Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Sekání PC, neúplné vypnutí, padání prohlížeče

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Computerka
Návštěvník
Návštěvník
Příspěvky: 13
Registrován: 27 bře 2011 16:34

Sekání PC, neúplné vypnutí, padání prohlížeče

#1 Příspěvek od Computerka »

Dobrý den, prosím o radu se sekáním počítače - seká se neustále, včera při vypínání psal "Vypínám se" asi dvě hodiny a takto zaseklý nešel vůbec vypnout ani zapnout znovu. Často mi padá prohlížeč Mozilla Firefox a počítač "zamrzá". Prohlížeč pak nelze znova spustit, teprve správcem počítače se dá proces "vyhodit" a pak znovu spustit. Nevím, co s těmito problémy počít - a to mám dobrou ochranu - Eset. Co s tím?

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119520
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Sekání PC, neúplné vypnutí, padání prohlížeče

#2 Příspěvek od Rudy »

Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Computerka
Návštěvník
Návštěvník
Příspěvky: 13
Registrován: 27 bře 2011 16:34

Re: Sekání PC, neúplné vypnutí, padání prohlížeče

#3 Příspěvek od Computerka »

Děkuji za odpověď. Připojuji logy:

Logfile of random's system information tool 1.08 (written by random/random)
Run by Veronika at 2011-03-27 20:50:06
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 3 GB (4%) free of 68 GB
Total RAM: 502 MB (53% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:50:16, on 27.3.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\DivX\DivX Plus Web Player\DDmService.exe
C:\Program Files\Real\RealPlayer\update\realsched.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Documents and Settings\Veronika\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Veronika.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = plimus.com;www.plimus.com;regnow.com;www.regnow.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: facemoods Helper - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files\facemoods.com\facemoods\1.4.17.4\bh\facemoods.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files\facemoods.com\facemoods\1.4.17.4\facemoodsTlbr.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\Hewlett-Packard\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
O4 - HKLM\..\Run: [Reminder] C:\Windows\CREATOR\Remind_XP.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [DivX Download Manager] "C:\Program Files\DivX\DivX Plus Web Player\DDmService.exe" start
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Real\RealPlayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [facemoods] "C:\Program Files\facemoods.com\facemoods\1.4.17.4\facemoodssrv.exe" /md I
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Rychlý začátek s aplikací HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: http://download.windowsupdate.com
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} (SpinTop DRM Control) - file:///C:/Program%20Files/My%20Kingdom%20for%20the%20Princess/Images/stg_drm.ocx
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 8371162593
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} (ArmHelper Control) - file:///C:/Program%20Files/My%20Kingdom%20for%20the%20Princess/Images/armhelper.ocx
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe

--
End of file - 9464 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-3134737558-3822295182-1303552718-1006.job
C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-3134737558-3822295182-1303552718-1006.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2005-09-23 63136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Documents and Settings\All Users\Data aplikací\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-02-10 381656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-09-12 3863136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2010-12-08 3123072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{593DDEC6-7468-4cdd-90E1-42DADAA222E9}]
DivX HiQ - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2010-12-08 3123072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64182481-4F71-486b-A045-B233BD0DA8FC}]
CescrtHlpr Object - C:\Program Files\facemoods.com\facemoods\1.4.17.4\bh\facemoods.dll [2010-10-26 262144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-12-15 297648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll [2010-10-28 843832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-11-24 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-11-24 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngine.dll [2010-09-12 3863136]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-12-15 297648]
{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - facemoods Toolbar - C:\Program Files\facemoods.com\facemoods\1.4.17.4\facemoodsTlbr.dll [2010-10-26 217088]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"igfxtray"=C:\WINDOWS\system32\igfxtray.exe [2006-03-22 94208]
"igfxhkcmd"=C:\WINDOWS\system32\hkcmd.exe [2006-03-22 77824]
"igfxpers"=C:\WINDOWS\system32\igfxpers.exe [2006-03-22 118784]
"High Definition Audio Property Page Shortcut"=C:\WINDOWS\system32\CHDAudPropShortcut.exe [2006-06-02 61952]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-06-17 794713]
"QPService"=C:\Program Files\HP\QuickPlay\QPService.exe [2006-07-19 102400]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2005-02-16 49152]
"Cpqset"=C:\Program Files\Hewlett-Packard\Default Settings\cpqset.exe [2006-06-19 40960]
"RecGuard"=C:\Windows\SMINST\RecGuard.exe [2005-10-11 1187840]
"Reminder"=C:\Windows\CREATOR\Remind_XP.exe [2006-02-09 643072]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2007-03-24 98304]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2010-04-07 2145000]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2010-12-09 1226608]
"DivX Download Manager"=C:\Program Files\DivX\DivX Plus Web Player\DDmService.exe [2010-12-08 63360]
"TkBellExe"=C:\Program Files\Real\RealPlayer\update\realsched.exe [2011-02-10 273544]
"facemoods"=C:\Program Files\facemoods.com\facemoods\1.4.17.4\facemoodssrv.exe [2010-10-26 323584]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-07-13 39408]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
Rychlý začátek s aplikací HP Photosmart Premier.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2006-03-22 139264]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2011-03-27 20:50:08 ----D---- C:\Program Files\trend micro
2011-03-27 20:50:06 ----D---- C:\rsit
2011-03-24 11:59:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2524375$
2011-03-09 14:22:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2481109$
2011-03-09 14:21:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2479943$

======List of files/folders modified in the last 1 months======

2011-03-27 20:50:17 ----D---- C:\WINDOWS\Prefetch
2011-03-27 20:50:08 ----RD---- C:\Program Files
2011-03-27 20:50:08 ----D---- C:\WINDOWS\Temp
2011-03-27 20:49:58 ----SD---- C:\WINDOWS\Tasks
2011-03-27 12:30:01 ----D---- C:\WINDOWS
2011-03-27 12:29:57 ----A---- C:\hpqp.ini
2011-03-27 12:29:54 ----A---- C:\XP_TV.ini
2011-03-27 03:22:51 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-03-26 01:07:52 ----D---- C:\WINDOWS\system32\CatRoot2
2011-03-25 23:44:09 ----D---- C:\WINDOWS\network diagnostic
2011-03-24 22:32:47 ----D---- C:\Program Files\Mozilla Firefox
2011-03-24 11:59:36 ----HD---- C:\WINDOWS\inf
2011-03-24 11:59:09 ----HD---- C:\WINDOWS\$hf_mig$
2011-03-20 23:28:12 ----AD---- C:\Qoobox
2011-03-12 16:31:50 ----A---- C:\WINDOWS\NeroDigital.ini
2011-03-10 02:54:36 ----D---- C:\WINDOWS\Debug
2011-03-09 14:22:28 ----A---- C:\WINDOWS\system32\MRT.exe
2011-03-09 14:22:05 ----RSHD---- C:\WINDOWS\system32\dllcache
2011-03-09 14:22:05 ----D---- C:\WINDOWS\system32
2011-03-03 02:12:57 ----SHD---- C:\WINDOWS\Installer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\WINDOWS\system32\DRIVERS\iaStor.sys [2005-10-13 874240]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R1 eabfiltr;eabfiltr; C:\WINDOWS\system32\DRIVERS\eabfiltr.sys [2005-09-19 7808]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2010-04-07 114984]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2010-04-07 55232]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2010-04-07 139192]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2010-04-07 134488]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2006-02-15 12672]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2006-04-28 429184]
R3 E100B;Intel(R) PRO Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2006-04-11 163328]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2010-04-07 32584]
R3 HBtnKey;HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2005-09-19 9344]
R3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDAud.sys [2006-06-02 572928]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2006-04-20 995712]
R3 HSFHWAZL;HSFHWAZL; C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys [2006-04-20 208000]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2006-03-22 1166972]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2006-06-17 193120]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2006-04-20 727296]
S3 5U870CAP_VID_1262&PID_25FD;HP Pavilion Webcam ; C:\WINDOWS\System32\Drivers\5U870CAP.sys [2006-06-06 61952]
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2006-05-12 57320]
S3 catchme;catchme; \??\C:\DOCUME~1\Veronika\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 eabusb;eabusb; C:\WINDOWS\system32\DRIVERS\eabusb.sys [2005-09-19 5760]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 rimmptsk;rimmptsk; C:\WINDOWS\system32\DRIVERS\rimmptsk.sys [2005-11-16 28928]
S3 rimsptsk;rimsptsk; C:\WINDOWS\system32\DRIVERS\rimsptsk.sys [2005-12-22 51840]
S3 rismxdp;Ricoh xD-Picture Card Driver; C:\WINDOWS\system32\DRIVERS\rixdptsk.sys [2005-11-01 308992]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
S3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 SYMIDSCO;SYMIDSCO; \??\C:\PROGRA~1\COMMON~1\SYMANT~1\SymcData\idsdefs\20100630.002\symidsco.sys []
S3 UIUSys;Conexant Setup API; C:\WINDOWS\system32\DRIVERS\UIUSYS.SYS []
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 w39n51;Intel(R) PRO/Wireless 3945ABG Adapter Driver; C:\WINDOWS\system32\DRIVERS\w39n51.sys [2006-04-21 1429632]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S4 agp440;Filtr Intel sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-13 42368]
S4 agpCPQ;Filtr Compaq sběrnice AGP; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2008-04-13 44928]
S4 alim1541;Filtr ALI sběrnice AGP; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2008-04-13 42752]
S4 amdagp;Ovladač filtru AMD portu AGP; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2008-04-13 43008]
S4 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2001-08-18 13952]
S4 sisagp;Filtr SIS sběrnice AGP ; C:\WINDOWS\system32\DRIVERS\sisagp.sys [2008-04-13 40960]
S4 viaagp;Filtr VIA sběrnice AGP ; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-13 42240]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2005-09-30 96341]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2010-04-07 810120]
R2 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2006-05-02 135168]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-11-12 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-05-18 49152]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-07-14 135664]
S3 AddFiltr;AddFiltr; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe [2006-06-12 126976]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2010-04-07 33560]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-07-13 182768]
S3 IDriverT;InstallDriver Table Manager; c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMConnectCDS;Služba Windows Media Connect; C:\Program Files\Windows Media Connect 2\wmccds.exe [2005-10-06 855552]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------



