log
Logfile of random's system information tool 1.08 (written by random/random)
Run by roman at 2010-11-07 19:18:34
Microsoft Windows 7 Home Premium
System drive C: has 30 GB (46%) free of 65 GB
Total RAM: 4094 MB (15% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:18:38, on 7. 11. 2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16671)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\RocketDock\RocketDock.exe
C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files\trend micro\roman.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: IE 4.x-6.x BHO for Internet Download Accelerator - {2A646672-9C3A-4C28-9A7A-1FB0F63F28B6} - C:\PROGRA~2\IDA\idaiehlp.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [BCU] "C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe"
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files (x86)\RocketDock\RocketDock.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Download ALL with IDA - C:\Program Files (x86)\IDA\idaieall.htm
O8 - Extra context menu item: Download remotely with IDA - C:\Program Files (x86)\IDA\remdown.htm
O8 - Extra context menu item: Download with IDA - C:\Program Files (x86)\IDA\idaie.htm
O9 - Extra button: Internet Download Accelerator - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - C:\Program Files (x86)\IDA\ida.exe
O9 - Extra 'Tools' menuitem: &Internet Download Accelerator - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - C:\Program Files (x86)\IDA\ida.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 7133 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe"
"C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\RocketDock\RocketDock.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe"
"C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=2648.7215f60.1826468198 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll" 2648 plugin \\.\pipe\gecko-crash-server-pipe.2648
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Users\roman\Desktop\Soft\RSITx64.exe"
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2A646672-9C3A-4C28-9A7A-1FB0F63F28B6}]
IE 4.x-6.x BHO for Internet Download Accelerator - C:\PROGRA~2\IDA\idaiehlp.dll [2010-07-01 165184]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-08-06 41760]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-08-18 8067616]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]
"RocketDock"=C:\Program Files (x86)\RocketDock\RocketDock.exe [2007-09-02 495616]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^roman^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.2.lnk]
C:\PROGRA~2\OPENOF~1.ORG\program\QUICKS~1.EXE [2010-06-07 1195520]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BCU"=C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe [2009-08-04 346320]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2010-09-07 2838912]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-07-06 98304]
"ATICustomerCare"=C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe [2010-03-04 311296]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2010-11-07 19:18:34 ----D---- C:\rsit
2010-11-07 19:11:56 ----D---- C:\Program Files\CCleaner
2010-11-04 22:13:37 ----A---- C:\Windows\MotionDVSTUDIO.INI
2010-11-04 20:02:30 ----D---- C:\ProgramData\Panasonic
2010-11-04 19:59:20 ----N---- C:\Windows\SYSWOW64\pdvcodec.dll
2010-11-04 19:59:06 ----A---- C:\Windows\SYSWOW64\PCodec.dll
2010-11-04 19:59:06 ----A---- C:\Windows\SYSWOW64\PAvFilt.dll
2010-11-04 19:59:06 ----A---- C:\Windows\SYSWOW64\DvWrite.dll
2010-11-04 19:59:06 ----A---- C:\Windows\SYSWOW64\DvRead.dll
2010-11-04 19:59:05 ----D---- C:\Program Files (x86)\Panasonic
2010-10-27 16:01:06 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2010-10-27 16:01:06 ----A---- C:\Windows\system32\msdri.dll
2010-10-27 16:01:06 ----A---- C:\Windows\system32\CPFilters.dll
2010-10-27 16:01:01 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2010-10-26 19:01:58 ----D---- C:\Windows\Java
2010-10-26 19:01:58 ----A---- C:\Windows\SYSWOW64\cutil32.dll
2010-10-26 19:01:58 ----A---- C:\Windows\SYSWOW64\cudart.dll
2010-10-26 19:01:57 ----D---- C:\Program Files (x86)\CPUID
2010-10-23 12:45:45 ----D---- C:\Users\roman\AppData\Roaming\Ubisoft
2010-10-23 12:45:45 ----D---- C:\ProgramData\Ubisoft
2010-10-15 17:34:52 ----D---- C:\ProgramData\Codemasters
2010-10-15 17:27:03 ----A---- C:\Windows\SYSWOW64\rapture3d_oal.dll
2010-10-15 17:27:03 ----A---- C:\Windows\SYSWOW64\mkl_blueripple.dll
2010-10-15 17:27:02 ----RA---- C:\Windows\SYSWOW64\tmpFD72.tmp
2010-10-15 17:27:02 ----D---- C:\Program Files (x86)\OpenAL
