Security tool

[Skitka]

Přeji pěkný den,
včera moje drahá polovička chytl na hambatých stránkách Security Tool a já teď s hrůzou zjišťuji, že je to pěkný šmejd
Poradíte mi prosím, jak se toho zbavit? A poradíte mi prosím do budoucna, jak něco podobného už nechytit? Na všechny možné instalace se mě PC ptá, zda jsem správce a tohle se sem nahnojí bez dotazu
Antivir mám Avast, ale ten ani neheknul a doteď asi o ničem neví OS mám W7.

Předem děkuji za pomoc a za trpělivost - vím, že nejsem první, tak už vás to asi otravuje, ne?

[stell]

zdravim
Ak vies ze kde chytila security Tool, prosim vloz link do sukromnej spravy, dikes.

Restart do nudzoveho rezimu, s pracou v sieti:
Stiahnes rkill
na plochu-spustis, ak dostanes hlasku ze je to vir, ignorovat je to falosna hlaska od malware, takto sa brani, cakat aby ukoncil Malware procesy.
Ked program prebehne otvori sa notepad, ze ukoncil malware procesy, mozes notepad zatvorit ,odteraz nesmies restartovat pocitac, nakolko malware procesy sa obnovia.
Ak program neprebehne, nechat hlasku na ploche a spusti RKILL-znova.
Stiahnes>>mbam-setup
Nainstalovat, aktualizovat, a spustit skan.
Spravit RYCHLY, skan co najde daj zmazat, ak bude treba restart uz mozes povolit.
Log vloz sem.
Podrobny Navod:
http://www.viry.cz/forum/viewtopic.php?f=29&t=67229

[Skitka]

No vím, že hláška mu naskočila, když byl na něch hambatých stránkách, ale zase je pravda, že nevím, zda se to nestáhlo od někud jinud. Před tím hledal i nějaké on-line hry. Jestli chceš, můžu ti vypsat historii, ale pochybuju, že se tím budeš chtít prokousávat

Tady je ten log
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Verze databáze: 4674

Windows 6.1.7600 (Safe Mode)
Internet Explorer 8.0.7600.16385

23.9.2010 8:34:40
mbam-log-2010-09-23 (08-34-40).txt

Typ skenu: Rychlý sken
Skenované objekty: 134942
Uplynulý čas: 3 minuta(y), 55 sekunda(y)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 1
Infikované datové položky registru: 0
Infikované složky: 0
Infikované soubory: 4

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty registru:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\340306007 (Rogue.SecurityTool) -> No action taken.

Infikované datové položky registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
C:\Users\Škitka\AppData\Local\340306007.exe (Rogue.SecurityTool) -> No action taken.
C:\Windows\Temp\_ex-08.exe (Trojan.Downloader) -> No action taken.
C:\Windows\Temp\_ex-68.exe (Rogue.SecurityTool) -> No action taken.
C:\Users\Škitka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Security Tool.LNK (Rogue.SecurityTool) -> No action taken.

[stell]

Zmaz vsetko co MBAm nasiel,
Uz mozes restart,do windows,,
A Teraz sprav UPLNY skan,,co najde daj zmazat,
log vloz sem.

Jasne ze chcem, nakolko chcem dat na Virtualku Sec Tool, a neviem nikde ulovit,,
Beham po internete bez firewallu a antiviru, a nie a nie nakazit pc
Ak mas FF-tak zalozky-knihovna stranok-v lavo Historia-a vcerajsok, linky prosim do Sukromnej spravy,dikes

[Skitka]

děkuji moc, už nic neotravuje klaním se až k zemi vaší trpělivosti a umu
má smysl si pro jistotu nechat oba prográmky v PC a v případě potřeby je použít, nebo je vždy lepší je znovu nainstalovat? Předpokládám, že můj chlap se nenechá odradit a vždy se znovu rád podívá na nějaký ten nahatý zadeček

prohledávání té historie - to ti přeju pokud toho nebude nějak extra moc, tak se pokusím vylovit ti rovnou odkazy

[stell]

takto, Malwarebytes mozes si nechat, ale pred pouzitim stale aktualizovat, no pockaj, este sme neskoncili, spravis este UPLNY skan, ak nieco najde daj zmazat, a potom uvidime, ok,
Jasne .Dikes za odkazy., a vloz prosim do sukromnej spravy.

[Skitka]

tak hotovo, našlo mi to ještě 2 soubory, tak jsem se smazala
co ty, byl jsi úspěšný? Našel jsi to?

[stell]

No nie, natolko som nedostal od teba, nic ziaden link,
este sprav toto:
1vypnut obnovu systemu-restart-a zapnut spat.
2:Precisti TEMP:
Stiahnes na plochu TFC
zatvor vsetko co mas otvorene a spust-po skane restart.

3: A vloz sem log z RSIT:
Stiahnes>>RSIT >>logy vloz sem,

[Skitka]

nevím, jak vypnout obnovu systému

[stell]

1. Kliknite na tlačidlo "Štart" a vyber "Ovládací panel".
2. Zvoľte "Systém a bezpečnosť".
3. Zvoľte "Systém".
4. Kliknite na "obranu systéme" z menu na ľavej strane.
5. Vyber systémový oddiel a kliknite na tlačidlo "Uložiť nastavenia" tlačidlo.
6. zabodovat na "vypnúť systém ochrany", a klikni na tlačidlo "Použiť".
7. potvrdzovacom dialógovom okne klikni na tlačidlo "Áno".
8. ok, restart.

