Moderátor: Moderátoři
Kód: Vybrat vše
http://www.edisk.cz/stahnout-soubor/97696/minidump.rar_203.52KB.htmlKód: Vybrat vše
tzv_minidump
Stahněte OTL http://oldtimer.geekstogo.com/OTL.exeKód: Vybrat vše
netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
mv61xx.sys
nvraid.sys
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
tcpip.sys
cryptsvc.dll
Changer.sys
JakNDis.sys
isapnp.sys
cdrom.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
CREATERESTOREPOINT
Kód: Vybrat vše
"%userprofile%\plocha\mbr" -t
Kód: Vybrat vše
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 6.1.7600
device: opened successfully
user: error reading MBR
Disk trace:
error: Read Neplatný popisovač.
kernel: error reading MBR
Kód: Vybrat vše
Logfile of random's system information tool 1.08 (written by random/random)
Run by zielan at 2011-02-19 00:24:37
Microsoft Windows 7 Ultimate
System drive C: has 88 GB (47%) free of 187 GB
Total RAM: 3070 MB (61% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:24:44, on 19.2.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16722)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Seznam.cz\postak.exe
C:\Users\zielan\AppData\Roaming\QipGuard\QipGuard.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Xfire\Xfire.exe
C:\Program Files\trend micro\zielan.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: QIPBHO Class - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Users\zielan\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
R3 - URLSearchHook: (no name) - - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: QIPBHO - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Users\zielan\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files (x86)\Seznam.cz\core.3.dll
O3 - Toolbar: @C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [Seznam Postak] "C:\Program Files (x86)\Seznam.cz\postak.exe" -s
O4 - HKCU\..\Run: [QIP Internet Guardian] C:\Users\zielan\AppData\Roaming\QipGuard\QipGuard.exe /p
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Xfire.lnk = C:\Program Files (x86)\Xfire\Xfire.exe
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{B2B6607B-B8B8-4749-869E-17A51B279C6D}: NameServer = 192.168.30.1,194.228.41.113
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Dfsdks.exe
O23 - Service: @C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe,-128 (DpHost) - Unknown owner - C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: QipGuard - QIP.ru - C:\Program Files (x86)\QipGuard\QipGuard.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\STacSV64.exe
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10836 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\STacSV64.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
"C:\Program Files (x86)\QipGuard\QipGuard.exe"
"C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe"
"C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 1868
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
atieclxx
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files (x86)\Seznam.cz\postak.exe" -s
"C:\Users\zielan\AppData\Roaming\QipGuard\QipGuard.exe" /p
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe"
"taskhost.exe"
"C:\Program Files (x86)\Xfire\Xfire.exe"
"C:\Program Files (x86)\Xfire\xfire64.exe" xfire64.exe /pid 6256
"C:\Program Files (x86)\Xfire\xfire64.exe" xfire64.exe /pid 6256
C:\Windows\system32\svchost.exe -k bthsvcs
"C:\Users\zielan\Desktop\RSITx64.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe43_ Global\UsGthrCtrlFltPipeMssGthrPipe43 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
C:\Windows\system32\wbem\wmiprvse.exe
"c:\program files\windows defender\MpCmdRun.exe" SpyNetService -RestrictPrivileges -AccessKey 42ED7F63-963E-6155-E33C-6CC379D5FCE2 -Reinvoke
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-01-30 62376]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-09-22 191792]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-11-10 393600]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}]