info.txt logfile of random's system information tool 1.08 2011-03-27 20:50:22

======Uninstall list======

-->C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\WINDOWS\system32\\MSIEXEC.EXE /x {075473F5-846A-448B-BCB3-104AA1760205}
-->C:\WINDOWS\system32\\MSIEXEC.EXE /x {AB708C9B-97C8-4AC9-899B-DBF226AC9382}
-->C:\WINDOWS\system32\\MSIEXEC.EXE /x {B12665F4-4E93-4AB4-B7FC-37053B524629}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10k_ActiveX.exe -maintain activex
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10n_Plugin.exe -maintain plugin
Adobe Reader 7.0.5-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A70500000002}
Aktualizace systému Windows Internet Explorer 8 (KB976662)-->"C:\WINDOWS\ie8updates\KB976662-IE8\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2141007)-->"C:\WINDOWS\$NtUninstallKB2141007$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2345886)-->"C:\WINDOWS\$NtUninstallKB2345886$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2467659)-->"C:\WINDOWS\$NtUninstallKB2467659$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB971029)-->"C:\WINDOWS\$NtUninstallKB971029$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB2378111)-->"C:\WINDOWS\$NtUninstallKB2378111_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9L$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB975558)-->"C:\WINDOWS\$NtUninstallKB975558_WM8$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB978695)-->"C:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player 9 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Aktualizace zabezpečení produktu Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2183461)-->"C:\WINDOWS\ie8updates\KB2183461-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2360131)-->"C:\WINDOWS\ie8updates\KB2360131-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2416400)-->"C:\WINDOWS\ie8updates\KB2416400-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2482017)-->"C:\WINDOWS\ie8updates\KB2482017-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB971961)-->"C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB981332)-->"C:\WINDOWS\ie8updates\KB981332-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB982381)-->"C:\WINDOWS\ie8updates\KB982381-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2079403)-->"C:\WINDOWS\$NtUninstallKB2079403$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2115168)-->"C:\WINDOWS\$NtUninstallKB2115168$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2121546)-->"C:\WINDOWS\$NtUninstallKB2121546$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2160329)-->"C:\WINDOWS\$NtUninstallKB2160329$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2229593)-->"C:\WINDOWS\$NtUninstallKB2229593$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2259922)-->"C:\WINDOWS\$NtUninstallKB2259922$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2279986)-->"C:\WINDOWS\$NtUninstallKB2279986$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2286198)-->"C:\WINDOWS\$NtUninstallKB2286198$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2296011)-->"C:\WINDOWS\$NtUninstallKB2296011$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2296199)-->"C:\WINDOWS\$NtUninstallKB2296199$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2347290)-->"C:\WINDOWS\$NtUninstallKB2347290$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2360937)-->"C:\WINDOWS\$NtUninstallKB2360937$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2387149)-->"C:\WINDOWS\$NtUninstallKB2387149$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2393802)-->"C:\WINDOWS\$NtUninstallKB2393802$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2419632)-->"C:\WINDOWS\$NtUninstallKB2419632$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2423089)-->"C:\WINDOWS\$NtUninstallKB2423089$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2436673)-->"C:\WINDOWS\$NtUninstallKB2436673$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2440591)-->"C:\WINDOWS\$NtUninstallKB2440591$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2443105)-->"C:\WINDOWS\$NtUninstallKB2443105$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2476687)-->"C:\WINDOWS\$NtUninstallKB2476687$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2478960)-->"C:\WINDOWS\$NtUninstallKB2478960$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2478971)-->"C:\WINDOWS\$NtUninstallKB2478971$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2479628)-->"C:\WINDOWS\$NtUninstallKB2479628$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2479943)-->"C:\WINDOWS\$NtUninstallKB2479943$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2481109)-->"C:\WINDOWS\$NtUninstallKB2481109$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2483185)-->"C:\WINDOWS\$NtUninstallKB2483185$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2485376)-->"C:\WINDOWS\$NtUninstallKB2485376$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2524375)-->"C:\WINDOWS\$NtUninstallKB2524375$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971468)-->"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975561)-->"C:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975562)-->"C:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB977816)-->"C:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978037)-->"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978338)-->"C:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978542)-->"C:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978601)-->"C:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979482)-->"C:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979559)-->"C:\WINDOWS\$NtUninstallKB979559$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979683)-->"C:\WINDOWS\$NtUninstallKB979683$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979687)-->"C:\WINDOWS\$NtUninstallKB979687$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980195)-->"C:\WINDOWS\$NtUninstallKB980195$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980218)-->"C:\WINDOWS\$NtUninstallKB980218$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980232)-->"C:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980436)-->"C:\WINDOWS\$NtUninstallKB980436$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981322)-->"C:\WINDOWS\$NtUninstallKB981322$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981852)-->"C:\WINDOWS\$NtUninstallKB981852$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981957)-->"C:\WINDOWS\$NtUninstallKB981957$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981997)-->"C:\WINDOWS\$NtUninstallKB981997$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982132)-->"C:\WINDOWS\$NtUninstallKB982132$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982214)-->"C:\WINDOWS\$NtUninstallKB982214$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982665)-->"C:\WINDOWS\$NtUninstallKB982665$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982802)-->"C:\WINDOWS\$NtUninstallKB982802$\spuninst\spuninst.exe"
Canon Camera Access Library-->"C:\Program Files\Common Files\Canon\UIW\1.0.0.0\Uninst.exe" "C:\Program Files\Canon\CAL\Uninst.ini"
Canon Camera Support Core Library-->"C:\Program Files\Common Files\Canon\UIW\1.0.0.0\Uninst.exe" "C:\Program Files\Canon\CSCLIB\Uninst.ini"
Canon Camera Window DC_DV 5 for ZoomBrowser EX-->"C:\Program Files\Common Files\Canon\UIW\1.0.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\CameraWindowDVC\Uninst.ini"
Canon Camera Window DC_DV 6 for ZoomBrowser EX-->"C:\Program Files\Common Files\Canon\UIW\1.0.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\CameraWindowDVC6\Uninst.ini"
Canon Camera Window MC 6 for ZoomBrowser EX-->"C:\Program Files\Common Files\Canon\UIW\1.0.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\CameraWindowMC\Uninst.ini"
Canon G.726 WMP-Decoder-->"C:\Program Files\Common Files\Canon\UIW\1.0.0.0\Uninst.exe" "C:\Program Files\Canon\G726Decoder\G726DecUnInstall.ini"
Canon MovieEdit Task for ZoomBrowser EX-->"C:\Program Files\Common Files\Canon\UIW\1.0.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX\Program\MVWUninst.ini"
Canon RAW Image Task for ZoomBrowser EX-->"C:\Program Files\Common Files\Canon\UIW\1.0.0.0\Uninst.exe" "C:\Program Files\Canon\RAW Image Task\Uninst.ini"
Canon RemoteCapture Task for ZoomBrowser EX-->"C:\Program Files\Common Files\Canon\UIW\1.0.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\RemoteCaptureTask DC\Uninst.ini"
Canon Utilities EOS Utility-->"C:\Program Files\Common Files\Canon\UIW\1.0.0.0\Uninst.exe" "C:\Program Files\Canon\EOS Utility\Uninst.ini"
Canon Utilities PhotoStitch-->"C:\Program Files\Common Files\Canon\UIW\1.0.0.0\Uninst.exe" "C:\Program Files\Canon\PhotoStitch\Uninst.ini"
Canon Utilities ZoomBrowser EX-->"C:\Program Files\Common Files\Canon\UIW\1.0.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX\Program\Uninst.ini"
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Combined Community Codec Pack 2010-10-10-->"C:\Program Files\Combined Community Codec Pack\unins000.exe"
Conduit Engine-->C:\PROGRA~1\CONDUI~1\ConduitEngineUninstall.exe
Conexant HD Audio-->C:\Program Files\CONEXANT\CNXT_HDAUDIO\HXFSETUP.EXE -U -IAt8VEN5a.inf
CoreAVC Professional Edition (remove only)-->"C:\Program Files\CoreCodec\CoreAVC Professional Edition\CoreAVC Professional Edition-uninstall.exe"
DivX Setup-->C:\Documents and Settings\All Users\Data aplikací\DivX\Setup\DivXSetup.exe /uninstall /bundleGroupId divx.com
Facemoods Toolbar-->"C:\Program Files\facemoods.com\facemoods\1.4.17.4\uninstall.exe"
Fish Tycoon-->"C:\Program Files\Fish Tycoon\unins000.exe"
Gold Miner Vegas-->C:\Program Files\Gold Miner Vegas\Uninstal.exe
Google Chrome-->"C:\Program Files\Google\Chrome\Application\10.0.648.204\Installer\setup.exe" --uninstall --chrome --system-level
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_4079369A224CB572.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
HP Help and Support-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A93C4E94-1005-489D-BEAA-B873C1AA6CFC}\setup.exe" -l0x5 -removeonly
HP Imaging Device Functions 6.0-->C:\Program Files\HP\Digital Imaging\DigitalImagingMonitor\hpzscr01.exe -datfile hpqbud01.dat
HP Photosmart Premier Software 6.0-->C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
HP Quick Launch Buttons 6.10 A2-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{34D2AB40-150D-475D-AE32-BD23FB5EE355}\setup.exe" -l0x5 -removeonly uninst
HP QuickPlay 2.3-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{45D707E9-F3C4-11D9-A373-0050BAE317E1}\setup.exe" -uninstall
HP Update-->MsiExec.exe /X{BB85ED9C-AFC9-43BD-B8DC-258C3C7DF72E}
HP User Guides 0035-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BE247E71-C143-40BB-ADF2-A465DF062BAB}\Setup.exe" -l0x5 -removeonly
Intel(R) Graphics Media Accelerator Driver-->RUNDLL32.EXE C:\WINDOWS\system32\ialmrem.dll,UninstallW2KIGfx2ID PCI\VEN_8086&DEV_27A6 PCI\VEN_8086&DEV_27A2
Intel(R) PRO Network Connections Drivers-->Prounstl.exe
J2SE Runtime Environment 5.0 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
Java(TM) 6 Update 23-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216020FF}
KwiClick-->MsiExec.exe /I{3515DF4C-3529-407E-A1E1-E2C0EDB36FF0}
Macromedia Flash Player 8-->MsiExec.exe /X{6815FCDD-401D-481E-BA88-31B4754C2B46}
Macromedia Shockwave Player-->MsiExec.exe /X{838A1BC9-95CA-4880-9BE3-2A7D23600A2B}
MadZ Clone DVD Pro-->MsiExec.exe /I{3D4315C0-2377-4717-A3BF-D75626BD0592}
Microsoft .NET Framework 1.1 Czech Language Pack-->MsiExec.exe /X{5E65E94D-69F2-4850-9E93-6459C53A0F50}
Microsoft .NET Framework 1.1 Security Update (KB2416447)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M2416447\M2416447Uninstall.msp"
Microsoft .NET Framework 1.1 Security Update (KB979906)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M979906\M979906Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{90110405-6000-11D3-8CFE-0150048383C9}
Microsoft Works-->MsiExec.exe /I{5B7DE700-C8C4-41D6-9B11-9C1B645F264D}
Mozilla Firefox (3.6.16)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
My Kingdom for the Princess Full-->C:\Program Files\Gringomaquina\My Kingdom for the Princess\Uninstall.exe
Nero Suite-->C:\Program Files\Common Files\Ahead\Uninstall\Setup.exe /uninstall
NetWaiting-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3F92ABBB-6BBF-11D5-B229-002078017FBF}\setup.exe" -l0x5 ControlPanel
Oprava Hotfix systému Windows XP (KB2158563)-->"C:\WINDOWS\$NtUninstallKB2158563$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB2443685)-->"C:\WINDOWS\$NtUninstallKB2443685$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB981793)-->"C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe"
QuickTime-->C:\WINDOWS\unvise32qt.exe C:\WINDOWS\system32\QuickTime\Uninstall.log
RealNetworks - Microsoft Visual C++ 2008 Runtime-->MsiExec.exe /X{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}
RealPlayer-->C:\Program Files\Real\RealPlayer\Update\r1puninst.exe RealNetworks|RealPlayer|12.0
RealUpgrade 1.1-->MsiExec.exe /I{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}
Registry Reviver-->C:\Program Files\ReviverSoft\RegistryReviver\Uninstall.exe
Registry Reviver-->MsiExec.exe /X{332DB63A-14F2-465D-9C7E-B0D04353323F}
Sallys Spa-->"C:\Program Files\Sallys Spa\ReflexiveArcade\unins000.exe"
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A8894F19-59C8-38D2-8A75-36C0CCE56A5B} /qb+ REBOOTPROMPT=""
Soft Data Fax Modem with SmartCP-->C:\Program Files\CONEXANT\CNXT_MODEM_PCI_VEN_14F1&DEV_5045_at8ven5m\HXFSETUP.EXE -U -IAt8VEN5m.inf
Sonic Audio Module-->MsiExec.exe /I{AB708C9B-97C8-4AC9-899B-DBF226AC9382}
Sonic Copy Module-->MsiExec.exe /I{B12665F4-4E93-4AB4-B7FC-37053B524629}
Sonic Data Module-->MsiExec.exe /I{075473F5-846A-448B-BCB3-104AA1760205}
Sonic Express Labeler-->MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
Sonic MyDVD Plus-->MsiExec.exe /I{21657574-BD54-48A2-9450-EB03B2C7FC29}
Sonic Update Manager-->MsiExec.exe /I{30465B6C-B53F-49A1-9EBA-A3F187AD502E}
StrongDC++ 2.41-->"C:\Program Files\StrongDC++\uninstall.exe"
Stronghold Crusader Demo-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BDC96E64-A010-4341-A072-47EFDBD6CFBA}\Setup.exe"
Stronghold-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C917BA70-28A3-4C74-B163-41FD8C8E1A5A}\setup.exe"
Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
TS Angličtina 5 (plná instalace)-->C:\Program Files\Terasoft\AJ5_2003\Uninstal.exe
Ulož.to File Manager verze 1.0-->"C:\Program Files\Uložto File Manager\unins000.exe"
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
VC80CRTRedist - 8.0.50727.4053-->MsiExec.exe /I{5EE7D259-D137-4438-9A5F-42F432EC0421}
VLC media player 1.1.5-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Media Connect-->"C:\WINDOWS\$NtUninstallWMCSetup$\spuninst\spuninst.exe"
Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Player 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
WinRAR-->C:\Program Files\WinRAR\uninstall.exe

======Security center information======

AV: ESET Smart Security 4.2
FW: Norton Internet Worm Protection (disabled)
FW: ESET personal firewall

======System event log======

Computer Name: PC193051483824
Event Code: 7036
Message: Stav služby Služba inteligentního přenosu na pozadí (BITS) byl změněn na: Spuštěno

Record Number: 14062
Source Name: Service Control Manager
Time Written: 20110201163630.000000+060
Event Type: Informace
User:

Computer Name: PC193051483824
Event Code: 7036
Message: Stav služby Sledování umístění v síti (NLA) byl změněn na: Spuštěno

Record Number: 14061
Source Name: Service Control Manager
Time Written: 20110201163630.000000+060
Event Type: Informace
User:

Computer Name: PC193051483824
Event Code: 7035
Message: Řídící příkaz Spuštěno byl službě Sledování umístění v síti (NLA) úspěšně odeslán.

Record Number: 14060
Source Name: Service Control Manager
Time Written: 20110201163630.000000+060
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: PC193051483824
Event Code: 7035
Message: Řídící příkaz Spuštěno byl službě Služba inteligentního přenosu na pozadí (BITS) úspěšně odeslán.

Record Number: 14059
Source Name: Service Control Manager
Time Written: 20110201163630.000000+060
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: PC193051483824
Event Code: 6005
Message: Služba Event Log byla spuštěna.

Record Number: 14058
Source Name: EventLog
Time Written: 20110201163609.000000+060
Event Type: Informace
User:

=====Application event log=====

Computer Name: PC193051483824
Event Code: 4
Message: The LightScribe Service started successfully.

Record Number: 4879
Source Name: LightScribeService
Time Written: 20101106004444.000000+060
Event Type: Informace
User:

Computer Name: PC193051483824
Event Code: 1517
Message: Systém Windows uložil registr uživatele PC193051483824\Veronika, ale některá z aplikací nebo služeb během odhlášení registr nadále používala. Paměť používaná registrem uživatele nebyla uvolněna. Registr bude uvolněn, jakmile již nebude používán.


To je často způsobeno tím, že jsou služby spuštěny pomocí uživatelského účtu. Zkuste služby konfigurovat pro spuštění pomocí účtu místní nebo síťové služby.

Record Number: 4878
Source Name: Userenv
Time Written: 20101106000418.000000+060
Event Type: Upozornění
User: NT AUTHORITY\SYSTEM

Computer Name: PC193051483824
Event Code: 20
Message:
Record Number: 4877
Source Name: Google Update
Time Written: 20101105231413.000000+060
Event Type: Upozornění
User: NT AUTHORITY\SYSTEM

Computer Name: PC193051483824
Event Code: 0
Message:
Record Number: 4876
Source Name: gusvc
Time Written: 20101105224001.000000+060
Event Type: Informace
User:

Computer Name: PC193051483824
Event Code: 20
Message:
Record Number: 4875
Source Name: Google Update
Time Written: 20101105221411.000000+060
Event Type: Upozornění
User: NT AUTHORITY\SYSTEM

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 14 Stepping 8, GenuineIntel
"PROCESSOR_REVISION"=0e08
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"SonicCentral"=C:\Program Files\Common Files\Sonic Shared\Sonic Central\

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119520
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Sekání PC, neúplné vypnutí, padání prohlížeče

#4 Příspěvek od Rudy »

Vidím tam minimálně facebook virus. Dejte log z ComboFix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Computerka
Návštěvník
Návštěvník
Příspěvky: 13
Registrován: 27 bře 2011 16:34

Re: Sekání PC, neúplné vypnutí, padání prohlížeče

#5 Příspěvek od Computerka »

Zde je:

ComboFix 11-03-26.02 - Veronika 27.03.2011 22:44:25.2.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.502.231 [GMT 2:00]
Spuštěný z: c:\documents and settings\Veronika\Dokumenty\Stažené soubory\ComboFix.exe
AV: ESET Smart Security 4.2 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *Enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
FW: Norton Internet Worm Protection *Disabled* {990F9400-4CEE-43EA-A83A-D013ADD8EA6E}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Veronika\Data aplikací\facemoods.com
c:\program files\facemoods.com
c:\program files\facemoods.com\facemoods\1.4.17.4\bh\facemoods.dll
c:\program files\facemoods.com\facemoods\1.4.17.4\facemoods.crx
c:\program files\facemoods.com\facemoods\1.4.17.4\facemoods.png
c:\program files\facemoods.com\facemoods\1.4.17.4\facemoodsApp.dll
c:\program files\facemoods.com\facemoods\1.4.17.4\facemoodsEng.dll
c:\program files\facemoods.com\facemoods\1.4.17.4\facemoodssrv.exe
c:\program files\facemoods.com\facemoods\1.4.17.4\facemoodsTlbr.dll
c:\program files\facemoods.com\facemoods\1.4.17.4\uninstall.exe
c:\program files\FunWebProducts
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-02-27 do 2011-03-27 )))))))))))))))))))))))))))))))
.
.
2011-03-27 18:50 . 2011-03-27 18:50 -------- d-----w- c:\program files\trend micro
2011-03-27 18:50 . 2011-03-27 18:50 -------- d-----w- C:\rsit
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-02-09 13:53 . 2004-08-18 21:00 270848 ----a-w- c:\windows\system32\sbe.dll
2011-02-09 13:53 . 2004-08-18 21:00 186880 ----a-w- c:\windows\system32\encdec.dll
2011-02-02 07:58 . 2004-08-18 21:00 2067456 ----a-w- c:\windows\system32\mstscax.dll
2011-01-27 11:57 . 2004-08-18 21:00 677888 ----a-w- c:\windows\system32\mstsc.exe
2011-01-21 14:44 . 2004-08-18 21:00 440320 ----a-w- c:\windows\system32\shimgvw.dll
2011-01-07 14:09 . 2004-08-18 21:00 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-12-31 14:04 . 2004-08-18 21:00 1854976 ----a-w- c:\windows\system32\win32k.sys
.
.
((((((((((((((((((((((((((((( SnapShot@2011-01-16_22.57.36 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-03-27 10:29 . 2011-03-27 10:29 16384 c:\windows\Temp\Perflib_Perfdata_374.dat
+ 2006-05-10 11:41 . 2011-02-07 10:26 72354 c:\windows\system32\perfc009.dat
- 2006-05-10 11:41 . 2011-01-14 13:55 72354 c:\windows\system32\perfc009.dat
+ 2006-05-10 11:41 . 2011-02-07 10:26 84052 c:\windows\system32\perfc005.dat
- 2006-05-10 11:41 . 2011-01-14 13:55 84052 c:\windows\system32\perfc005.dat
+ 2005-07-03 10:16 . 2010-12-20 23:52 66560 c:\windows\system32\mshtmled.dll
- 2005-07-03 10:16 . 2010-11-06 00:23 66560 c:\windows\system32\mshtmled.dll
+ 2009-03-08 02:31 . 2010-12-20 23:52 55296 c:\windows\system32\msfeedsbs.dll
- 2009-03-08 02:31 . 2010-11-06 00:23 55296 c:\windows\system32\msfeedsbs.dll
- 2004-08-18 21:00 . 2010-11-06 00:23 43520 c:\windows\system32\licmgr10.dll
+ 2004-08-18 21:00 . 2010-12-20 23:52 43520 c:\windows\system32\licmgr10.dll
+ 2004-08-18 21:00 . 2010-12-20 23:52 25600 c:\windows\system32\jsproxy.dll
- 2004-08-18 21:00 . 2010-11-06 00:23 25600 c:\windows\system32\jsproxy.dll
+ 2010-07-05 23:25 . 2010-12-20 23:52 12800 c:\windows\system32\dllcache\xpshims.dll
- 2010-07-05 23:25 . 2010-11-06 00:23 12800 c:\windows\system32\dllcache\xpshims.dll
+ 2009-03-08 02:31 . 2010-12-20 23:52 66560 c:\windows\system32\dllcache\mshtmled.dll
- 2009-03-08 02:31 . 2010-11-06 00:23 66560 c:\windows\system32\dllcache\mshtmled.dll
+ 2010-07-05 23:25 . 2010-12-20 23:52 55296 c:\windows\system32\dllcache\msfeedsbs.dll
- 2010-07-05 23:25 . 2010-11-06 00:23 55296 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2009-03-08 02:34 . 2010-12-20 23:52 43520 c:\windows\system32\dllcache\licmgr10.dll
- 2009-03-08 02:34 . 2010-11-06 00:23 43520 c:\windows\system32\dllcache\licmgr10.dll
- 2009-03-08 02:33 . 2010-11-06 00:23 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2009-03-08 02:33 . 2010-12-20 23:52 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2009-12-14 07:10 . 2010-12-09 14:30 33280 c:\windows\system32\dllcache\csrsrv.dll
- 2009-12-14 07:10 . 2009-12-14 07:10 33280 c:\windows\system32\dllcache\csrsrv.dll
- 2004-08-18 21:00 . 2009-12-14 07:10 33280 c:\windows\system32\csrsrv.dll
+ 2004-08-18 21:00 . 2010-12-09 14:30 33280 c:\windows\system32\csrsrv.dll
+ 2011-02-10 15:57 . 2011-02-10 15:57 18944 c:\windows\Installer\98dbe6.msi
+ 2011-02-10 15:56 . 2011-02-10 15:56 92672 c:\windows\Installer\98dbdb.msi
+ 2011-02-09 09:42 . 2010-11-06 00:23 12800 c:\windows\ie8updates\KB2482017-IE8\xpshims.dll
+ 2011-02-09 09:42 . 2010-11-06 00:23 66560 c:\windows\ie8updates\KB2482017-IE8\mshtmled.dll
+ 2011-02-09 09:42 . 2010-11-06 00:23 55296 c:\windows\ie8updates\KB2482017-IE8\msfeedsbs.dll
+ 2011-02-09 09:42 . 2010-11-06 00:23 43520 c:\windows\ie8updates\KB2482017-IE8\licmgr10.dll
+ 2011-02-09 09:42 . 2010-11-06 00:23 25600 c:\windows\ie8updates\KB2482017-IE8\jsproxy.dll
+ 2011-02-09 09:43 . 2009-12-14 07:10 33280 c:\windows\$NtUninstallKB2476687$\csrsrv.dll
+ 2011-02-23 13:46 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB971029\update\spcustom.dll
+ 2011-02-23 13:46 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB971029\spmsg.dll
+ 2011-02-09 09:43 . 2010-07-05 13:13 26488 c:\windows\$hf_mig$\KB2485376\update\spcustom.dll
+ 2011-02-09 09:43 . 2010-07-05 13:13 18296 c:\windows\$hf_mig$\KB2485376\spmsg.dll
+ 2011-02-09 09:41 . 2010-02-22 14:20 26488 c:\windows\$hf_mig$\KB2483185\update\spcustom.dll
+ 2011-02-09 09:41 . 2010-02-22 14:20 18296 c:\windows\$hf_mig$\KB2483185\spmsg.dll
+ 2011-02-09 09:42 . 2010-07-05 13:13 26488 c:\windows\$hf_mig$\KB2482017-IE8\update\spcustom.dll
+ 2011-02-09 09:42 . 2010-07-05 13:13 18296 c:\windows\$hf_mig$\KB2482017-IE8\spmsg.dll
+ 2011-02-09 09:39 . 2010-12-20 23:51 12800 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\xpshims.dll
+ 2011-02-09 09:39 . 2010-12-20 23:51 66560 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\mshtmled.dll
+ 2011-02-09 09:39 . 2010-12-20 23:51 55296 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\msfeedsbs.dll
+ 2011-02-09 09:39 . 2010-12-20 23:51 43520 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\licmgr10.dll
+ 2011-02-09 09:39 . 2010-12-20 23:51 25600 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\jsproxy.dll
+ 2011-02-09 09:42 . 2010-02-22 14:20 26488 c:\windows\$hf_mig$\KB2479628\update\spcustom.dll
+ 2011-02-09 09:42 . 2010-02-22 14:20 18296 c:\windows\$hf_mig$\KB2479628\spmsg.dll
+ 2011-02-09 09:41 . 2010-02-22 14:20 26488 c:\windows\$hf_mig$\KB2478971\update\spcustom.dll
+ 2011-02-09 09:41 . 2010-02-22 14:20 18296 c:\windows\$hf_mig$\KB2478971\spmsg.dll
+ 2011-02-09 09:42 . 2010-07-05 13:13 26488 c:\windows\$hf_mig$\KB2478960\update\spcustom.dll
+ 2011-02-09 09:42 . 2010-07-05 13:13 18296 c:\windows\$hf_mig$\KB2478960\spmsg.dll
+ 2011-02-09 09:43 . 2010-07-05 13:13 26488 c:\windows\$hf_mig$\KB2476687\update\spcustom.dll
+ 2011-02-09 09:43 . 2010-07-05 13:13 18296 c:\windows\$hf_mig$\KB2476687\spmsg.dll
+ 2010-12-09 14:28 . 2010-12-09 14:28 33280 c:\windows\$hf_mig$\KB2476687\SP3QFE\csrsrv.dll
+ 2011-02-09 09:43 . 2010-07-05 13:13 26488 c:\windows\$hf_mig$\KB2393802\update\spcustom.dll
+ 2011-02-09 09:37 . 2010-12-10 05:42 16896 c:\windows\$hf_mig$\KB2393802\update\mpsyschk.dll
+ 2011-02-09 09:43 . 2010-07-05 13:13 18296 c:\windows\$hf_mig$\KB2393802\spmsg.dll
+ 2011-02-10 15:56 . 2011-02-10 15:56 5632 c:\windows\system32\pndx5032.dll
+ 2011-02-10 15:56 . 2011-02-10 15:56 6656 c:\windows\system32\pndx5016.dll
+ 2008-07-29 07:05 . 2008-07-29 07:05 655872 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcr90.dll
+ 2008-07-29 07:05 . 2008-07-29 07:05 572928 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcp90.dll
+ 2008-07-29 02:54 . 2008-07-29 02:54 225280 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcm90.dll
- 2004-08-18 21:00 . 2010-11-06 00:23 916480 c:\windows\system32\wininet.dll
+ 2004-08-18 21:00 . 2010-12-20 23:52 916480 c:\windows\system32\wininet.dll
- 2004-08-18 21:00 . 2008-04-14 03:21 135168 c:\windows\system32\shsvcs.dll
+ 2004-08-18 21:00 . 2009-07-27 23:19 135168 c:\windows\system32\shsvcs.dll
+ 2011-02-10 15:56 . 2011-02-10 15:56 198848 c:\windows\system32\rmoc3260.dll
+ 2011-02-10 15:56 . 2011-02-10 15:56 272896 c:\windows\system32\pncrt.dll
+ 2006-05-10 11:41 . 2011-02-07 10:26 444670 c:\windows\system32\perfh009.dat
- 2006-05-10 11:41 . 2011-01-14 13:55 444670 c:\windows\system32\perfh009.dat
+ 2006-05-10 11:41 . 2011-02-07 10:26 441652 c:\windows\system32\perfh005.dat
- 2006-05-10 11:41 . 2011-01-14 13:55 441652 c:\windows\system32\perfh005.dat
+ 2004-08-18 21:00 . 2010-12-20 23:52 206848 c:\windows\system32\occache.dll
- 2004-08-18 21:00 . 2010-11-06 00:23 206848 c:\windows\system32\occache.dll
+ 2004-08-18 21:00 . 2010-12-09 15:15 713216 c:\windows\system32\ntdll.dll
+ 2004-08-18 21:00 . 2010-12-20 23:52 611840 c:\windows\system32\mstime.dll
- 2004-08-18 21:00 . 2010-11-06 00:23 611840 c:\windows\system32\mstime.dll
+ 2009-03-08 02:32 . 2010-12-20 23:52 602112 c:\windows\system32\msfeeds.dll
- 2009-03-08 02:32 . 2010-11-06 00:23 602112 c:\windows\system32\msfeeds.dll
+ 2011-03-02 14:19 . 2011-03-02 14:19 235168 c:\windows\system32\Macromed\Flash\FlashUtil10n_Plugin.exe
+ 2011-03-03 00:12 . 2011-03-03 00:12 232912 c:\windows\system32\Macromed\Flash\FlashUtil10k_ActiveX.exe
+ 2011-03-03 00:12 . 2011-03-03 00:12 311760 c:\windows\system32\Macromed\Flash\FlashUtil10k_ActiveX.dll
- 2004-08-18 21:00 . 2009-06-25 08:27 729088 c:\windows\system32\lsasrv.dll
+ 2004-08-18 21:00 . 2010-12-20 17:25 729088 c:\windows\system32\lsasrv.dll
- 2004-08-18 21:00 . 2009-06-25 08:27 301568 c:\windows\system32\kerberos.dll
+ 2004-08-18 21:00 . 2010-12-22 12:34 301568 c:\windows\system32\kerberos.dll
- 2005-07-03 10:16 . 2010-11-06 00:23 184320 c:\windows\system32\iepeers.dll
+ 2005-07-03 10:16 . 2010-12-20 23:52 184320 c:\windows\system32\iepeers.dll
+ 2004-08-18 21:00 . 2010-12-20 23:52 387584 c:\windows\system32\iedkcs32.dll
- 2004-08-18 21:00 . 2010-11-06 00:23 387584 c:\windows\system32\iedkcs32.dll
- 2004-08-18 21:00 . 2010-11-03 12:26 173568 c:\windows\system32\ie4uinit.exe
+ 2004-08-18 21:00 . 2010-12-20 12:55 173568 c:\windows\system32\ie4uinit.exe
- 2006-05-10 11:37 . 2010-12-15 02:14 240736 c:\windows\system32\FNTCACHE.DAT
+ 2006-05-10 11:37 . 2011-02-09 09:47 240736 c:\windows\system32\FNTCACHE.DAT
+ 2009-03-08 02:34 . 2010-12-20 23:52 916480 c:\windows\system32\dllcache\wininet.dll
- 2009-03-08 02:34 . 2010-11-06 00:23 916480 c:\windows\system32\dllcache\wininet.dll
+ 2009-07-27 23:19 . 2009-07-27 23:19 135168 c:\windows\system32\dllcache\shsvcs.dll
+ 2011-01-21 14:44 . 2011-01-21 14:44 440320 c:\windows\system32\dllcache\shimgvw.dll
+ 2011-02-09 13:53 . 2011-02-09 13:53 270848 c:\windows\system32\dllcache\sbe.dll
- 2009-03-08 02:34 . 2010-11-06 00:23 206848 c:\windows\system32\dllcache\occache.dll
+ 2009-03-08 02:34 . 2010-12-20 23:52 206848 c:\windows\system32\dllcache\occache.dll
+ 2010-07-05 23:17 . 2010-12-09 15:15 713216 c:\windows\system32\dllcache\ntdll.dll
+ 2009-03-08 02:32 . 2010-12-20 23:52 611840 c:\windows\system32\dllcache\mstime.dll
- 2009-03-08 02:32 . 2010-11-06 00:23 611840 c:\windows\system32\dllcache\mstime.dll
- 2010-07-05 23:25 . 2010-11-06 00:23 602112 c:\windows\system32\dllcache\msfeeds.dll
+ 2010-07-05 23:25 . 2010-12-20 23:52 602112 c:\windows\system32\dllcache\msfeeds.dll
- 2010-07-05 23:17 . 2009-06-25 08:27 729088 c:\windows\system32\dllcache\lsasrv.dll
+ 2010-07-05 23:17 . 2010-12-20 17:25 729088 c:\windows\system32\dllcache\lsasrv.dll
+ 2011-01-27 11:57 . 2011-01-27 11:57 677888 c:\windows\system32\dllcache\lhmstsc.exe
+ 2009-06-25 08:27 . 2010-12-22 12:34 301568 c:\windows\system32\dllcache\kerberos.dll
- 2009-06-25 08:27 . 2009-06-25 08:27 301568 c:\windows\system32\dllcache\kerberos.dll
+ 2010-07-05 23:25 . 2010-12-20 23:52 247808 c:\windows\system32\dllcache\ieproxy.dll
- 2010-07-05 23:25 . 2010-11-06 00:23 247808 c:\windows\system32\dllcache\ieproxy.dll
- 2009-03-08 02:31 . 2010-11-06 00:23 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2009-03-08 02:31 . 2010-12-20 23:52 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2010-07-05 23:25 . 2010-12-20 23:52 743424 c:\windows\system32\dllcache\iedvtool.dll
- 2010-07-05 23:25 . 2010-11-06 00:23 743424 c:\windows\system32\dllcache\iedvtool.dll
- 2009-03-08 12:09 . 2010-11-06 00:23 387584 c:\windows\system32\dllcache\iedkcs32.dll
+ 2009-03-08 12:09 . 2010-12-20 23:52 387584 c:\windows\system32\dllcache\iedkcs32.dll
- 2009-03-08 02:32 . 2010-11-03 12:26 173568 c:\windows\system32\dllcache\ie4uinit.exe
+ 2009-03-08 02:32 . 2010-12-20 12:55 173568 c:\windows\system32\dllcache\ie4uinit.exe
+ 2011-02-09 13:53 . 2011-02-09 13:53 186880 c:\windows\system32\dllcache\encdec.dll
- 2010-04-20 05:48 . 2010-10-28 13:09 290048 c:\windows\system32\dllcache\atmfd.dll
+ 2010-04-20 05:48 . 2011-01-07 14:09 290048 c:\windows\system32\dllcache\atmfd.dll
+ 2011-02-10 16:00 . 2011-02-10 16:00 252928 c:\windows\Installer\98dbec.msi
+ 2011-02-09 09:42 . 2010-11-06 00:23 916480 c:\windows\ie8updates\KB2482017-IE8\wininet.dll
+ 2011-02-09 09:42 . 2010-07-05 13:13 391032 c:\windows\ie8updates\KB2482017-IE8\spuninst\updspapi.dll
+ 2011-02-09 09:42 . 2010-07-05 13:13 233848 c:\windows\ie8updates\KB2482017-IE8\spuninst\spuninst.exe
+ 2011-02-09 09:42 . 2010-11-06 00:23 206848 c:\windows\ie8updates\KB2482017-IE8\occache.dll
+ 2011-02-09 09:42 . 2010-11-06 00:23 611840 c:\windows\ie8updates\KB2482017-IE8\mstime.dll
+ 2011-02-09 09:42 . 2010-11-06 00:23 602112 c:\windows\ie8updates\KB2482017-IE8\msfeeds.dll
+ 2011-02-09 09:42 . 2010-11-06 00:23 247808 c:\windows\ie8updates\KB2482017-IE8\ieproxy.dll
+ 2011-02-09 09:42 . 2010-11-06 00:23 184320 c:\windows\ie8updates\KB2482017-IE8\iepeers.dll
+ 2011-02-09 09:42 . 2010-11-06 00:23 743424 c:\windows\ie8updates\KB2482017-IE8\iedvtool.dll
+ 2011-02-09 09:42 . 2010-11-06 00:23 387584 c:\windows\ie8updates\KB2482017-IE8\iedkcs32.dll
+ 2011-02-09 09:42 . 2010-11-03 12:26 173568 c:\windows\ie8updates\KB2482017-IE8\ie4uinit.exe
+ 2011-02-23 13:46 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB971029$\spuninst\updspapi.dll
+ 2011-02-23 13:46 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB971029$\spuninst\spuninst.exe
+ 2011-02-23 13:46 . 2008-04-14 03:21 135168 c:\windows\$NtUninstallKB971029$\shsvcs.dll
+ 2011-02-09 09:43 . 2010-07-05 13:13 391032 c:\windows\$NtUninstallKB2485376$\spuninst\updspapi.dll
+ 2011-02-09 09:43 . 2010-07-05 13:13 233848 c:\windows\$NtUninstallKB2485376$\spuninst\spuninst.exe
+ 2011-02-09 09:43 . 2010-10-28 13:09 290048 c:\windows\$NtUninstallKB2485376$\atmfd.dll
+ 2011-02-09 09:41 . 2010-02-22 14:21 391032 c:\windows\$NtUninstallKB2483185$\spuninst\updspapi.dll
+ 2011-02-09 09:41 . 2010-02-22 14:20 233848 c:\windows\$NtUninstallKB2483185$\spuninst\spuninst.exe
+ 2011-02-09 09:41 . 2008-04-14 03:21 439296 c:\windows\$NtUninstallKB2483185$\shimgvw.dll
+ 2011-02-09 09:42 . 2010-02-22 14:21 391032 c:\windows\$NtUninstallKB2479628$\spuninst\updspapi.dll
+ 2011-02-09 09:42 . 2010-02-22 14:20 233848 c:\windows\$NtUninstallKB2479628$\spuninst\spuninst.exe
+ 2011-02-09 09:41 . 2010-02-22 14:21 391032 c:\windows\$NtUninstallKB2478971$\spuninst\updspapi.dll
+ 2011-02-09 09:41 . 2010-02-22 14:20 233848 c:\windows\$NtUninstallKB2478971$\spuninst\spuninst.exe
+ 2011-02-09 09:41 . 2009-06-25 08:27 301568 c:\windows\$NtUninstallKB2478971$\kerberos.dll