2010-10-15 17:27:02 ----D---- C:\Program Files (x86)\BRS
2010-10-15 17:27:02 ----A---- C:\Windows\SYSWOW64\wrap_oal.dll
2010-10-15 17:27:02 ----A---- C:\Windows\SYSWOW64\OpenAL32.dll
2010-10-15 17:27:02 ----A---- C:\Windows\system32\wrap_oal.dll
2010-10-15 17:27:02 ----A---- C:\Windows\system32\OpenAL32.dll
2010-10-15 17:25:19 ----D---- C:\Windows\SYSWOW64\xlive
2010-10-15 17:25:19 ----D---- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2010-10-15 17:19:06 ----D---- C:\Program Files (x86)\Codemasters
2010-10-13 21:13:52 ----A---- C:\Windows\system32\mshtml.dll
2010-10-13 21:13:52 ----A---- C:\Windows\system32\iertutil.dll
2010-10-13 21:13:52 ----A---- C:\Windows\system32\ieframe.dll
2010-10-13 21:13:51 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2010-10-13 21:13:51 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2010-10-13 21:13:51 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2010-10-13 21:13:50 ----A---- C:\Windows\SYSWOW64\wininet.dll
2010-10-13 21:13:50 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2010-10-13 21:13:50 ----A---- C:\Windows\SYSWOW64\mstime.dll
2010-10-13 21:13:50 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2010-10-13 21:13:50 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2010-10-13 21:13:50 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2010-10-13 21:13:50 ----A---- C:\Windows\system32\wininet.dll
2010-10-13 21:13:50 ----A---- C:\Windows\system32\urlmon.dll
2010-10-13 21:13:50 ----A---- C:\Windows\system32\mstime.dll
2010-10-13 21:13:50 ----A---- C:\Windows\system32\mshtmled.dll
2010-10-13 21:13:50 ----A---- C:\Windows\system32\msfeeds.dll
2010-10-13 21:13:50 ----A---- C:\Windows\system32\licmgr10.dll
2010-10-13 21:13:50 ----A---- C:\Windows\system32\iedkcs32.dll
2010-10-13 21:13:49 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2010-10-13 21:13:49 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2010-10-13 21:13:49 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2010-10-13 21:13:49 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2010-10-13 21:13:49 ----A---- C:\Windows\SYSWOW64\ieui.dll
2010-10-13 21:13:49 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2010-10-13 21:13:49 ----A---- C:\Windows\system32\msfeedssync.exe
2010-10-13 21:13:49 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-10-13 21:13:49 ----A---- C:\Windows\system32\jsproxy.dll
2010-10-13 21:13:49 ----A---- C:\Windows\system32\ieui.dll
2010-10-13 21:13:49 ----A---- C:\Windows\system32\iepeers.dll
2010-10-13 21:13:48 ----A---- C:\Windows\SYSWOW64\ole32.dll
2010-10-13 21:13:48 ----A---- C:\Windows\system32\ole32.dll
2010-10-13 21:13:47 ----A---- C:\Windows\SYSWOW64\mfc40u.dll
2010-10-13 21:13:47 ----A---- C:\Windows\SYSWOW64\mfc40.dll
2010-10-13 21:13:46 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2010-10-13 21:13:46 ----A---- C:\Windows\system32\comctl32.dll
2010-10-13 21:13:45 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2010-10-13 21:13:45 ----A---- C:\Windows\SYSWOW64\schannel.dll
2010-10-13 21:13:45 ----A---- C:\Windows\system32\wmpmde.dll
2010-10-13 21:13:45 ----A---- C:\Windows\system32\schannel.dll
2010-10-13 21:13:44 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2010-10-13 21:13:44 ----A---- C:\Windows\system32\t2embed.dll
2010-10-13 21:13:42 ----A---- C:\Windows\system32\wmp.dll
2010-10-13 21:13:41 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2010-10-13 21:13:41 ----A---- C:\Windows\SYSWOW64\wmp.dll
2010-10-13 21:13:40 ----A---- C:\Windows\SYSWOW64\sscore.dll
2010-10-13 21:13:40 ----A---- C:\Windows\system32\wmploc.DLL
2010-10-13 21:13:40 ----A---- C:\Windows\system32\srvsvc.dll
2010-10-13 21:13:40 ----A---- C:\Windows\system32\drivers\srvnet.sys
2010-10-13 21:13:40 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-10-13 21:13:40 ----A---- C:\Windows\system32\drivers\srv.sys
2010-10-13 21:13:39 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2010-10-13 21:13:39 ----A---- C:\Windows\system32\StructuredQuery.dll
2010-10-13 21:12:52 ----A---- C:\Windows\system32\win32k.sys
2010-10-13 20:15:47 ----D---- C:\ProgramData\Pinnacle Studio Ultimate Collection
2010-10-13 20:12:44 ----D---- C:\ProgramData\Studio 14
2010-10-13 20:12:44 ----D---- C:\ProgramData\Pinnacle Studio Plus
2010-10-13 20:10:15 ----D---- C:\ProgramData\Pinnacle
2010-10-13 20:10:15 ----D---- C:\Program Files (x86)\Pinnacle
2010-10-08 06:33:54 ----D---- C:\Users\roman\AppData\Roaming\dvdcss
======List of files/folders modified in the last 1 months======