QIPBHO Class - C:\Users\zielan\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll [2009-07-14 150768]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar BHO - C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll [2010-09-22 612616]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-12-23 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Ukazatel S-Rank - C:\Program Files (x86)\Seznam.cz\core.3.dll [2010-10-07 1164568]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - @C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100 - C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll [2010-09-22 612616]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-11-16 2716216]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2010-03-23 487424]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-05-27 2096424]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Seznam Postak"=C:\Program Files (x86)\Seznam.cz\postak.exe [2010-10-07 488728]
"QIP Internet Guardian"=C:\Users\zielan\AppData\Roaming\QipGuard\QipGuard.exe [2011-02-01 187776]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-11-25 98304]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2011-01-30 35736]
C:\Users\zielan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Xfire.lnk - C:\Program Files (x86)\Xfire\Xfire.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"undockwithoutlogon"=1
"ShutdownWithoutLogon"=1
"NoDispCPL"=0
"NoDispSettingsPage"=0
"NoDispScrSavPage"=0
"EnableLUA"=0
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoResolveTrack"=0
"NoViewContextMenu"=0
"NoFileAssociate"=0
"NoRun"=0
"NoClose"=0
"StartMenuLogoff"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2011-02-19 00:24:38 ----D---- C:\Program Files\trend micro
2011-02-19 00:24:37 ----D---- C:\rsit
2011-02-17 16:49:34 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2011-02-17 16:49:34 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2011-02-17 16:49:34 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2011-02-17 16:49:34 ----A---- C:\Windows\system32\XAudio2_7.dll
2011-02-17 16:49:34 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2011-02-17 16:49:34 ----A---- C:\Windows\system32\xactengine3_7.dll
2011-02-17 16:49:33 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2011-02-17 16:49:33 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2011-02-17 16:49:32 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2011-02-17 16:49:32 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2011-02-17 16:49:32 ----A---- C:\Windows\system32\d3dx11_43.dll
2011-02-17 16:49:32 ----A---- C:\Windows\system32\d3dcsx_43.dll
2011-02-17 16:49:31 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2011-02-17 16:49:31 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2011-02-17 16:49:31 ----A---- C:\Windows\system32\D3DX9_43.dll
2011-02-17 16:49:31 ----A---- C:\Windows\system32\d3dx10_43.dll
2011-02-17 16:49:30 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2011-02-17 16:49:30 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2011-02-17 16:49:30 ----A---- C:\Windows\system32\XAudio2_6.dll
2011-02-17 16:49:30 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2011-02-17 16:49:29 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2011-02-17 16:49:29 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2011-02-17 16:49:29 ----A---- C:\Windows\system32\xactengine3_6.dll
2011-02-17 16:49:29 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2011-02-17 16:49:27 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2011-02-17 16:49:27 ----A---- C:\Windows\system32\XAudio2_5.dll
2011-02-17 16:49:27 ----A---- C:\Windows\system32\xactengine3_5.dll
2011-02-17 16:49:26 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2011-02-17 16:49:26 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2011-02-17 16:49:24 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2011-02-17 16:49:24 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2011-02-17 16:49:24 ----A---- C:\Windows\system32\d3dx11_42.dll
2011-02-17 16:49:24 ----A---- C:\Windows\system32\d3dcsx_42.dll
2011-02-17 16:49:23 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2011-02-17 16:49:23 ----A---- C:\Windows\system32\D3DX9_42.dll