[Skitka]

ještě jedna stupidní otázka - kde si přeštu TEMP?

[stell]

Stiahnes na plochu TFC
zatvor vsetko co mas otvorene a spust-po skane restart.

[Skitka]

Logfile of random's system information tool 1.08 (written by random/random)
Run by Škitka at 2010-09-23 14:36:26
Microsoft Windows 7 Home Premium
System drive C: has 93 GB (32%) free of 291 GB
Total RAM: 1787 MB (46% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:36:37, on 23.9.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\PLFSetI.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\Seznam.cz\postak.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\SysWow64\Macromed\Flash\FlashUtil10e.exe
C:\Program Files\trend micro\Škitka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emachines.com/rdr.aspx? ... 5r4642r768
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.emachines.com/rdr.aspx? ... 5r4642r768
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.emachines.com/rdr.aspx? ... 5r4642r768
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files (x86)\Seznam.cz\core.2.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [avast!] "C:\Program Files\Alwil Software\Avast4\ashDisp.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Seznam Postak] "C:\Program Files (x86)\Seznam.cz\postak.exe" -s
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O17 - HKLM\System\CCS\Services\Tcpip\..\{C8FB9F08-9693-4240-9D78-DD7B53D51E76}: NameServer = 10.0.1.2,10.0.1.6
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\eMachines\eMachines Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\eMachines Games\eMachines Game Console\GameConsoleService.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer Group - C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11110 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Alwil Software\Avast4\ashServ.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\PLFSetI.exe"
"C:\Program Files\eMachines\eMachines Power Management\ePowerTray.exe"
"C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"C:\Program Files (x86)\Seznam.cz\postak.exe" -s
"C:\Program Files (x86)\uTorrent\uTorrent.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe"
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files\Alwil Software\Avast4\ashDisp.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
C:\Windows\System32\spoolsv.exe
taskeng.exe {B63E5760-8DC7-4CBA-8B0F-C2703310D365}
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\eMachines\eMachines Power Management\ePowerSvc.exe"
"C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe"
"C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe"
"C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
"C:\Program Files\eMachines\eMachines Power Management\ePowerEvent.exe"
"C:\Program Files (x86)\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:3664 CREDAT:71937
C:\Windows\SysWow64\Macromed\Flash\FlashUtil10e.exe -Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2410773459-1484189391-2643659027-10001_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2410773459-1484189391-2643659027-10001 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\Windows\system32\SearchFilterHost.exe" 0 504 508 516 65536 512
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Users\Škitka\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner64.dll [2010-04-03 750064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-08-29 371888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg64.dll [2010-09-10 317496]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner.dll [2010-04-03 433648]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2010-08-29 278192]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll [2010-09-10 842296]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-09-15 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Ukazatel S-Rank - C:\Program Files (x86)\Seznam.cz\core.2.dll [2010-05-19 1117976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-08-29 371888]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll [2010-03-25 1548096]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2010-08-29 278192]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-12-15 9644576]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-12-10 1890088]
"PLFSetI"=C:\Windows\PLFSetI.exe [2010-01-13 206208]
"Acer ePower Management"=C:\Program Files\eMachines\eMachines Power Management\ePowerTray.exe [2010-03-17 860704]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-04-03 39408]
"Seznam Postak"=C:\Program Files (x86)\Seznam.cz\postak.exe [2010-05-19 462104]
"uTorrent"=C:\Program Files (x86)\uTorrent\uTorrent.exe [2010-08-30 328568]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-03-29 98304]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2010-03-03 1300560]
"avast!"=C:\Program Files\Alwil Software\Avast4\ashDisp.exe [2007-07-28 75128]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2010-09-23 14:36:27 ----D---- C:\Program Files\trend micro
2010-09-23 14:36:26 ----D---- C:\rsit
2010-09-23 08:29:37 ----D---- C:\Users\Škitka\AppData\Roaming\Malwarebytes
2010-09-23 08:29:32 ----A---- C:\Windows\SYSWOW64\drivers\mbamswissarmy.sys
2010-09-23 08:29:31 ----D---- C:\ProgramData\Malwarebytes
2010-09-23 08:29:31 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2010-09-23 08:29:31 ----A---- C:\Windows\system32\drivers\mbam.sys
2010-09-23 08:25:07 ----A---- C:\Windows\ntbtlog.txt