+ 2011-02-09 09:42 . 2010-07-05 13:13 391032 c:\windows\$NtUninstallKB2478960$\spuninst\updspapi.dll
+ 2011-02-09 09:42 . 2010-07-05 13:13 233848 c:\windows\$NtUninstallKB2478960$\spuninst\spuninst.exe
+ 2011-02-09 09:42 . 2009-06-25 08:27 729088 c:\windows\$NtUninstallKB2478960$\lsasrv.dll
+ 2011-02-09 09:43 . 2010-07-05 13:13 391032 c:\windows\$NtUninstallKB2476687$\spuninst\updspapi.dll
+ 2011-02-09 09:43 . 2010-07-05 13:13 233848 c:\windows\$NtUninstallKB2476687$\spuninst\spuninst.exe
+ 2011-02-09 09:43 . 2010-07-05 13:13 391032 c:\windows\$NtUninstallKB2393802$\spuninst\updspapi.dll
+ 2011-02-09 09:43 . 2010-07-05 13:13 233848 c:\windows\$NtUninstallKB2393802$\spuninst\spuninst.exe
+ 2011-02-09 09:43 . 2009-02-09 10:56 709632 c:\windows\$NtUninstallKB2393802$\ntdll.dll
+ 2011-02-23 13:46 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB971029\update\updspapi.dll
+ 2011-02-23 13:46 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB971029\update\update.exe
+ 2011-02-23 13:46 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB971029\spuninst.exe
+ 2009-07-27 22:22 . 2009-07-27 22:22 135168 c:\windows\$hf_mig$\KB971029\SP3QFE\shsvcs.dll
+ 2011-02-09 09:43 . 2010-07-05 13:13 391032 c:\windows\$hf_mig$\KB2485376\update\updspapi.dll
+ 2011-02-09 09:43 . 2010-07-05 13:13 759160 c:\windows\$hf_mig$\KB2485376\update\update.exe
+ 2011-02-09 09:43 . 2010-07-05 13:13 233848 c:\windows\$hf_mig$\KB2485376\spuninst.exe
+ 2011-01-07 14:09 . 2011-01-07 14:09 290048 c:\windows\$hf_mig$\KB2485376\SP3QFE\atmfd.dll
+ 2011-02-09 09:41 . 2010-02-22 14:21 391032 c:\windows\$hf_mig$\KB2483185\update\updspapi.dll
+ 2011-02-09 09:41 . 2010-02-22 14:21 759160 c:\windows\$hf_mig$\KB2483185\update\update.exe
+ 2011-02-09 09:41 . 2010-02-22 14:20 233848 c:\windows\$hf_mig$\KB2483185\spuninst.exe
+ 2011-01-21 14:42 . 2011-01-21 14:42 440832 c:\windows\$hf_mig$\KB2483185\SP3QFE\shimgvw.dll
+ 2011-02-09 09:42 . 2010-07-05 13:13 391032 c:\windows\$hf_mig$\KB2482017-IE8\update\updspapi.dll
+ 2011-02-09 09:42 . 2010-07-05 13:13 759160 c:\windows\$hf_mig$\KB2482017-IE8\update\update.exe
+ 2011-02-09 09:42 . 2010-07-05 13:13 233848 c:\windows\$hf_mig$\KB2482017-IE8\spuninst.exe
+ 2011-02-09 09:39 . 2010-12-20 23:51 919552 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\wininet.dll
+ 2011-02-09 09:39 . 2010-12-20 23:51 206848 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\occache.dll
+ 2011-02-09 09:39 . 2010-12-20 23:51 611840 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\mstime.dll
+ 2011-02-09 09:39 . 2010-12-20 23:51 602112 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\msfeeds.dll
+ 2011-02-09 09:39 . 2010-12-20 23:51 247808 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\ieproxy.dll
+ 2011-02-09 09:39 . 2010-12-20 23:51 184320 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\iepeers.dll
+ 2011-02-09 09:39 . 2010-12-20 23:51 743424 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\iedvtool.dll
+ 2011-02-09 09:39 . 2010-12-20 23:51 387584 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\iedkcs32.dll
+ 2011-02-09 09:39 . 2010-12-20 12:48 173568 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\ie4uinit.exe
+ 2011-02-09 09:42 . 2010-02-22 14:21 391032 c:\windows\$hf_mig$\KB2479628\update\updspapi.dll
+ 2011-02-09 09:42 . 2010-02-22 14:21 759160 c:\windows\$hf_mig$\KB2479628\update\update.exe
+ 2011-02-09 09:42 . 2010-02-22 14:20 233848 c:\windows\$hf_mig$\KB2479628\spuninst.exe
+ 2011-02-09 09:41 . 2010-02-22 14:21 391032 c:\windows\$hf_mig$\KB2478971\update\updspapi.dll
+ 2011-02-09 09:41 . 2010-02-22 14:21 759160 c:\windows\$hf_mig$\KB2478971\update\update.exe
+ 2011-02-09 09:41 . 2010-02-22 14:20 233848 c:\windows\$hf_mig$\KB2478971\spuninst.exe
+ 2010-12-22 12:32 . 2010-12-22 12:32 301568 c:\windows\$hf_mig$\KB2478971\SP3QFE\kerberos.dll
+ 2011-02-09 09:42 . 2010-07-05 13:13 391032 c:\windows\$hf_mig$\KB2478960\update\updspapi.dll
+ 2011-02-09 09:42 . 2010-07-05 13:13 759160 c:\windows\$hf_mig$\KB2478960\update\update.exe
+ 2011-02-09 09:42 . 2010-07-05 13:13 233848 c:\windows\$hf_mig$\KB2478960\spuninst.exe
+ 2010-12-20 17:24 . 2010-12-20 17:24 729088 c:\windows\$hf_mig$\KB2478960\SP3QFE\lsasrv.dll
+ 2011-02-09 09:43 . 2010-07-05 13:13 391032 c:\windows\$hf_mig$\KB2476687\update\updspapi.dll
+ 2011-02-09 09:43 . 2010-07-05 13:13 759160 c:\windows\$hf_mig$\KB2476687\update\update.exe
+ 2011-02-09 09:43 . 2010-07-05 13:13 233848 c:\windows\$hf_mig$\KB2476687\spuninst.exe
+ 2011-02-09 09:43 . 2010-07-05 13:13 391032 c:\windows\$hf_mig$\KB2393802\update\updspapi.dll
+ 2011-02-09 09:43 . 2010-07-05 13:13 759160 c:\windows\$hf_mig$\KB2393802\update\update.exe
+ 2011-02-09 09:43 . 2010-07-05 13:13 233848 c:\windows\$hf_mig$\KB2393802\spuninst.exe
+ 2011-02-09 09:37 . 2010-12-09 15:15 713216 c:\windows\$hf_mig$\KB2393802\SP3QFE\ntdll.dll
- 2004-08-18 21:00 . 2010-11-06 00:23 1210880 c:\windows\system32\urlmon.dll
+ 2004-08-18 21:00 . 2010-12-20 23:52 1210880 c:\windows\system32\urlmon.dll
+ 2004-08-18 21:00 . 2011-01-21 14:44 8466432 c:\windows\system32\shell32.dll
- 2004-08-18 21:00 . 2010-07-27 06:30 8466432 c:\windows\system32\shell32.dll
+ 2004-08-18 21:00 . 2010-12-09 15:14 2150912 c:\windows\system32\ntoskrnl.exe
+ 2004-08-18 21:00 . 2010-12-09 15:14 2029056 c:\windows\system32\ntkrnlpa.exe
+ 2004-08-18 21:00 . 2010-12-20 23:52 5961216 c:\windows\system32\mshtml.dll
+ 2010-07-05 23:20 . 2011-03-02 14:19 6053536 c:\windows\system32\Macromed\Flash\NPSWF32.dll
- 2009-03-08 02:32 . 2010-11-06 00:23 1991680 c:\windows\system32\iertutil.dll
+ 2009-03-08 02:32 . 2010-12-20 23:52 1991680 c:\windows\system32\iertutil.dll
+ 2010-05-02 08:09 . 2010-12-31 14:04 1854976 c:\windows\system32\dllcache\win32k.sys
+ 2009-03-08 02:34 . 2010-12-20 23:52 1210880 c:\windows\system32\dllcache\urlmon.dll
- 2009-03-08 02:34 . 2010-11-06 00:23 1210880 c:\windows\system32\dllcache\urlmon.dll
+ 2008-06-17 19:02 . 2011-01-21 14:44 8466432 c:\windows\system32\dllcache\shell32.dll
- 2008-06-17 19:02 . 2010-07-27 06:30 8466432 c:\windows\system32\dllcache\shell32.dll
+ 2010-07-05 23:17 . 2010-12-09 15:14 2194944 c:\windows\system32\dllcache\ntoskrnl.exe
+ 2010-07-05 23:17 . 2010-12-09 15:14 2029056 c:\windows\system32\dllcache\ntkrpamp.exe
+ 2009-02-10 17:09 . 2010-12-09 15:14 2071552 c:\windows\system32\dllcache\ntkrnlpa.exe
+ 2010-07-05 23:17 . 2010-12-09 15:14 2150912 c:\windows\system32\dllcache\ntkrnlmp.exe
+ 2009-03-08 02:41 . 2010-12-20 23:52 5961216 c:\windows\system32\dllcache\mshtml.dll
+ 2011-02-02 07:58 . 2011-02-02 07:58 2067456 c:\windows\system32\dllcache\lhmstscx.dll
+ 2010-07-05 23:25 . 2010-12-20 23:52 1991680 c:\windows\system32\dllcache\iertutil.dll
- 2010-07-05 23:25 . 2010-11-06 00:23 1991680 c:\windows\system32\dllcache\iertutil.dll
+ 2011-02-09 09:42 . 2010-11-06 00:23 1210880 c:\windows\ie8updates\KB2482017-IE8\urlmon.dll
+ 2011-02-09 09:42 . 2010-11-06 00:23 5959168 c:\windows\ie8updates\KB2482017-IE8\mshtml.dll
+ 2011-02-09 09:42 . 2010-11-06 00:23 1991680 c:\windows\ie8updates\KB2482017-IE8\iertutil.dll
+ 2010-07-05 23:17 . 2010-12-09 15:14 2194944 c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2010-07-05 23:17 . 2010-12-09 15:14 2029056 c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2009-02-10 17:09 . 2010-12-09 15:14 2071552 c:\windows\Driver Cache\i386\ntkrnlpa.exe
+ 2010-07-05 23:17 . 2010-12-09 15:14 2150912 c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2011-02-09 09:41 . 2010-07-27 06:30 8466432 c:\windows\$NtUninstallKB2483185$\shell32.dll
+ 2011-02-09 09:42 . 2010-10-26 13:58 1853312 c:\windows\$NtUninstallKB2479628$\win32k.sys
+ 2011-02-09 09:43 . 2010-04-28 05:45 2148352 c:\windows\$NtUninstallKB2393802$\ntoskrnl.exe
+ 2011-02-09 09:43 . 2010-04-28 05:45 2026496 c:\windows\$NtUninstallKB2393802$\ntkrpamp.exe
+ 2011-02-09 09:43 . 2010-04-28 05:45 2026496 c:\windows\$NtUninstallKB2393802$\ntkrnlpa.exe
+ 2011-02-09 09:43 . 2010-04-28 05:45 2148352 c:\windows\$NtUninstallKB2393802$\ntkrnlmp.exe
+ 2009-07-27 22:22 . 2009-07-27 22:22 8466944 c:\windows\$hf_mig$\KB971029\SP3QFE\shell32.dll
+ 2011-01-21 14:42 . 2011-01-21 14:42 8467456 c:\windows\$hf_mig$\KB2483185\SP3QFE\shell32.dll
+ 2011-02-09 09:39 . 2010-12-20 23:51 1211904 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\urlmon.dll
+ 2011-02-09 09:39 . 2010-12-20 23:51 5962240 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\mshtml.dll
+ 2011-02-09 09:39 . 2010-12-20 23:51 1992192 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\iertutil.dll
+ 2010-12-31 14:02 . 2010-12-31 14:02 1864064 c:\windows\$hf_mig$\KB2479628\SP3QFE\win32k.sys
+ 2011-02-09 09:37 . 2010-12-09 15:14 2194944 c:\windows\$hf_mig$\KB2393802\SP3QFE\ntoskrnl.exe
+ 2011-02-09 09:37 . 2010-12-09 15:14 2029056 c:\windows\$hf_mig$\KB2393802\SP3QFE\ntkrpamp.exe
+ 2010-12-09 19:44 . 2010-12-09 19:44 2071552 c:\windows\$hf_mig$\KB2393802\SP3QFE\ntkrnlpa.exe
+ 2011-02-09 09:37 . 2010-12-09 15:14 2150912 c:\windows\$hf_mig$\KB2393802\SP3QFE\ntkrnlmp.exe
+ 2010-07-05 23:38 . 2011-03-09 12:22 37943240 c:\windows\system32\MRT.exe
- 2009-03-08 02:39 . 2010-11-06 00:23 11080704 c:\windows\system32\ieframe.dll
+ 2009-03-08 02:39 . 2010-12-20 10:52 11080704 c:\windows\system32\ieframe.dll
+ 2010-07-05 23:25 . 2010-12-20 10:52 11080704 c:\windows\system32\dllcache\ieframe.dll
- 2010-07-05 23:25 . 2010-11-06 00:23 11080704 c:\windows\system32\dllcache\ieframe.dll
+ 2011-02-09 09:42 . 2010-11-06 00:23 11080704 c:\windows\ie8updates\KB2482017-IE8\ieframe.dll
+ 2011-02-09 09:39 . 2010-12-20 23:51 11082752 c:\windows\$hf_mig$\KB2482017-IE8\SP3QFE\ieframe.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2010-09-12 14:02 3863136 ----a-w- c:\program files\ConduitEngine\ConduitEngine.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\ConduitEngine.dll" [2010-09-12 3863136]
.
[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-07-13 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"igfxtray"="c:\windows\system32\igfxtray.exe" [2006-03-22 94208]
"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2006-03-22 77824]
"igfxpers"="c:\windows\system32\igfxpers.exe" [2006-03-22 118784]
"High Definition Audio Property Page Shortcut"="CHDAudPropShortcut.exe" [2006-06-02 61952]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-06-17 794713]
"QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2006-07-19 102400]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2005-02-16 49152]
"Cpqset"="c:\program files\Hewlett-Packard\Default Settings\cpqset.exe" [2006-06-19 40960]
"RecGuard"="c:\windows\SMINST\RecGuard.exe" [2005-10-11 1187840]
"Reminder"="c:\windows\CREATOR\Remind_XP.exe" [2006-02-09 643072]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2007-03-24 98304]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2010-04-07 2145000]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2010-12-09 1226608]
"DivX Download Manager"="c:\program files\DivX\DivX Plus Web Player\DDmService.exe" [2010-12-08 63360]
"TkBellExe"="c:\program files\Real\RealPlayer\update\realsched.exe" [2011-02-10 273544]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-9-23 29696]
Rychlě zaź tek s aplikacˇ HP Photosmart Premier.lnk - c:\program files\HP\Digital Imaging\bin\hpqthb08.exe [2005-9-24 73728]
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
.
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [7.4.2010 21:07 114984]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [7.4.2010 21:07 810120]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [14.7.2010 16:03 135664]
S3 5U870CAP_VID_1262&PID_25FD;HP Pavilion Webcam ;c:\windows\system32\drivers\5U870CAP.sys [6.6.2006 22:39 61952]
.
Obsah adresáře 'Naplánované úlohy'
.
2011-03-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-07-14 14:03]
.
2011-03-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-07-14 14:03]
.
2011-03-27 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-3134737558-3822295182-1303552718-1006.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-01-24 13:25]
.
2011-03-27 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-3134737558-3822295182-1303552718-1006.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-01-24 13:25]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://google.com/
uInternet Settings,ProxyOverride = plimus.com;www.plimus.com;regnow.com;www.regnow.com
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html
Trusted Zone: microsoft.com\*.update
Trusted Zone: microsoft.com\update
Trusted Zone: microsoft.com\windowsupdate
Trusted Zone: windowsupdate.com\download
FF - ProfilePath - c:\documents and settings\Veronika\Data aplikací\Mozilla\Firefox\Profiles\2s5bko68.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2077543&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - ToggleEN Customized Web Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - prefs.js: network.proxy.type - 0
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Facemoods: ffxtlbr@Facemoods.com - %profile%\extensions\ffxtlbr@Facemoods.com
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
FF - Ext: DivX Plus Web Player HTML5 <video>: {23fcfd51-4958-4f00-80a3-ae97e717ed8b} - c:\program files\DivX\DivX Plus Web Player\firefox\html5video
FF - Ext: DivX HiQ: {6904342A-8307-11DF-A508-4AE2DFD72085} - c:\program files\DivX\DivX Plus Web Player\firefox\wpa
FF - Ext: KwiClick: vinceturk@gmail.com - c:\program files\KwiClick LLC\KwiClick
FF - user.js: network.proxy.type - 0
FF - user.js: network.proxy.http -
FF - user.js: network.proxy.http_port - 0
FF - user.js: network.proxy.ssl -
FF - user.js: network.proxy.ssl_port - 0
FF - user.js: network.proxy.ftp -
FF - user.js: network.proxy.ftp_port - 0
FF - user.js: network.proxy.gopher -
FF - user.js: network.proxy.gopher_port - 0
FF - user.js: network.proxy.socks_version - 5
FF - user.js: network.proxy.socks -
FF - user.js: network.proxy.socks_port - 0
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{64182481-4F71-486b-A045-B233BD0DA8FC} - c:\program files\facemoods.com\facemoods\1.4.17.4\bh\facemoods.dll
Toolbar-{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - c:\program files\facemoods.com\facemoods\1.4.17.4\facemoodsTlbr.dll
HKLM-Run-facemoods - c:\program files\facemoods.com\facemoods\1.4.17.4\facemoodssrv.exe
AddRemove-facemoods - c:\program files\facemoods.com\facemoods\1.4.17.4\uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-03-27 22:51
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Cpqset = c:\program files\Hewlett-Packard\Default Settings\cpqset.exe????????????L?@? ????Y??????`?@?????L?@
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 5.1.2600
.
CreateFile("\\.\PHYSICALDRIVE0"): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces.
device: opened successfully
user: error reading MBR
kernel: MBR read successfully
user != kernel MBR !!!
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3134737558-3822295182-1303552718-1006\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:e3,d2,61,80,f0,92,6c,73,4c,4d,74,45,0b,28,72,f4,a7,59,e4,f9,bc,84,4b,
d7,b0,1f,60,68,bb,6f,5e,56,fa,51,6f,f0,6d,01,c8,56,9a,c9,84,04,cb,a1,45,66,\
"??"=hex:7e,da,23,e0,d0,bc,31,d1,e4,05,06,84,75,95,ce,04
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Celkový čas: 2011-03-27 22:54:07
ComboFix-quarantined-files.txt 2011-03-27 20:54
ComboFix2.txt 2011-01-16 23:00
.
Před spuštěním: 3 001 110 528
Po spuštění: Volných bajtů: 11 244 306 432
.
- - End Of File - - EF21000EF371D0F5F0D63384EFC1320A