2011-02-17 16:49:19 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2011-02-17 16:49:12 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2011-02-17 16:49:12 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2011-02-17 16:49:12 ----A---- C:\Windows\system32\XAudio2_3.dll
2011-02-17 16:49:12 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2011-02-17 16:49:11 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2011-02-17 16:49:11 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2011-02-17 16:49:11 ----A---- C:\Windows\system32\xactengine3_3.dll
2011-02-17 16:49:11 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2011-02-17 16:49:09 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2011-02-17 16:49:09 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2011-02-17 16:49:09 ----A---- C:\Windows\system32\XAudio2_2.dll
2011-02-17 16:49:09 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2011-02-17 16:49:08 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2011-02-17 16:49:08 ----A---- C:\Windows\system32\xactengine3_2.dll
2011-02-17 16:46:45 ----D---- C:\Program Files (x86)\OpenAL
2011-02-17 16:46:45 ----A---- C:\Windows\SYSWOW64\wrap_oal.dll
2011-02-17 16:46:45 ----A---- C:\Windows\SYSWOW64\OpenAL32.dll
2011-02-17 16:46:45 ----A---- C:\Windows\system32\wrap_oal.dll
2011-02-17 16:46:45 ----A---- C:\Windows\system32\OpenAL32.dll
2011-02-16 00:05:52 ----D---- C:\Program Files\Synaptics
2011-02-16 00:04:35 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2011-02-16 00:04:35 ----A---- C:\Windows\system32\drivers\sdbus.sys
2011-02-16 00:00:10 ----D---- C:\Windows\cs
2011-02-15 23:50:05 ----DC---- C:\Windows\system32\DRVSTORE
2011-02-15 23:50:05 ----D---- C:\Program Files (x86)\Windows Live
2011-02-15 23:50:05 ----A---- C:\Windows\system32\drivers\fssfltr.sys
2011-02-15 23:49:15 ----D---- C:\Program Files\Windows Live
2011-02-15 23:48:40 ----D---- C:\Program Files (x86)\Microsoft
2011-02-15 23:48:39 ----D---- C:\Program Files (x86)\MSN Toolbar
2011-02-15 23:48:31 ----D---- C:\Program Files (x86)\Bing Bar Installer
2011-02-15 23:48:28 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2011-02-15 23:48:27 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2011-02-15 23:48:27 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2011-02-15 23:48:27 ----A---- C:\Windows\system32\d3dx10_42.dll
2011-02-15 23:47:47 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2011-02-15 23:46:12 ----N---- C:\Windows\system32\stapi64.dll
2011-02-15 23:46:05 ----D---- C:\Program Files\IDT
2011-02-15 23:46:01 ----A---- C:\Windows\system32\AESTEC64.dll
2011-02-15 23:46:00 ----A---- C:\Windows\system32\AESTAR64.dll
2011-02-15 23:46:00 ----A---- C:\Windows\system32\AESTAC64.dll
2011-02-15 23:45:56 ----A---- C:\Windows\system32\stlang64.dll
2011-02-15 23:45:56 ----A---- C:\Windows\system32\idt64mp1.exe
2011-02-15 23:45:56 ----A---- C:\Windows\system32\AESTCo64.dll
2011-02-15 23:45:56 ----A---- C:\Windows\sttray64.exe
2011-02-15 23:45:54 ----D---- C:\Windows\system32\SRSLabs
2011-02-13 14:22:35 ----D---- C:\Users\zielan\AppData\Roaming\PhotoFiltre Studio X
2011-02-13 14:22:31 ----D---- C:\Program Files (x86)\PhotoFiltre Studio X
2011-02-11 18:49:16 ----D---- C:\Users\zielan\AppData\Roaming\Meridian93
2011-02-11 18:47:51 ----D---- C:\Program Files (x86)\Kouzelná farma
2011-02-10 08:55:12 ----A---- C:\Windows\system32\mshtml.dll
2011-02-10 08:55:11 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2011-02-10 08:55:01 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2011-02-10 08:54:59 ----A---- C:\Windows\SYSWOW64\mstime.dll
2011-02-10 08:54:59 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2011-02-10 08:54:59 ----A---- C:\Windows\system32\mstime.dll
2011-02-10 08:54:59 ----A---- C:\Windows\system32\msfeeds.dll
2011-02-10 08:54:59 ----A---- C:\Windows\system32\iertutil.dll
2011-02-10 08:54:59 ----A---- C:\Windows\system32\iepeers.dll
2011-02-10 08:54:59 ----A---- C:\Windows\system32\iedkcs32.dll
2011-02-10 08:54:58 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2011-02-10 08:54:58 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2011-02-10 08:54:58 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2011-02-10 08:54:58 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2011-02-10 08:54:58 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2011-02-10 08:54:58 ----A---- C:\Windows\system32\mshtmled.dll
