VIRY.CZ

Logfile of random's system information tool 1.08 (written by random/random)
Run by Pán R. (stolár) at 2011-04-14 12:39:14
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 142 GB (15%) free of 938 GB
Total RAM: 4095 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:39:45, on 14. 4. 2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\GamerOSD\GamerOSD.exe
C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Pán R. (stolár)\Downloads\HellShare.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Pán R. (stolár).exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: (no name) - AutorunsDisabled - (no file)
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Pomocník pri prihlasovaní v konte Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - (no file)
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [ASUSGamerOSD] C:\Program Files (x86)\ASUS\GamerOSD\GamerOSD.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Epson Stylus SX420W(Sieť)] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGCE.EXE /FU "C:\Users\PNR~1.(ST\AppData\Local\Temp\E_SB16C.tmp" /EF "HKCU"
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://oas.support.microsoft.com/ActiveX/MSDcode.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{040AF966-8B9F-479C-A8E7-95428805CE62}: NameServer = 195.146.128.60,195.146.132.59
O17 - HKLM\System\CS1\Services\Tcpip\..\{040AF966-8B9F-479C-A8E7-95428805CE62}: NameServer = 195.146.128.60,195.146.132.59
O17 - HKLM\System\CS2\Services\Tcpip\..\{040AF966-8B9F-479C-A8E7-95428805CE62}: NameServer = 195.146.128.60,195.146.132.59
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: SAMSUNG AllShare Service (AllShare) - Unknown owner - C:\Program Files (x86)\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AMD Reservation Manager - Advanced Micro Devices - C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
O23 - Service: AODService - Unknown owner - C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe
O23 - Service: ATK Fast User Switch Service (ATKFUSService) - Unknown owner - C:\Windows\system32\ATKFUSService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: EpsonBidirectionalService - SEIKO EPSON CORPORATION - C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MySQL - Unknown owner - C:\Program Files\MySQL\MySQL Server 5.1\bin\mysqld.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Epson Printer Status Agent4 (StatusAgent4) - SEIKO EPSON CORPORATION - C:\Windows\SysWOW64\SAgent4.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-20001 (WMSVC) - Unknown owner - C:\Windows\system32\inetsrv\wmsvc.exe (file missing)

--
End of file - 9408 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ATKFUSService.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
atieclxx
"C:\Program Files\ASUS\GamerOSD\ATKFastUserSwitching.exe"
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k NetworkService
"C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe"
taskeng.exe {4B94FD03-D798-478D-94BC-9E60E4B7DB83}
"C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe"
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sMYMOVIES
"C:\Program Files (x86)\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe" -sSTUDIODB
"C:\Program Files\MySQL\MySQL Server 5.1\bin\mysqld.exe" --defaults-file="C:\Program Files\MySQL\MySQL Server 5.1\my.ini" MySQL
"C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe"
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
"C:\Program Files\Logitech\SetPointP\SetPoint.exe" /launchGaming
C:\Windows\SysWOW64\SAgent4.exe
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
WLIDSvcM.exe 2852
KHALMNPR.EXE /API
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Program Files (x86)\ASUS\GamerOSD\GamerOSD.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=extension --lang=sk --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/max_500ms_queue_prefetch/DnsParallelism/parallel_7/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/npn_with_spdy/ --channel=4184.03E8C900.1856590845 /prefetch:3 --ignored=" --type=renderer "
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=extension --lang=sk --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/max_500ms_queue_prefetch/DnsParallelism/parallel_7/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/npn_with_spdy/ --channel=4184.03E8C780.1780437587 /prefetch:3 --ignored=" --type=renderer "
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=extension --lang=sk --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/max_500ms_queue_prefetch/DnsParallelism/parallel_7/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/npn_with_spdy/ --channel=4184.03E8C600.1646088736 /prefetch:3 --ignored=" --type=renderer "
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=extension --lang=sk --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/max_500ms_queue_prefetch/DnsParallelism/parallel_7/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/npn_with_spdy/ --channel=4184.03E8C480.2065981040 /prefetch:3 --ignored=" --type=renderer "
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtest=CacheSize/CacheSizeGroup_0/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/max_500ms_queue_prefetch/DnsParallelism/parallel_7/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/npn_with_spdy/ --channel=4184.06C85300.1764072006 /prefetch:3
C:\Windows\system32\rundll32.exe "C:\PROGRA~2\Google\Chrome\APPLIC~1\100648~1.204\gcswf32.dll",BrokerMain browser=chrome
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Program Files (x86)\Google\Chrome\Application\10.0.648.204\gcswf32.dll" --lang=sk --plugin-data-dir="C:\Users\Pán R. (stolár)\AppData\Local\Google\Chrome\User Data\Default" --channel=4184.083E4800.568383681 /prefetch:4 --flash-broker=3016
"C:\Users\Pán R. (stolár)\Downloads\HellShare.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtest=CacheSize/CacheSizeGroup_0/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/max_500ms_queue_prefetch/DnsParallelism/parallel_7/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyCwnd/cwndDynamic/SpdyImpact/npn_with_spdy/ --channel=4184.06C85780.136626841 /prefetch:3
"C:\Users\Pán R. (stolár)\Downloads\RSITx64 (1).exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\AWC Update.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\Install_NSS.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\AutorunsDisabled]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll [2010-12-08 3123072]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{593DDEC6-7468-4cdd-90E1-42DADAA222E9}]
DivX HiQ - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll [2010-12-08 3123072]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pri prihlasovaní v konte Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-09-19 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
{32099AAC-C132-4136-9E9A-4E364A424E17}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{872b5b88-9db5-4310-bdd0-ac189557e5f5}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2010-10-29 1680976]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2010-08-12 2916584]
"Windows Defender"= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Epson Stylus SX420W(Sieť)"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGCE.EXE [2009-09-14 224768]
"ABBYY Screenshot Reader Bonus"= []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [2010-12-21 1483264]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2010-08-11 2472048]
"ASUSGamerOSD"=C:\Program Files (x86)\ASUS\GamerOSD\GamerOSD.exe [2009-07-30 380928]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2011-03-09 336384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2010-10-28 66640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll [2008-03-18 275360]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*
.vbs - open - %SystemRoot%\SysWow64\CScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-04-14 06:27:03 ----D---- C:\ProgramData\Video32
2011-04-14 06:27:03 ----D---- C:\ProgramData\CutList Plus
2011-04-14 06:27:02 ----D---- C:\Users\Pán R. (stolár)\AppData\Roaming\CutList Plus
2011-04-14 06:16:23 ----D---- C:\Program Files (x86)\Bridgewood Design
2011-04-14 00:44:41 ----D---- C:\Program Files\trend micro
2011-04-14 00:44:40 ----DC---- C:\rsit
2011-04-13 00:24:25 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2011-04-13 00:24:25 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-04-12 23:07:42 ----A---- C:\Windows\system32\win32k.sys
2011-04-12 23:07:40 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-04-12 23:07:40 ----A---- C:\Windows\system32\drivers\srv.sys
2011-04-12 23:07:39 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-04-12 23:07:31 ----A---- C:\Windows\system32\winresume.exe
2011-04-12 23:07:31 ----A---- C:\Windows\system32\winload.exe
2011-04-12 23:07:31 ----A---- C:\Windows\system32\kdusb.dll
2011-04-12 23:07:31 ----A---- C:\Windows\system32\kdcom.dll
2011-04-12 23:07:31 ----A---- C:\Windows\system32\kd1394.dll
2011-04-12 23:07:29 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2011-04-12 23:07:29 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2011-04-12 23:07:29 ----A---- C:\Windows\system32\dnsrslvr.dll
2011-04-12 23:07:29 ----A---- C:\Windows\system32\dnscacheugc.exe
2011-04-12 23:07:29 ----A---- C:\Windows\system32\dnsapi.dll
2011-04-12 23:07:27 ----A---- C:\Windows\system32\mfc42u.dll
2011-04-12 23:07:27 ----A---- C:\Windows\system32\mfc42.dll
2011-04-12 23:07:26 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2011-04-12 23:07:26 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2011-04-12 23:07:23 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2011-04-12 23:07:23 ----A---- C:\Windows\system32\inetcomm.dll
2011-04-12 23:07:17 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2011-04-12 23:07:17 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2011-04-12 23:07:17 ----A---- C:\Windows\system32\atmlib.dll
2011-04-12 23:07:17 ----A---- C:\Windows\system32\atmfd.dll
2011-04-12 23:05:14 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-04-12 23:05:14 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-04-12 23:05:14 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-04-12 23:05:14 ----A---- C:\Windows\system32\drivers\bowser.sys
2011-04-12 22:45:42 ----D---- C:\ProgramData\McAfee
2011-04-09 03:29:49 ----D---- C:\Program Files (x86)\CSR
2011-04-09 02:50:47 ----D---- C:\Program Files (x86)\Nsasoft
2011-04-09 02:38:21 ----A---- C:\Windows\system32\drivers\pssdk42.sys
2011-04-09 02:37:47 ----D---- C:\ProgramData\Paessler
2011-04-09 02:34:32 ----D---- C:\Program Files (x86)\PRTG Network Monitor
2011-04-09 01:45:46 ----D---- C:\Users\Pán R. (stolár)\AppData\Roaming\PhoneRemoteControl
2011-04-09 01:34:59 ----D---- C:\Program Files (x86)\Nokia
2011-04-09 01:34:50 ----A---- C:\Windows\system32\drivers\pccsmcfdx64.sys
2011-04-09 01:34:43 ----D---- C:\Program Files (x86)\PC Connectivity Solution
2011-04-08 22:40:23 ----D---- C:\Users\Pán R. (stolár)\AppData\Roaming\Media Player Classic
2011-04-07 06:38:07 ----D---- C:\Users\Pán R. (stolár)\AppData\Roaming\WinPatrol
2011-04-07 06:38:02 ----D---- C:\Program Files (x86)\BillP Studios
2011-04-07 06:29:25 ----D---- C:\ProgramData\SecTaskMan
2011-04-07 06:29:22 ----D---- C:\Program Files (x86)\Security Task Manager
2011-04-07 03:11:27 ----DC---- C:\ZALOHA USB
2011-04-07 01:22:51 ----D---- C:\ProgramData\Malwarebytes
2011-04-06 18:51:47 ----DC---- C:\ZALOHA BLAHO
2011-04-03 08:19:26 ----D---- C:\ProgramData\AMD
2011-04-03 05:53:30 ----D---- C:\ProgramData\ATI
2011-04-03 05:53:26 ----D---- C:\Program Files (x86)\AMD APP
2011-04-03 05:52:59 ----A---- C:\Windows\system32\drivers\amdiox64.sys
2011-04-02 23:36:51 ----D---- C:\ProgramData\Solidshield
2011-04-02 21:33:24 ----DC---- C:\SHIFT2
2011-04-02 14:13:48 ----D---- C:\ProgramData\OLYMPUS
2011-04-02 04:37:04 ----DC---- C:\perflogs
2011-04-01 09:35:24 ----D---- C:\Program Files (x86)\DAEMON Tools Toolbar
2011-04-01 09:34:54 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2011-04-01 08:57:41 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2011-03-31 21:06:48 ----D---- C:\Users\Pán R. (stolár)\AppData\Roaming\DAEMON Tools Pro
2011-03-31 21:06:48 ----D---- C:\ProgramData\DAEMON Tools Pro
2011-03-30 05:42:20 ----D---- C:\Program Files (x86)\Western Digital Corporation
2011-03-26 05:23:52 ----D---- C:\Program Files (x86)\PRO100 4.51druha
2011-03-26 04:30:51 ----DC---- C:\Scenes
2011-03-26 04:30:33 ----N---- C:\Windows\SYSWOW64\drivers\eusk2par.sys
2011-03-26 04:30:32 ----DC---- C:\KD
2011-03-26 03:11:46 ----D---- C:\Users\Pán R. (stolár)\AppData\Roaming\SUPERAntiSpyware.com
2011-03-26 00:40:53 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2011-03-25 02:58:00 ----D---- C:\Program Files (x86)\Windows Installer Clean Up
2011-03-25 02:57:42 ----D---- C:\Program Files (x86)\MSECACHE
2011-03-25 02:23:37 ----D---- C:\ProgramData\FileServe Limited
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\wininet.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\wextract.exe
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\url.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\occache.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\msrating.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\msls31.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\mshta.exe
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\jscript.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\inseng.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\ieui.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\ieakui.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\ieaksie.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\ieakeng.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\icardie.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2011-03-22 06:21:47 ----A---- C:\Windows\SYSWOW64\admparse.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\wininet.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\wextract.exe
2011-03-22 06:21:47 ----A---- C:\Windows\system32\webcheck.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\vbscript.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\urlmon.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\url.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2011-03-22 06:21:47 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2011-03-22 06:21:47 ----A---- C:\Windows\system32\pngfilt.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\occache.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\msrating.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\msls31.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\mshtmler.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\mshtmled.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\mshtml.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\mshta.exe
2011-03-22 06:21:47 ----A---- C:\Windows\system32\msfeedssync.exe
2011-03-22 06:21:47 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\msfeeds.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\licmgr10.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\jsproxy.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\jscript9.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\jscript.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\inseng.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\imgutil.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\iexpress.exe
2011-03-22 06:21:47 ----A---- C:\Windows\system32\ieUnatt.exe
2011-03-22 06:21:47 ----A---- C:\Windows\system32\ieui.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\iesysprep.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\iesetup.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\iertutil.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\iernonce.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\iepeers.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\ieframe.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\iedkcs32.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\ieapfltr.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\ieakui.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\ieaksie.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\ieakeng.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\IEAdvpack.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\ie4uinit.exe
2011-03-22 06:21:47 ----A---- C:\Windows\system32\icardie.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\dxtrans.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\dxtmsft.dll
2011-03-22 06:21:47 ----A---- C:\Windows\system32\admparse.dll
2011-03-21 23:31:11 ----D---- C:\Program Files (x86)\PRO100 PL
2011-03-21 19:56:26 ----A---- C:\Windows\system32\OVDecode64.dll
2011-03-21 19:56:22 ----A---- C:\Windows\SYSWOW64\OVDecode.dll
2011-03-21 19:56:10 ----A---- C:\Windows\system32\OpenCL.dll
2011-03-21 19:56:06 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2011-03-21 19:55:58 ----A---- C:\Windows\system32\amdocl64.dll
2011-03-21 19:55:46 ----A---- C:\Windows\SYSWOW64\amdocl.dll
2011-03-21 08:55:37 ----DC---- C:\STAHOVANE
2011-03-21 01:06:09 ----D---- C:\ProgramData\ESET
2011-03-20 10:23:04 ----D---- C:\Users\Pán R. (stolár)\AppData\Roaming\Auslogics
2011-03-15 07:10:03 ----D---- C:\Users\Pán R. (stolár)\AppData\Roaming\Right Hemisphere
2011-03-15 07:03:05 ----D---- C:\ProgramData\Right Hemisphere
2011-03-15 07:03:00 ----D---- C:\Program Files (x86)\Right Hemisphere