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119520
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Sekání PC, neúplné vypnutí, padání prohlížeče

#6 Příspěvek od Rudy »

OK, smazáno. Ještě bude problém v MBR. Zkuste ještě TDSSKiller: http://support.kaspersky.com/viruses/utility a uložte ho na plochu. Dále postupujte podle kolegova návodu:

2x-klik na TDSSKiller.exe- spustiť aplikáciu, potom na Spustiť kontrolu-klik- Start Scan.
Ak je infikovaný súbor detekovaný, bude predvolená akcia Cure, kliknite na tlačidlo Continue.
Ak podozrivý[suspicious] súbor je detekovaný, bude predvolená akcia Skip, kliknite na Continue.
Môže vás požiadať, aby ste reštartovali počítač na dokončenie procesu. Kliknite na Reboot Now.
Ak nevyžaduje reštart, kliknite na tlačidlo Report. Log súbor by sa mal objaviť. Prosím, skopírujte a vložte obsah súboru tu.
Ak je vyžadované reštartovanie počítača, správa je k dispozícii vo vašom koreňovom adresári (zvyčajne C:\ zložka) vo forme "TDSSKiller. _log.txt". Prosím, skopírujte a vložte obsah súboru tu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Computerka
Návštěvník
Návštěvník
Příspěvky: 13
Registrován: 27 bře 2011 16:34

Re: Sekání PC, neúplné vypnutí, padání prohlížeče

#7 Příspěvek od Computerka »

Tam se "tváří" být vše v normálu, ale nevím, tady je log:

2011/03/27 23:21:06.0406 1904 TDSS rootkit removing tool 2.4.21.0 Mar 10 2011 12:26:28
2011/03/27 23:21:08.0406 1904 ================================================================================
2011/03/27 23:21:08.0406 1904 SystemInfo:
2011/03/27 23:21:08.0406 1904
2011/03/27 23:21:08.0406 1904 OS Version: 5.1.2600 ServicePack: 3.0
2011/03/27 23:21:08.0406 1904 Product type: Workstation
2011/03/27 23:21:08.0406 1904 ComputerName: PC193051483824
2011/03/27 23:21:08.0406 1904 UserName: Veronika
2011/03/27 23:21:08.0406 1904 Windows directory: C:\WINDOWS
2011/03/27 23:21:08.0406 1904 System windows directory: C:\WINDOWS
2011/03/27 23:21:08.0406 1904 Processor architecture: Intel x86
2011/03/27 23:21:08.0406 1904 Number of processors: 1
2011/03/27 23:21:08.0406 1904 Page size: 0x1000
2011/03/27 23:21:08.0406 1904 Boot type: Normal boot
2011/03/27 23:21:08.0406 1904 ================================================================================
2011/03/27 23:21:08.0859 1904 Initialize success
2011/03/27 23:21:13.0671 2620 ================================================================================
2011/03/27 23:21:13.0671 2620 Scan started
2011/03/27 23:21:13.0671 2620 Mode: Manual;
2011/03/27 23:21:13.0671 2620 ================================================================================
2011/03/27 23:21:15.0453 2620 5U870CAP_VID_1262&PID_25FD (d2142fee659d97b2b05820f21594bfe2) C:\WINDOWS\system32\Drivers\5U870CAP.sys
2011/03/27 23:21:15.0625 2620 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
2011/03/27 23:21:15.0750 2620 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
2011/03/27 23:21:15.0828 2620 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
2011/03/27 23:21:15.0953 2620 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
2011/03/27 23:21:16.0109 2620 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
2011/03/27 23:21:16.0265 2620 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys
2011/03/27 23:21:16.0343 2620 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
2011/03/27 23:21:16.0375 2620 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
2011/03/27 23:21:16.0453 2620 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
2011/03/27 23:21:16.0484 2620 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
2011/03/27 23:21:16.0531 2620 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
2011/03/27 23:21:16.0609 2620 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
2011/03/27 23:21:16.0750 2620 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
2011/03/27 23:21:16.0796 2620 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
2011/03/27 23:21:16.0875 2620 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
2011/03/27 23:21:16.0984 2620 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
2011/03/27 23:21:17.0109 2620 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
2011/03/27 23:21:17.0187 2620 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
2011/03/27 23:21:17.0328 2620 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
2011/03/27 23:21:17.0468 2620 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
2011/03/27 23:21:17.0546 2620 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
2011/03/27 23:21:17.0781 2620 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
2011/03/27 23:21:17.0890 2620 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
2011/03/27 23:21:18.0109 2620 BCM43XX (114234fafec7060392195170e1c4d45e) C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
2011/03/27 23:21:18.0140 2620 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
2011/03/27 23:21:18.0218 2620 BTWUSB (4272bab9291d26da5ac913bc79c3ce85) C:\WINDOWS\system32\Drivers\btwusb.sys
2011/03/27 23:21:18.0515 2620 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
2011/03/27 23:21:18.0593 2620 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
2011/03/27 23:21:18.0718 2620 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
2011/03/27 23:21:18.0859 2620 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
2011/03/27 23:21:18.0937 2620 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
2011/03/27 23:21:19.0015 2620 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
2011/03/27 23:21:19.0125 2620 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
2011/03/27 23:21:19.0234 2620 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
2011/03/27 23:21:19.0390 2620 CmdIde (964d0f042aca51d5644779eb9d9ee40f) C:\WINDOWS\system32\DRIVERS\cmdide.sys
2011/03/27 23:21:19.0500 2620 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
2011/03/27 23:21:19.0687 2620 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
2011/03/27 23:21:19.0765 2620 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
2011/03/27 23:21:19.0890 2620 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
2011/03/27 23:21:20.0046 2620 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
2011/03/27 23:21:20.0203 2620 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
2011/03/27 23:21:20.0359 2620 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
2011/03/27 23:21:20.0578 2620 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
2011/03/27 23:21:20.0703 2620 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
2011/03/27 23:21:20.0828 2620 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
2011/03/27 23:21:20.0937 2620 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
2011/03/27 23:21:21.0093 2620 E100B (83403675cab29e7a4b885b11e7c855d8) C:\WINDOWS\system32\DRIVERS\e100b325.sys
2011/03/27 23:21:21.0328 2620 eabfiltr (b5cb3084046146fd2587d8c9b219feb4) C:\WINDOWS\system32\DRIVERS\eabfiltr.sys
2011/03/27 23:21:21.0390 2620 eabusb (231f4547ae1e4b3e60eca66c3a96d218) C:\WINDOWS\system32\DRIVERS\eabusb.sys
2011/03/27 23:21:21.0500 2620 eamon (ba3bb79c859292c3ff2a21b05e64696f) C:\WINDOWS\system32\DRIVERS\eamon.sys
2011/03/27 23:21:21.0546 2620 ehdrv (3c747a0d8ce29720302972ac6ed09733) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
2011/03/27 23:21:21.0609 2620 epfw (5680e2c38ba53693d724b796e67e8261) C:\WINDOWS\system32\DRIVERS\epfw.sys
2011/03/27 23:21:21.0671 2620 Epfwndis (d9585e144c31d409e28b205253459c3a) C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
2011/03/27 23:21:21.0750 2620 epfwtdi (8c50eedc21c5e962a52d3f788129a64b) C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
2011/03/27 23:21:21.0859 2620 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
2011/03/27 23:21:22.0078 2620 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
2011/03/27 23:21:22.0156 2620 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
2011/03/27 23:21:22.0218 2620 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
2011/03/27 23:21:22.0281 2620 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
2011/03/27 23:21:22.0375 2620 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
2011/03/27 23:21:22.0437 2620 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
2011/03/27 23:21:22.0578 2620 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
2011/03/27 23:21:22.0781 2620 HBtnKey (4d4d97671c63c3af869b3518e6054204) C:\WINDOWS\system32\DRIVERS\cpqbttn.sys
2011/03/27 23:21:22.0890 2620 HdAudAddService (2a6e9a118da2dd0439551a7eb3a8f65e) C:\WINDOWS\system32\drivers\CHDAud.sys
2011/03/27 23:21:23.0015 2620 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
2011/03/27 23:21:23.0140 2620 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
2011/03/27 23:21:23.0328 2620 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
2011/03/27 23:21:23.0531 2620 HSFHWAZL (448c0fd272fe1b80046f4767db21eb8d) C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
2011/03/27 23:21:23.0625 2620 HSF_DPV (2715a27de9c17bdbaf6d6c79989a7b12) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
2011/03/27 23:21:23.0781 2620 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
2011/03/27 23:21:24.0000 2620 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
2011/03/27 23:21:24.0109 2620 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
2011/03/27 23:21:24.0171 2620 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
2011/03/27 23:21:24.0328 2620 ialm (0f0194c4b635c10c3f785e4fee52d641) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
2011/03/27 23:21:24.0500 2620 iaStor (309c4d86d989fb1fcf64bd30dc81c51b) C:\WINDOWS\system32\DRIVERS\iaStor.sys
2011/03/27 23:21:24.0578 2620 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
2011/03/27 23:21:24.0796 2620 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
2011/03/27 23:21:24.0906 2620 IntelIde (57d928e548b38502abba7a77a6eb7312) C:\WINDOWS\system32\DRIVERS\intelide.sys
2011/03/27 23:21:25.0000 2620 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
2011/03/27 23:21:25.0078 2620 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
2011/03/27 23:21:25.0187 2620 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
2011/03/27 23:21:25.0343 2620 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
2011/03/27 23:21:25.0515 2620 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
2011/03/27 23:21:25.0593 2620 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
2011/03/27 23:21:25.0671 2620 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
2011/03/27 23:21:25.0750 2620 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
2011/03/27 23:21:25.0890 2620 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
2011/03/27 23:21:26.0062 2620 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
2011/03/27 23:21:26.0125 2620 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
2011/03/27 23:21:26.0218 2620 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
2011/03/27 23:21:26.0343 2620 mdmxsdk (74f4372af97a587ecec527ec34955712) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
2011/03/27 23:21:26.0437 2620 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
2011/03/27 23:21:26.0500 2620 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
2011/03/27 23:21:26.0546 2620 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
2011/03/27 23:21:26.0687 2620 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
2011/03/27 23:21:26.0765 2620 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
2011/03/27 23:21:26.0843 2620 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
2011/03/27 23:21:26.0906 2620 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
2011/03/27 23:21:27.0078 2620 MRxSmb (f3aefb11abc521122b67095044169e98) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2011/03/27 23:21:27.0203 2620 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
2011/03/27 23:21:27.0281 2620 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
2011/03/27 23:21:27.0406 2620 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2011/03/27 23:21:27.0484 2620 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
2011/03/27 23:21:27.0546 2620 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
2011/03/27 23:21:27.0593 2620 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
2011/03/27 23:21:27.0765 2620 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
2011/03/27 23:21:27.0953 2620 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
2011/03/27 23:21:28.0156 2620 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
2011/03/27 23:21:28.0296 2620 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
2011/03/27 23:21:28.0421 2620 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
2011/03/27 23:21:28.0593 2620 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
2011/03/27 23:21:28.0703 2620 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
2011/03/27 23:21:28.0781 2620 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
2011/03/27 23:21:28.0906 2620 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
2011/03/27 23:21:29.0031 2620 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
2011/03/27 23:21:29.0265 2620 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
2011/03/27 23:21:29.0437 2620 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
2011/03/27 23:21:29.0562 2620 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
2011/03/27 23:21:29.0671 2620 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
2011/03/27 23:21:29.0734 2620 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
2011/03/27 23:21:29.0765 2620 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
2011/03/27 23:21:29.0921 2620 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
2011/03/27 23:21:30.0078 2620 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\drivers\Parport.sys
2011/03/27 23:21:30.0218 2620 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
2011/03/27 23:21:30.0281 2620 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
2011/03/27 23:21:30.0468 2620 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
2011/03/27 23:21:30.0718 2620 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
2011/03/27 23:21:30.0796 2620 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
2011/03/27 23:21:31.0093 2620 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
2011/03/27 23:21:31.0203 2620 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
2011/03/27 23:21:31.0375 2620 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
2011/03/27 23:21:31.0546 2620 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
2011/03/27 23:21:31.0687 2620 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
2011/03/27 23:21:31.0734 2620 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
2011/03/27 23:21:31.0812 2620 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
2011/03/27 23:21:31.0906 2620 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
2011/03/27 23:21:32.0000 2620 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
2011/03/27 23:21:32.0062 2620 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
2011/03/27 23:21:32.0218 2620 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
2011/03/27 23:21:32.0296 2620 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
2011/03/27 23:21:32.0390 2620 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
2011/03/27 23:21:32.0468 2620 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
2011/03/27 23:21:32.0578 2620 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
2011/03/27 23:21:32.0640 2620 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
2011/03/27 23:21:32.0703 2620 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
2011/03/27 23:21:32.0890 2620 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
2011/03/27 23:21:32.0984 2620 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
2011/03/27 23:21:33.0093 2620 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
2011/03/27 23:21:33.0203 2620 rimmptsk (7a6648b61661b1421ffab762e391e33f) C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
2011/03/27 23:21:33.0250 2620 rimsptsk (d0a35b7670aa3558eaab483f64446496) C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
2011/03/27 23:21:33.0328 2620 rismxdp (3ac17802740c3a4764dc9750e92e6233) C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
2011/03/27 23:21:33.0437 2620 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
2011/03/27 23:21:33.0578 2620 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
2011/03/27 23:21:33.0625 2620 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
2011/03/27 23:21:33.0765 2620 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\drivers\Serial.sys
2011/03/27 23:21:33.0875 2620 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
2011/03/27 23:21:34.0062 2620 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
2011/03/27 23:21:34.0125 2620 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
2011/03/27 23:21:34.0250 2620 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
2011/03/27 23:21:34.0390 2620 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
2011/03/27 23:21:34.0468 2620 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
2011/03/27 23:21:34.0625 2620 Srv (0f6aefad3641a657e18081f52d0c15af) C:\WINDOWS\system32\DRIVERS\srv.sys
2011/03/27 23:21:34.0703 2620 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
2011/03/27 23:21:34.0812 2620 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
2011/03/27 23:21:34.0906 2620 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
2011/03/27 23:21:35.0156 2620 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
2011/03/27 23:21:35.0234 2620 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
2011/03/27 23:21:35.0546 2620 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
2011/03/27 23:21:35.0640 2620 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
2011/03/27 23:21:35.0828 2620 SynTP (369d0626687a968182a9db40fe8a0905) C:\WINDOWS\system32\DRIVERS\SynTP.sys
2011/03/27 23:21:35.0906 2620 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
2011/03/27 23:21:36.0015 2620 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
2011/03/27 23:21:36.0062 2620 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
2011/03/27 23:21:36.0109 2620 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
2011/03/27 23:21:36.0156 2620 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
2011/03/27 23:21:36.0234 2620 TosIde (fd4fd7d6fda5c019ed86025d7be1510f) C:\WINDOWS\system32\DRIVERS\toside.sys
2011/03/27 23:21:36.0312 2620 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
2011/03/27 23:21:36.0375 2620 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
2011/03/27 23:21:36.0437 2620 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
2011/03/27 23:21:36.0656 2620 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
2011/03/27 23:21:36.0734 2620 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
2011/03/27 23:21:36.0781 2620 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
2011/03/27 23:21:36.0828 2620 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
2011/03/27 23:21:36.0875 2620 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
2011/03/27 23:21:36.0921 2620 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
2011/03/27 23:21:37.0031 2620 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
2011/03/27 23:21:37.0140 2620 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
2011/03/27 23:21:37.0203 2620 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
2011/03/27 23:21:37.0484 2620 w39n51 (c79918a5bd269035f3a34d157401b9df) C:\WINDOWS\system32\DRIVERS\w39n51.sys
2011/03/27 23:21:37.0671 2620 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
2011/03/27 23:21:37.0859 2620 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
2011/03/27 23:21:38.0000 2620 winachsf (7fe372b1ab60736cc67e8eb6f1fb1f5b) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
2011/03/27 23:21:38.0250 2620 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
2011/03/27 23:21:38.0359 2620 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
2011/03/27 23:21:38.0453 2620 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
2011/03/27 23:21:38.0546 2620 ================================================================================
2011/03/27 23:21:38.0546 2620 Scan finished
2011/03/27 23:21:38.0546 2620 ================================================================================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119520
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Sekání PC, neúplné vypnutí, padání prohlížeče