2011-02-10 08:54:58 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-02-10 08:54:58 ----A---- C:\Windows\system32\licmgr10.dll
2011-02-10 08:54:57 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2011-02-10 08:54:57 ----A---- C:\Windows\system32\msfeedssync.exe
2011-02-10 08:54:21 ----A---- C:\Windows\system32\kerberos.dll
2011-02-10 08:54:20 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2011-02-10 08:54:19 ----A---- C:\Windows\system32\win32k.sys
2011-02-10 08:54:15 ----A---- C:\Windows\system32\urlmon.dll
2011-02-10 08:54:15 ----A---- C:\Windows\system32\upnp.dll
2011-02-10 08:54:15 ----A---- C:\Windows\system32\msxml6.dll
2011-02-10 08:54:15 ----A---- C:\Windows\system32\msxml3.dll
2011-02-10 08:54:14 ----A---- C:\Windows\SYSWOW64\upnp.dll
2011-02-10 08:54:12 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2011-02-10 08:54:12 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2011-02-10 08:54:12 ----A---- C:\Windows\system32\wininet.dll
2011-02-10 08:54:11 ----A---- C:\Windows\SYSWOW64\wininet.dll
2011-02-10 08:54:11 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2011-02-10 08:54:11 ----A---- C:\Windows\system32\winhttp.dll
2011-02-10 08:54:11 ----A---- C:\Windows\system32\WebClnt.dll
2011-02-10 08:54:11 ----A---- C:\Windows\system32\davclnt.dll
2011-02-10 08:54:09 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2011-02-10 08:54:09 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2011-02-10 08:54:09 ----A---- C:\Windows\system32\wscapi.dll
2011-02-10 08:54:09 ----A---- C:\Windows\system32\ieframe.dll
2011-02-10 08:54:08 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2011-02-10 08:54:08 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2011-02-10 08:54:08 ----A---- C:\Windows\SYSWOW64\slwga.dll
2011-02-10 08:54:08 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2011-02-10 08:54:08 ----A---- C:\Windows\system32\wscsvc.dll
2011-02-10 08:54:08 ----A---- C:\Windows\system32\slwga.dll
2011-02-10 08:54:06 ----A---- C:\Windows\system32\winsrv.dll
2011-02-10 08:54:05 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-02-10 08:54:04 ----A---- C:\Windows\system32\ntdll.dll
2011-02-10 08:54:03 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2011-02-10 08:54:02 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2011-02-10 08:54:01 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2011-02-10 08:53:59 ----A---- C:\Windows\SYSWOW64\jscript.dll
2011-02-10 08:53:59 ----A---- C:\Windows\system32\vbscript.dll
2011-02-10 08:53:59 ----A---- C:\Windows\system32\jscript.dll
2011-02-10 08:53:58 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2011-02-10 08:53:57 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2011-02-10 08:53:57 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-02-10 08:53:57 ----A---- C:\Windows\system32\cdd.dll
2011-02-10 08:53:55 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2011-02-10 08:53:55 ----A---- C:\Windows\system32\atmfd.dll
2011-02-10 08:53:54 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2011-02-10 08:53:54 ----A---- C:\Windows\system32\atmlib.dll
2011-02-09 13:01:19 ----A---- C:\Windows\unvise32.exe
2011-02-09 12:56:14 ----D---- C:\Program Files (x86)\Mplayer
2011-02-09 12:54:30 ----A---- C:\Windows\IsUninst.exe
2011-02-09 12:54:28 ----A---- C:\Windows\QIII.INI
2011-02-09 11:46:37 ----D---- C:\Users\zielan\AppData\Roaming\Mozilla
2011-02-09 11:46:27 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-02-08 13:30:34 ----D---- C:\Users\zielan\AppData\Roaming\Ubisoft
2011-02-08 13:29:47 ----D---- C:\ProgramData\Solidshield
2011-02-08 10:42:36 ----A---- C:\Windows\system32\drivers\atksgt.sys
2011-02-08 10:42:34 ----A---- C:\Windows\system32\drivers\lirsgt.sys
2011-02-08 10:42:29 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2011-02-08 10:42:29 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2011-02-08 10:42:29 ----A---- C:\Windows\system32\d3dx10_41.dll