2010-09-20 14:01:36 ----D---- C:\ProgramData\Farm Fishes
2010-09-20 14:00:05 ----D---- C:\ProgramData\AlawarWrapper
2010-09-20 13:59:31 ----D---- C:\Program Files (x86)\Alawar
2010-09-16 17:33:31 ----D---- C:\Program Files (x86)\IrfanView
2010-09-15 22:26:13 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2010-09-15 22:26:12 ----A---- C:\Windows\system32\iertutil.dll
2010-09-15 11:04:29 ----D---- C:\Windows\Sun
2010-09-15 11:03:14 ----D---- C:\ProgramData\Sun
2010-09-15 11:02:40 ----A---- C:\Windows\SYSWOW64\javaws.exe
2010-09-15 11:02:40 ----A---- C:\Windows\SYSWOW64\javaw.exe
2010-09-15 11:02:40 ----A---- C:\Windows\SYSWOW64\java.exe
2010-09-15 11:02:40 ----A---- C:\Windows\SYSWOW64\deploytk.dll
2010-09-15 11:02:10 ----D---- C:\Program Files (x86)\Java
2010-09-15 10:37:27 ----A---- C:\Windows\system32\spoolsv.exe
2010-09-14 11:42:26 ----D---- C:\Program Files (x86)\ReflexiveArcade
2010-09-13 14:23:42 ----D---- C:\ProgramData\InterAction studios
2010-09-11 10:31:40 ----D---- C:\Program Files (x86)\Ubisoft
2010-09-11 10:31:31 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2010-09-11 10:31:31 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2010-09-11 10:31:31 ----A---- C:\Windows\system32\XAudio2_6.dll
2010-09-11 10:31:31 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2010-09-11 10:31:30 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2010-09-11 10:31:30 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2010-09-11 10:31:30 ----A---- C:\Windows\system32\xactengine3_6.dll
2010-09-11 10:31:30 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2010-09-11 10:31:28 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2010-09-11 10:31:28 ----A---- C:\Windows\system32\XAudio2_5.dll
2010-09-11 10:31:27 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2010-09-11 10:31:27 ----A---- C:\Windows\system32\xactengine3_5.dll
2010-09-11 10:31:25 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2010-09-11 10:31:25 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2010-09-11 10:31:20 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2010-09-11 10:31:20 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2010-09-11 10:31:20 ----A---- C:\Windows\system32\d3dx11_42.dll
2010-09-11 10:31:20 ----A---- C:\Windows\system32\d3dcsx_42.dll
2010-09-11 10:31:19 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2010-09-11 10:31:19 ----A---- C:\Windows\system32\d3dx10_42.dll
2010-09-11 10:31:18 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2010-09-11 10:31:18 ----A---- C:\Windows\system32\D3DX9_42.dll
2010-09-11 10:31:16 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2010-09-11 10:31:16 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2010-09-11 10:31:16 ----A---- C:\Windows\system32\d3dx10_41.dll
2010-09-11 10:31:16 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2010-09-11 10:31:11 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2010-09-11 10:31:11 ----A---- C:\Windows\system32\D3DX9_41.dll
2010-09-11 10:31:09 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2010-09-11 10:31:09 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2010-09-11 10:31:09 ----A---- C:\Windows\system32\XAudio2_4.dll
2010-09-11 10:31:09 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2010-09-11 10:31:08 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2010-09-11 10:31:08 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2010-09-11 10:31:08 ----A---- C:\Windows\system32\xactengine3_4.dll
2010-09-11 10:31:08 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2010-09-11 10:31:07 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2010-09-11 10:31:07 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2010-09-11 10:31:06 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2010-09-11 10:31:06 ----A---- C:\Windows\system32\d3dx10_40.dll
2010-09-11 10:31:02 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2010-09-11 10:31:02 ----A---- C:\Windows\system32\D3DX9_40.dll
2010-09-11 10:31:01 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2010-09-11 10:31:01 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2010-09-11 10:31:01 ----A---- C:\Windows\system32\XAudio2_3.dll
2010-09-11 10:31:01 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2010-09-11 10:31:00 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2010-09-11 10:31:00 ----A---- C:\Windows\system32\xactengine3_3.dll
2010-09-11 10:30:59 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2010-09-11 10:30:59 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2010-09-11 10:30:58 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2010-09-11 10:30:58 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2010-09-11 10:30:58 ----A---- C:\Windows\system32\XAudio2_2.dll
2010-09-11 10:30:58 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2010-09-11 10:30:57 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2010-09-11 10:30:57 ----A---- C:\Windows\system32\xactengine3_2.dll
2010-09-11 10:30:56 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2010-09-11 10:30:56 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2010-09-11 10:30:56 ----A---- C:\Windows\system32\d3dx10_39.dll
2010-09-11 10:30:56 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2010-09-11 10:30:51 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2010-09-11 10:30:51 ----A---- C:\Windows\system32\D3DX9_39.dll