2010-11-07 19:18:38 ----D---- C:\Windows\Prefetch
2010-11-07 19:18:36 ----D---- C:\Program Files\trend micro
2010-11-07 19:16:09 ----D---- C:\Windows\Temp
2010-11-07 19:15:47 ----D---- C:\Windows
2010-11-07 19:13:19 ----D---- C:\Windows\Minidump
2010-11-07 19:13:19 ----D---- C:\Windows\debug
2010-11-07 19:11:56 ----RD---- C:\Program Files
2010-11-07 11:06:09 ----D---- C:\Windows\system32\config
2010-11-07 10:57:30 ----D---- C:\Windows\System32
2010-11-07 10:57:30 ----D---- C:\Windows\inf
2010-11-07 10:57:30 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-11-06 20:34:47 ----D---- C:\Users\roman\AppData\Roaming\Vso
2010-11-06 13:29:31 ----SHD---- C:\System Volume Information
2010-11-05 19:27:18 ----D---- C:\Users\roman\AppData\Roaming\Xfire
2010-11-04 22:13:25 ----D---- C:\Windows\system32\Tasks
2010-11-04 20:02:30 ----HD---- C:\ProgramData
2010-11-04 19:59:20 ----D---- C:\Windows\SysWOW64
2010-11-04 19:59:05 ----RD---- C:\Program Files (x86)
2010-11-04 19:59:05 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2010-11-04 19:59:05 ----D---- C:\Program Files (x86)\Common Files
2010-11-04 18:58:19 ----SD---- C:\Users\roman\AppData\Roaming\Microsoft
2010-10-29 17:08:11 ----D---- C:\ProgramData\Xfire
2010-10-28 19:37:50 ----D---- C:\Windows\rescache
2010-10-28 16:14:09 ----D---- C:\Windows\Microsoft.NET
2010-10-28 16:13:39 ----RSD---- C:\Windows\assembly
2010-10-27 21:11:11 ----D---- C:\Windows\winsxs
2010-10-27 21:11:07 ----D---- C:\Windows\AppPatch
2010-10-27 21:05:25 ----D---- C:\Windows\ehome
2010-10-27 21:04:33 ----D---- C:\Windows\system32\drivers
2010-10-27 16:00:57 ----D---- C:\Windows\system32\catroot
2010-10-27 16:00:55 ----D---- C:\Windows\system32\catroot2
2010-10-23 12:32:00 ----SHD---- C:\Windows\Installer
2010-10-19 10:41:44 ----N---- C:\Windows\system32\MpSigStub.exe
2010-10-15 18:01:22 ----D---- C:\Windows\system32\NDF
2010-10-15 17:18:56 ----SD---- C:\ProgramData\Microsoft
2010-10-13 21:18:41 ----D---- C:\Windows\SYSWOW64\migration
2010-10-13 21:18:41 ----D---- C:\Windows\system32\migration
2010-10-13 21:18:41 ----D---- C:\Program Files\Windows Media Player
2010-10-13 21:18:41 ----D---- C:\Program Files\Internet Explorer
2010-10-13 21:18:41 ----D---- C:\Program Files (x86)\Windows Media Player
2010-10-13 21:18:41 ----D---- C:\Program Files (x86)\Internet Explorer
2010-10-13 21:14:17 ----A---- C:\Windows\system32\MRT.exe
2010-10-13 21:05:20 ----D---- C:\Users\roman\AppData\Roaming\vlc
2010-10-13 20:16:57 ----D---- C:\Windows\system32\DriverStore
2010-10-13 20:14:48 ----RSD---- C:\Windows\Fonts
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-04 16440]
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-09-07 28752]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-09-07 121936]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-09-07 51280]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2010-04-12 91568]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-09-07 20048]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-09-07 61008]
R2 cpuz134;cpuz134; \??\C:\Windows\system32\drivers\cpuz134_x64.sys [2010-07-09 21480]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-07-07 7195648]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-07-07 265728]
R3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2010-11-07 25640]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-08-18 1983264]
R3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
R3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2009-07-17 201472]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-07-30 236544]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-04-03 34872]
S3 61883;61883 Unit Device; C:\Windows\system32\DRIVERS\61883.sys [2009-07-14 60288]
S3 Avc;AVC Device; C:\Windows\system32\DRIVERS\avc.sys [2009-07-14 48768]
S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2009-07-14 61440]
S3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter; C:\Windows\system32\DRIVERS\RTL8192su.sys []
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-07-07 203264]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R2 BCUService;Browser Configuration Utility Service; C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-08-04 219360]
R2 ES lite Service;ES lite Service for program management.; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [2009-08-24 68136]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2010-08-08 75064]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-08-03 1255736]
-----------------EOF-----------------
záložka 
Přispějete na provoz fóra?