#8 Příspěvek od Rudy »

PC by již měl být čistý. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Computerka
Návštěvník
Návštěvník
Příspěvky: 13
Registrován: 27 bře 2011 16:34

Re: Sekání PC, neúplné vypnutí, padání prohlížeče

#9 Příspěvek od Computerka »

Ano, děkuji, je to o něco lepší, pouze mne překvapilo, že mi včera Eset našel 8 infikovaných souborů - prý potenciálně nechtěná aplikace - varianta infiltrace Win32. O co se prosím jedná? Děkuji.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119520
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Sekání PC, neúplné vypnutí, padání prohlížeče

#10 Příspěvek od Rudy »

O jaké soubory se jednalo?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Computerka
Návštěvník
Návštěvník
Příspěvky: 13
Registrován: 27 bře 2011 16:34

Re: Sekání PC, neúplné vypnutí, padání prohlížeče

#11 Příspěvek od Computerka »

Bylo to:

C:System volume information/_restore (pak různá kombinace čísel a písmen).exe
ty byly čtyři

pak

C: Program Files/Reviver Soft/registry reviver.exe

jeden

a

C: Document and settings/Data aplikací/Open Candy/VLC Setup.exe

těch bylo několik

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119520
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Sekání PC, neúplné vypnutí, padání prohlížeče

#12 Příspěvek od Rudy »

V system volume information, což je záloha systému něco být může. Vypněte obnovu systému, restartujte PC a obnovu opět zapněte. Ty 2 zbývající soubory (registry reviver.exe a VLC Setup.exe) otestujte online na www.virustotal.com. Myslím, že to viry nebudou, neboť ten první patří čističi registry a druhý by měl být instalátor VLC Playeru.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

b.j.001
Návštěvník
Návštěvník
Příspěvky: 6
Registrován: 18 lis 2012 11:37

Re: Sekání PC, neúplné vypnutí, padání prohlížeče

#13 Příspěvek od b.j.001 »

mne to tiez seka nevypina sa a niekedy sekne ked pomoze az tvrdy reset vdaka za pomoc


Logfile of random's system information tool 1.09 (written by random/random)
Run by BJ at 2012-11-18 11:34:21
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 173 GB (75%) free of 231 GB
Total RAM: 6143 MB (79% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:34:26, on 18. 11. 2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Creative\Creative Live! Cam\Live! Central 3\CTLVCentral3.exe
C:\Windows\V0640Mon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\trend micro\BJ.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Live! Central 3] "C:\Program Files (x86)\Creative\Creative Live! Cam\Live! Central 3\CTLVCentral3.exe" /mode2
O4 - HKLM\..\Run: [V0640Mon.exe] C:\Windows\V0640Mon.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2745142898-2815742099-1246389504-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2745142898-2815742099-1246389504-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Startup: Logitech . Registrácia výrobku.lnk = C:\Program Files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} (Creative Software AutoUpdate 2) - http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7724 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\system32\Dwm.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe"
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files\Logitech\SetPointP\SetPoint.exe" /launchGaming
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Creative\Creative Live! Cam\Live! Central 3\CTLVCentral3.exe" /mode2
"C:\Windows\V0640Mon.exe"
KHALMNPR.EXE /API
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
LBTWiz -silent
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\SysWOW64\DllHost.exe /Processid:{B366DEBE-645B-43A5-B865-DDD82C345492}
"taskhost.exe"
"C:\Users\BJ\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2012-10-30 449512]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2012-10-06 366904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2012-10-30 155384]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2012-03-07 4081008]
"Kernel and Hardware Abstraction Layer"=C:\Windows\KHALMNPR.EXE [2007-09-21 134160]
"EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2012-10-06 2409272]
"Bluetooth Connection Assistant"=LBTWIZ.EXE -silent []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Live! Central 3"=C:\Program Files (x86)\Creative\Creative Live! Cam\Live! Central 3\CTLVCentral3.exe [2010-09-28 499852]
"V0640Mon.exe"=C:\Windows\V0640Mon.exe [2009-09-23 28672]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]