2011-02-08 10:42:29 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2011-02-08 10:42:28 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2011-02-08 10:42:28 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2011-02-08 10:42:28 ----A---- C:\Windows\system32\XAudio2_4.dll
2011-02-08 10:42:28 ----A---- C:\Windows\system32\D3DX9_41.dll
2011-02-08 10:42:27 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2011-02-08 10:42:27 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2011-02-08 10:42:27 ----A---- C:\Windows\system32\xactengine3_4.dll
2011-02-08 10:42:27 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2011-02-08 10:42:26 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2011-02-08 10:42:26 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2011-02-08 10:42:26 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2011-02-08 10:42:26 ----A---- C:\Windows\system32\D3DX9_40.dll
2011-02-08 10:42:26 ----A---- C:\Windows\system32\d3dx10_40.dll
2011-02-08 10:42:26 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2011-02-08 10:42:19 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2011-02-08 10:42:19 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2011-02-08 10:42:19 ----A---- C:\Windows\system32\d3dx10_39.dll
2011-02-08 10:42:19 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2011-02-08 10:42:18 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2011-02-08 10:42:18 ----A---- C:\Windows\system32\D3DX9_39.dll
2011-02-08 10:42:17 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2011-02-08 10:42:17 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2011-02-08 10:42:17 ----A---- C:\Windows\system32\XAudio2_1.dll
2011-02-08 10:42:17 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2011-02-08 10:42:16 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2011-02-08 10:42:16 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2011-02-08 10:42:16 ----A---- C:\Windows\system32\xactengine3_1.dll
2011-02-08 10:42:16 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2011-02-08 10:42:12 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2011-02-08 10:42:12 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2011-02-08 10:42:12 ----A---- C:\Windows\system32\d3dx10_38.dll
2011-02-08 10:42:12 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2011-02-08 10:42:10 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2011-02-08 10:42:10 ----A---- C:\Windows\system32\D3DX9_38.dll
2011-02-08 10:42:09 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2011-02-08 10:42:09 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2011-02-08 10:42:09 ----A---- C:\Windows\system32\XAudio2_0.dll
2011-02-08 10:42:09 ----A---- C:\Windows\system32\xactengine3_0.dll
2011-02-08 10:42:08 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2011-02-08 10:42:08 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2011-02-08 10:42:07 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2011-02-08 10:42:07 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2011-02-08 10:42:07 ----A---- C:\Windows\system32\d3dx10_37.dll
2011-02-08 10:42:07 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2011-02-08 10:42:06 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2011-02-08 10:42:06 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2011-02-08 10:42:06 ----A---- C:\Windows\system32\xactengine2_10.dll
2011-02-08 10:42:06 ----A---- C:\Windows\system32\D3DX9_37.dll
2011-02-08 10:42:05 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2011-02-08 10:42:05 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2011-02-08 10:42:05 ----A---- C:\Windows\system32\d3dx10_36.dll
2011-02-08 10:42:05 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2011-02-08 10:42:04 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2011-02-08 10:42:04 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2011-02-08 10:42:04 ----A---- C:\Windows\system32\xactengine2_9.dll
2011-02-08 10:42:04 ----A---- C:\Windows\system32\d3dx9_36.dll
2011-02-08 10:42:03 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2011-02-08 10:42:03 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2011-02-08 10:42:03 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2011-02-08 10:42:03 ----A---- C:\Windows\system32\d3dx9_35.dll
2011-02-08 10:42:03 ----A---- C:\Windows\system32\d3dx10_35.dll
2011-02-08 10:42:03 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2011-02-08 10:42:02 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2011-02-08 10:42:02 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2011-02-08 10:42:02 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2011-02-08 10:42:02 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2011-02-08 10:42:02 ----A---- C:\Windows\system32\xactengine2_8.dll
2011-02-08 10:42:02 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2011-02-08 10:42:02 ----A---- C:\Windows\system32\d3dx10_34.dll
2011-02-08 10:42:02 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2011-02-08 10:42:01 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2011-02-08 10:42:01 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2011-02-08 10:42:01 ----A---- C:\Windows\system32\xinput1_3.dll
2011-02-08 10:42:01 ----A---- C:\Windows\system32\xactengine2_7.dll
2011-02-08 10:42:01 ----A---- C:\Windows\system32\d3dx9_34.dll
2011-02-08 10:42:00 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2011-02-08 10:42:00 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2011-02-08 10:42:00 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2011-02-08 10:42:00 ----A---- C:\Windows\system32\d3dx9_33.dll
2011-02-08 10:42:00 ----A---- C:\Windows\system32\d3dx10_33.dll
2011-02-08 10:42:00 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2011-02-08 10:41:59 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2011-02-08 10:41:59 ----A---- C:\Windows\system32\xactengine2_6.dll
2011-02-08 10:41:58 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2011-02-08 10:41:58 ----A---- C:\Windows\system32\xactengine2_5.dll
2011-02-08 10:41:57 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2011-02-08 10:41:57 ----A---- C:\Windows\system32\d3dx10.dll
2011-02-08 10:41:56 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2011-02-08 10:41:56 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2011-02-08 10:41:56 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2011-02-08 10:41:56 ----A---- C:\Windows\system32\xactengine2_4.dll
2011-02-08 10:41:56 ----A---- C:\Windows\system32\x3daudio1_1.dll
2011-02-08 10:41:56 ----A---- C:\Windows\system32\d3dx9_32.dll
2011-02-08 10:41:55 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2011-02-08 10:41:55 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2011-02-08 10:41:55 ----A---- C:\Windows\system32\xactengine2_3.dll
2011-02-08 10:41:55 ----A---- C:\Windows\system32\d3dx9_31.dll
2011-02-08 10:41:54 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2011-02-08 10:41:54 ----A---- C:\Windows\system32\xinput1_2.dll
2011-02-08 10:41:53 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2011-02-08 10:41:53 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2011-02-08 10:41:53 ----A---- C:\Windows\system32\xinput1_1.dll
2011-02-08 10:41:53 ----A---- C:\Windows\system32\xactengine2_2.dll
2011-02-08 10:41:52 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2011-02-08 10:41:52 ----A---- C:\Windows\system32\xactengine2_1.dll
2011-02-08 10:41:42 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2011-02-08 10:41:42 ----A---- C:\Windows\system32\d3dx9_30.dll
2011-02-08 10:41:40 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2011-02-08 10:41:40 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2011-02-08 10:41:40 ----A---- C:\Windows\system32\xactengine2_0.dll
2011-02-08 10:41:40 ----A---- C:\Windows\system32\x3daudio1_0.dll
2011-02-08 10:41:39 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2011-02-08 10:41:39 ----A---- C:\Windows\system32\d3dx9_29.dll
2011-02-08 10:41:38 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2011-02-08 10:41:38 ----A---- C:\Windows\system32\d3dx9_28.dll
2011-02-08 10:41:37 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2011-02-08 10:41:37 ----A---- C:\Windows\system32\d3dx9_27.dll
2011-02-08 10:41:36 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2011-02-08 10:41:36 ----A---- C:\Windows\system32\d3dx9_26.dll
2011-02-08 10:41:34 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2011-02-08 10:41:34 ----A---- C:\Windows\system32\d3dx9_25.dll
2011-02-08 10:41:33 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2011-02-08 10:41:33 ----A---- C:\Windows\system32\d3dx9_24.dll
2011-02-07 11:45:24 ----D---- C:\Program Files (x86)\Amulet věků - Útěk z Pompejí
2011-02-07 10:27:56 ----D---- C:\Users\zielan\AppData\Roaming\FileZilla
2011-02-07 10:27:17 ----D---- C:\Program Files (x86)\FileZilla FTP Client
2011-02-03 19:04:56 ----D---- C:\Users\zielan\AppData\Roaming\Divo Games
2011-02-03 19:04:37 ----D---- C:\Program Files (x86)\Morsky vlk
2011-01-31 17:56:39 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2011-01-31 17:56:30 ----D---- C:\Program Files (x86)\Microsoft Synchronization Services
2011-01-31 17:56:30 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2011-01-31 17:53:24 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 9.0
2011-01-31 17:53:24 ----D---- C:\Program Files (x86)\Microsoft SDKs
2011-01-31 17:49:18 ----D---- C:\Program Files\Microsoft SDKs
2011-01-31 17:49:09 ----D---- C:\Program Files\Microsoft Visual Studio 9.0
2011-01-29 09:57:17 ----D---- C:\PFiles
2011-01-25 09:05:07 ----D---- C:\Users\zielan\AppData\Roaming\QIP
2011-01-25 09:04:52 ----D---- C:\Users\zielan\AppData\Roaming\QipGuard
2011-01-25 09:04:52 ----D---- C:\Program Files (x86)\QipGuard
2011-01-25 09:04:39 ----D---- C:\Program Files (x86)\QIP 2010
2011-01-23 17:44:33 ----D---- C:\Windows\Minidump
2011-01-23 16:25:10 ----D---- C:\ProgramData\ATI
2011-01-23 16:25:07 ----D---- C:\Program Files\Common Files\ATI Technologies
2011-01-23 16:25:01 ----D---- C:\Program Files (x86)\ATI Stream
2011-01-23 16:20:35 ----D---- C:\ATI
2011-01-23 16:17:45 ----D---- C:\AMD
======List of files/folders modified in the last 1 months======
2011-02-19 00:24:44 ----D---- C:\Windows\Temp
2011-02-19 00:24:38 ----RD---- C:\Program Files
2011-02-18 23:40:25 ----D---- C:\Windows\system32\config
2011-02-18 22:37:38 ----D---- C:\Windows\System32
2011-02-18 22:37:37 ----D---- C:\Windows\inf
2011-02-18 22:37:37 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-02-18 11:25:30 ----SHD---- C:\System Volume Information
2011-02-17 16:49:34 ----D---- C:\Windows\SysWOW64
2011-02-17 16:48:27 ----RSD---- C:\Windows\assembly
2011-02-17 16:47:19 ----SHD---- C:\Windows\Installer
2011-02-17 16:47:18 ----SHD---- C:\Config.Msi
2011-02-17 16:46:45 ----RD---- C:\Program Files (x86)
2011-02-17 12:20:49 ----D---- C:\Users\zielan\AppData\Roaming\Zoner
2011-02-16 16:19:27 ----D---- C:\Users\zielan\AppData\Roaming\Xfire
2011-02-16 13:28:25 ----D---- C:\Windows\Microsoft.NET
2011-02-16 11:27:50 ----D---- C:\ProgramData\Xfire
2011-02-16 11:26:30 ----D---- C:\Windows
2011-02-16 11:26:23 ----D---- C:\Windows\winsxs
2011-02-16 00:21:03 ----D---- C:\Windows\system32\DriverStore
2011-02-16 00:21:02 ----D---- C:\Windows\system32\drivers
2011-02-16 00:05:49 ----D---- C:\Windows\system32\catroot
2011-02-15 23:51:23 ----SD---- C:\ProgramData\Microsoft
2011-02-15 23:49:24 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-02-15 23:47:00 ----D---- C:\Program Files (x86)\Common Files
2011-02-15 23:46:36 ----D---- C:\Windows\system32\catroot2
2011-02-15 19:39:55 ----D---- C:\Windows\SYSWOW64\cs-CZ
2011-02-15 19:39:55 ----D---- C:\Windows\system32\cs-CZ
2011-02-15 19:28:30 ----D---- C:\Windows\SYSWOW64\en-US
2011-02-15 19:28:28 ----D---- C:\Windows\system32\en-US
2011-02-15 19:28:23 ----D---- C:\Program Files (x86)\Microsoft.NET
2011-02-13 14:22:37 ----D---- C:\Users\zielan\AppData\Roaming\Identities
2011-02-10 18:24:41 ----D---- C:\Program Files\Internet Explorer
2011-02-10 18:24:41 ----D---- C:\Program Files (x86)\Internet Explorer
2011-02-10 18:04:29 ----D---- C:\Windows\debug
2011-02-10 18:04:27 ----A---- C:\Windows\system32\MRT.exe
2011-02-10 18:01:59 ----D---- C:\ProgramData\Microsoft Help
2011-02-09 13:00:09 ----D---- C:\Windows\Prefetch
2011-02-09 11:38:31 ----D---- C:\Windows\system32\Tasks
2011-02-08 13:29:47 ----HD---- C:\ProgramData
2011-02-08 13:26:49 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-02-08 10:35:27 ----D---- C:\Users\zielan\AppData\Roaming\DAEMON Tools Lite
2011-02-04 08:12:35 ----D---- C:\Program Files (x86)\Opera
2011-02-02 17:11:20 ----N---- C:\Windows\system32\MpSigStub.exe
2011-01-31 17:55:02 ----SD---- C:\Users\zielan\AppData\Roaming\Microsoft
2011-01-26 13:55:20 ----D---- C:\Windows\system32\wdi
2011-01-24 12:10:53 ----D---- C:\ProgramData\Adobe
2011-01-24 12:09:27 ----D---- C:\Users\zielan\AppData\Roaming\Adobe
2011-01-24 10:38:29 ----RD---- C:\Sdílené soubory
2011-01-23 16:25:07 ----D---- C:\Program Files\Common Files
2011-01-23 16:24:47 ----D---- C:\Program Files\ATI Technologies
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-04 16440]
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-12-23 834544]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2009-11-16 136584]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2011-02-08 314016]
R2 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys [2009-11-16 145336]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2009-11-16 169080]
R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2009-11-16 44944]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2011-02-08 43680]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-11-26 8120320]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-11-26 289792]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-10-09 1394176]
R3 AtiHdmiService;ATI Service for HD Audio Codec; C:\Windows\system32\drivers\AtiHdmi.sys [2009-06-28 116752]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2009-06-19 33608]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-03-01 187392]
R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2009-10-10 109056]
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys [2010-03-23 505344]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-05-27 320560]
R3 teamviewervpn;TeamViewer VPN Adapter; C:\Windows\system32\DRIVERS\teamviewervpn.sys [2010-11-30 35112]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 aqe8hj55;aqe8hj55; C:\Windows\system32\drivers\aqe8hj55.sys []
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-11-26 8120320]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 551936]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 79360]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe [2009-03-02 89600]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-11-26 203776]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2009-11-16 735960]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 QipGuard;QipGuard; C:\Program Files (x86)\QipGuard\QipGuard.exe [2011-02-01 187776]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-09-22 249136]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\STacSV64.exe [2010-03-23 247808]
R2 TeamViewer6;TeamViewer 6; C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2010-12-07 2228008]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 DpHost;@C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe,-128; C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe []
S3 DfSdkS;Defragmentation-Service; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 7\Dfsdks.exe [2009-08-24 544768]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-11-16 23296]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-01-10 654848]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-12-24 1255736]
S4 msvsmon90;Visual Studio 2008 Remote Debugger; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [2008-07-29 4737024]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
-----------------EOF-----------------
Spustit->napište "verifier"->OK->Vytvořit uživatelské nastavení->Vybrat individuální nastavení z úplného seznamu->mimo "Simulace nedostatku prostředků" zatrhněte vše->vybrat ovladače ze seznamu->vyberte vše, co není od Microsoftu->Dokončit->restartujte PC
Pokud verifier narazí na nějaký problém, objeví se BSOD a dojde k restartu počítače. Ve složce Windows\Minidump by se měl vytvořit nový výpis paměti, který mi upněte.
Pokud by k BSOD docházelo už při startu OS a nedařilo se i po několika restartech zavést systém,
spusťte nouzový režim (mačkání F8 při startu PC)
Tam spusťte Verifier a zvolte "Odstranit existující nastavení->Dokončit->restart PC.
Přispějete na provoz fóra?