======List of files/folders modified in the last 1 months======

2011-04-14 12:39:30 ----D---- C:\Windows\Temp
2011-04-14 12:39:22 ----D---- C:\Windows\Prefetch
2011-04-14 12:23:08 ----D---- C:\Windows\System32
2011-04-14 12:23:08 ----D---- C:\Windows\inf
2011-04-14 12:23:08 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-04-14 08:27:08 ----D---- C:\Windows\system32\config
2011-04-14 08:24:08 ----D---- C:\Windows
2011-04-14 06:43:52 ----D---- C:\Program Files (x86)\PRO100 4.51 cista
2011-04-14 06:32:52 ----D---- C:\Program Files (x86)
2011-04-14 06:32:51 ----D---- C:\Windows\SysWOW64
2011-04-14 06:27:03 ----HD---- C:\ProgramData
2011-04-14 06:16:33 ----SHD---- C:\Windows\Installer
2011-04-14 06:16:27 ----SHDC---- C:\Config.Msi
2011-04-14 06:16:08 ----SHD---- C:\System Volume Information
2011-04-14 02:10:16 ----RD---- C:\Program Files
2011-04-13 02:58:07 ----D---- C:\Windows\debug
2011-04-13 02:04:54 ----D---- C:\Windows\Microsoft.NET
2011-04-13 02:04:53 ----RSD---- C:\Windows\assembly
2011-04-13 00:27:49 ----D---- C:\Windows\winsxs
2011-04-13 00:25:27 ----A---- C:\Windows\system32\MRT.exe
2011-04-13 00:22:29 ----D---- C:\Windows\system32\catroot
2011-04-13 00:13:21 ----AD---- C:\Windows\system32\drivers
2011-04-13 00:13:20 ----D---- C:\Windows\system32\Boot
2011-04-12 23:27:25 ----D---- C:\ProgramData\Microsoft Help
2011-04-12 23:06:58 ----D---- C:\Windows\system32\catroot2
2011-04-12 23:02:46 ----D---- C:\Program Files (x86)\JDownloader
2011-04-10 01:34:56 ----D---- C:\Users\Pán R. (stolár)\AppData\Roaming\Mozilla
2011-04-10 00:48:42 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-04-10 00:44:52 ----D---- C:\Program Files (x86)\Electronic Arts
2011-04-10 00:42:44 ----AD---- C:\ProgramData\TEMP
2011-04-09 03:29:55 ----D---- C:\ProgramData\InstallShield
2011-04-09 03:29:45 ----D---- C:\Windows\system32\DriverStore
2011-04-09 02:15:59 ----D---- C:\Windows\SYSWOW64\drivers
2011-04-09 01:37:30 ----D---- C:\Users\Pán R. (stolár)\AppData\Roaming\PC Suite
2011-04-09 01:34:59 ----D---- C:\Program Files (x86)\Common Files
2011-04-09 01:34:50 ----DC---- C:\Windows\system32\DRVSTORE
2011-04-08 23:43:57 ----DC---- C:\DownloadsRS
2011-04-08 22:40:03 ----D---- C:\Program Files\Media Player Classic - Home Cinema
2011-04-07 20:38:02 ----D---- C:\Program Files\DIFX
2011-04-07 16:55:03 ----SHDC---- C:\$Recycle.Bin
2011-04-07 03:16:13 ----D---- C:\Windows\system32\Tasks
2011-04-07 01:00:01 ----D---- C:\ProgramData\IObit
2011-04-06 11:53:13 ----D---- C:\ProgramData\DAEMON Tools Lite
2011-04-03 05:54:31 ----DC---- C:\Temp
2011-04-03 05:54:31 ----D---- C:\Windows\SYSWOW64\directx
2011-04-03 05:53:09 ----D---- C:\Program Files\ATI Technologies
2011-04-03 05:52:55 ----D---- C:\Program Files (x86)\ATI Technologies
2011-04-03 05:45:03 ----D---- C:\Program Files (x86)\EASEUS
2011-04-02 21:51:55 ----RASHC---- C:\BOOTSECT.BAK
2011-04-02 21:51:54 ----SHDC---- C:\Boot
2011-04-02 21:51:54 ----RSHC---- C:\boot.ini
2011-04-02 10:37:45 ----D---- C:\Windows\rescache
2011-04-02 06:36:38 ----D---- C:\Program Files (x86)\Nastroje
2011-04-02 06:01:31 ----D---- C:\Program Files\Windows Sidebar
2011-04-02 06:01:30 ----D---- C:\Program Files (x86)\Windows Sidebar
2011-04-02 05:57:48 ----D---- C:\ProgramData\Pinnacle
2011-04-02 00:36:07 ----RD---- C:\Users
2011-04-01 03:53:04 ----D---- C:\KNIZNICE
2011-04-01 01:58:31 ----SD---- C:\Users\Pán R. (stolár)\AppData\Roaming\Microsoft
2011-03-30 06:41:18 ----D---- C:\ProgramData\Spybot - Search & Destroy
2011-03-29 23:10:12 ----D---- C:\Windows\system32\drivers\etc
2011-03-26 04:30:51 ----A---- C:\Windows\win.ini
2011-03-25 03:12:59 ----D---- C:\Program Files\Window7
2011-03-23 02:11:22 ----DC---- C:\Ecru
2011-03-22 06:29:26 ----N---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2011-03-22 06:28:32 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2011-03-22 06:27:38 ----D---- C:\Program Files\Internet Explorer
2011-03-22 06:24:00 ----D---- C:\Windows\Logs
2011-03-22 06:23:36 ----D---- C:\Windows\servicing
2011-03-22 06:23:36 ----D---- C:\Program Files (x86)\Internet Explorer
2011-03-22 06:23:13 ----D---- C:\Windows\SYSWOW64\sk-SK
2011-03-22 06:23:13 ----D---- C:\Windows\system32\sk-SK
2011-03-22 06:23:13 ----D---- C:\Windows\PolicyDefinitions
2011-03-22 06:22:14 ----D---- C:\Windows\SYSWOW64\migration
2011-03-22 06:22:13 ----D---- C:\Windows\SYSWOW64\en-US
2011-03-22 06:22:10 ----D---- C:\Windows\system32\migration
2011-03-22 06:22:09 ----D---- C:\Windows\system32\en-US
2011-03-21 01:01:01 ----HD---- C:\Windows\system32\GroupPolicy
2011-03-18 22:33:09 ----D---- C:\Windows\Downloaded Program Files
2011-03-15 07:09:08 ----D---- C:\Program Files (x86)\PRO100 i NR Demo
2011-03-15 02:01:25 ----SD---- C:\ProgramData\Microsoft
2011-03-15 00:19:23 ----D---- C:\ProgramData\MFAData