C:\Users\BJ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Logitech . Registrácia výrobku.lnk - C:\Program Files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2012-10-01 68408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-11-18 11:34:21 ----D---- C:\rsit
2012-11-18 11:34:21 ----D---- C:\Program Files\trend micro
2012-11-16 18:41:05 ----D---- C:\ProgramData\Hewlett-Packard
2012-11-16 08:50:58 ----A---- C:\Windows\system32\Wdfres.dll
2012-11-16 08:50:58 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2012-11-16 08:50:58 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2012-11-16 08:46:56 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2012-11-16 08:46:56 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2012-11-16 08:46:55 ----A---- C:\Windows\system32\WUDFSvc.dll
2012-11-16 08:46:55 ----A---- C:\Windows\system32\WUDFPlatform.dll
2012-11-16 08:46:53 ----A---- C:\Windows\system32\WUDFx.dll
2012-11-16 08:46:53 ----A---- C:\Windows\system32\WUDFHost.exe
2012-11-16 08:46:53 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2012-11-16 05:31:26 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2012-11-16 05:31:26 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2012-11-16 05:31:26 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2012-11-16 05:31:26 ----A---- C:\Windows\system32\dhcpcore6.dll
2012-11-16 05:31:21 ----A---- C:\Windows\system32\win32k.sys
2012-11-16 05:31:14 ----A---- C:\Windows\system32\ncsi.dll
2012-11-16 05:31:14 ----A---- C:\Windows\system32\drivers\tcpip.sys
2012-11-16 05:31:13 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2012-11-16 05:31:13 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2012-11-16 05:31:13 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2012-11-16 05:31:13 ----A---- C:\Windows\system32\nlasvc.dll
2012-11-16 05:31:13 ----A---- C:\Windows\system32\nlaapi.dll
2012-11-16 05:31:13 ----A---- C:\Windows\system32\netcorehc.dll
2012-11-16 05:31:13 ----A---- C:\Windows\system32\iphlpsvc.dll
2012-11-16 05:31:13 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2012-11-16 05:31:12 ----A---- C:\Windows\SYSWOW64\netevent.dll
2012-11-16 05:31:12 ----A---- C:\Windows\system32\netevent.dll
2012-11-16 05:30:53 ----A---- C:\Windows\SYSWOW64\synceng.dll
2012-11-16 05:30:53 ----A---- C:\Windows\system32\synceng.dll
2012-11-12 22:05:38 ----ASH---- C:\pagefile.sys
2012-11-10 19:30:23 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2012-11-10 19:29:37 ----D---- C:\ProgramData\HF Designer
2012-11-10 19:29:34 ----D---- C:\Program Files (x86)\HF Designer
2012-11-04 18:33:14 ----D---- C:\Program Files\CCleaner
2012-10-30 14:54:23 ----D---- C:\ProgramData\Sony Ericsson
2012-10-30 14:54:12 ----D---- C:\Program Files (x86)\Sony Ericsson
2012-10-30 14:54:11 ----D---- C:\ProgramData\Sun
2012-10-30 14:54:06 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2012-10-30 14:54:06 ----A---- C:\Windows\SYSWOW64\javaws.exe
2012-10-30 14:54:06 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2012-10-30 14:53:59 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2012-10-30 14:53:59 ----A---- C:\Windows\SYSWOW64\javaw.exe
2012-10-30 14:53:59 ----A---- C:\Windows\SYSWOW64\java.exe
2012-10-30 14:53:48 ----D---- C:\Program Files (x86)\Java
2012-10-30 14:39:30 ----D---- C:\ProgramData\Sony
2012-10-30 14:39:30 ----D---- C:\Program Files (x86)\Sony
2012-10-29 12:27:37 ----A---- C:\Windows\system32\drivers\LNonPnP.sys
2012-10-29 12:20:34 ----A---- C:\Windows\SYSWOW64\MSVCRTD.DLL
2012-10-29 12:20:33 ----A---- C:\Windows\SYSWOW64\mfc42d.dll
2012-10-29 12:20:24 ----A---- C:\Windows\SYSWOW64\drivers\AsIO.sys
2012-10-29 12:20:24 ----A---- C:\Windows\SYSWOW64\AsIO.dll
2012-10-29 12:20:21 ----D---- C:\Program Files (x86)\ASUS
2012-10-29 12:16:49 ----A---- C:\Windows\system32\drivers\ASACPI.sys
2012-10-28 07:09:40 ----D---- C:\Users\BJ\AppData\Roaming\Logishrd
2012-10-27 12:15:57 ----D---- C:\ProgramData\SecTaskMan
2012-10-27 12:15:52 ----D---- C:\Program Files (x86)\Security Task Manager
2012-10-27 09:51:05 ----D---- C:\Program Files (x86)\Adobe
2012-10-27 09:50:11 ----D---- C:\ProgramData\Adobe
2012-10-25 21:11:21 ----D---- C:\Windows\Minidump
2012-10-25 07:48:11 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2012-10-25 07:48:11 ----A---- C:\Windows\system32\drivers\usbport.sys
2012-10-25 07:48:11 ----A---- C:\Windows\system32\drivers\usbohci.sys
2012-10-25 07:48:11 ----A---- C:\Windows\system32\drivers\usbhub.sys
2012-10-25 07:48:11 ----A---- C:\Windows\system32\drivers\usbehci.sys
2012-10-25 07:48:11 ----A---- C:\Windows\system32\drivers\usbd.sys
2012-10-25 07:48:11 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2012-10-25 07:47:42 ----A---- C:\Windows\SYSWOW64\esent.dll
2012-10-25 07:47:42 ----A---- C:\Windows\system32\fsutil.exe
2012-10-25 07:47:42 ----A---- C:\Windows\system32\esent.dll
2012-10-25 07:47:42 ----A---- C:\Windows\system32\drivers\amdxata.sys
2012-10-25 07:47:41 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2012-10-25 07:47:41 ----A---- C:\Windows\system32\drivers\storport.sys
2012-10-25 07:47:41 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2012-10-25 07:47:40 ----A---- C:\Windows\system32\drivers\nvraid.sys
2012-10-25 07:47:40 ----A---- C:\Windows\system32\drivers\amdsata.sys
2012-10-25 07:47:38 ----A---- C:\Windows\system32\drivers\nvstor.sys
2012-10-23 03:58:27 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2012-10-22 04:29:41 ----D---- C:\Windows\SYSWOW64\Wat
2012-10-22 04:29:41 ----D---- C:\Windows\system32\Wat
2012-10-21 19:54:54 ----A---- C:\Windows\system32\MRT.exe
2012-10-21 19:46:51 ----A---- C:\Windows\system32\browserchoice.exe
2012-10-21 19:44:05 ----A---- C:\Windows\SYSWOW64\wmi.dll
2012-10-21 19:44:05 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2012-10-21 19:44:05 ----A---- C:\Windows\system32\wmi.dll
2012-10-21 19:44:05 ----A---- C:\Windows\system32\imagehlp.dll
2012-10-21 19:44:05 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2012-10-21 17:09:03 ----D---- C:\Users\BJ\AppData\Roaming\ts3overlay
2012-10-21 16:25:14 ----D---- C:\Users\BJ\AppData\Roaming\WinRAR
2012-10-21 16:24:57 ----D---- C:\Program Files\WinRAR
2012-10-21 15:17:40 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2012-10-21 15:17:40 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2012-10-21 15:17:40 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2012-10-21 15:17:40 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2012-10-21 15:17:40 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2012-10-21 15:17:40 ----A---- C:\Windows\system32\odbctrac.dll
2012-10-21 15:17:40 ----A---- C:\Windows\system32\odbccu32.dll
2012-10-21 15:17:40 ----A---- C:\Windows\system32\odbccr32.dll
2012-10-21 15:17:40 ----A---- C:\Windows\system32\odbccp32.dll
2012-10-21 15:17:33 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2012-10-21 15:17:33 ----A---- C:\Windows\system32\xmllite.dll
2012-10-21 15:17:31 ----A---- C:\Windows\SYSWOW64\webio.dll
2012-10-21 15:17:31 ----A---- C:\Windows\system32\webio.dll
2012-10-21 15:17:29 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2012-10-21 15:17:29 ----A---- C:\Windows\system32\tquery.dll
2012-10-21 15:17:29 ----A---- C:\Windows\system32\SearchIndexer.exe
2012-10-21 15:17:29 ----A---- C:\Windows\system32\mssrch.dll
2012-10-21 15:17:28 ----A---- C:\Windows\SYSWOW64\tquery.dll
2012-10-21 15:17:28 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2012-10-21 15:17:28 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2012-10-21 15:17:28 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2012-10-21 15:17:27 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2012-10-21 15:17:27 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2012-10-21 15:17:27 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2012-10-21 15:17:27 ----A---- C:\Windows\SYSWOW64\mssph.dll
2012-10-21 15:17:27 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2012-10-21 15:17:27 ----A---- C:\Windows\system32\SearchFilterHost.exe
2012-10-21 15:17:27 ----A---- C:\Windows\system32\mssvp.dll
2012-10-21 15:17:27 ----A---- C:\Windows\system32\mssphtb.dll
2012-10-21 15:17:27 ----A---- C:\Windows\system32\mssph.dll
2012-10-21 15:17:27 ----A---- C:\Windows\system32\msscntrs.dll
2012-10-21 15:17:24 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-10-21 15:17:23 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2012-10-21 15:17:22 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2012-10-21 15:16:44 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2012-10-21 15:16:44 ----A---- C:\Windows\system32\ntshrui.dll
2012-10-21 15:16:42 ----A---- C:\Windows\system32\mshtml.dll
2012-10-21 15:16:40 ----A---- C:\Windows\system32\ieframe.dll
2012-10-21 15:16:37 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2012-10-21 15:16:35 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2012-10-21 15:16:34 ----A---- C:\Windows\SYSWOW64\wininet.dll
2012-10-21 15:16:34 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2012-10-21 15:16:34 ----A---- C:\Windows\system32\wininet.dll
2012-10-21 15:16:34 ----A---- C:\Windows\system32\urlmon.dll
2012-10-21 15:16:33 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2012-10-21 15:16:33 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2012-10-21 15:16:33 ----A---- C:\Windows\system32\msfeeds.dll
2012-10-21 15:16:33 ----A---- C:\Windows\system32\iertutil.dll
2012-10-21 15:16:32 ----A---- C:\Windows\SYSWOW64\ieui.dll
2012-10-21 15:16:32 ----A---- C:\Windows\system32\jsproxy.dll
2012-10-21 15:16:32 ----A---- C:\Windows\system32\ieui.dll
2012-10-21 15:16:31 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2012-10-21 15:16:05 ----A---- C:\Windows\SYSWOW64\tzres.dll
2012-10-21 15:16:05 ----A---- C:\Windows\system32\tzres.dll
2012-10-21 15:15:48 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2012-10-21 15:15:48 ----A---- C:\Windows\system32\drivers\ndis.sys
2012-10-21 15:15:29 ----A---- C:\Windows\system32\shell32.dll
2012-10-21 15:15:27 ----A---- C:\Windows\SYSWOW64\shell32.dll
2012-10-21 15:15:24 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2012-10-21 15:15:23 ----A---- C:\Windows\system32\cdosys.dll
2012-10-21 15:15:20 ----A---- C:\Windows\SYSWOW64\quartz.dll
2012-10-21 15:15:20 ----A---- C:\Windows\system32\quartz.dll
2012-10-21 15:15:19 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2012-10-21 15:15:19 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2012-10-21 15:15:19 ----A---- C:\Windows\system32\qdvd.dll
2012-10-21 15:15:18 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2012-10-21 15:15:17 ----A---- C:\Windows\system32\drivers\ntfs.sys
2012-10-21 15:15:16 ----A---- C:\Windows\system32\drivers\netio.sys
2012-10-21 15:15:16 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2012-10-21 15:15:05 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2012-10-21 15:15:05 ----A---- C:\Windows\system32\msxml6.dll
2012-10-21 15:15:04 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2012-10-21 15:15:04 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2012-10-21 15:15:04 ----A---- C:\Windows\system32\msxml3r.dll
2012-10-21 15:15:04 ----A---- C:\Windows\system32\msxml3.dll
2012-10-21 15:14:52 ----A---- C:\Windows\system32\wow64win.dll
2012-10-21 15:14:52 ----A---- C:\Windows\system32\winsrv.dll
2012-10-21 15:14:52 ----A---- C:\Windows\system32\KernelBase.dll
2012-10-21 15:14:52 ----A---- C:\Windows\system32\kernel32.dll
2012-10-21 15:14:52 ----A---- C:\Windows\system32\conhost.exe
2012-10-21 15:14:51 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2012-10-21 15:14:51 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-10-21 15:14:51 ----A---- C:\Windows\SYSWOW64\setup16.exe
2012-10-21 15:14:51 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2012-10-21 15:14:51 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2012-10-21 15:14:51 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2012-10-21 15:14:51 ----A---- C:\Windows\SYSWOW64\instnm.exe
2012-10-21 15:14:51 ----A---- C:\Windows\system32\wow64cpu.dll
2012-10-21 15:14:51 ----A---- C:\Windows\system32\wow64.dll
2012-10-21 15:14:51 ----A---- C:\Windows\system32\ntvdm64.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2012-10-21 15:14:50 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2012-10-21 15:14:50 ----A---- C:\Windows\SYSWOW64\wow32.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2012-10-21 15:14:49 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2012-10-21 15:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2012-10-21 15:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2012-10-21 15:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2012-10-21 15:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2012-10-21 15:14:48 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2012-10-21 15:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-10-21 15:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-10-21 15:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2012-10-21 15:14:48 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2012-10-21 15:14:48 ----A---- C:\Windows\SYSWOW64\user.exe
2012-10-21 15:14:37 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2012-10-21 15:14:37 ----A---- C:\Windows\system32\CPFilters.dll
2012-10-21 15:14:36 ----A---- C:\Windows\SYSWOW64\sbe.dll
2012-10-21 15:14:36 ----A---- C:\Windows\system32\sbe.dll
2012-10-21 15:14:34 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2012-10-21 15:14:34 ----A---- C:\Windows\system32\mfc42u.dll
2012-10-21 15:14:34 ----A---- C:\Windows\system32\mfc42.dll
2012-10-21 15:14:33 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2012-10-21 15:14:32 ----A---- C:\Windows\system32\atmfd.dll
2012-10-21 15:14:31 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2012-10-21 15:14:31 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2012-10-21 15:14:31 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2012-10-21 15:14:31 ----A---- C:\Windows\system32\fontsub.dll
2012-10-21 15:14:31 ----A---- C:\Windows\system32\atmlib.dll
2012-10-21 15:14:27 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2012-10-21 15:14:27 ----A---- C:\Windows\SYSWOW64\jscript.dll
2012-10-21 15:14:27 ----A---- C:\Windows\system32\vbscript.dll
2012-10-21 15:14:27 ----A---- C:\Windows\system32\jscript.dll
2012-10-21 15:14:25 ----A---- C:\Windows\system32\OxpsConverter.exe
2012-10-21 15:14:23 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2012-10-21 15:14:23 ----A---- C:\Windows\system32\XpsPrint.dll
2012-10-21 15:14:23 ----A---- C:\Windows\system32\drivers\srvnet.sys
2012-10-21 15:14:23 ----A---- C:\Windows\system32\drivers\srv2.sys
2012-10-21 15:14:23 ----A---- C:\Windows\system32\drivers\srv.sys
2012-10-21 15:14:20 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2012-10-21 15:14:20 ----A---- C:\Windows\system32\poqexec.exe
2012-10-21 15:14:19 ----A---- C:\Windows\explorer.exe
2012-10-21 15:14:18 ----A---- C:\Windows\SYSWOW64\explorer.exe
2012-10-21 15:14:17 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2012-10-21 15:14:17 ----A---- C:\Windows\system32\DWrite.dll
2012-10-21 15:14:15 ----A---- C:\Windows\SYSWOW64\schannel.dll
2012-10-21 15:14:15 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2012-10-21 15:14:15 ----A---- C:\Windows\system32\schannel.dll
2012-10-21 15:14:15 ----A---- C:\Windows\system32\ncrypt.dll
2012-10-21 15:14:15 ----A---- C:\Windows\system32\lsasrv.dll
2012-10-21 15:14:15 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-10-21 15:14:15 ----A---- C:\Windows\system32\drivers\cng.sys
2012-10-21 15:14:14 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2012-10-21 15:14:14 ----A---- C:\Windows\SYSWOW64\secur32.dll
2012-10-21 15:14:14 ----A---- C:\Windows\system32\sspisrv.dll
2012-10-21 15:14:14 ----A---- C:\Windows\system32\sspicli.dll
2012-10-21 15:14:14 ----A---- C:\Windows\system32\secur32.dll
2012-10-21 15:14:14 ----A---- C:\Windows\system32\lsass.exe
2012-10-21 15:14:14 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-10-21 15:14:13 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2012-10-21 15:14:13 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2012-10-21 15:14:13 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2012-10-21 15:14:07 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2012-10-21 15:14:07 ----A---- C:\Windows\system32\d3d10level9.dll
2012-10-21 15:14:06 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2012-10-21 15:14:05 ----A---- C:\Windows\system32\psisdecd.dll
2012-10-21 15:14:04 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2012-10-21 15:14:04 ----A---- C:\Windows\system32\rdrmemptylst.exe
2012-10-21 15:14:04 ----A---- C:\Windows\system32\rdpcorekmts.dll
2012-10-21 15:14:03 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2012-10-21 15:14:03 ----A---- C:\Windows\system32\rdpwsx.dll
2012-10-21 15:14:03 ----A---- C:\Windows\system32\dnsrslvr.dll
2012-10-21 15:14:03 ----A---- C:\Windows\system32\dnsapi.dll
2012-10-21 15:14:02 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2012-10-21 15:14:02 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2012-10-21 15:14:02 ----A---- C:\Windows\system32\kerberos.dll
2012-10-21 15:14:02 ----A---- C:\Windows\system32\dnscacheugc.exe
2012-10-21 15:13:59 ----A---- C:\Windows\system32\profsvc.dll
2012-10-21 15:13:58 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2012-10-21 15:13:58 ----A---- C:\Windows\system32\ntdll.dll
2012-10-21 15:13:56 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2012-10-21 15:13:56 ----A---- C:\Windows\system32\d3d10_1.dll
2012-10-21 15:13:55 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2012-10-21 15:13:55 ----A---- C:\Windows\system32\wintrust.dll
2012-10-21 15:13:51 ----A---- C:\Windows\system32\winresume.exe
2012-10-21 15:13:51 ----A---- C:\Windows\system32\winload.exe
2012-10-21 15:13:51 ----A---- C:\Windows\system32\kdusb.dll
2012-10-21 15:13:51 ----A---- C:\Windows\system32\kdcom.dll
2012-10-21 15:13:51 ----A---- C:\Windows\system32\kd1394.dll
2012-10-21 15:13:50 ----A---- C:\Windows\system32\msi.dll
2012-10-21 15:13:49 ----A---- C:\Windows\SYSWOW64\msi.dll
2012-10-21 15:13:48 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2012-10-21 15:13:48 ----A---- C:\Windows\SYSWOW64\browcli.dll
2012-10-21 15:13:48 ----A---- C:\Windows\system32\netapi32.dll
2012-10-21 15:13:48 ----A---- C:\Windows\system32\browser.dll
2012-10-21 15:13:48 ----A---- C:\Windows\system32\browcli.dll
2012-10-21 15:13:47 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2012-10-21 15:13:47 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2012-10-21 15:13:47 ----A---- C:\Windows\system32\oleaut32.dll
2012-10-21 15:13:47 ----A---- C:\Windows\system32\oleacc.dll
2012-10-21 15:13:46 ----A---- C:\Windows\system32\drivers\partmgr.sys
2012-10-21 15:13:45 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2012-10-21 15:13:45 ----A---- C:\Windows\system32\inetcomm.dll
2012-10-21 15:13:40 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-10-21 15:13:39 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2012-10-21 15:13:39 ----A---- C:\Windows\system32\msvcrt.dll
2012-10-21 15:13:39 ----A---- C:\Windows\system32\drivers\afd.sys
2012-10-21 15:13:38 ----A---- C:\Windows\system32\drivers\bowser.sys
2012-10-21 15:13:37 ----A---- C:\Windows\system32\localspl.dll
2012-10-21 15:13:36 ----A---- C:\Windows\system32\FXSCOVER.exe
2012-10-21 15:13:35 ----A---- C:\Windows\system32\prevhost.exe
2012-10-21 15:13:34 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2012-10-21 15:13:34 ----A---- C:\Windows\system32\csrsrv.dll
2012-10-21 15:13:25 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2012-10-21 15:13:25 ----A---- C:\Windows\SYSWOW64\devobj.dll
2012-10-21 15:13:25 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2012-10-21 15:13:25 ----A---- C:\Windows\system32\umpnpmgr.dll
2012-10-21 15:13:24 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2012-10-21 15:11:40 ----D---- C:\Users\BJ\AppData\Roaming\TS3Client
2012-10-21 15:07:59 ----A---- C:\Windows\SYSWOW64\srclient.dll
2012-10-21 15:07:59 ----A---- C:\Windows\system32\srcore.dll
2012-10-21 15:07:10 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2012-10-21 15:07:10 ----A---- C:\Windows\system32\EncDec.dll
2012-10-21 15:06:24 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2012-10-21 15:06:24 ----A---- C:\Windows\system32\win32spl.dll
2012-10-21 15:06:24 ----A---- C:\Windows\system32\spoolsv.exe
2012-10-21 15:06:23 ----A---- C:\Windows\splwow64.exe
2012-10-21 15:00:43 ----A---- C:\Windows\system32\crypt32.dll
2012-10-21 15:00:42 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2012-10-21 15:00:42 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2012-10-21 15:00:42 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2012-10-21 15:00:42 ----A---- C:\Windows\system32\cryptsvc.dll
2012-10-21 15:00:42 ----A---- C:\Windows\system32\cryptnet.dll
2012-10-21 15:00:21 ----A---- C:\Windows\SYSWOW64\packager.dll
2012-10-21 15:00:21 ----A---- C:\Windows\system32\packager.dll
2012-10-21 14:58:13 ----D---- C:\Program Files\TeamSpeak 3 Client
2012-10-21 14:54:15 ----D---- C:\Users\BJ\AppData\Roaming\Creative
2012-10-21 14:50:36 ----D---- C:\ProgramData\Creative
2012-10-21 14:49:54 ----N---- C:\Windows\Ctregrun.exe
2012-10-21 14:49:25 ----A---- C:\Windows\system32\CTAFX64.dll
2012-10-21 14:49:12 ----A---- C:\Windows\SYSWOW64\V0640Pin.dll
2012-10-21 14:49:11 ----A---- C:\Windows\SYSWOW64\V0640Hwx.dll
2012-10-21 14:49:11 ----A---- C:\Windows\SYSWOW64\CtCamMgr.dll
2012-10-21 14:49:11 ----A---- C:\Windows\system32\V0640Pin.dll
2012-10-21 14:49:11 ----A---- C:\Windows\system32\V0640Hwx.dll
2012-10-21 14:49:11 ----A---- C:\Windows\system32\drivers\V0640Vid.sys
2012-10-21 14:49:11 ----A---- C:\Windows\system32\CtCamMgr.dll
2012-10-21 14:49:11 ----A---- C:\Windows\CtDrvIns.exe
2012-10-21 14:44:42 ----A---- C:\Windows\system32\drivers\CtClsFlt.sys
2012-10-21 14:44:41 ----A---- C:\Windows\system32\drivers\CtAudDrv.sys
2012-10-21 14:44:36 ----D---- C:\Program Files (x86)\Creative
2012-10-21 14:38:44 ----D---- C:\Users\BJ\AppData\Roaming\Logitech
2012-10-21 14:38:40 ----D---- C:\Users\BJ\AppData\Roaming\Leadertech
2012-10-21 14:36:41 ----D---- C:\ProgramData\Logitech
2012-10-21 14:36:39 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-10-21 14:36:38 ----D---- C:\Program Files\Common Files\Logishrd
2012-10-21 14:36:36 ----D---- C:\Program Files\Logitech
2012-10-21 14:36:25 ----D---- C:\ProgramData\LogiShrd
2012-10-21 13:59:43 ----D---- C:\Program Files (x86)\Microsoft Works
2012-10-21 13:59:30 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2012-10-21 13:59:20 ----D---- C:\Windows\PCHEALTH
2012-10-21 13:59:20 ----D---- C:\Program Files (x86)\Microsoft.NET
2012-10-21 13:57:49 ----D---- C:\Program Files\Microsoft Office
2012-10-21 13:57:21 ----D---- C:\ProgramData\Microsoft Help
2012-10-21 13:57:21 ----D---- C:\Program Files (x86)\Microsoft Office
2012-10-21 13:57:02 ----RHD---- C:\MSOCache
2012-10-21 13:44:24 ----D---- C:\Users\BJ\AppData\Roaming\Skype
2012-10-21 13:44:19 ----RD---- C:\Program Files (x86)\Skype
2012-10-21 13:44:16 ----D---- C:\ProgramData\Skype
2012-10-21 13:37:15 ----D---- C:\Program Files (x86)\The KMPlayer
2012-10-21 13:32:51 ----D---- C:\Windows\Panther
2012-10-21 13:24:30 ----D---- C:\Users\BJ\AppData\Roaming\wargaming.net
2012-10-21 13:24:03 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2012-10-21 13:24:03 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2012-10-21 13:24:03 ----A---- C:\Windows\system32\XAudio2_7.dll
2012-10-21 13:24:03 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2012-10-21 13:24:02 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2012-10-21 13:24:02 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2012-10-21 13:24:02 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2012-10-21 13:24:02 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2012-10-21 13:24:02 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2012-10-21 13:24:02 ----A---- C:\Windows\system32\xactengine3_7.dll
2012-10-21 13:24:02 ----A---- C:\Windows\system32\d3dx11_43.dll
2012-10-21 13:24:02 ----A---- C:\Windows\system32\d3dx10_43.dll
2012-10-21 13:24:02 ----A---- C:\Windows\system32\d3dcsx_43.dll
2012-10-21 13:24:02 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2012-10-21 13:24:01 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2012-10-21 13:24:01 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2012-10-21 13:24:01 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2012-10-21 13:24:01 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2012-10-21 13:24:01 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2012-10-21 13:24:01 ----A---- C:\Windows\system32\XAudio2_6.dll
2012-10-21 13:24:01 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2012-10-21 13:24:01 ----A---- C:\Windows\system32\xactengine3_6.dll
2012-10-21 13:24:01 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2012-10-21 13:24:01 ----A---- C:\Windows\system32\D3DX9_43.dll
2012-10-21 13:24:00 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2012-10-21 13:24:00 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2012-10-21 13:24:00 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2012-10-21 13:24:00 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2012-10-21 13:24:00 ----A---- C:\Windows\system32\XAudio2_5.dll
2012-10-21 13:24:00 ----A---- C:\Windows\system32\xactengine3_5.dll
2012-10-21 13:24:00 ----A---- C:\Windows\system32\d3dcsx_42.dll
2012-10-21 13:24:00 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2012-10-21 13:23:59 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2012-10-21 13:23:59 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2012-10-21 13:23:59 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2012-10-21 13:23:59 ----A---- C:\Windows\system32\D3DX9_42.dll
2012-10-21 13:23:59 ----A---- C:\Windows\system32\d3dx11_42.dll
2012-10-21 13:23:59 ----A---- C:\Windows\system32\d3dx10_42.dll
2012-10-21 13:23:58 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2012-10-21 13:23:58 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2012-10-21 13:23:58 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2012-10-21 13:23:58 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2012-10-21 13:23:58 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2012-10-21 13:23:58 ----A---- C:\Windows\system32\XAudio2_4.dll
2012-10-21 13:23:58 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2012-10-21 13:23:58 ----A---- C:\Windows\system32\D3DX9_41.dll
2012-10-21 13:23:58 ----A---- C:\Windows\system32\d3dx10_41.dll
2012-10-21 13:23:58 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2012-10-21 13:23:57 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2012-10-21 13:23:57 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2012-10-21 13:23:57 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2012-10-21 13:23:57 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2012-10-21 13:23:57 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2012-10-21 13:23:57 ----A---- C:\Windows\system32\xactengine3_4.dll
2012-10-21 13:23:57 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2012-10-21 13:23:57 ----A---- C:\Windows\system32\D3DX9_40.dll
2012-10-21 13:23:57 ----A---- C:\Windows\system32\d3dx10_40.dll
2012-10-21 13:23:57 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2012-10-21 13:23:56 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2012-10-21 13:23:56 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2012-10-21 13:23:56 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2012-10-21 13:23:56 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2012-10-21 13:23:56 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2012-10-21 13:23:56 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2012-10-21 13:23:56 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2012-10-21 13:23:56 ----A---- C:\Windows\system32\XAudio2_3.dll
2012-10-21 13:23:56 ----A---- C:\Windows\system32\XAudio2_2.dll
2012-10-21 13:23:56 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2012-10-21 13:23:56 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2012-10-21 13:23:56 ----A---- C:\Windows\system32\xactengine3_3.dll
2012-10-21 13:23:56 ----A---- C:\Windows\system32\xactengine3_2.dll
2012-10-21 13:23:56 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2012-10-21 13:23:55 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2012-10-21 13:23:55 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2012-10-21 13:23:55 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2012-10-21 13:23:55 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2012-10-21 13:23:55 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2012-10-21 13:23:55 ----A---- C:\Windows\system32\XAudio2_1.dll
2012-10-21 13:23:55 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2012-10-21 13:23:55 ----A---- C:\Windows\system32\D3DX9_39.dll
2012-10-21 13:23:55 ----A---- C:\Windows\system32\d3dx10_39.dll
2012-10-21 13:23:55 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2012-10-21 13:23:54 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2012-10-21 13:23:54 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2012-10-21 13:23:54 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2012-10-21 13:23:54 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2012-10-21 13:23:54 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2012-10-21 13:23:54 ----A---- C:\Windows\system32\xactengine3_1.dll
2012-10-21 13:23:54 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2012-10-21 13:23:54 ----A---- C:\Windows\system32\D3DX9_38.dll
2012-10-21 13:23:54 ----A---- C:\Windows\system32\d3dx10_38.dll
2012-10-21 13:23:54 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2012-10-21 13:23:53 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2012-10-21 13:23:53 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2012-10-21 13:23:53 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2012-10-21 13:23:53 ----A---- C:\Windows\system32\XAudio2_0.dll
2012-10-21 13:23:53 ----A---- C:\Windows\system32\xactengine3_0.dll
2012-10-21 13:23:53 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2012-10-21 13:23:52 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2012-10-21 13:23:52 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2012-10-21 13:23:52 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2012-10-21 13:23:52 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2012-10-21 13:23:52 ----A---- C:\Windows\system32\xactengine2_10.dll
2012-10-21 13:23:52 ----A---- C:\Windows\system32\D3DX9_37.dll
2012-10-21 13:23:52 ----A---- C:\Windows\system32\d3dx10_37.dll
2012-10-21 13:23:52 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2012-10-21 13:23:51 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2012-10-21 13:23:51 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2012-10-21 13:23:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2012-10-21 13:23:51 ----A---- C:\Windows\system32\d3dx9_36.dll
2012-10-21 13:23:51 ----A---- C:\Windows\system32\d3dx10_36.dll
2012-10-21 13:23:51 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2012-10-21 13:23:50 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2012-10-21 13:23:50 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2012-10-21 13:23:50 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2012-10-21 13:23:50 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2012-10-21 13:23:50 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2012-10-21 13:23:50 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2012-10-21 13:23:50 ----A---- C:\Windows\system32\xactengine2_9.dll
2012-10-21 13:23:50 ----A---- C:\Windows\system32\xactengine2_8.dll
2012-10-21 13:23:50 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2012-10-21 13:23:50 ----A---- C:\Windows\system32\d3dx9_35.dll
2012-10-21 13:23:50 ----A---- C:\Windows\system32\d3dx10_35.dll
2012-10-21 13:23:50 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2012-10-21 13:23:49 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2012-10-21 13:23:49 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2012-10-21 13:23:49 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2012-10-21 13:23:49 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2012-10-21 13:23:49 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2012-10-21 13:23:49 ----A---- C:\Windows\system32\xinput1_3.dll
2012-10-21 13:23:49 ----A---- C:\Windows\system32\xactengine2_7.dll
2012-10-21 13:23:49 ----A---- C:\Windows\system32\d3dx9_34.dll
2012-10-21 13:23:49 ----A---- C:\Windows\system32\d3dx10_34.dll
2012-10-21 13:23:49 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2012-10-21 13:23:48 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2012-10-21 13:23:48 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2012-10-21 13:23:48 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2012-10-21 13:23:48 ----A---- C:\Windows\system32\xactengine2_6.dll
2012-10-21 13:23:48 ----A---- C:\Windows\system32\d3dx9_33.dll
2012-10-21 13:23:48 ----A---- C:\Windows\system32\d3dx10_33.dll
2012-10-21 13:23:48 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2012-10-21 13:23:47 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2012-10-21 13:23:47 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2012-10-21 13:23:47 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2012-10-21 13:23:47 ----A---- C:\Windows\system32\xactengine2_5.dll
2012-10-21 13:23:47 ----A---- C:\Windows\system32\d3dx9_32.dll
2012-10-21 13:23:47 ----A---- C:\Windows\system32\d3dx10.dll
2012-10-21 13:23:46 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2012-10-21 13:23:46 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2012-10-21 13:23:46 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2012-10-21 13:23:46 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2012-10-21 13:23:46 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2012-10-21 13:23:46 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2012-10-21 13:23:46 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2012-10-21 13:23:46 ----A---- C:\Windows\system32\xinput1_2.dll
2012-10-21 13:23:46 ----A---- C:\Windows\system32\xinput1_1.dll
2012-10-21 13:23:46 ----A---- C:\Windows\system32\xactengine2_4.dll
2012-10-21 13:23:46 ----A---- C:\Windows\system32\xactengine2_3.dll
2012-10-21 13:23:46 ----A---- C:\Windows\system32\xactengine2_2.dll
2012-10-21 13:23:46 ----A---- C:\Windows\system32\x3daudio1_1.dll
2012-10-21 13:23:46 ----A---- C:\Windows\system32\d3dx9_31.dll
2012-10-21 13:23:45 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2012-10-21 13:23:45 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2012-10-21 13:23:45 ----A---- C:\Windows\system32\xactengine2_1.dll
2012-10-21 13:23:45 ----A---- C:\Windows\system32\d3dx9_30.dll
2012-10-21 13:23:44 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2012-10-21 13:23:44 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2012-10-21 13:23:44 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2012-10-21 13:23:44 ----A---- C:\Windows\system32\xactengine2_0.dll
2012-10-21 13:23:44 ----A---- C:\Windows\system32\x3daudio1_0.dll
2012-10-21 13:23:44 ----A---- C:\Windows\system32\d3dx9_29.dll
2012-10-21 13:23:43 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2012-10-21 13:23:43 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2012-10-21 13:23:43 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2012-10-21 13:23:43 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2012-10-21 13:23:43 ----A---- C:\Windows\system32\d3dx9_28.dll
2012-10-21 13:23:43 ----A---- C:\Windows\system32\d3dx9_27.dll
2012-10-21 13:23:43 ----A---- C:\Windows\system32\d3dx9_26.dll
2012-10-21 13:23:43 ----A---- C:\Windows\system32\d3dx9_25.dll
2012-10-21 13:23:42 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2012-10-21 13:23:42 ----A---- C:\Windows\system32\d3dx9_24.dll
2012-10-21 13:19:43 ----D---- C:\Windows\SYSWOW64\directx
2012-10-21 13:19:39 ----D---- C:\Games
2012-10-21 13:04:42 ----D---- C:\Program Files (x86)\Google
2012-10-21 12:56:32 ----D---- C:\Users\BJ\AppData\Roaming\ESET
2012-10-21 12:54:50 ----D---- C:\ProgramData\ESET
2012-10-21 12:54:50 ----D---- C:\Program Files\ESET
2012-10-21 12:50:49 ----SHD---- C:\Windows\Installer
2012-10-21 12:49:34 ----D---- C:\Users\BJ\AppData\Roaming\Macromedia
2012-10-21 12:49:34 ----D---- C:\Users\BJ\AppData\Roaming\Adobe
2012-10-21 12:49:26 ----D---- C:\Windows\SYSWOW64\Macromed
2012-10-21 12:49:26 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2012-10-21 12:49:20 ----D---- C:\Windows\system32\Macromed
2012-10-21 12:49:03 ----D---- C:\ProgramData\NVIDIA
2012-10-21 12:48:45 ----A---- C:\Windows\system32\nvvsvc.exe
2012-10-21 12:48:45 ----A---- C:\Windows\system32\nvsvcr.dll
2012-10-21 12:48:45 ----A---- C:\Windows\system32\nvsvc64.dll
2012-10-21 12:48:45 ----A---- C:\Windows\system32\nvshext.dll
2012-10-21 12:48:45 ----A---- C:\Windows\system32\nvmctray.dll
2012-10-21 12:48:45 ----A---- C:\Windows\system32\nvcpl.dll
2012-10-21 12:48:34 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2012-10-21 12:48:34 ----A---- C:\Windows\system32\OpenCL.dll
2012-10-21 12:48:18 ----D---- C:\ProgramData\NVIDIA Corporation
2012-10-21 12:48:15 ----D---- C:\Program Files\NVIDIA Corporation
2012-10-21 12:48:15 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2012-10-21 12:47:37 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2012-10-21 12:47:37 ----A---- C:\Windows\system32\rdpcore.dll
2012-10-21 12:47:37 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2012-10-21 12:44:31 ----A---- C:\Windows\system32\wups2.dll
2012-10-21 12:44:31 ----A---- C:\Windows\system32\wucltux.dll
2012-10-21 12:44:31 ----A---- C:\Windows\system32\wuaueng.dll
2012-10-21 12:44:31 ----A---- C:\Windows\system32\wuauclt.exe
2012-10-21 12:44:25 ----A---- C:\Windows\system32\wups.dll
2012-10-21 12:44:25 ----A---- C:\Windows\system32\wudriver.dll
2012-10-21 12:44:25 ----A---- C:\Windows\system32\wuapi.dll
2012-10-21 12:44:18 ----A---- C:\Windows\system32\wuwebv.dll
2012-10-21 12:44:18 ----A---- C:\Windows\system32\wuapp.exe
2012-10-21 12:44:03 ----D---- C:\Users\BJ\AppData\Roaming\Identities
2012-10-21 12:43:52 ----SD---- C:\Users\BJ\AppData\Roaming\Microsoft
2012-10-21 12:43:52 ----D---- C:\Users\BJ\AppData\Roaming\Media Center Programs
2012-10-21 12:43:41 ----SHD---- C:\Recovery
2012-10-21 12:36:19 ----D---- C:\Windows\SoftwareDistribution
2012-10-21 12:34:09 ----D---- C:\Windows\Prefetch
2012-10-21 12:33:36 ----SHD---- C:\System Volume Information
2012-10-21 12:33:36 ----ASH---- C:\hiberfil.sys