2010-09-11 10:30:49 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2010-09-11 10:30:49 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2010-09-11 10:30:48 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2010-09-11 10:30:48 ----A---- C:\Windows\system32\XAudio2_1.dll
2010-09-11 10:30:47 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2010-09-11 10:30:47 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2010-09-11 10:30:47 ----A---- C:\Windows\system32\xactengine3_1.dll
2010-09-11 10:30:47 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2010-09-11 10:30:45 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2010-09-11 10:30:45 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2010-09-11 10:30:45 ----A---- C:\Windows\system32\d3dx10_38.dll
2010-09-11 10:30:45 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2010-09-11 10:30:41 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2010-09-11 10:30:41 ----A---- C:\Windows\system32\D3DX9_38.dll
2010-09-11 10:30:40 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2010-09-11 10:30:40 ----A---- C:\Windows\system32\XAudio2_0.dll
2010-09-11 10:30:39 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2010-09-11 10:30:39 ----A---- C:\Windows\system32\xactengine3_0.dll
2010-09-11 10:30:38 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2010-09-11 10:30:38 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2010-09-11 10:30:36 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2010-09-11 10:30:36 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2010-09-11 10:30:36 ----A---- C:\Windows\system32\d3dx10_37.dll
2010-09-11 10:30:36 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2010-09-11 10:30:31 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2010-09-11 10:30:31 ----A---- C:\Windows\system32\D3DX9_37.dll
2010-09-11 10:30:30 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2010-09-11 10:30:30 ----A---- C:\Windows\system32\xactengine2_10.dll
2010-09-11 10:30:28 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2010-09-11 10:30:28 ----A---- C:\Windows\system32\d3dx10_36.dll
2010-09-11 10:30:27 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2010-09-11 10:30:27 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2010-09-11 10:30:24 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2010-09-11 10:30:24 ----A---- C:\Windows\system32\d3dx9_36.dll
2010-09-11 10:30:23 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2010-09-11 10:30:23 ----A---- C:\Windows\system32\xactengine2_9.dll
2010-09-11 10:30:21 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2010-09-11 10:30:21 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2010-09-11 10:30:21 ----A---- C:\Windows\system32\d3dx10_35.dll
2010-09-11 10:30:21 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2010-09-11 10:30:18 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2010-09-11 10:30:18 ----A---- C:\Windows\system32\d3dx9_35.dll
2010-09-11 10:30:17 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2010-09-11 10:30:17 ----A---- C:\Windows\system32\xactengine2_8.dll
2010-09-11 10:30:16 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2010-09-11 10:30:16 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2010-09-11 10:30:15 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2010-09-11 10:30:15 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2010-09-11 10:30:15 ----A---- C:\Windows\system32\d3dx10_34.dll
2010-09-11 10:30:15 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2010-09-11 10:30:10 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2010-09-11 10:30:10 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2010-09-11 10:30:10 ----A---- C:\Windows\system32\xinput1_3.dll
2010-09-11 10:30:10 ----A---- C:\Windows\system32\d3dx9_34.dll
2010-09-11 10:30:08 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2010-09-11 10:30:08 ----A---- C:\Windows\system32\xactengine2_7.dll
2010-09-11 10:30:07 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2010-09-11 10:30:07 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2010-09-11 10:30:07 ----A---- C:\Windows\system32\d3dx10_33.dll
2010-09-11 10:30:07 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2010-09-11 10:30:04 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2010-09-11 10:30:04 ----A---- C:\Windows\system32\d3dx9_33.dll
2010-09-11 10:30:02 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2010-09-11 10:30:02 ----A---- C:\Windows\system32\xactengine2_6.dll
2010-09-11 10:30:00 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2010-09-11 10:30:00 ----A---- C:\Windows\system32\xactengine2_5.dll
2010-09-11 10:29:59 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2010-09-11 10:29:59 ----A---- C:\Windows\system32\d3dx10.dll
2010-09-11 10:29:55 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2010-09-11 10:29:55 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2010-09-11 10:29:55 ----A---- C:\Windows\system32\xactengine2_4.dll
2010-09-11 10:29:55 ----A---- C:\Windows\system32\x3daudio1_1.dll
2010-09-11 10:29:53 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2010-09-11 10:29:53 ----A---- C:\Windows\system32\d3dx9_31.dll
2010-09-11 10:29:51 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2010-09-11 10:29:51 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2010-09-11 10:29:51 ----A---- C:\Windows\system32\xinput1_2.dll
2010-09-11 10:29:51 ----A---- C:\Windows\system32\xactengine2_3.dll
