZ

Prvni prohlidka noveho PC(hlavne log z HJT)

Prvni prohlidka noveho PC(hlavne log z HJT)

Re: Prvni prohlidka noveho PC(hlavne log z HJT)

Re: Prvni prohlidka noveho PC(hlavne log z HJT)

Re: Prvni prohlidka noveho PC(hlavne log z HJT)

Re: Prvni prohlidka noveho PC(hlavne log z HJT)

Re: Prvni prohlidka noveho PC(hlavne log z HJT)

Re: Prvni prohlidka noveho PC(hlavne log z HJT)

Re: Prvni prohlidka noveho PC(hlavne log z HJT)

Re: Prvni prohlidka noveho PC(hlavne log z HJT)

Re: Prvni prohlidka noveho PC(hlavne log z HJT)

Re: Prvni prohlidka noveho PC(hlavne log z HJT)

Re: Prvni prohlidka noveho PC(hlavne log z HJT)

Re: Prvni prohlidka noveho PC(hlavne log z HJT)

Re: Prvni prohlidka noveho PC(hlavne log z HJT)