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2011-02-02 16440]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-04-01 513080]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2010-09-14 13440]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2010-09-14 13368]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-07-29 141264]
R1 EIO64;EIO Driver; C:\Windows\system32\DRIVERS\EIO64.sys [2011-02-02 16384]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2011-02-17 228272]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2011-02-17 56688]
R2 cpuz135;cpuz135; \??\C:\Windows\system32\drivers\cpuz135_x64.sys [2011-01-19 21992]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-07-29 168544]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2010-07-29 171152]
R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2010-07-29 50624]
R3 Afc;PPdus ASPI Shell; C:\Windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-03-09 9258496]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-03-09 300544]
R3 AODDriver2;AODDriver2; \??\C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [2010-07-01 52352]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2010-11-17 115216]
R3 atkdisplf;ASUS Kernel Mode Enhanced Driver; C:\Windows\System32\Drivers\atkdisplowfilter.sys [2009-02-17 39424]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2010-07-29 33632]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2010-08-24 63568]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2010-08-24 57936]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-05-14 15416]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-01-21 413800]
R3 VBoxNetFlt;VBoxNetFlt Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys [2011-02-17 175664]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2010-08-04 1342064]
S1 ArcSec;archlp; C:\Windows\system32\drivers\ArcSec.sys []
S1 eusk2par;EUTRON SmartKey Parallel Driver; \??\C:\Windows\system32\Drivers\eusk2par.sys []
S2 ASInsHelp;ASInsHelp; \??\C:\Windows\SysWow64\drivers\AsInsHelp64.sys []
S3 3xHybr64;ASUSTek SAA713x PCI Card; C:\Windows\system32\DRIVERS\3xHybr64.sys [2010-03-05 3110528]
S3 AF9035HB;AF9035 Hybrid Device; C:\Windows\System32\Drivers\AF9035HB.sys [2010-05-15 907904]
S3 AODDriver4.0;AODDriver4.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys []
S3 asusgsb;ASUS Virtual Video Capture Device Driver; C:\Windows\system32\drivers\asusgsb.sys []
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-08-23 120336]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-03-09 9258496]
S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2010-11-20 552448]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2010-11-20 80384]
S3 cpuz130;cpuz130; \??\C:\Users\PNR~1.(ST\AppData\Local\Temp\cpuz130\cpuz_x64.sys []
S3 dsnpfd;Dsnpfd Service; C:\Windows\system32\drivers\dsnpfd.sys []
S3 dsnpfdMP;dsnpfdMP; C:\Windows\system32\drivers\dsnpfdMP.sys []
S3 esihdrv;esihdrv; \??\C:\Users\PNR~1.(ST\AppData\Local\Temp\esihdrv.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2010-07-12 72648]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2010-07-12 85320]
S3 IOMap;IOMap; \??\C:\Windows\system32\drivers\IOMap64.sys [2010-09-14 23680]
S3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
S3 MEMSWEEP2;MEMSWEEP2; \??\C:\Windows\syswow64\C7F1.tmp []
S3 miniusb;FrameManager Display Adapter; C:\Windows\system32\DRIVERS\sam_miniusb.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2010-07-30 19456]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2010-07-30 26624]
S3 OlyCamComm;OLYMPUS USB Communication Device; C:\Windows\system32\DRIVERS\OlyCamComm.sys [2009-09-09 24208]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 Ph3xIB64;Philips 713x Inbox PCI TV Card; C:\Windows\system32\DRIVERS\Ph3xIB64.sys [2009-06-10 1627520]
S3 PSSDK42;PSSDK42; \??\C:\Windows\system32\Drivers\pssdk42.sys [2011-04-09 53312]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2010-07-30 9216]
S3 USB28xxBGA;Cinergy XS Series Capture service; C:\Windows\system32\DRIVERS\emBDA64.sys [2009-10-06 669792]
S3 USB28xxOEM;Cinergy XS Series OEM service; C:\Windows\system32\DRIVERS\emOEM64.sys [2009-10-06 750304]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2010-07-30 9216]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2011-02-17 156080]
S3 VBoxUSB;VirtualBox USB; C:\Windows\System32\Drivers\VBoxUSB.sys [2011-01-02 43664]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2011-03-09 203776]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-03-09 365568]
R2 AMD Reservation Manager;AMD Reservation Manager; C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe [2010-06-17 194496]
R2 AODService;AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [2010-07-01 136616]
R2 ATKFUSService;ATK Fast User Switch Service; C:\Windows\system32\ATKFUSService.exe [2009-05-06 62464]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2010-08-12 810144]
R2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2009-09-14 166400]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04); C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2009-09-14 128512]
R2 EpsonBidirectionalService;EpsonBidirectionalService; C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe [2006-12-19 94208]
R2 MSSQL$MYMOVIES;SQL Server (MYMOVIES); C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
R2 MSSQL$STUDIODB;SQL Server (STUDIODB); C:\Program Files (x86)\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
R2 MySQL;MySQL; C:\Program Files\MySQL\MySQL Server 5.1\bin\mysqld.exe [2009-08-18 7599616]
R2 SQLBrowser;SQL Server Browser; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-12-10 238944]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-12-10 153440]
R2 StatusAgent4;Epson Printer Status Agent4; C:\Windows\SysWOW64\SAgent4.exe [2006-12-20 131072]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 AllShare;SAMSUNG AllShare Service; C:\Program Files (x86)\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe [2010-07-16 6638080]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2010-08-12 42360]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2010-12-08 628736]
S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-09-14 1255736]
S4 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
S4 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S4 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S4 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2010-10-28 357456]
S4 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2010-12-10 44384]
S4 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
S4 RCSERVICE;RCSERVICE; C:\Program Files\ASUS\P7131\Remote Control\RCService64.exe [2008-07-30 61440]
S4 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2009-07-14 27136]

-----------------EOF-----------------

Presun ComboFix
na plochu (ak tam este nie je)

otvor si Poznamkovy blok - notepad

do neho zkopiruj skript z nasledujiceho okna:
uloz vytvoreny textovy soubor ako CFScript.txt na plochu

po ulozeni uchop vytvoreny skript lavym tlacitkom mysi a presun ho nad ikonu Combofixu, nad nim skript upust:



po aplikacii by mal vzniknut dalsi log, ten vloz sem

ComboFix 11-04-13.06 - Pán R. (stolár) . 04. 2011 20:26:28.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.421.1051.18.4095.2539 [GMT 2:00]
Running from: c:\users\Pán R. (stolár)\Desktop\ComboFix.exe
Command switches used :: c:\users\Pán R. (stolár)\Desktop\CFScript.txt
AV: ESET Smart Security 4.2 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 4.2 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Pán R. (stolár)\AppData\Roaming\EurekaLog
c:\users\Pán R. (stolár)\AppData\Roaming\Local
c:\windows\AppPatch\Custom\{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb
c:\windows\SysWow64\midas.dll
c:\windows\SysWow64\wnpa32.sys
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_MEMSWEEP2
.
.
((((((((((((((((((((((((( Files Created from 2011-03-14 to 2011-04-14 )))))))))))))))))))))))))))))))
.
.
2011-04-14 18:34 . 2011-04-14 18:36 -------- d-----w- c:\users\Pán R. (stolár)\AppData\Local\temp
2011-04-14 18:34 . 2011-04-14 18:34 -------- d-----w- c:\users\PNR~1~(ST\AppData\Local\temp
2011-04-14 04:27 . 2011-04-14 04:27 -------- d-----w- c:\programdata\Video32
2011-04-14 04:27 . 2011-04-14 04:27 -------- d-----w- c:\programdata\CutList Plus
2011-04-14 04:27 . 2011-04-14 04:29 -------- d-----w- c:\users\Pán R. (stolár)\AppData\Roaming\CutList Plus
2011-04-14 04:16 . 2011-04-14 04:16 -------- d-----w- c:\program files (x86)\Bridgewood Design
2011-04-13 22:44 . 2011-04-14 10:39 -------- d-----w- c:\program files\trend micro
2011-04-13 22:44 . 2011-04-13 22:45 -------- dc----w- C:\rsit
2011-04-12 22:24 . 2011-02-24 06:15 476160 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2011-04-12 22:24 . 2011-02-24 05:38 288256 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2011-04-12 21:05 . 2011-02-23 04:56 158208 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-12 21:05 . 2011-02-23 04:55 287744 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2011-04-12 21:05 . 2011-02-23 04:55 128000 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2011-04-12 21:05 . 2011-02-23 04:55 90624 ----a-w- c:\windows\system32\drivers\bowser.sys
2011-04-12 20:45 . 2011-04-12 20:45 -------- d-----w- c:\programdata\McAfee
2011-04-09 01:29 . 2011-04-09 01:29 -------- d-----w- c:\program files (x86)\CSR
2011-04-09 00:50 . 2011-04-09 00:51 -------- d-----w- c:\program files (x86)\Nsasoft
2011-04-09 00:38 . 2011-04-09 00:38 53312 ----a-w- c:\windows\system32\drivers\pssdk42.sys
2011-04-09 00:37 . 2011-04-09 00:37 -------- d-----w- c:\programdata\Paessler
2011-04-09 00:34 . 2011-04-09 22:42 -------- d-----w- c:\program files (x86)\PRTG Network Monitor
2011-04-08 23:45 . 2011-04-09 00:13 -------- d-----w- c:\users\Pán R. (stolár)\AppData\Roaming\PhoneRemoteControl
2011-04-08 23:34 . 2011-04-09 01:06 -------- d-----w- c:\program files (x86)\Nokia
2011-04-08 23:34 . 2011-04-08 23:34 -------- d-----w- c:\program files (x86)\Common Files\PCSuite
2011-04-08 23:34 . 2011-04-08 23:34 -------- d-----w- c:\program files (x86)\Common Files\Nokia
2011-04-08 23:34 . 2008-08-28 09:44 25600 ----a-w- c:\windows\system32\drivers\pccsmcfdx64.sys
2011-04-08 23:34 . 2011-04-08 23:34 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
2011-04-08 20:40 . 2011-04-14 10:28 -------- d-----w- c:\users\Pán R. (stolár)\AppData\Roaming\Media Player Classic
2011-04-07 04:38 . 2011-04-07 04:38 -------- d-----w- c:\users\Pán R. (stolár)\AppData\Roaming\WinPatrol
2011-04-07 04:38 . 2011-04-07 04:38 -------- d-----w- c:\program files (x86)\BillP Studios
2011-04-07 04:29 . 2011-04-07 04:31 -------- d-----w- c:\programdata\SecTaskMan
2011-04-07 04:29 . 2011-04-07 04:29 -------- d-----w- c:\program files (x86)\Security Task Manager
2011-04-07 01:11 . 2011-04-07 01:13 -------- dc----w- C:\ZALOHA USB
2011-04-06 23:22 . 2011-04-06 23:22 -------- d-----w- c:\programdata\Malwarebytes
2011-04-06 16:51 . 2011-04-07 14:56 -------- dc----w- C:\ZALOHA BLAHO
2011-04-03 20:04 . 2011-04-04 11:18 -------- d-----w- c:\users\Pán R. (stolár)\PDF
2011-04-03 06:20 . 2011-04-03 06:20 -------- d-----w- c:\users\Pán R. (stolár)\AppData\Local\AMD
2011-04-03 06:19 . 2011-04-03 06:19 -------- d-----w- c:\programdata\AMD
2011-04-03 03:53 . 2011-04-03 03:53 -------- d-----w- c:\programdata\ATI
2011-04-03 03:53 . 2011-04-03 03:53 -------- d-----w- c:\program files (x86)\AMD APP
2011-04-03 03:52 . 2010-02-18 07:18 46136 ----a-w- c:\windows\system32\drivers\amdiox64.sys
2011-04-02 21:36 . 2011-04-02 21:36 -------- d-----w- c:\programdata\Solidshield
2011-04-02 21:14 . 2011-04-03 20:09 -------- d-----w- c:\users\Pán R. (stolár)\PRO100
2011-04-02 19:33 . 2011-04-02 20:03 -------- dc----w- C:\SHIFT2
2011-04-02 12:19 . 2011-04-02 12:19 -------- d-----w- c:\users\Pán R. (stolár)\AppData\Local\OLYMPUS
2011-04-02 12:13 . 2011-04-02 12:13 -------- d-----w- c:\programdata\OLYMPUS
2011-04-02 02:37 . 2011-04-02 02:37 -------- dc----w- C:\perflogs
2011-04-01 22:36 . 2011-04-01 22:36 -------- d-----w- c:\users\Hry
2011-04-01 07:35 . 2011-04-09 22:45 -------- d-----w- c:\program files (x86)\DAEMON Tools Toolbar
2011-04-01 07:34 . 2011-04-01 07:35 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2011-04-01 07:20 . 2011-04-01 07:20 -------- d-----w- c:\users\Pán R. (stolár)\AppData\Local\Electronic Arts
2011-04-01 06:57 . 2011-04-01 06:57 -------- d-----w- c:\program files (x86)\NVIDIA Corporation
2011-03-31 19:06 . 2011-03-31 19:08 -------- d-----w- c:\users\Pán R. (stolár)\AppData\Roaming\DAEMON Tools Pro
2011-03-31 19:06 . 2011-03-31 19:07 -------- d-----w- c:\programdata\DAEMON Tools Pro
2011-03-30 03:42 . 2011-03-30 03:42 -------- d-----w- c:\program files (x86)\Western Digital Corporation
2011-03-26 03:23 . 2011-04-02 02:03 -------- d-----w- c:\program files (x86)\PRO100 4.51druha
2011-03-26 02:30 . 2011-03-26 02:30 -------- dc----w- C:\Scenes
2011-03-26 02:30 . 2004-11-18 10:49 24786 ------w- c:\windows\SysWow64\drivers\eusk2par.sys
2011-03-26 02:30 . 2011-03-26 02:30 -------- dc----w- C:\KD
2011-03-26 01:11 . 2011-03-26 01:11 -------- d-----w- c:\users\Pán R. (stolár)\AppData\Roaming\SUPERAntiSpyware.com
2011-03-25 22:40 . 2011-03-25 22:40 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2011-03-25 00:58 . 2011-03-25 00:58 3584 ----a-r- c:\users\Pán R. (stolár)\AppData\Roaming\Microsoft\Installer\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}\Icon386ED4E3.exe
2011-03-25 00:58 . 2011-03-25 00:58 -------- d-----w- c:\program files (x86)\Windows Installer Clean Up
2011-03-25 00:57 . 2011-03-25 00:57 -------- d-----w- c:\program files (x86)\MSECACHE
2011-03-25 00:23 . 2011-03-25 00:23 -------- d-----w- c:\programdata\FileServe Limited
2011-03-22 16:29 . 2011-02-23 08:34 7947600 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EE646E05-E4A0-45BC-93A3-375A34C3EB6B}\mpengine.dll
2011-03-21 21:31 . 2011-03-21 21:44 -------- d-----w- c:\program files (x86)\PRO100 PL
2011-03-21 17:56 . 2011-03-21 17:56 61952 ----a-w- c:\windows\system32\OVDecode64.dll
2011-03-21 17:56 . 2011-03-21 17:56 59904 ----a-w- c:\windows\SysWow64\OVDecode.dll
2011-03-21 17:56 . 2011-03-21 17:56 53760 ----a-w- c:\windows\system32\OpenCL.dll
2011-03-21 17:56 . 2011-03-21 17:56 51712 ----a-w- c:\windows\SysWow64\OpenCL.dll
2011-03-21 17:55 . 2011-03-21 17:55 16115712 ----a-w- c:\windows\system32\amdocl64.dll
2011-03-21 17:55 . 2011-03-21 17:55 12385792 ----a-w- c:\windows\SysWow64\amdocl.dll
2011-03-21 06:55 . 2011-04-14 04:03 -------- dc----w- C:\STAHOVANE
2011-03-20 08:23 . 2011-03-20 08:23 -------- d-----w- c:\users\Pán R. (stolár)\AppData\Roaming\Auslogics
2011-03-18 13:36 . 2011-03-18 13:36 -------- d-----w- c:\program files (x86)\Common Files\LightScribe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-03-25 00:58 . 2011-03-25 00:58 3584 ----a-r- c:\users\Pán R. (stolár)\AppData\Roaming\Microsoft\Installer\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}\Icon386ED4E3.exe
2011-03-25 00:58 . 2011-03-25 00:58 3584 ----a-r- c:\users\Pán R. (stolár)\AppData\Roaming\Microsoft\Installer\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}\Icon386ED4E3.exe
2011-03-24 19:23 . 2010-12-11 19:55 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2011-03-24 19:23 . 2010-09-18 21:20 458048 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-03-10 21:02 . 2010-06-24 10:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-03-09 09:22 . 2011-03-09 09:22 9258496 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2011-03-09 05:41 . 2011-03-09 05:41 22518272 ----a-w- c:\windows\system32\atio6axx.dll
2011-03-09 05:19 . 2011-03-09 05:19 17397248 ----a-w- c:\windows\SysWow64\atioglxx.dll
2011-03-09 04:57 . 2011-03-09 04:57 143360 ----a-w- c:\windows\system32\atiapfxx.exe
2011-03-09 04:56 . 2011-03-09 04:56 679424 ----a-w- c:\windows\SysWow64\aticfx32.dll
2011-03-09 04:55 . 2010-12-16 03:03 795136 ----a-w- c:\windows\system32\aticfx64.dll
2011-03-09 04:53 . 2011-03-09 04:53 462848 ----a-w- c:\windows\system32\ATIDEMGX.dll
2011-03-09 04:53 . 2011-03-09 04:53 480256 ----a-w- c:\windows\system32\atieclxx.exe
2011-03-09 04:53 . 2011-03-09 04:53 203776 ----a-w- c:\windows\system32\atiesrxx.exe
2011-03-09 04:52 . 2011-03-09 04:52 120320 ----a-w- c:\windows\system32\atitmm64.dll
2011-03-09 04:51 . 2009-09-18 14:15 423424 ----a-w- c:\windows\system32\atipdl64.dll
2011-03-09 04:51 . 2011-03-09 04:51 356352 ----a-w- c:\windows\SysWow64\atipdlxx.dll
2011-03-09 04:51 . 2011-03-09 04:51 278528 ----a-w- c:\windows\SysWow64\Oemdspif.dll
2011-03-09 04:51 . 2011-03-09 04:51 16384 ----a-w- c:\windows\system32\atimuixx.dll
2011-03-09 04:51 . 2011-03-09 04:51 59392 ----a-w- c:\windows\system32\atiedu64.dll
2011-03-09 04:51 . 2011-03-09 04:51 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll
2011-03-09 04:48 . 2011-03-09 04:48 4277760 ----a-w- c:\windows\SysWow64\atidxx32.dll
2011-03-09 04:40 . 2010-12-16 02:46 5044224 ----a-w- c:\windows\system32\atidxx64.dll
2011-03-09 04:34 . 2011-03-09 04:34 51200 ----a-w- c:\windows\system32\aticalrt64.dll
2011-03-09 04:34 . 2011-03-09 04:34 46080 ----a-w- c:\windows\SysWow64\aticalrt.dll
2011-03-09 04:34 . 2011-03-09 04:34 44544 ----a-w- c:\windows\system32\aticalcl64.dll
2011-03-09 04:34 . 2011-03-09 04:34 44032 ----a-w- c:\windows\SysWow64\aticalcl.dll
2011-03-09 04:34 . 2011-03-09 04:34 7025152 ----a-w- c:\windows\system32\aticaldd64.dll
2011-03-09 04:32 . 2011-03-09 04:32 5618688 ----a-w- c:\windows\SysWow64\aticaldd.dll
2011-03-09 04:30 . 2011-03-09 04:30 4294656 ----a-w- c:\windows\SysWow64\atiumdag.dll
2011-03-09 04:24 . 2011-03-09 04:24 5438976 ----a-w- c:\windows\system32\atiumd64.dll
2011-03-09 04:18 . 2009-09-18 13:25 360448 ----a-w- c:\windows\system32\atiadlxx.dll
2011-03-09 04:18 . 2011-03-09 04:18 258048 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2011-03-09 04:18 . 2011-03-09 04:18 14848 ----a-w- c:\windows\system32\atig6pxx.dll
2011-03-09 04:17 . 2011-03-09 04:17 12800 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2011-03-09 04:17 . 2011-03-09 04:17 12800 ----a-w- c:\windows\system32\atiglpxx.dll
2011-03-09 04:17 . 2011-03-09 04:17 39936 ----a-w- c:\windows\system32\atig6txx.dll
2011-03-09 04:17 . 2011-03-09 04:17 32768 ----a-w- c:\windows\SysWow64\atigktxx.dll
2011-03-09 04:17 . 2011-03-09 04:17 300544 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2011-03-09 04:17 . 2010-12-16 02:22 39936 ----a-w- c:\windows\system32\atiuxp64.dll
2011-03-09 04:17 . 2011-03-09 04:17 31232 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2011-03-09 04:16 . 2011-03-09 04:16 38400 ----a-w- c:\windows\system32\atiu9p64.dll
2011-03-09 04:16 . 2011-03-09 04:16 28672 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2011-03-09 04:16 . 2011-03-09 04:16 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2011-03-09 04:11 . 2010-09-28 20:23 58880 ----a-w- c:\windows\system32\coinst.dll
2011-03-09 03:42 . 2011-03-09 03:42 1208320 ----a-w- c:\windows\system32\atiumd6v.dll
2011-03-09 03:42 . 2011-03-09 03:42 1912832 ----a-w- c:\windows\SysWow64\atiumdmv.dll
2011-03-09 03:41 . 2011-03-09 03:41 3239936 ----a-w- c:\windows\system32\atiumd6a.dll
2011-03-09 03:34 . 2011-03-09 03:34 3471872 ----a-w- c:\windows\SysWow64\atiumdva.dll
2011-03-09 03:18 . 2011-03-09 03:18 53760 ----a-w- c:\windows\system32\atimpc64.dll
2011-03-09 03:18 . 2011-03-09 03:18 53760 ----a-w- c:\windows\system32\amdpcom64.dll
2011-03-09 03:18 . 2011-03-09 03:18 52736 ----a-w- c:\windows\SysWow64\atimpc32.dll
2011-03-09 03:18 . 2011-03-09 03:18 52736 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2011-03-05 16:25 . 2010-09-18 21:20 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2011-03-05 16:25 . 2011-03-05 16:25 458048 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-03-02 18:42 . 2011-03-02 18:42 933888 ------w- c:\windows\SysWow64\o2cAreas.ocx
2011-03-02 18:42 . 2011-03-02 18:42 1208320 ------w- c:\windows\SysWow64\O2CPlayer.OCX
2011-03-02 15:49 . 2011-03-02 15:49 457216 ------w- c:\windows\SysWow64\drivers\hardlock.sys
2011-03-02 14:17 . 2010-09-14 20:36 18960 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2011-02-26 17:02 . 2011-02-26 17:04 29480 ------w- c:\windows\SysWow64\msxml3a.dll
2011-02-26 17:02 . 2003-02-21 02:42 353576 ------w- c:\windows\SysWow64\msvcr71.dll
2011-02-22 19:40 . 2011-03-01 20:59 95232 ----a-w- c:\windows\system32\xvid.ax
2011-02-22 19:39 . 2011-03-01 20:59 79360 ------w- c:\windows\SysWow64\xvid.ax
2011-02-22 19:39 . 2011-03-01 20:59 255488 ----a-w- c:\windows\system32\xvidvfw.dll
2011-02-22 19:39 . 2011-03-01 20:59 240640 ------w- c:\windows\SysWow64\xvidvfw.dll
2011-02-22 19:38 . 2011-03-01 20:59 703488 ----a-w- c:\windows\system32\xvidcore.dll
2011-02-22 19:37 . 2011-03-01 20:59 650752 ------w- c:\windows\SysWow64\xvidcore.dll
2011-02-19 12:05 . 2011-03-10 23:07 1139200 ----a-w- c:\windows\system32\FntCache.dll
2011-02-19 12:04 . 2011-03-10 23:07 1544192 ----a-w- c:\windows\system32\DWrite.dll
2011-02-19 12:04 . 2011-03-10 23:07 902656 ----a-w- c:\windows\system32\d2d1.dll
2011-02-19 06:30 . 2011-03-10 23:07 1076736 ----a-w- c:\windows\SysWow64\DWrite.dll
2011-02-19 06:30 . 2011-03-10 23:07 739840 ----a-w- c:\windows\SysWow64\d2d1.dll
2011-02-17 23:04 . 2011-02-17 23:04 65536 ----a-w- c:\windows\IFinst27.exe
2011-02-17 16:21 . 2011-02-21 21:26 228272 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2011-02-17 16:21 . 2011-02-17 16:21 156080 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2011-02-17 16:21 . 2011-02-21 21:26 56688 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2011-02-17 16:21 . 2011-02-17 16:21 320816 ----a-w- c:\windows\system32\VBoxNetFltNotify.dll
2011-02-17 16:21 . 2011-02-17 16:21 175664 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys
2011-02-16 13:19 . 2011-02-16 13:19 1784832 ----a-w- c:\windows\SysWow64\iertutil.dll_old0
2011-02-16 13:19 . 2011-02-16 13:19 1125376 ----a-w- c:\windows\SysWow64\wininet.dll_old0
2011-02-16 13:19 . 2011-02-16 13:19 1098240 ----a-w- c:\windows\SysWow64\urlmon.dll_old0
2011-02-10 21:37 . 2011-02-10 21:37 149774 ----a-w- c:\windows\Huey Uninstaller.exe
2011-02-02 10:31 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2011-02-02 10:31 . 2009-07-14 02:36 152576 ------w- c:\windows\SysWow64\msclmd.dll
2011-02-02 09:07 . 2010-08-27 13:33 332800 ----a-w- c:\windows\system32\ATIODE.exe
2011-02-02 09:07 . 2009-06-22 10:34 51200 ----a-w- c:\windows\system32\ATIODCLI.exe
2011-02-02 00:04 . 2011-02-02 00:04 16384 ----a-w- c:\windows\system32\drivers\EIO64.sys
2011-02-01 23:53 . 2011-02-01 23:54 16440 ----a-w- c:\windows\system32\drivers\AtiPcie.sys
2011-02-01 23:31 . 2011-02-01 23:31 53248 ----a-r- c:\users\Pán R. (stolár)\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2011-02-01 23:31 . 2011-02-01 23:31 53248 ----a-r- c:\users\Pán R. (stolár)\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2011-01-23 23:34 . 2011-01-23 23:34 1391104 ----a-w- C:\apploc.msi
2011-01-21 05:36 . 2011-01-21 05:36 74272 ----a-w- c:\windows\system32\RtNicProp64.dll
2011-01-21 05:36 . 2011-01-21 05:36 413800 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2011-01-19 16:47 . 2011-02-02 02:42 21992 ----a-w- c:\windows\system32\drivers\cpuz135_x64.sys
2011-01-17 11:09 . 2011-02-01 23:51 197120 ----a-w- c:\windows\system32\d3d10_1.dll
2011-01-17 05:47 . 2011-02-01 23:51 161792 ----a-w- c:\windows\SysWow64\d3d10_1.dll
2010-02-10 03:18 . 2010-12-19 23:27 2131336 ----a-w- c:\program files (x86)\Common Files\AskToolbarInstaller.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2010-08-11 2472048]
"ASUSGamerOSD"="c:\program files (x86)\ASUS\GamerOSD\GamerOSD.exe" [2009-07-30 380928]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-03-08 336384]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ pdboot.exe\0autocheck autochk *\0oodbs
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"SpywareTerminator"="c:\program files (x86)\Spyware Terminator\SpywareTerminatorShield.exe"
.
R1 ArcSec;archlp;c:\windows\system32\drivers\ArcSec.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 3xHybr64;ASUSTek SAA713x PCI Card;c:\windows\system32\DRIVERS\3xHybr64.sys [x]
R3 AF9035HB;AF9035 Hybrid Device;c:\windows\system32\Drivers\AF9035HB.sys [x]
R3 AllShare;SAMSUNG AllShare Service;c:\program files (x86)\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe [2010-07-16 6638080]
R3 AODDriver4.0;AODDriver4.0;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
R3 cpuz130;cpuz130;c:\users\PNR~1.(ST\AppData\Local\Temp\cpuz130\cpuz_x64.sys [x]
R3 dsnpfd;Dsnpfd Service; [x]
R3 dsnpfdMP;dsnpfdMP; [x]
R3 esihdrv;esihdrv;c:\users\PNR~1.(ST\AppData\Local\Temp\esihdrv.sys [x]
R3 IOMap;IOMap;c:\windows\system32\drivers\IOMap64.sys [x]
R3 miniusb;FrameManager Display Adapter;c:\windows\system32\DRIVERS\sam_miniusb.sys [x]
R3 OlyCamComm;OLYMPUS USB Communication Device;c:\windows\system32\DRIVERS\OlyCamComm.sys [x]
R3 Ph3xIB64;Philips 713x Inbox PCI TV Card;c:\windows\system32\DRIVERS\Ph3xIB64.sys [x]
R3 PSSDK42;PSSDK42;c:\windows\system32\Drivers\pssdk42.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [x]
R3 VBoxUSB;VirtualBox USB;c:\windows\system32\Drivers\VBoxUSB.sys [x]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 WMSVC;Web Management Service;c:\windows\system32\inetsrv\wmsvc.exe [x]
R4 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
R4 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
R4 RCSERVICE;RCSERVICE;c:\program files\ASUS\P7131\Remote Control\RCService64.exe [2008-07-30 61440]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 AsUpIO;AsUpIO;SysWow64\drivers\AsUpIO.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S1 EIO64;EIO Driver;c:\windows\system32\DRIVERS\EIO64.sys [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-03-08 365568]
S2 AMD Reservation Manager;AMD Reservation Manager;c:\program files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe [2010-06-17 194496]
S2 AODService;AODService;c:\program files (x86)\AMD\OverDrive\AODAssist.exe [2010-07-01 136616]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [x]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [2010-08-12 810144]
S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [x]
S2 EPSON_EB_RPCV4_04;EPSON V5 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [2009-09-14 166400]
S2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [2009-09-14 128512]
S2 MSSQL$MYMOVIES;SQL Server (MYMOVIES);c:\program files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
S2 MSSQL$STUDIODB;SQL Server (STUDIODB);c:\program files (x86)\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [x]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 AODDriver2;AODDriver2;c:\program files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [2010-07-01 52352]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs REG_MULTI_SZ w3svc was
apphost REG_MULTI_SZ apphostsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2011-03-04 11:29 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Contents of the 'Scheduled Tasks' folder
.
2011-04-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-17 00:21]
.
2011-04-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-17 00:21]
.
2010-11-19 c:\windows\Tasks\Install_NSS.job
- c:\program files (x86)\DivX\Symantec\scstubinstaller.exe [2010-03-08 18:00]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"combofix"="c:\combofix\CF13227.cfxxe" [X]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2010-10-28 1680976]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2010-08-12 2916584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com/
uLocal Page = c:\windows\system32\blank.htm
TCP: {040AF966-8B9F-479C-A8E7-95428805CE62} = 195.146.128.60,195.146.132.59
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-{872b5b88-9db5-4310-bdd0-ac189557e5f5} - (no file)
Wow6432Node-HKCU-Run-ABBYY Screenshot Reader Bonus - (no file)
WebBrowser-{872B5B88-9DB5-4310-BDD0-AC189557E5F5} - (no file)
WebBrowser-{0E91EFA2-AF48-4333-9965-5DD29DE31B56} - (no file)
HKLM-Run-Windows Defender - (no file)
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.032\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.032"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.abr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.abr"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ani\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.ani"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.apd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee 10.0.apd"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.arw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.arw"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bay\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.bay"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bmp\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.bmp"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.bw"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cr2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.cr2"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.crw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.crw"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cs1\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.cs1"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cur\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.cur"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.dcr"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcx\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.dcx"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dib\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.dib"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djv\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.djv"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djvu\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.djvu"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dng\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.dng"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.emf\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.emf"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eps\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.eps"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.erf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.erf"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.fff"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fpx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.fpx"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.gif"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.hdr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.hdr"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icl\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.icl"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icn\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.icn"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ico\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.ico"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.iff"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ilbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.ilbm"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.int\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.int"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.inta\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.inta"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iw4\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.iw4"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2c\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.j2c"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2k\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.j2k"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jbr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jbr"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jfif\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jfif"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jif\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jif"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jp2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jp2"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jpc"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpe\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jpe"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jpeg"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jpg"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpk\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jpk"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.jpx"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.kdc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.kdc"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.lbm"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.mef"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mos\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.mos"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mrw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.mrw"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.nef"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nrw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.nrw"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.orf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.orf"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pbm"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pbr"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pcd"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pct\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pct"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcx\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pcx"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pef"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pgm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pgm"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pic\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pic"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pict\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pict"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pix\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pix"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.png"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ppm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.ppm"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.psd"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.psp"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspbrush\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pspbrush"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspimage\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.pspimage"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.raf"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ras\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.ras"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.raw"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgb\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.rgb"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgba\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.rgba"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rle\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.rle"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rsb\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.rsb"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rw2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.rw2"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rwl\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.rwl"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sgi\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.sgi"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sr2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.sr2"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.srf"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tga\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.tga"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.thm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.thm"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tif\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.tif"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tiff\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.tiff"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.ttc"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.ttf"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbm\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.wbm"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbmp\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.wbmp"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmf\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.wmf"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.xbm"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xif\UserChoice]
@Denied: (2) (S-1-5-21-1685742992-2624710575-359562259-1000)
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.xif"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xpm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 3.xpm"
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{1BDF6010-2682-807A-3A18-15DB6D12AD9E}*]
"haecoikhidpdagag"=hex:61,61,00,00
"iaigpbocjgofknncee"=hex:69,61,66,6f,68,69,61,6b,6a,6e,63,68,6e,6d,6d,61,70,6f,
00,19
"hacgndndbiekjein"=hex:69,61,66,6f,68,69,61,6b,6a,6e,63,68,6e,6d,6d,61,70,6f,
00,b8
"haecoikhcdffaokp"=hex:61,61,00,00
.
[HKEY_USERS\S-1-5-21-1685742992-2624710575-359562259-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{E0D537A5-2C6A-3992-4642-A5FF644EF6DE}*]
"abbmenjpbhnlbjmndckooekjmgoldpieam"=hex:6a,61,61,62,63,6e,6c,6d,6e,6c,64,64,
66,63,63,6f,66,63,6a,64,00,00
"palkohgbmbmkenghhdifebjclbbpjpfc"=hex:6a,61,61,62,63,6e,6c,6d,6e,6c,64,64,66,
63,63,6f,66,63,6a,64,00,fe
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_10_2_161_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_10_2_161_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10o_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10o_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10o.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10o.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10o.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10o.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG11.00.00.01WORKSTATION"="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"
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
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
c:\program files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\windows\SysWOW64\SAgent4.exe
.
**************************************************************************
.
Completion time: 2011-04-14 20:46:51 - machine was rebooted
ComboFix-quarantined-files.txt 2011-04-14 18:46
.
Pre-Run: 131 286 138 880 bytes free
Post-Run: 130 713 133 056 bytes free
.
- - End Of File - - D12ABA0C6D0B73F410464F9C7D0370EF

1. vycisti PC s CCleanerom
2. prescanuj s AVPTool
3. napis, ci su problemy ?

Tak urobil som všetko podľa pokynov a aj tak mám pocit, že pred tým ako sa prihlásim vo windowse ten už behá po internete (blikajúca led na LAN). Tiež mám pocit že nie som jediný kto ovláda moje PC.

pouzi TDSSKiller http://www.viry.cz/forum/viewtopic.php? ... er#p978408 log vloz

2011/04/19 20:38:31.0910 3372 TDSS rootkit removing tool 2.4.21.0 Mar 10 2011 12:26:28
2011/04/19 20:38:32.0313 3372 ================================================================================
2011/04/19 20:38:32.0313 3372 SystemInfo:
2011/04/19 20:38:32.0313 3372
2011/04/19 20:38:32.0313 3372 OS Version: 6.1.7601 ServicePack: 1.0
2011/04/19 20:38:32.0313 3372 Product type: Workstation
2011/04/19 20:38:32.0313 3372 ComputerName: PANR
2011/04/19 20:38:32.0313 3372 UserName: Pán R. (stolár)
2011/04/19 20:38:32.0313 3372 Windows directory: C:\Windows
2011/04/19 20:38:32.0313 3372 System windows directory: C:\Windows
2011/04/19 20:38:32.0313 3372 Running under WOW64
2011/04/19 20:38:32.0313 3372 Processor architecture: Intel x64
2011/04/19 20:38:32.0313 3372 Number of processors: 4
2011/04/19 20:38:32.0313 3372 Page size: 0x1000
2011/04/19 20:38:32.0313 3372 Boot type: Normal boot
2011/04/19 20:38:32.0313 3372 ================================================================================
2011/04/19 20:38:32.0621 3372 Initialize success
2011/04/19 20:38:41.0674 2760 ================================================================================
2011/04/19 20:38:41.0674 2760 Scan started
2011/04/19 20:38:41.0674 2760 Mode: Manual;
2011/04/19 20:38:41.0674 2760 ================================================================================
2011/04/19 20:38:42.0242 2760 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
2011/04/19 20:38:42.0318 2760 3xHybr64 (254b286cfba975d4a6c1f8b5eb8048ba) C:\Windows\system32\DRIVERS\3xHybr64.sys
2011/04/19 20:38:42.0402 2760 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
2011/04/19 20:38:42.0424 2760 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
2011/04/19 20:38:42.0474 2760 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
2011/04/19 20:38:42.0510 2760 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
2011/04/19 20:38:42.0534 2760 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
2011/04/19 20:38:42.0597 2760 AF9035HB (0f9fa4fa5879427e54f13f82db1cdbce) C:\Windows\system32\Drivers\AF9035HB.sys
2011/04/19 20:38:42.0636 2760 AFD (d31dc7a16dea4a9baf179f3d6fbdb38c) C:\Windows\system32\drivers\afd.sys
2011/04/19 20:38:42.0663 2760 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
2011/04/19 20:38:42.0682 2760 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
2011/04/19 20:38:42.0741 2760 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
2011/04/19 20:38:42.0803 2760 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
2011/04/19 20:38:42.0823 2760 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
2011/04/19 20:38:43.0061 2760 amdkmdag (bfa9657adf7ddc29242a6e0e88de36fa) C:\Windows\system32\DRIVERS\atikmdag.sys
2011/04/19 20:38:43.0334 2760 amdkmdap (8c493027d9b2399283e724e9862ebb42) C:\Windows\system32\DRIVERS\atikmpag.sys
2011/04/19 20:38:43.0361 2760 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
2011/04/19 20:38:43.0385 2760 amdsata (6ec6d772eae38dc17c14aed9b178d24b) C:\Windows\system32\drivers\amdsata.sys
2011/04/19 20:38:43.0416 2760 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
2011/04/19 20:38:43.0428 2760 amdxata (1142a21db581a84ea5597b03a26ebaa0) C:\Windows\system32\drivers\amdxata.sys
2011/04/19 20:38:43.0518 2760 AODDriver2 (6a488397b2e020ec24ce1aacfc830f90) C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys
2011/04/19 20:38:43.0612 2760 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
2011/04/19 20:38:43.0668 2760 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
2011/04/19 20:38:43.0680 2760 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
2011/04/19 20:38:43.0969 2760 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
2011/04/19 20:38:43.0979 2760 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
2011/04/19 20:38:44.0013 2760 AtiHDAudioService (4bf5bca6e2608cd8a00bc4a6673a9f47) C:\Windows\system32\drivers\AtihdW76.sys
2011/04/19 20:38:44.0048 2760 AtiHdmiService (506934df94e3197f4a1bbe8fbeab0ccd) C:\Windows\system32\drivers\AtiHdmi.sys
2011/04/19 20:38:44.0242 2760 atikmdag (bfa9657adf7ddc29242a6e0e88de36fa) C:\Windows\system32\DRIVERS\atikmdag.sys
2011/04/19 20:38:44.0302 2760 AtiPcie (c07a040d6b5a42dd41ee386cf90974c8) C:\Windows\system32\DRIVERS\AtiPcie.sys
2011/04/19 20:38:44.0323 2760 atkdisplf (fb4187c282cb467e5e606913a1fa79a3) C:\Windows\system32\Drivers\atkdisplowfilter.sys
2011/04/19 20:38:44.0368 2760 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
2011/04/19 20:38:44.0400 2760 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
2011/04/19 20:38:44.0436 2760 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
2011/04/19 20:38:44.0452 2760 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
2011/04/19 20:38:44.0498 2760 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
2011/04/19 20:38:44.0519 2760 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
2011/04/19 20:38:44.0533 2760 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
2011/04/19 20:38:44.0559 2760 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
2011/04/19 20:38:44.0591 2760 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
2011/04/19 20:38:44.0612 2760 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
2011/04/19 20:38:44.0623 2760 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
2011/04/19 20:38:44.0695 2760 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\DRIVERS\BthEnum.sys
2011/04/19 20:38:44.0720 2760 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
2011/04/19 20:38:44.0778 2760 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
2011/04/19 20:38:44.0860 2760 BTHPORT (0d25b6d300ba26a5f2c3b2a8e96b158b) C:\Windows\system32\Drivers\BTHport.sys
2011/04/19 20:38:44.0886 2760 BTHUSB (1f9912f8ec5bfa53432e71e150636a8a) C:\Windows\system32\Drivers\BTHUSB.sys
2011/04/19 20:38:44.0947 2760 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
2011/04/19 20:38:44.0977 2760 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
2011/04/19 20:38:45.0008 2760 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
2011/04/19 20:38:45.0054 2760 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
2011/04/19 20:38:45.0096 2760 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
2011/04/19 20:38:45.0118 2760 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
2011/04/19 20:38:45.0167 2760 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
2011/04/19 20:38:45.0187 2760 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
2011/04/19 20:38:45.0225 2760 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
2011/04/19 20:38:45.0353 2760 cpuz135 (ccb09eb78e047c931708149992c2e435) C:\Windows\system32\drivers\cpuz135_x64.sys
2011/04/19 20:38:45.0363 2760 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
2011/04/19 20:38:45.0408 2760 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
2011/04/19 20:38:45.0426 2760 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
2011/04/19 20:38:45.0446 2760 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
2011/04/19 20:38:45.0499 2760 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
2011/04/19 20:38:45.0559 2760 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
2011/04/19 20:38:45.0628 2760 eamonm (398fdc5694f2ba9e51e321ca40d1706e) C:\Windows\system32\DRIVERS\eamonm.sys
2011/04/19 20:38:45.0708 2760 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
2011/04/19 20:38:46.0103 2760 ehdrv (e99457900012b53b2226f146ecaf9136) C:\Windows\system32\DRIVERS\ehdrv.sys
2011/04/19 20:38:46.0175 2760 EIO64 (343ada10d948db29251f2d9c809af204) C:\Windows\system32\DRIVERS\EIO64.sys
2011/04/19 20:38:46.0230 2760 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
2011/04/19 20:38:46.0275 2760 epfw (f9d0d6a7a6d48391be1f314ef7669ce2) C:\Windows\system32\DRIVERS\epfw.sys
2011/04/19 20:38:46.0312 2760 Epfwndis (96620ad728144d8e30a7baec9ddc811c) C:\Windows\system32\DRIVERS\Epfwndis.sys
2011/04/19 20:38:46.0373 2760 epfwwfp (16576f3a76f4d0dd83522d69b5eafaa1) C:\Windows\system32\DRIVERS\epfwwfp.sys
2011/04/19 20:38:46.0403 2760 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
2011/04/19 20:38:46.0523 2760 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
2011/04/19 20:38:46.0549 2760 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
2011/04/19 20:38:46.0576 2760 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
2011/04/19 20:38:46.0615 2760 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
2011/04/19 20:38:46.0633 2760 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
2011/04/19 20:38:46.0858 2760 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
2011/04/19 20:38:46.0893 2760 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
2011/04/19 20:38:46.0938 2760 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
2011/04/19 20:38:46.0977 2760 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
2011/04/19 20:38:46.0999 2760 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
2011/04/19 20:38:47.0019 2760 FTDIBUS (ed07200cff78facfb66ebb0b89f503a4) C:\Windows\system32\drivers\ftdibus.sys
2011/04/19 20:38:47.0042 2760 FTSER2K (9980e7584484a009e77e9bfa14c0c18a) C:\Windows\system32\drivers\ftser2k.sys
2011/04/19 20:38:47.0063 2760 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
2011/04/19 20:38:47.0090 2760 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
2011/04/19 20:38:47.0104 2760 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
2011/04/19 20:38:47.0138 2760 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
2011/04/19 20:38:47.0153 2760 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
2011/04/19 20:38:47.0164 2760 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
2011/04/19 20:38:47.0209 2760 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
2011/04/19 20:38:47.0221 2760 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
2011/04/19 20:38:47.0249 2760 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
2011/04/19 20:38:47.0281 2760 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
2011/04/19 20:38:47.0331 2760 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
2011/04/19 20:38:47.0361 2760 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
2011/04/19 20:38:47.0394 2760 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
2011/04/19 20:38:47.0424 2760 iaStorV (3df4395a7cf8b7a72a5f4606366b8c2d) C:\Windows\system32\drivers\iaStorV.sys
2011/04/19 20:38:47.0460 2760 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
2011/04/19 20:38:47.0480 2760 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
2011/04/19 20:38:47.0506 2760 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
2011/04/19 20:38:47.0531 2760 IOMap (a01c412699b6f21645b2885c2bae4454) C:\Windows\system32\drivers\IOMap64.sys
2011/04/19 20:38:47.0565 2760 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2011/04/19 20:38:47.0585 2760 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
2011/04/19 20:38:47.0609 2760 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
2011/04/19 20:38:47.0624 2760 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
2011/04/19 20:38:47.0647 2760 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
2011/04/19 20:38:47.0680 2760 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
2011/04/19 20:38:47.0709 2760 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
2011/04/19 20:38:47.0720 2760 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
2011/04/19 20:38:47.0736 2760 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
2011/04/19 20:38:47.0748 2760 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
2011/04/19 20:38:47.0761 2760 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
2011/04/19 20:38:47.0798 2760 LHidFilt (24e09882ba51b9830ae029888a3aaf18) C:\Windows\system32\DRIVERS\LHidFilt.Sys
2011/04/19 20:38:47.0825 2760 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
2011/04/19 20:38:47.0843 2760 LMouFilt (2f94325d8c10e2b715f3d753c2422aac) C:\Windows\system32\DRIVERS\LMouFilt.Sys
2011/04/19 20:38:47.0874 2760 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
2011/04/19 20:38:47.0901 2760 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
2011/04/19 20:38:47.0921 2760 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
2011/04/19 20:38:47.0933 2760 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
2011/04/19 20:38:47.0945 2760 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
2011/04/19 20:38:47.0974 2760 MarvinBus (024da28053d57e9e32bee52600576bbb) C:\Windows\system32\DRIVERS\MarvinBus64.sys
2011/04/19 20:38:47.0990 2760 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
2011/04/19 20:38:48.0020 2760 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
2011/04/19 20:38:48.0052 2760 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
2011/04/19 20:38:48.0096 2760 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
2011/04/19 20:38:48.0106 2760 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
2011/04/19 20:38:48.0121 2760 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
2011/04/19 20:38:48.0134 2760 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
2011/04/19 20:38:48.0159 2760 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
2011/04/19 20:38:48.0189 2760 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
2011/04/19 20:38:48.0226 2760 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
2011/04/19 20:38:48.0278 2760 mrxsmb (c2b4651001a867ff3f8865863b592991) C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/04/19 20:38:48.0345 2760 mrxsmb10 (7e79946afc5f799ab62982282be5ac13) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/04/19 20:38:48.0397 2760 mrxsmb20 (5fb954100cea2bfec6446fbbecaa3f79) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/04/19 20:38:48.0422 2760 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
2011/04/19 20:38:48.0443 2760 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
2011/04/19 20:38:48.0485 2760 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
2011/04/19 20:38:48.0510 2760 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
2011/04/19 20:38:48.0596 2760 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
2011/04/19 20:38:48.0759 2760 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
2011/04/19 20:38:48.0785 2760 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
2011/04/19 20:38:48.0796 2760 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
2011/04/19 20:38:48.0826 2760 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
2011/04/19 20:38:48.0843 2760 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
2011/04/19 20:38:48.0916 2760 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
2011/04/19 20:38:48.0943 2760 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
2011/04/19 20:38:48.0975 2760 MTsensor (2219a3d695405e7ba2186ba6b9ede14a) C:\Windows\system32\DRIVERS\ASACPI.sys
2011/04/19 20:38:48.0996 2760 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
2011/04/19 20:38:49.0048 2760 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
2011/04/19 20:38:49.0102 2760 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
2011/04/19 20:38:49.0142 2760 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
2011/04/19 20:38:49.0173 2760 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
2011/04/19 20:38:49.0210 2760 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
2011/04/19 20:38:49.0222 2760 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
2011/04/19 20:38:49.0255 2760 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
2011/04/19 20:38:49.0267 2760 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
2011/04/19 20:38:49.0303 2760 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
2011/04/19 20:38:49.0344 2760 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
2011/04/19 20:38:49.0393 2760 nmwcd (985a3f046dfcd58e26d3a95283bb8f1d) C:\Windows\system32\drivers\ccdcmbx64.sys
2011/04/19 20:38:49.0414 2760 nmwcdc (5eb41a9656388dc21119ccc33f0ee22a) C:\Windows\system32\drivers\ccdcmbox64.sys
2011/04/19 20:38:49.0414 2760 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
2011/04/19 20:38:49.0430 2760 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
2011/04/19 20:38:49.0491 2760 Ntfs (05d78aa5cb5f3f5c31160bdb955d0b7c) C:\Windows\system32\drivers\Ntfs.sys
2011/04/19 20:38:49.0542 2760 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
2011/04/19 20:38:49.0568 2760 nvraid (5d9fd91f3d38dc9da01e3cb5fa89cd48) C:\Windows\system32\drivers\nvraid.sys
2011/04/19 20:38:49.0591 2760 nvstor (f7cd50fe7139f07e77da8ac8033d1832) C:\Windows\system32\drivers\nvstor.sys
2011/04/19 20:38:49.0624 2760 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
2011/04/19 20:38:49.0651 2760 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
2011/04/19 20:38:49.0696 2760 OlyCamComm (fe8278bcf145404976d866d9a46e6bd8) C:\Windows\system32\DRIVERS\OlyCamComm.sys
2011/04/19 20:38:49.0740 2760 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
2011/04/19 20:38:49.0767 2760 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
2011/04/19 20:38:49.0799 2760 pccsmcfd (bc0018c2d29f655188a0ed3fa94fdb24) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
2011/04/19 20:38:49.0812 2760 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
2011/04/19 20:38:49.0824 2760 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
2011/04/19 20:38:49.0860 2760 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
2011/04/19 20:38:49.0874 2760 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
2011/04/19 20:38:49.0908 2760 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
2011/04/19 20:38:49.0996 2760 Ph3xIB64 (1e81496aff9d7fa2b4c4032b746de5b9) C:\Windows\system32\DRIVERS\Ph3xIB64.sys
2011/04/19 20:38:50.0043 2760 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
2011/04/19 20:38:50.0060 2760 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
2011/04/19 20:38:50.0105 2760 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
2011/04/19 20:38:50.0179 2760 PSSDK42 (cd33cb6fecf65520466f95ab89cc4af5) C:\Windows\system32\Drivers\pssdk42.sys
2011/04/19 20:38:50.0239 2760 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
2011/04/19 20:38:50.0276 2760 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
2011/04/19 20:38:50.0292 2760 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
2011/04/19 20:38:50.0316 2760 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
2011/04/19 20:38:50.0339 2760 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
2011/04/19 20:38:50.0363 2760 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
2011/04/19 20:38:50.0379 2760 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
2011/04/19 20:38:50.0392 2760 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
2011/04/19 20:38:50.0417 2760 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
2011/04/19 20:38:50.0448 2760 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
2011/04/19 20:38:50.0475 2760 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/04/19 20:38:50.0491 2760 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
2011/04/19 20:38:50.0511 2760 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
2011/04/19 20:38:50.0544 2760 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
2011/04/19 20:38:50.0559 2760 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
2011/04/19 20:38:50.0620 2760 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
2011/04/19 20:38:50.0653 2760 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
2011/04/19 20:38:50.0688 2760 RTL8167 (4fe1cef69d36e913738234303986fbb3) C:\Windows\system32\DRIVERS\Rt64win7.sys
2011/04/19 20:38:50.0725 2760 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
2011/04/19 20:38:50.0769 2760 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
2011/04/19 20:38:50.0830 2760 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
2011/04/19 20:38:50.0893 2760 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
2011/04/19 20:38:50.0906 2760 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
2011/04/19 20:38:50.0956 2760 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
2011/04/19 20:38:50.0995 2760 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
2011/04/19 20:38:51.0011 2760 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
2011/04/19 20:38:51.0029 2760 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
2011/04/19 20:38:51.0041 2760 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
2011/04/19 20:38:51.0060 2760 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
2011/04/19 20:38:51.0104 2760 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
2011/04/19 20:38:51.0127 2760 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
2011/04/19 20:38:51.0150 2760 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
2011/04/19 20:38:51.0210 2760 srv (65bbf4920148c2ee279055da7228fc7b) C:\Windows\system32\DRIVERS\srv.sys
2011/04/19 20:38:51.0245 2760 srv2 (da939f762a1ccc2d77428621ddbd40a7) C:\Windows\system32\DRIVERS\srv2.sys
2011/04/19 20:38:51.0278 2760 srvnet (3f847c9dc87299516f7dc82fb6572865) C:\Windows\system32\DRIVERS\srvnet.sys
2011/04/19 20:38:51.0300 2760 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
2011/04/19 20:38:51.0336 2760 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
2011/04/19 20:38:51.0413 2760 Tcpip (509383e505c973ed7534a06b3d19688d) C:\Windows\system32\drivers\tcpip.sys
2011/04/19 20:38:51.0469 2760 TCPIP6 (509383e505c973ed7534a06b3d19688d) C:\Windows\system32\DRIVERS\tcpip.sys
2011/04/19 20:38:51.0517 2760 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
2011/04/19 20:38:51.0544 2760 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
2011/04/19 20:38:51.0567 2760 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
2011/04/19 20:38:51.0587 2760 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
2011/04/19 20:38:51.0607 2760 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
2011/04/19 20:38:51.0638 2760 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
2011/04/19 20:38:51.0665 2760 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
2011/04/19 20:38:51.0700 2760 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
2011/04/19 20:38:51.0734 2760 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
2011/04/19 20:38:51.0759 2760 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
2011/04/19 20:38:51.0793 2760 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
2011/04/19 20:38:51.0835 2760 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
2011/04/19 20:38:51.0905 2760 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
2011/04/19 20:38:52.0276 2760 upperdev (afa3a0937b7044a8322d8bc91722c53b) C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
2011/04/19 20:38:52.0339 2760 USB28xxBGA (aabe0c08c488fbe170adc8cec73c8b03) C:\Windows\system32\DRIVERS\emBDA64.sys
2011/04/19 20:38:52.0396 2760 USB28xxOEM (9b8415f2e75f2cf4fce1ac486de74410) C:\Windows\system32\DRIVERS\emOEM64.sys
2011/04/19 20:38:52.0433 2760 usbccgp (481dff26b4dca8f4cbac1f7dce1d6829) C:\Windows\system32\DRIVERS\usbccgp.sys
2011/04/19 20:38:52.0464 2760 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
2011/04/19 20:38:52.0501 2760 usbehci (2ea4aff7be7eb4632e3aa8595b0803b5) C:\Windows\system32\DRIVERS\usbehci.sys
2011/04/19 20:38:52.0516 2760 usbhub (dc96bd9ccb8403251bcf25047573558e) C:\Windows\system32\drivers\usbhub.sys
2011/04/19 20:38:52.0537 2760 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys
2011/04/19 20:38:52.0568 2760 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
2011/04/19 20:38:52.0588 2760 usbser (4acee387fa8fd39f83564fcd2fc234f2) C:\Windows\system32\drivers\usbser.sys
2011/04/19 20:38:52.0614 2760 UsbserFilt (b826f3ff5a1975cc9096b4caadde77b6) C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
2011/04/19 20:38:52.0645 2760 USBSTOR (d76510cfa0fc09023077f22c2f979d86) C:\Windows\system32\DRIVERS\USBSTOR.SYS
2011/04/19 20:38:52.0661 2760 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys
2011/04/19 20:38:52.0695 2760 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
2011/04/19 20:38:52.0744 2760 VBoxDrv (00203e05f2fe6cfb94229ed91d6010a2) C:\Windows\system32\DRIVERS\VBoxDrv.sys
2011/04/19 20:38:52.0774 2760 VBoxNetAdp (85df2c59645d374be7e3234241761230) C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
2011/04/19 20:38:52.0790 2760 VBoxNetFlt (57daefdd2c459afef2596a656f016e74) C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
2011/04/19 20:38:52.0841 2760 VBoxUSB (2a76d35b25fad15fe785b3bc834b9799) C:\Windows\system32\Drivers\VBoxUSB.sys
2011/04/19 20:38:52.0874 2760 VBoxUSBMon (74ce29e023c79c195ddff87fbf075037) C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
2011/04/19 20:38:52.0938 2760 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
2011/04/19 20:38:52.0964 2760 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
2011/04/19 20:38:52.0982 2760 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
2011/04/19 20:38:53.0015 2760 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
2011/04/19 20:38:53.0072 2760 VIAHdAudAddService (8f69c38a8ba725f891f26aac8888696e) C:\Windows\system32\drivers\viahduaa.sys
2011/04/19 20:38:53.0104 2760 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
2011/04/19 20:38:53.0116 2760 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
2011/04/19 20:38:53.0132 2760 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
2011/04/19 20:38:53.0161 2760 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
2011/04/19 20:38:53.0187 2760 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
2011/04/19 20:38:53.0219 2760 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
2011/04/19 20:38:53.0276 2760 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
2011/04/19 20:38:53.0288 2760 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
2011/04/19 20:38:53.0297 2760 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
2011/04/19 20:38:53.0337 2760 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
2011/04/19 20:38:53.0370 2760 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
2011/04/19 20:38:53.0405 2760 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
2011/04/19 20:38:53.0419 2760 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
2011/04/19 20:38:53.0474 2760 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
2011/04/19 20:38:53.0508 2760 WmBEnum (680a7846370000d20d7e74917d5b7936) C:\Windows\system32\drivers\WmBEnum.sys
2011/04/19 20:38:53.0543 2760 WmFilter (14c35ba8189c6f65d839163aa285e954) C:\Windows\system32\drivers\WmFilter.sys
2011/04/19 20:38:53.0574 2760 WmHidLo (ac4331af118a720f13c9c5cabbfe27bd) C:\Windows\system32\drivers\WmHidLo.sys
2011/04/19 20:38:53.0586 2760 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
2011/04/19 20:38:53.0637 2760 WmVirHid (8488dd91a3ee54a8e29f02ad7bb8201e) C:\Windows\system32\drivers\WmVirHid.sys
2011/04/19 20:38:53.0649 2760 WmXlCore (14802b3a30aa849c97cb968ccc813bf3) C:\Windows\system32\drivers\WmXlCore.sys
2011/04/19 20:38:53.0691 2760 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
2011/04/19 20:38:53.0742 2760 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
2011/04/19 20:38:53.0780 2760 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
2011/04/19 20:38:53.0839 2760 ================================================================================
2011/04/19 20:38:53.0839 2760 Scan finished
2011/04/19 20:38:53.0839 2760 ================================================================================

Akurát nechápem ten dátum a čas v: 2011/04/19 20:38:31.0910 3372 TDSS rootkit removing tool 2.4.21.0 Mar 10 2011 12:26:28

Aj scan a log s ComboFix?

vloz aktualny log z ComboFix-u - no myslim, ze je to bez virusov ,,,