2010-09-11 10:29:49 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2010-09-11 10:29:49 ----A---- C:\Windows\system32\xactengine2_2.dll
2010-09-06 08:11:03 ----D---- C:\ProgramData\Hewlett-Packard
2010-09-03 14:24:48 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2010-09-03 14:24:48 ----A---- C:\Windows\system32\xinput1_1.dll
2010-09-03 14:24:46 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2010-09-03 14:24:46 ----A---- C:\Windows\system32\xactengine2_1.dll
2010-09-03 14:24:31 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2010-09-03 14:24:31 ----A---- C:\Windows\system32\d3dx9_30.dll
2010-09-03 14:24:28 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2010-09-03 14:24:28 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2010-09-03 14:24:28 ----A---- C:\Windows\system32\xactengine2_0.dll
2010-09-03 14:24:28 ----A---- C:\Windows\system32\x3daudio1_0.dll
2010-09-03 14:24:25 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2010-09-03 14:24:25 ----A---- C:\Windows\system32\d3dx9_29.dll
2010-09-03 14:24:22 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2010-09-03 14:24:22 ----A---- C:\Windows\system32\d3dx9_28.dll
2010-09-03 14:24:19 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2010-09-03 14:24:19 ----A---- C:\Windows\system32\d3dx9_27.dll
2010-09-03 14:24:17 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2010-09-03 14:24:17 ----A---- C:\Windows\system32\d3dx9_26.dll
2010-09-03 14:24:15 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2010-09-03 14:24:15 ----A---- C:\Windows\system32\d3dx9_25.dll
2010-09-03 14:24:12 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2010-09-03 14:24:12 ----A---- C:\Windows\system32\d3dx9_24.dll
2010-09-02 15:18:04 ----D---- C:\Program Files (x86)\DAEMON Tools Toolbar
2010-09-02 15:18:01 ----A---- C:\Windows\system32\drivers\sptd.sys
2010-09-02 15:17:17 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2010-09-02 15:16:20 ----D---- C:\Users\Škitka\AppData\Roaming\DAEMON Tools Lite
2010-09-02 15:16:14 ----D---- C:\ProgramData\DAEMON Tools Lite
2010-09-02 13:06:25 ----D---- C:\ProgramData\SugarGames
2010-09-01 18:56:14 ----D---- C:\Program Files (x86)\hry
2010-09-01 15:08:28 ----D---- C:\ProgramData\Jewelleria
2010-09-01 06:58:08 ----A---- C:\Windows\system32\MRT.exe
2010-08-30 17:14:44 ----D---- C:\Users\Škitka\AppData\Roaming\GRETECH
2010-08-30 17:12:23 ----D---- C:\Program Files\GomPlayer
2010-08-30 11:49:50 ----D---- C:\Program Files (x86)\uTorrent
2010-08-30 11:49:24 ----D---- C:\Users\Škitka\AppData\Roaming\uTorrent
2010-08-30 11:49:19 ----D---- C:\Program Files\uTorrent
2010-08-30 11:20:20 ----D---- C:\Users\Škitka\AppData\Roaming\GHISLER
2010-08-30 11:20:20 ----D---- C:\Program Files\totalcmd
2010-08-30 11:20:20 ----A---- C:\Windows\UC.PIF
2010-08-30 11:20:20 ----A---- C:\Windows\RAR.PIF
2010-08-30 11:20:20 ----A---- C:\Windows\PKZIP.PIF
2010-08-30 11:20:20 ----A---- C:\Windows\PKUNZIP.PIF
2010-08-30 11:20:20 ----A---- C:\Windows\NOCLOSE.PIF
2010-08-30 11:20:20 ----A---- C:\Windows\LHA.PIF
2010-08-30 11:20:20 ----A---- C:\Windows\ARJ.PIF
2010-08-30 09:46:41 ----D---- C:\Users\Škitka\AppData\Roaming\skypePM
2010-08-30 09:44:07 ----D---- C:\Users\Škitka\AppData\Roaming\Skype
2010-08-30 09:42:49 ----RD---- C:\Program Files (x86)\Skype
2010-08-30 09:42:36 ----D---- C:\ProgramData\Skype
2010-08-30 08:37:48 ----D---- C:\Users\Škitka\AppData\Roaming\Opera
2010-08-30 08:37:09 ----D---- C:\Program Files (x86)\Opera
2010-08-30 07:29:35 ----D---- C:\Windows\SYSWOW64\Wat
2010-08-30 07:29:35 ----D---- C:\Windows\system32\Wat
2010-08-29 22:53:14 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2010-08-29 22:53:14 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2010-08-29 22:53:13 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2010-08-29 22:53:13 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2010-08-29 22:53:13 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2010-08-29 22:53:13 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-08-29 22:53:13 ----A---- C:\Windows\system32\PresentationHost.exe
2010-08-29 22:53:13 ----A---- C:\Windows\system32\netfxperf.dll
2010-08-29 22:53:13 ----A---- C:\Windows\system32\mscoree.dll
2010-08-29 22:53:12 ----A---- C:\Windows\system32\dfshim.dll
2010-08-29 22:52:54 ----A---- C:\Windows\system32\browserchoice.exe
2010-08-29 21:59:42 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2010-08-29 21:59:42 ----A---- C:\Windows\system32\asycfilt.dll
2010-08-29 21:59:40 ----A---- C:\Windows\system32\drivers\srvnet.sys
2010-08-29 21:59:40 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-08-29 21:59:40 ----A---- C:\Windows\system32\drivers\srv.sys
2010-08-29 21:59:37 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2010-08-29 21:59:37 ----A---- C:\Windows\system32\ntdll.dll
2010-08-29 21:59:35 ----A---- C:\Windows\system32\vbscript.dll
2010-08-29 21:59:34 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2010-08-29 21:59:33 ----A---- C:\Windows\SYSWOW64\schannel.dll
2010-08-29 21:59:33 ----A---- C:\Windows\system32\schannel.dll
2010-08-29 21:59:00 ----A---- C:\Windows\system32\shell32.dll
2010-08-29 21:58:55 ----A---- C:\Windows\SYSWOW64\shell32.dll
2010-08-29 21:58:52 ----A---- C:\Windows\system32\inetcomm.dll
2010-08-29 21:58:50 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2010-08-29 21:58:48 ----A---- C:\Windows\system32\drivers\tcpip.sys
2010-08-29 21:58:37 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-08-29 21:58:34 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2010-08-29 21:58:33 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2010-08-29 21:58:21 ----A---- C:\Windows\system32\mshtml.dll
2010-08-29 21:58:17 ----A---- C:\Windows\system32\ieframe.dll
2010-08-29 21:58:15 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2010-08-29 21:58:12 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2010-08-29 21:58:11 ----A---- C:\Windows\system32\urlmon.dll
2010-08-29 21:58:11 ----A---- C:\Windows\system32\mstime.dll
2010-08-29 21:58:10 ----A---- C:\Windows\SYSWOW64\mstime.dll
2010-08-29 21:58:10 ----A---- C:\Windows\system32\wininet.dll
2010-08-29 21:58:09 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2010-08-29 21:58:09 ----A---- C:\Windows\system32\iedkcs32.dll
2010-08-29 21:58:08 ----A---- C:\Windows\SYSWOW64\wininet.dll
2010-08-29 21:58:08 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2010-08-29 21:58:08 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2010-08-29 21:58:08 ----A---- C:\Windows\system32\iepeers.dll
2010-08-29 21:58:07 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2010-08-29 21:58:07 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-08-29 21:58:06 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2010-08-29 21:58:06 ----A---- C:\Windows\SYSWOW64\ieui.dll
2010-08-29 21:58:06 ----A---- C:\Windows\system32\msfeedssync.exe
2010-08-29 21:58:06 ----A---- C:\Windows\system32\jsproxy.dll
2010-08-29 21:58:06 ----A---- C:\Windows\system32\ieui.dll
2010-08-29 21:58:05 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2010-08-29 21:58:02 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2010-08-29 21:58:02 ----A---- C:\Windows\system32\oleaut32.dll
2010-08-29 21:58:01 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2010-08-29 21:58:01 ----A---- C:\Windows\system32\rtutils.dll
2010-08-29 21:57:42 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2010-08-29 21:57:41 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2010-08-29 21:57:41 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2010-08-29 21:57:40 ----A---- C:\Windows\SYSWOW64\iccvid.dll
2010-08-29 21:57:39 ----A---- C:\Windows\system32\drivers\fvevol.sys
2010-08-29 21:57:37 ----A---- C:\Windows\system32\cdd.dll
2010-08-29 21:57:32 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2010-08-29 21:57:32 ----A---- C:\Windows\system32\CPFilters.dll
2010-08-29 21:57:28 ----A---- C:\Windows\system32\msdri.dll
2010-08-29 21:57:23 ----A---- C:\Windows\system32\win32k.sys
2010-08-29 21:57:22 ----A---- C:\Windows\system32\msxml3.dll
2010-08-29 21:57:21 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2010-08-29 21:57:10 ----A---- C:\Windows\system32\lsasrv.dll
2010-08-29 21:57:10 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2010-08-29 21:57:09 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2010-08-29 21:57:09 ----A---- C:\Windows\SYSWOW64\secur32.dll
2010-08-29 21:57:04 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2010-08-29 21:57:04 ----A---- C:\Windows\system32\atmlib.dll
2010-08-29 21:57:04 ----A---- C:\Windows\system32\atmfd.dll
2010-08-29 21:57:03 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2010-08-29 21:57:00 ----A---- C:\Windows\SYSWOW64\tzres.dll
2010-08-29 21:57:00 ----A---- C:\Windows\system32\tzres.dll
2010-08-29 21:42:58 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2010-08-29 21:42:58 ----A---- C:\Windows\system32\wintrust.dll
2010-08-29 21:42:57 ----A---- C:\Windows\SYSWOW64\cabview.dll
2010-08-29 21:42:57 ----A---- C:\Windows\system32\cabview.dll
2010-08-29 18:46:48 ----D---- C:\Program Files (x86)\Seznam.cz
2010-08-29 18:28:32 ----A---- C:\Windows\system32\drivers\aswRdr.sys
2010-08-29 18:28:31 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2010-08-29 18:28:19 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2010-08-29 18:28:15 ----A---- C:\Windows\SYSWOW64\MSVCR71.dll
2010-08-29 18:28:15 ----A---- C:\Windows\SYSWOW64\MSVCP71.dll
2010-08-29 18:28:15 ----A---- C:\Windows\SYSWOW64\MFC71.dll
2010-08-29 18:28:15 ----A---- C:\Windows\SYSWOW64\drivers\aswMonFlt.sys
2010-08-29 18:28:15 ----A---- C:\Windows\SYSWOW64\aswBoot.exe
2010-08-29 18:28:11 ----D---- C:\Program Files\Alwil Software
2010-08-29 17:52:54 ----N---- C:\Windows\system32\MpSigStub.exe
2010-08-29 11:16:01 ----D---- C:\ProgramData\HipSoft
2010-08-28 16:03:09 ----AD---- C:\book
2010-08-28 15:57:02 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2010-08-28 15:53:36 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2010-08-28 15:53:36 ----A---- C:\Windows\system32\d3dx9_32.dll
2010-08-28 15:52:53 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2010-08-28 15:51:57 ----D---- C:\Program Files (x86)\Microsoft
2010-08-28 15:51:38 ----D---- C:\Program Files (x86)\Windows Live SkyDrive
2010-08-28 15:51:30 ----D---- C:\Program Files (x86)\Windows Live
2010-08-28 15:45:15 ----D---- C:\Users\Škitka\AppData\Roaming\ATI
2010-08-28 15:43:43 ----D---- C:\Users\Škitka\AppData\Roaming\Macromedia
2010-08-28 15:43:14 ----D---- C:\Users\Škitka\AppData\Roaming\Identities
2010-08-28 15:36:09 ----SD---- C:\Users\Škitka\AppData\Roaming\Microsoft
2010-08-28 15:36:09 ----D---- C:\Users\Škitka\AppData\Roaming\Media Center Programs
2010-08-28 15:33:21 ----SHD---- C:\Recovery
2010-08-28 14:47:15 ----D---- C:\Users\Škitka\AppData\Roaming\Google
2010-08-28 10:14:59 ----D---- C:\Users\Škitka\AppData\Roaming\Adobe
2010-08-28 10:14:57 ----D---- C:\Users\Škitka\AppData\Roaming\WildTangent

======List of files/folders modified in the last 1 months======

2010-09-23 14:36:37 ----D---- C:\Windows\Prefetch
2010-09-23 14:36:27 ----RD---- C:\Program Files
2010-09-23 14:34:15 ----D---- C:\Windows\Temp
2010-09-23 14:34:01 ----D---- C:\Windows\system32\config
2010-09-23 08:29:32 ----D---- C:\Windows\SYSWOW64\drivers
2010-09-23 08:29:31 ----RD---- C:\Program Files (x86)
2010-09-23 08:29:31 ----HD---- C:\ProgramData
2010-09-23 08:29:31 ----D---- C:\Windows\system32\drivers
2010-09-23 08:25:07 ----D---- C:\Windows
2010-09-23 08:12:00 ----D---- C:\Windows\System32
2010-09-23 08:12:00 ----D---- C:\Windows\inf
2010-09-23 08:12:00 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-09-22 21:53:57 ----SHD---- C:\System Volume Information
2010-09-17 19:35:59 ----D---- C:\Windows\system32\wdi
2010-09-16 17:30:23 ----D---- C:\Windows\system32\Tasks
2010-09-16 06:33:41 ----D---- C:\Windows\winsxs
2010-09-16 06:33:15 ----D---- C:\Windows\SysWOW64
2010-09-15 22:29:23 ----SHD---- C:\Windows\Installer
2010-09-15 22:29:07 ----D---- C:\ProgramData\Microsoft Help
2010-09-15 22:26:27 ----D---- C:\Windows\system32\catroot
2010-09-15 22:26:05 ----D---- C:\Windows\system32\catroot2
2010-09-15 11:03:13 ----D---- C:\Program Files (x86)\Common Files
2010-09-15 09:57:28 ----D---- C:\Windows\system32\NDF
2010-09-15 07:52:27 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2010-09-14 22:22:19 ----SD---- C:\ProgramData\Microsoft
2010-09-13 14:31:55 ----D---- C:\ProgramData\WildTangent
2010-09-11 10:31:40 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2010-09-11 10:29:48 ----RSD---- C:\Windows\assembly
2010-09-11 10:28:53 ----D---- C:\Windows\Logs
2010-09-06 08:10:25 ----D---- C:\Windows\system32\DriverStore
2010-09-06 08:09:21 ----D---- C:\Windows\system32\drivers\UMDF
2010-09-03 14:24:35 ----D---- C:\Windows\Microsoft.NET
2010-09-01 06:58:11 ----D---- C:\Windows\debug
2010-08-30 21:53:17 ----D---- C:\Windows\rescache
2010-08-30 11:51:45 ----D---- C:\Program Files (x86)\Google
2010-08-30 08:00:10 ----D---- C:\Windows\Tasks
2010-08-30 07:29:43 ----D---- C:\Program Files\Windows Mail
2010-08-30 07:29:43 ----D---- C:\Program Files (x86)\Windows Mail
2010-08-30 07:29:41 ----D---- C:\Windows\SYSWOW64\migration
2010-08-30 07:29:41 ----D---- C:\Program Files\Internet Explorer
2010-08-30 07:29:41 ----D---- C:\Program Files (x86)\Internet Explorer
2010-08-30 07:29:40 ----D---- C:\Windows\system32\migration
2010-08-30 07:29:37 ----D---- C:\Windows\SYSWOW64\cs-CZ
2010-08-30 07:29:37 ----D---- C:\Windows\system32\cs-CZ
2010-08-30 07:29:35 ----D---- C:\Windows\ehome
2010-08-30 07:29:28 ----D---- C:\Windows\AppPatch
2010-08-29 22:59:18 ----D---- C:\Program Files (x86)\Microsoft Works
2010-08-29 22:47:38 ----A---- C:\Windows\win.ini
2010-08-29 08:40:15 ----D---- C:\Program Files\Windows Sidebar
2010-08-29 08:40:15 ----D---- C:\Program Files\Windows Photo Viewer
2010-08-29 08:40:15 ----D---- C:\Program Files\Windows Media Player
2010-08-29 08:40:15 ----D---- C:\Program Files\Windows Journal
2010-08-29 08:40:15 ----D---- C:\Program Files\Windows Defender
2010-08-29 08:40:15 ----D---- C:\Program Files\Common Files\System
2010-08-29 08:40:15 ----D---- C:\Program Files (x86)\Windows Sidebar
2010-08-29 08:40:14 ----D---- C:\Windows\SYSWOW64\winrm
2010-08-29 08:40:14 ----D---- C:\Windows\SYSWOW64\slmgr
2010-08-29 08:40:14 ----D---- C:\Windows\SYSWOW64\sk-SK
2010-08-29 08:40:14 ----D---- C:\Windows\SYSWOW64\migwiz
2010-08-29 08:40:14 ----D---- C:\Windows\SYSWOW64\en
2010-08-29 08:40:14 ----D---- C:\Windows\servicing
2010-08-29 08:40:14 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2010-08-29 08:40:14 ----D---- C:\Program Files (x86)\Windows Media Player
2010-08-29 08:40:14 ----D---- C:\Program Files (x86)\Windows Defender
2010-08-29 08:40:11 ----D---- C:\Windows\SYSWOW64\en-US
2010-08-29 08:40:11 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2010-08-29 08:40:08 ----D---- C:\Windows\SYSWOW64\WCN
2010-08-29 08:40:08 ----D---- C:\Windows\SYSWOW64\wbem
2010-08-29 08:40:08 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2010-08-29 08:40:08 ----D---- C:\Windows\SYSWOW64\DriverStore
2010-08-29 08:40:08 ----D---- C:\Windows\SYSWOW64\Dism
2010-08-29 08:40:07 ----D---- C:\Windows\PolicyDefinitions
2010-08-29 08:40:07 ----D---- C:\Windows\en-US
2010-08-29 08:40:06 ----D---- C:\Windows\system32\winrm
2010-08-29 08:40:06 ----D---- C:\Windows\system32\sysprep
2010-08-29 08:40:06 ----D---- C:\Windows\system32\slmgr
2010-08-29 08:40:06 ----D---- C:\Windows\system32\sk-SK
2010-08-29 08:40:06 ----D---- C:\Windows\system32\oobe
2010-08-29 08:40:06 ----D---- C:\Windows\system32\migwiz
2010-08-29 08:40:06 ----D---- C:\Windows\system32\en
2010-08-29 08:40:06 ----D---- C:\Windows\system32\Boot
2010-08-29 08:40:03 ----D---- C:\Windows\system32\en-US
2010-08-29 08:39:55 ----D---- C:\Windows\system32\WCN
2010-08-29 08:39:55 ----D---- C:\Windows\system32\drivers\en-US
2010-08-29 08:39:55 ----D---- C:\Windows\system32\Dism
2010-08-29 08:39:52 ----D---- C:\Windows\system32\wbem
2010-08-29 08:39:52 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2010-08-29 08:39:35 ----D---- C:\Program Files\DVD Maker
2010-08-29 08:39:12 ----D---- C:\Windows\Speech
2010-08-28 16:03:40 ----D---- C:\Windows\system32\OEM
2010-08-28 16:03:18 ----HD---- C:\OEM
2010-08-28 16:01:00 ----RSD---- C:\Windows\Fonts
2010-08-28 15:56:57 ----D---- C:\Windows\ShellNew
2010-08-28 15:56:52 ----D---- C:\Program Files (x86)\Microsoft Office
2010-08-28 15:53:03 ----D---- C:\Windows\SoftwareDistribution
2010-08-28 15:52:58 ----D---- C:\Windows\system32\restore
2010-08-28 15:51:07 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-08-28 15:49:56 ----AD---- C:\Windows\DeployWinRE2
2010-08-28 15:43:39 ----D---- C:\ProgramData\OEM
2010-08-28 15:43:10 ----SHD---- C:\$Recycle.Bin
2010-08-28 15:36:08 ----RD---- C:\Users
2010-08-28 15:33:21 ----D---- C:\Windows\system32\Recovery
2010-08-28 13:00:54 ----D---- C:\ProgramData\Norton

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-08-23 16440]
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-09-02 834544]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2007-07-28 27216]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2007-07-28 48720]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2007-07-28 55888]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2010-03-29 6405632]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-03-29 188928]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-04-07 2216960]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-12-15 2225952]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2010-03-20 321064]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-05 18432]
R3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2009-12-02 213280]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-12-10 301104]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-05 16896]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-12-22 38456]
S3 ayanvcao;ayanvcao; C:\Windows\system32\drivers\ayanvcao.sys []
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-02-08 239136]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-03-29 202752]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2007-07-27 16248]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2007-07-28 132472]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2010-03-03 325200]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\eMachines\eMachines Power Management\ePowerSvc.exe [2010-03-17 866336]
R2 GREGService;GREGService; C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe [2010-01-08 23584]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-11-06 144640]
R2 Updater Service;Updater Service; C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe [2010-01-29 243232]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2007-07-28 243064]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2007-07-28 345464]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-08-29 135664]
S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\eMachines Games\eMachines Game Console\GameConsoleService.exe [2009-10-10 238328]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-04-03 182768]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-11-06 50432]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Partner Service;Partner Service; C:\ProgramData\Partner\Partner.exe [2010-04-03 332272]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-08-29 1255736]

-----------------EOF-----------------

[stell]

ok, odinstaluj:Toolbar
C:\Program Files (x86)\DAEMON Tools Toolbar
Precistit pc CCleanerom, a malo by to byt ok,

[Skitka]

ještě nevím, jak udělat toto: Precistit pc CCleanerom