======List of files/folders modified in the last 1 month======

2012-11-18 11:34:22 ----D---- C:\Windows\Temp
2012-11-18 11:34:21 ----RD---- C:\Program Files
2012-11-18 10:48:18 ----D---- C:\Windows\System32
2012-11-18 10:48:18 ----D---- C:\Windows\inf
2012-11-18 10:48:18 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-11-18 07:06:33 ----D---- C:\Windows
2012-11-18 02:03:58 ----D---- C:\Windows\debug
2012-11-17 12:53:05 ----D---- C:\Windows\system32\config
2012-11-16 18:41:05 ----HD---- C:\ProgramData
2012-11-16 18:40:41 ----D---- C:\Windows\system32\drivers
2012-11-16 16:24:37 ----D---- C:\Windows\rescache
2012-11-16 12:46:03 ----D---- C:\Windows\Microsoft.NET
2012-11-16 12:46:02 ----RSD---- C:\Windows\assembly
2012-11-16 11:48:16 ----D---- C:\Windows\winsxs
2012-11-16 11:45:04 ----D---- C:\Windows\SYSWOW64\en-US
2012-11-16 11:45:04 ----D---- C:\Windows\SysWOW64
2012-11-16 11:45:04 ----D---- C:\Windows\system32\en-US
2012-11-16 11:45:03 ----D---- C:\Windows\system32\wbem
2012-11-16 11:45:03 ----D---- C:\Windows\system32\drivers\en-US
2012-11-16 11:45:02 ----D---- C:\Windows\SYSWOW64\migration
2012-11-16 11:45:02 ----D---- C:\Windows\system32\migration
2012-11-16 11:45:01 ----RSD---- C:\Windows\Fonts
2012-11-16 11:45:01 ----D---- C:\Windows\system32\sk-SK
2012-11-16 08:51:03 ----D---- C:\Windows\system32\catroot
2012-11-16 05:31:04 ----D---- C:\Windows\system32\catroot2
2012-11-15 21:06:56 ----D---- C:\Windows\Tasks
2012-11-15 21:06:56 ----D---- C:\Windows\system32\wfp
2012-11-15 21:06:56 ----D---- C:\Windows\system32\DriverStore
2012-11-15 21:06:55 ----D---- C:\Windows\system32\drivers\UMDF
2012-11-15 21:06:54 ----D---- C:\Windows\system32\CodeIntegrity
2012-11-15 21:06:54 ----D---- C:\Windows\AppCompat
2012-11-15 21:06:52 ----D---- C:\Windows\registration
2012-11-10 19:29:34 ----RD---- C:\Program Files (x86)
2012-11-10 13:17:55 ----SD---- C:\ProgramData\Microsoft
2012-11-08 05:38:07 ----D---- C:\Windows\SYSWOW64\drivers
2012-11-04 18:44:21 ----D---- C:\Windows\Logs
2012-11-04 18:33:16 ----D---- C:\Windows\system32\Tasks
2012-10-30 14:54:10 ----D---- C:\Program Files (x86)\Common Files
2012-10-24 05:47:36 ----D---- C:\Windows\LiveKernelReports
2012-10-23 04:34:55 ----D---- C:\Windows\system32\LogFiles
2012-10-22 04:29:51 ----D---- C:\Program Files\Common Files\System
2012-10-22 04:29:50 ----D---- C:\Windows\ehome
2012-10-22 04:29:46 ----D---- C:\Program Files\Internet Explorer
2012-10-22 04:29:46 ----D---- C:\Program Files (x86)\Internet Explorer
2012-10-22 04:29:45 ----D---- C:\Windows\SYSWOW64\sk-SK
2012-10-22 04:29:44 ----D---- C:\Windows\AppPatch
2012-10-22 04:29:38 ----D---- C:\Windows\system32\Boot
2012-10-22 04:29:32 ----D---- C:\Program Files\Windows Journal
2012-10-21 20:00:01 ----D---- C:\Windows\system32\wdi
2012-10-21 15:08:22 ----D---- C:\Windows\Downloaded Program Files
2012-10-21 14:58:21 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-10-21 14:49:14 ----D---- C:\Windows\twain_32
2012-10-21 14:36:38 ----D---- C:\Program Files\Common Files
2012-10-21 13:57:40 ----D---- C:\Windows\ShellNew
2012-10-21 13:57:35 ----A---- C:\Windows\win.ini
2012-10-21 12:49:22 ----RD---- C:\Users
2012-10-21 12:48:43 ----D---- C:\Windows\Help
2012-10-21 12:44:05 ----D---- C:\Windows\system32\restore
2012-10-21 12:44:00 ----SHD---- C:\$Recycle.Bin
2012-10-21 12:37:21 ----D---- C:\Windows\system32\sysprep

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2012-03-14 62496]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2009-04-06 13368]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2012-03-14 209768]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2012-03-14 148528]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2012-03-14 38288]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2012-03-14 187632]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\Windows\system32\DRIVERS\CtClsFlt.sys [2010-08-31 176000]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2012-09-18 75064]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2012-09-18 61240]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-05-14 15416]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
R3 V0640Vid;Creative Live! Cam Socialize (VF0640) Driver; C:\Windows\system32\DRIVERS\V0640Vid.sys [2009-12-04 319520]
S3 s1039bus;Sony Ericsson Device 1039 driver (WDM); C:\Windows\system32\DRIVERS\s1039bus.sys [2010-03-01 127600]
S3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s1039mdfl.sys [2010-03-01 19568]
S3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s1039mdm.sys [2010-03-01 161904]
S3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s1039mgmt.sys [2010-03-01 141424]
S3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS); C:\Windows\system32\DRIVERS\s1039nd5.sys [2010-03-01 34416]
S3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s1039obex.sys [2010-03-01 137328]
S3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM); C:\Windows\system32\DRIVERS\s1039unic.sys [2010-03-01 158320]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2012-03-07 913144]
R2 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2012-10-01 359224]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-10-02 891240]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-10-10 1258856]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-02 382824]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-21 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-21 116648]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-10-21 1255736]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119520
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Sekání PC, neúplné vypnutí, padání prohlížeče

#14 Příspěvek od Rudy »

2b.j.001: Založte si, prosím, vlastní topic. Děkujeme. Zde zamykám.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno