VIRY.CZ

Zdravím.
Prosím o preventivní kontrolu, případně o radu, které ty HP-prográmky můžu vymazat. (je to HP notebook s předinstalovanými win, takže tam toho po koupi bylo opravdu hodně, něco jsem odstranil, ale u toho zbytku nevím, co můžu a co ne).
Děkuji.

Logfile of random's system information tool 1.09 (written by random/random)
Run by brseker at 2011-11-20 20:34:40
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 63 GB (22%) free of 288 GB
Total RAM: 2994 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:34:58, on 20.11.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\windows\system32\taskhost.exe
c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Users\brseker\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Users\brseker\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
C:\Program Files\Hewlett-Packard\Shared\hpCaslNotification.exe
C:\windows\system32\wuauclt.exe
C:\windows\system32\taskhost.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\windows\system32\rundll32.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\install\RSIT.exe
C:\Program Files\trend micro\brseker.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: HP ProtectTools Security Manager Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll
O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [HPWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol 52\AxAutoMntSrv.exe" -automount
O4 - HKCU\..\Run: [Google Update] "C:\Users\brseker\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Akamai NetSession Interface] C:\Users\brseker\AppData\Local\Akamai\netsession_win.exe
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\windows\system32\Macromed\Flash\FlashUtil10l_Plugin.exe -update plugin
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://c:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Sothink SWF Catcher - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
O8 - Extra context menu item: Stáhnout Free Download Managerem - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Stáhnout video Free Download Managerem - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Stáhnout vybrané Free Download Managerem - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Stáhnout vše Free Download Managerem - file://C:\Program Files\Free Download Manager\dlall.htm
O9 - Extra button: @C:\windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
O9 - Extra 'Tools' menuitem: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - Trusted IP range: http://192.168.5.3
O15 - Trusted IP range: 82.117.152.130
O15 - Trusted IP range: http://82.117.152.130
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O16 - DPF: {B94C2238-346E-4C5E-9B36-8CC627F35574} (VMware Remote Console Plug-in 2.5.0.00000) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{6650DCBC-B889-4A4F-8C31-7202A4DAA417}: NameServer = 62.84.128.6,62.84.132.6
O17 - HKLM\System\CS1\Services\Tcpip\..\{6650DCBC-B889-4A4F-8C31-7202A4DAA417}: NameServer = 62.84.128.6,62.84.132.6
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\aestsrv.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\windows\system32\atiesrxx.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128 (DpHost) - DigitalPersona, Inc. - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - c:\Windows\system32\flcdlock.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Unknown owner - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe (file missing)
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe
O23 - Service: HP Wireless Assistant Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
O23 - Service: HP DayStarter Service (HPDayStarterService) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - c:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - McAfee, Inc. - c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard - C:\windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\STacSV.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol 52\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files\Tunngle\TnglCtrl.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe

--
End of file - 12580 bytes

======Scheduled tasks folder======

C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3415639909-2736430775-3772740974-1003Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3415639909-2736430775-3772740974-1003UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\brseker\AppData\Roaming\Mozilla\Firefox\Profiles\uig4grzs.default

prefs.js - "browser.startup.homepage" - "http://seznam.cz/"
prefs.js - "extensions.enabledItems" - "otis@digitalpersona.com:5.0.0.4191, {73a6fe31-595d-460b-a920-fcc0f8843232}:2.0.9.7, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.2, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, 2020Player@2020Technologies.com:4.5.2.0, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, battlefieldheroespatcher@ea.com:5.0.31.0, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.1.94, {6904342A-8307-11DF-A508-4AE2DFD72085}:2.1.1.94, fdm_ffext@freedownloadmanager.org:1.3.4, {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26, {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}:6.0.29, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.21"

"otis@digitalpersona.com"=c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt\
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video
"{6904342A-8307-11DF-A508-4AE2DFD72085}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
components.list
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsINIProcessor.js
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
npFoxitReaderPlugin.dll
npnul32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\brseker\AppData\Roaming\Mozilla\Firefox\Profiles\uig4grzs.default\extensions\
2020Player@2020Technologies.com
battlefieldheroespatcher@ea.com
{73a6fe31-595d-460b-a920-fcc0f8843232}
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
File Sanitizer for HP ProtectTools - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll [2009-12-12 117248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08 3118976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{395610AE-C624-4f58-B89E-23733EA00F9A}]
HP ProtectTools Security Manager Extension - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpOtsPluginIe8.dll [2009-12-03 1471752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{593DDEC6-7468-4cdd-90E1-42DADAA222E9}]
DivX HiQ - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08 3118976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdm2.dll [2008-06-18 94208]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-10-18 42272]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-08-25 186904]
"HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2009-12-16 8192]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-12-09 98304]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2009-12-03 495711]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-03-21 1230704]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"Windows Mobile Device Center"=C:\windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AlcoholAutomount"=C:\Program Files\Alcohol 52\AxAutoMntSrv.exe [2009-11-15 33120]
"Google Update"=C:\Users\brseker\AppData\Local\Google\Update\GoogleUpdate.exe [2010-07-12 136176]
"Akamai NetSession Interface"=C:\Users\brseker\AppData\Local\Akamai\netsession_win.exe [2011-11-17 3303000]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"=C:\windows\system32\Macromed\Flash\FlashUtil10l_Plugin.exe [2010-11-25 233936]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DTRun]
c:\Program Files\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\facemoods]
C:\Program Files\facemoods.com\facemoods\1.4.17.7\facemoodssrv.exe /md I []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\File Sanitizer]
C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2009-12-12 11265536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPADVISOR]
C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [2009-09-30 1685048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPPowerAssistant]
C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe /hidden []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TortoiseHgOverlayIconServer]
C:\Program Files\TortoiseHg\TortoiseHgOverlayServer.exe [2010-05-13 44448]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\DeviceNP]
C:\windows\system32\DeviceNP.dll [2009-11-17 75320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"VIDC.FPS1"=frapsvid.dll
"VIDC.IV41"=IR41_32.AX
"vidc.VP60"=C:\windows\system32\vp6vfw.dll
"vidc.VP61"=C:\windows\system32\vp6vfw.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2020-10-24 14:24:46 ----D---- C:\Users\brseker\AppData\Roaming\Hamachi
2020-10-24 14:24:35 ----D---- C:\Program Files\Hamachi
2020-10-24 14:24:35 ----A---- C:\windows\system32\drivers\hamachi.sys
2011-11-20 20:34:41 ----D---- C:\Program Files\trend micro
2011-11-20 20:34:40 ----D---- C:\rsit
2011-11-19 19:21:06 ----A---- C:\windows\system32\XAudio2_6.dll
2011-11-19 19:21:06 ----A---- C:\windows\system32\XAPOFX1_4.dll
2011-11-19 19:21:06 ----A---- C:\windows\system32\xactengine3_6.dll
2011-11-19 19:21:06 ----A---- C:\windows\system32\X3DAudio1_7.dll
2011-11-19 19:21:05 ----A---- C:\windows\system32\XAudio2_5.dll
2011-11-19 19:21:05 ----A---- C:\windows\system32\xactengine3_5.dll
2011-11-19 19:21:05 ----A---- C:\windows\system32\D3DCompiler_42.dll
2011-11-19 19:21:04 ----A---- C:\windows\system32\d3dx11_42.dll
2011-11-19 19:21:04 ----A---- C:\windows\system32\d3dcsx_42.dll
2011-11-19 19:21:03 ----A---- C:\windows\system32\D3DX9_42.dll
2011-11-19 19:21:03 ----A---- C:\windows\system32\d3dx10_42.dll
2011-11-19 19:21:02 ----A---- C:\windows\system32\d3dx10_41.dll
2011-11-19 19:21:02 ----A---- C:\windows\system32\D3DCompiler_41.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\XAudio2_4.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\XAPOFX1_3.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\xactengine3_4.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\D3DX9_41.dll
2011-11-19 19:21:00 ----A---- C:\windows\system32\X3DAudio1_6.dll
2011-11-19 19:21:00 ----A---- C:\windows\system32\d3dx10_40.dll
2011-11-19 19:21:00 ----A---- C:\windows\system32\D3DCompiler_40.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\XAudio2_3.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\XAPOFX1_2.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\xactengine3_3.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\X3DAudio1_5.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\D3DX9_40.dll
2011-11-19 19:20:57 ----A---- C:\windows\system32\XAudio2_2.dll
2011-11-19 19:20:57 ----A---- C:\windows\system32\XAPOFX1_1.dll
2011-11-19 19:20:57 ----A---- C:\windows\system32\xactengine3_2.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\XAudio2_1.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\XAPOFX1_0.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\xactengine3_1.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\X3DAudio1_4.dll
2011-11-19 19:20:55 ----A---- C:\windows\system32\d3dx10_38.dll
2011-11-19 19:20:55 ----A---- C:\windows\system32\D3DCompiler_38.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\XAudio2_0.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\xactengine3_0.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\X3DAudio1_3.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\D3DX9_38.dll
2011-11-19 19:20:53 ----A---- C:\windows\system32\D3DX9_37.dll
2011-11-19 19:20:53 ----A---- C:\windows\system32\d3dx10_37.dll
2011-11-19 19:20:53 ----A---- C:\windows\system32\D3DCompiler_37.dll
2011-11-19 19:20:52 ----A---- C:\windows\system32\xactengine2_10.dll
2011-11-19 19:20:51 ----A---- C:\windows\system32\d3dx9_36.dll
2011-11-19 19:20:51 ----A---- C:\windows\system32\d3dx10_36.dll
2011-11-19 19:20:51 ----A---- C:\windows\system32\D3DCompiler_36.dll
2011-11-19 19:20:50 ----A---- C:\windows\system32\xactengine2_9.dll
2011-11-19 19:20:49 ----A---- C:\windows\system32\d3dx10_35.dll
2011-11-19 19:20:49 ----A---- C:\windows\system32\D3DCompiler_35.dll
2011-11-19 19:20:48 ----A---- C:\windows\system32\d3dx9_35.dll
2011-11-19 19:20:47 ----A---- C:\windows\system32\xactengine2_8.dll
2011-11-19 19:20:47 ----A---- C:\windows\system32\X3DAudio1_2.dll
2011-11-06 18:42:40 ----D---- C:\Program Files\TortoiseSVN
2011-11-05 20:29:36 ----D---- C:\ProgramData\Prometheus
2011-11-05 20:29:36 ----D---- C:\Program Files\Fyzika
2011-11-04 17:50:35 ----A---- C:\windows\system32\esent.dll
2011-11-04 17:50:34 ----A---- C:\windows\system32\fsutil.exe
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\USBSTOR.SYS
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\storport.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\nvstor.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\nvraid.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\ntfs.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\iaStorV.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\amdxata.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\amdsata.sys
2011-11-04 17:50:31 ----A---- C:\windows\system32\shell32.dll
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbuhci.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbport.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbohci.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbhub.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbehci.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbd.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbccgp.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\BTHUSB.SYS
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\bthport.sys
2011-10-26 09:47:52 ----D---- C:\Program Files\Common Files\Java
2011-10-26 09:47:13 ----A---- C:\windows\system32\javaws.exe
2011-10-26 09:47:13 ----A---- C:\windows\system32\javaw.exe
2011-10-26 09:47:13 ----A---- C:\windows\system32\java.exe

======List of files/folders modified in the last 1 month======

2011-11-20 20:34:41 ----RD---- C:\Program Files
2011-11-20 20:33:39 ----D---- C:\install
2011-11-20 20:29:59 ----D---- C:\Users\brseker\AppData\Roaming\Skype
2011-11-20 19:54:20 ----D---- C:\Users\brseker\AppData\Roaming\vlc
2011-11-20 19:38:47 ----D---- C:\Program Files\Steam
2011-11-20 17:15:44 ----D---- C:\windows\System32
2011-11-20 17:15:44 ----A---- C:\windows\system32\PerfStringBackup.INI
2011-11-20 17:15:43 ----D---- C:\windows\inf
2011-11-20 15:16:38 ----SHD---- C:\System Volume Information
2011-11-20 13:21:33 ----D---- C:\windows\system32\config
2011-11-20 13:01:16 ----D---- C:\windows\Temp
2011-11-19 19:50:56 ----D---- C:\dan
2011-11-19 19:43:21 ----D---- C:\skola
2011-11-19 19:21:22 ----SHD---- C:\windows\Installer
2011-11-19 19:20:42 ----RSD---- C:\windows\assembly
2011-11-19 19:14:20 ----D---- C:\hry
2011-11-19 15:13:36 ----D---- C:\windows\Prefetch
2011-11-19 14:55:24 ----D---- C:\Program Files\Common Files\Akamai
2011-11-19 14:55:17 ----D---- C:\ProgramData\HPQLOG
2011-11-19 14:55:04 ----A---- C:\windows\system32\log.txt
2011-11-19 14:55:00 ----D---- C:\Windows
2011-11-19 14:25:28 ----D---- C:\Users\brseker\AppData\Roaming\.minecraft
2011-11-19 13:01:35 ----D---- C:\windows\winsxs
2011-11-19 11:53:37 ----D---- C:\windows\debug
2011-11-19 11:50:16 ----HD---- C:\Program Files\InstallShield Installation Information
2011-11-19 11:50:07 ----D---- C:\windows\system32\drivers
2011-11-19 11:49:33 ----D---- C:\Program Files\AddOn Studio for World of Warcraft
2011-11-19 11:48:03 ----D---- C:\Program Files\Hewlett-Packard
2011-11-19 11:45:32 ----D---- C:\ProgramData\Firefly Studios
2011-11-19 11:43:25 ----D---- C:\Program Files\OpenSSL-Win32
2011-11-19 11:42:24 ----D---- C:\Program Files\JDownloader
2011-11-19 11:41:47 ----D---- C:\Program Files\HP
2011-11-19 11:40:23 ----D---- C:\Fraps
2011-11-19 11:39:33 ----D---- C:\Program Files\Common Files\ArcSoft
2011-11-19 11:39:24 ----D---- C:\Users\brseker\AppData\Roaming\ArcSoft
2011-11-19 11:39:10 ----D---- C:\ProgramData\Media Center Programs
2011-11-19 11:29:33 ----D---- C:\Program Files\ElcomSoft
2011-11-15 17:08:40 ----D---- C:\Program Files\Common Files\Steam
2011-11-14 18:15:57 ----D---- C:\windows\system32\catroot2
2011-11-14 13:40:38 ----D---- C:\Users\brseker\AppData\Roaming\.purple
2011-11-10 23:58:45 ----D---- C:\windows\rescache
2011-11-10 07:53:35 ----D---- C:\Users\brseker\AppData\Roaming\Zoner
2011-11-06 18:42:41 ----D---- C:\Program Files\Common Files\TortoiseOverlays
2011-11-05 20:29:36 ----HD---- C:\ProgramData
2011-11-04 22:59:18 ----D---- C:\windows\Microsoft.NET
2011-11-04 18:07:38 ----D---- C:\windows\system32\cs-CZ
2011-11-04 18:07:37 ----D---- C:\windows\system32\DriverStore
2011-11-04 17:56:16 ----D---- C:\windows\system32\catroot
2011-10-30 19:07:19 ----D---- C:\windows\system32\Tasks
2011-10-27 13:00:46 ----D---- C:\Users\brseker\AppData\Roaming\FileZilla
2011-10-27 11:34:08 ----D---- C:\Users\brseker\AppData\Roaming\VMware
2011-10-26 09:47:52 ----D---- C:\Program Files\Common Files
2011-10-26 09:46:50 ----D---- C:\Program Files\Java
2011-10-24 14:03:41 ----D---- C:\Users\brseker\AppData\Roaming\Tunngle
2011-10-24 14:03:32 ----D---- C:\Program Files\Tunngle
2011-10-23 19:50:19 ----D---- C:\ProgramData\Tunngle

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2009-07-08 25656]
R0 iaStor;Intel RAID Controller; C:\windows\system32\DRIVERS\iaStor.sys [2009-08-07 330264]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2009-12-16 110520]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2009-12-16 51800]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2009-12-16 13256]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\windows\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sptd;sptd; C:\windows\System32\Drivers\sptd.sys [2010-05-13 691696]
R1 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys [2009-12-15 214664]
R1 mfetdik;McAfee Inc. mfetdik; C:\windows\system32\drivers\mfetdik.sys [2009-12-15 55304]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2009-12-16 40088]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 lirsgt;lirsgt; C:\windows\system32\DRIVERS\lirsgt.sys [2011-06-22 25416]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2009-07-08 33848]
R3 Afc;PPdus ASPI Shell; C:\windows\system32\drivers\Afc.sys [2006-11-11 18688]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2009-11-02 1163328]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdW73.sys [2011-10-14 211984]
R3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2009-12-08 5092864]
R3 hamachi;Hamachi Network Interface; C:\windows\system32\DRIVERS\hamachi.sys [2020-10-24 25280]
R3 HECI;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECI.sys [2009-09-17 41088]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2009-12-19 1763968]
R3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt.sys [2009-12-03 423424]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle); C:\windows\system32\DRIVERS\tap0901t.sys [2009-09-16 27136]
S0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\windows\System32\drivers\sfdrv01.sys [2005-05-17 50176]
S0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\windows\System32\drivers\sfsync02.sys [2005-05-16 19968]
S2 atksgt;atksgt; C:\windows\system32\DRIVERS\atksgt.sys [2011-06-22 278984]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys []
S3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys []
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\windows\system32\drivers\AtiHdmi.sys [2009-11-18 100352]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2011-04-28 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2009-09-17 86056]
S3 btwavdt;Bluetooth AVDT; C:\windows\system32\DRIVERS\btwavdt.sys [2009-09-17 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 29472]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2009-09-17 18472]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv.sys [2009-10-21 32312]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt []
S3 GarenaPEngine;GarenaPEngine; \??\C:\Users\brseker\AppData\Local\Temp\VEG238A.tmp []
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files\Garena\safedrv.sys []
S3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2009-07-16 15872]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 MfeAVFK;McAfee Inc. MfeAVFK; C:\windows\system32\drivers\MfeAVFK.sys [2009-12-15 79816]
S3 MfeBOPK;McAfee Inc. MfeBOPK; C:\windows\system32\drivers\MfeBOPK.sys [2009-12-15 35272]
S3 MfeRKDK;McAfee Inc. MfeRKDK; C:\windows\system32\drivers\MfeRKDK.sys [2009-12-15 34248]
S3 NETw5s32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit; C:\windows\system32\DRIVERS\NETw5s32.sys [2009-10-03 6114816]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2009-11-11 181792]
S3 SCREAMINGBDRIVER;Screaming Bee Audio; C:\windows\system32\drivers\ScreamingBAudio.sys [2009-12-01 34384]
S3 sisagp;Filtr SIS sběrnice AGP; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usb_rndisx;Adaptér USB RNDIS; C:\windows\system32\DRIVERS\usb8023x.sys [2009-07-14 15872]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 viaagp;Filtr VIA sběrnice AGP; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\aestsrv.exe [2009-03-03 81920]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-11-02 14336]
R2 Akamai;Akamai NetSession Interface; C:\windows\System32\svchost.exe [2009-07-14 20992]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2009-12-08 172032]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\windows\system32\svchost.exe [2009-07-14 20992]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-09-04 595232]
R2 DpHost;@c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe,-128; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe [2009-11-25 300808]
R2 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files\Hewlett-Packard\2009 Password Filter for HP ProtectTools\PTChangeFilterService.exe [2009-11-19 36864]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2009-12-16 102968]
R2 HPDayStarterService;HP DayStarter Service; c:\Program Files\Hewlett-Packard\HP QuickLook\HPDayStarterService.exe [2010-01-08 81920]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service; c:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2009-12-11 251448]
R2 HpFkCryptService;Drive Encryption Service; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2009-12-16 281192]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2009-12-12 297984]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2009-07-08 26168]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-08-25 354840]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\windows\system32\svchost.exe [2009-07-14 20992]
R2 simptcp;@%SystemRoot%\system32\simptcp.dll,-200; C:\windows\System32\tcpsvcs.exe [2009-07-14 9216]
R2 STacSV;Audio Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\STacSV.exe [2009-12-03 229461]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol 52\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 TeamViewer5;TeamViewer 5; C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe [2010-07-06 173352]
R2 TunngleService;TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [2011-10-14 745832]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\windows\system32\svchost.exe [2009-07-14 20992]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2009-12-18 230968]
R3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2011-11-14 419624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-29 136176]
S2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe []
S2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2009-12-14 1639728]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\system32\flcdlock.exe [2009-11-17 362040]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-04-20 1045256]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-29 136176]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\windows\system32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-05-24 1343400]
S4 NetMsmqActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Ahoj

Poprosím o druhý log z názvem info.txt

Tady je:


info.txt logfile of random's system information tool 1.09 2011-11-20 20:35:02

======Uninstall list======

-->MsiExec /X{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {FAD8A83E-9BAC-4179-9268-A35948034D85}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0115-0409-0000-0000000FF1CE} /uninstall {FAD8A83E-9BAC-4179-9268-A35948034D85}
7-Zip 9.22beta-->"C:\Program Files\7-Zip\Uninstall.exe"
ActiveCheck component for HP Active Support Library-->MsiExec.exe /X{254C37AA-6B72-4300-84F6-98A82419187E}
Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\windows\system32\Macromed\Flash\FlashUtil10l_Plugin.exe -maintain plugin
AIMP2-->C:\Program Files\AIMP2\Uninstall.exe
Akamai NetSession Interface Service-->C:\Program Files\Common Files\Akamai\uninstall.exe
AMD APP SDK Runtime-->MsiExec.exe /I{A25FF1C0-80B6-4B8B-A551-DC525697A408}
AMD Catalyst Install Manager-->msiexec /q/x{9CE4B7FA-8626-316B-B483-FCEF49E27430} REBOOT=ReallySuppress
Ashampoo Burning Studio 2010-->"C:\Program Files\Ashampoo\Ashampoo Burning Studio 2010\unins000.exe"
Audacity 1.2.6-->"C:\Program Files\Audacity\unins000.exe"
AutoCAD 2011 - česky-->C:\Program Files\Autodesk\AutoCAD 2011\Setup\Setup.exe /P {5783F2D7-9001-0405-0002-0060B0CE6BBA} /M ACAD /language cs-CZ
AutoCAD 2011 - česky-->C:\Program Files\Autodesk\AutoCAD 2011\Setup\Setup.exe /P {5783F2D7-9001-0405-0002-0060B0CE6BBA} /M ACAD /language cs-CZ
Autodesk Material Library 2011 Base Image library-->MsiExec.exe /I{CD1E078C-A6B9-47DA-B035-6365C85C7832}
Autodesk Material Library 2011-->MsiExec.exe /I{9DEABCB6-B759-4D52-92F8-51B34A2B4D40}
BitComet 1.22-->C:\Program Files\BitComet\uninst.exe
Catalyst Control Center - Branding-->MsiExec.exe /I{4649126F-45B6-47A2-B2A2-FB8FDB2FDE2E}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Centrum zařízení Windows Mobile-->MsiExec.exe /X{904CCF62-818D-4675-BC76-D37EB399F917}
CMake 2.8 a cross-platform, open-source build system-->C:\Program Files\CMake 2.8\Uninstall.exe
Device Access Manager for HP ProtectTools-->MsiExec.exe /X{55B52830-024A-443E-AF61-61E1E71AFA1B}
Diablo II-->C:\windows\DIIUnin.exe C:\windows\DIIUnin.dat
DivX Setup-->C:\ProgramData\DivX\Setup\DivXSetup.exe /uninstall /bundleGroupId divx.com
Drive Encryption for HP ProtectTools-->msiexec.exe /i {89D7DD37-5A15-46E0-9C3C-A0004C4F1A38}
Eurobattle.net-->"C:\hry\Warcraft tri\uninstall.exe" "/U:C:\hry\Warcraft tri\Uninstall\uninstall.xml"
File Sanitizer For HP ProtectTools-->MsiExec.exe /I{6D6ADF03-B257-4EA5-BBC1-1D145AF8D514}
FileZilla Client 3.4.0-->C:\Program Files\FileZilla FTP Client\uninstall.exe
Foxit Reader-->C:\Program Files\Foxit Software\Foxit Reader\Uninstall.exe
Free Download Manager 2.5-->"C:\Program Files\Free Download Manager\unins000.exe"
Garena 2010-->C:\Program Files\Garena\uninst.exe
GCFScape 1.8.2-->"C:\Program Files\Nem's Tools\GCFScape\unins000.exe"
GIMP 2.6.8-->"C:\Program Files\GIMP-2.0\setup\unins000.exe"
Git 1.7.0.2-preview20100309-->"C:\Program Files\Git\unins000.exe"
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Guifications Plugin (remove only)-->C:\Program Files\Pidgin\pidgin-guifications-uninst.exe
Hamachi 1.0.3.0-->C:\Program Files\Hamachi\uninstall.exe
Heroes of Might and Magic III Complete CZ-->C:\hry\Heroes of Might and Magic III\Uninstal.exe
Hex Workshop v6-->MsiExec.exe /X{48FE73F3-4C3A-4871-BCD0-A7726A08BD64}
Hotfix for Microsoft Visual C++ 2008 Express Edition with SP1 - ENU (KB945282)-->C:\windows\system32\msiexec.exe /package {D8087907-E255-3A41-A46D-D0F798709C71} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual C++ 2008 Express Edition with SP1 - ENU (KB946040)-->C:\windows\system32\msiexec.exe /package {D8087907-E255-3A41-A46D-D0F798709C71} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual C++ 2008 Express Edition with SP1 - ENU (KB946308)-->C:\windows\system32\msiexec.exe /package {D8087907-E255-3A41-A46D-D0F798709C71} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual C++ 2008 Express Edition with SP1 - ENU (KB947540)-->C:\windows\system32\msiexec.exe /package {D8087907-E255-3A41-A46D-D0F798709C71} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual C++ 2008 Express Edition with SP1 - ENU (KB947789)-->C:\windows\system32\msiexec.exe /package {D8087907-E255-3A41-A46D-D0F798709C71} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual C++ 2008 Express Edition with SP1 - ENU (KB948127)-->C:\windows\system32\msiexec.exe /package {D8087907-E255-3A41-A46D-D0F798709C71} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2008 Shell (isolated mode) - ENU (KB946040)-->C:\windows\system32\msiexec.exe /package {97E3C3BF-76AC-4DEA-BF8A-434F1EA5F272} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2008 Shell (isolated mode) - ENU (KB946308)-->C:\windows\system32\msiexec.exe /package {97E3C3BF-76AC-4DEA-BF8A-434F1EA5F272} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2008 Shell (isolated mode) - ENU (KB946344)-->C:\windows\system32\msiexec.exe /package {97E3C3BF-76AC-4DEA-BF8A-434F1EA5F272} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2008 Shell (isolated mode) - ENU (KB946581)-->C:\windows\system32\msiexec.exe /package {97E3C3BF-76AC-4DEA-BF8A-434F1EA5F272} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2008 Shell (isolated mode) - ENU (KB947173)-->C:\windows\system32\msiexec.exe /package {97E3C3BF-76AC-4DEA-BF8A-434F1EA5F272} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2008 Shell (isolated mode) - ENU (KB947540)-->C:\windows\system32\msiexec.exe /package {97E3C3BF-76AC-4DEA-BF8A-434F1EA5F272} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft Visual Studio 2008 Shell (isolated mode) - ENU (KB947789)-->C:\windows\system32\msiexec.exe /package {97E3C3BF-76AC-4DEA-BF8A-434F1EA5F272} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Office (KB950278)-->msiexec /package {90120000-0021-0000-0000-0000000FF1CE} /uninstall {FED55BA1-5A70-44B4-8EB1-E72274AED780}
HP 3D DriveGuard-->MsiExec.exe /X{67C090D6-109A-47D7-8DED-4160C4D96F32}
HP Advisor-->MsiExec.exe /X{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}
HP Customer Experience Enhancements-->MsiExec.exe /X{07FA4960-B038-49EB-891B-9F95930AA544}
HP Deskjet 1050 J410 series Nápověda-->MsiExec.exe /I{5C90D8CF-F12A-41C6-9007-3B651A1F0D78}
HP ESU for Microsoft Windows 7-->MsiExec.exe /X{871732B3-1EE5-4C54-8462-8BFF516880B7}
HP Integrated Module with Bluetooth wireless technology-->MsiExec.exe /X{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}
HP ProtectTools Security Manager-->c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\setup.exe
HP ProtectTools Security Manager-->MsiExec.exe /X{8A0590BF-9036-47D5-BBE7-50590649760C}
HP QuickLook-->MsiExec.exe /X{8B49BD5E-C896-4F65-95DC-3F84424226E8}
HP Software Setup-->MsiExec.exe /X{04801E42-B1A6-4C52-9F3D-CADB5A050433}
HP User Guides 0189-->MsiExec.exe /X{3BDB9B89-56B5-4953-B052-AEB75FCBFC93}
HP Wallpaper-->MsiExec.exe /X{F173C2B3-296F-458C-98FF-1676A42EBA02}
HP Webcam Driver-->C:\Program Files\InstallShield Installation Information\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}\setup.exe -runfromtemp -l0x0009 -removeonly
HP Wireless Assistant-->MsiExec.exe /X{0279C882-B150-44B6-A769-A7C8A2F31CE3}
HPAsset component for HP Active Support Library-->MsiExec.exe /X{669D4A35-146B-4314-89F1-1AC3D7B88367}
IDT Audio-->"C:\Program Files\InstallShield Installation Information\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}\setup.exe" -remove -removeonly
Intel(R) Management Engine Components-->C:\Program Files\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall
Intel® Matrix Storage Manager-->C:\Program Files\Intel\Intel Matrix Storage Manager\Uninstall\imsmudlg.exe -uninstall
IronPython Studio-->MsiExec.exe /I{9982D64A-8179-4432-B6ED-50E4C3454977}
Java(TM) 6 Update 29-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216020FF}
Liquid War 5.6.4-->"C:\hry\Liquid War\uninstall.exe"
LSI HDA Modem-->C:\windows\agrsmdel
Microsoft .NET Framework 4 Client Profile-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}
Microsoft .NET Framework 4 Extended-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\Setup.exe /repair /x86 /parameterfolder Extended
Microsoft .NET Framework 4 Extended-->MsiExec.exe /X{0A0CADCF-78DA-33C4-A350-CD51849B9702}
Microsoft .NET Framework 4 Multi-Targeting Pack-->MsiExec.exe /I{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}
Microsoft Age of Empires II-->"C:\hry\Age of Empires II\UNINSTAL.EXE" /runtemp /uninstall
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{2E660A2A-A55F-43CD-9F73-CAD7382EEB78}
Microsoft Games for Windows - LIVE-->MsiExec.exe /X{F112F66E-25CA-42DD-983C-6118EB38F606}
Microsoft Help Viewer 1.0-->C:\Program Files\Microsoft Help Viewer\v1.0\Microsoft Help Viewer 1.0\install.exe
Microsoft Help Viewer 1.0-->MsiExec.exe /X{47C39E4A-28F2-33B1-B9B7-97F24E52D917}
Microsoft Office Shared MUI (English) 2007-->MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
Microsoft Office Shared Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
Microsoft Office Suite Activation Assistant-->MsiExec.exe /X{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}
Microsoft Office Visual Web Developer 2007-->MsiExec.exe /X{90120000-0021-0000-0000-0000000FF1CE}
Microsoft Office Visual Web Developer MUI (English) 2007-->MsiExec.exe /X{90120000-0021-0409-0000-0000000FF1CE}
Microsoft SQL Server 2008 Management Objects-->MsiExec.exe /I{F5E87B12-3C27-452F-8E78-21D42164FD83}
Microsoft SQL Server Compact 3.5 SP2 ENU-->MsiExec.exe /I{3A9FC03D-C685-4831-94CF-4EDFD3749497}
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Express Edition with SP1 - ENU-->C:\Program Files\Microsoft Visual Studio 9.0\Microsoft Visual C++ 2008 Express Edition with SP1 - ENU\setup.exe
Microsoft Visual C++ 2008 Express Edition with SP1 - ENU-->MsiExec.exe /X{D8087907-E255-3A41-A46D-D0F798709C71}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974-->MsiExec.exe /X{B7E38540-E355-3503-AFD7-635B2F2F76E1}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729-->MsiExec.exe /X{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Microsoft Visual C++ 2010 Express - ENU-->C:\Program Files\Microsoft Visual Studio 10.0\Microsoft Visual C++ 2010 Express - ENU\setup.exe
Microsoft Visual C++ 2010 Express - ENU-->MsiExec.exe /X{46F8CF66-AB83-38A7-99B2-A5BE507EE472}
Microsoft Visual Studio Shell 2008 Service Pack 1 - ENU-->MsiExec.exe /X{97E3C3BF-76AC-4DEA-BF8A-434F1EA5F272}
Microsoft Visual Studio Web Authoring Component-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall VISUALWEBDEVELOPER /dll OSETUP.DLL
Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries-->MsiExec.exe /X{842FAF7C-50EF-4463-9B8F-6222E1384D7D}
Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for .NET Framework - enu-->MsiExec.exe /X{5BE1E709-30E4-3D6D-A708-96CE8D5E5E8D}
Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Win32-->MsiExec.exe /X{044F9133-B8D7-4d11-BF39-803FA20F5C8B}
Microsoft XNA Framework Redistributable 3.0-->MsiExec.exe /I{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}
Microsoft XNA Framework Redistributable 3.1-->MsiExec.exe /I{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}
MinGW-Get version 0.3-alpha-2.1-->"C:\MinGW\unins000.exe"
Mozilla Firefox (3.6.21)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSVC80_x86_v2-->MsiExec.exe /I{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Mumble 1.2.3-->MsiExec.exe /I{62C68336-B969-4097-B0BD-A3A0FBFD59C1}
MySQL Workbench 5.2 CE-->MsiExec.exe /I{52937564-8312-4B49-BB13-F7EDBB67EB34}
OpenOffice.org 3.2-->MsiExec.exe /I{5DE71D48-01EB-4BF2-A643-50FE6C9B6AC9}
OpenTTD 1.1.3-->C:\hry\OpenTTD\uninstall.exe
Pidgin-->C:\Program Files\Pidgin\pidgin-uninst.exe
Pre-Boot Security for HP ProtectTools-->MsiExec.exe /X{3513DD3C-7680-4C7C-BF18-BA375D5F4132}
Privacy Manager for HP ProtectTools-->MsiExec.exe /I{142D2DFA-1FB7-41B9-8509-DAB5F3978CE4}
Prometheus Sbírka úloh z fyziky pro SŠ 1.0-->"C:\Program Files\Fyzika\unins000.exe"
PSPad editor-->"C:\Program Files\PSPad editor\Uninst\unins000.exe"
Python 2.7 MySQL-python-1.2.3-->"C:\Python27\RemoveMySQL-python.exe" -u "C:\Python27\MySQL-python-wininst.log"
Python 2.7.1-->MsiExec.exe /I{32939827-D8E5-470A-B126-870DB3C69FDF}
RAD Video Tools-->"C:\Program Files\RADVideo\uninstall.exe"
Realtek Ethernet Controller All-In-One Windows Driver-->C:\Program Files\InstallShield Installation Information\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}\setup.exe -runfromtemp -removeonly
Realtek USB 2.0 Card Reader-->"C:\Program Files\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setup.exe" -runfromtemp -removeonly
Recuva-->"C:\Program Files\Recuva\uninst.exe"
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {3E0806DB-3085-378A-840A-F0D3AE3609D1} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {728D9A6A-2206-31E8-9F65-C3EABEFCF53E} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {7E97AB83-C1FE-38DE-B848-877E0A4BD81E} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)-->c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {DB31DEDD-BF95-31E7-A9B7-5480561CEFF3} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)-->c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {7A2C18A1-D2A2-3177-82F1-5FE9CC08ECB0} /parameterfolder Extended
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)-->c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {42A3562E-8B4E-39A4-B82D-CC12F82889E3} /parameterfolder Extended
Skype™ 5.3-->MsiExec.exe /X{D6F879CC-59D6-4D4B-AE9B-D761E48D25ED}
Sothink SWF Quicker-->"C:\Program Files\SourceTec\Sothink SWF Quicker\unins000.exe"
Source SDK Base 2007-->"C:\Program Files\Steam\steam.exe" steam://uninstall/218
Source SDK-->"C:\Program Files\Steam\steam.exe" steam://uninstall/211
Steam-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
Stronghold Crusader Extreme-->"C:\hry\PacSteamT\steam.exe" steam://uninstall/16700
Stronghold Crusader-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E9727CBE-5BEF-487F-ABF0-2215C7274A35}\setup.exe" -l0x5
Synaptics Pointing Device Driver-->rundll32.exe "%ProgramFiles%\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
Team Fortress 2-->"C:\hry\PacSteamT\steam.exe" steam://uninstall/440
TeamSpeak 3 Client-->"C:\Program Files\TeamSpeak 3 Client\uninstall.exe"
TeamViewer 5-->C:\Program Files\TeamViewer\Version5\uninstall.exe
The Witcher 2 (CZ)-->"C:\Program Files\InstallShield Installation Information\{F0A209B7-7F85-4BDD-8F1F-B98EEAD9E04B}\setup.exe" -runfromtemp -l0x0405 -removeonly
TightVNC 2.0.4-->C:\Program Files\TightVNC\uninstall.exe
TortoiseHg 1.0.3 (x86)-->MsiExec.exe /I{3AA82C88-DF8D-498A-BD1D-AD24ECBD226A}
TortoiseSVN 1.7.1.22161 (32 bit)-->MsiExec.exe /X{17544ACA-6428-424B-926B-8751610836AE}
Total Commander (Remove or Repair)-->c:\totalcmd\tcuninst.exe
Tunngle beta-->"C:\Program Files\Tunngle\unins000.exe"
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->C:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Client
Update for Microsoft .NET Framework 4 Extended (KB2468871)-->c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Extended
Update for Microsoft .NET Framework 4 Extended (KB2533523)-->c:\windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Extended
Update for Microsoft Visual Studio Web Authoring Component (KB945140)-->msiexec /package {90120000-0021-0000-0000-0000000FF1CE} /uninstall {F9DE79A2-9049-4589-9787-815147371581}
Validity Fingerprint Driver-->MsiExec.exe /X{5DCBD841-3768-4D3A-8517-65BFB87E05D3}
VC80CRTRedist - 8.0.50727.4053-->MsiExec.exe /I{5EE7D259-D137-4438-9A5F-42F432EC0421}
Visual C++ 8.0 x86 Runtime Setup Package-->MsiExec.exe /I{8215AC14-BFC2-4ECC-96D6-1030202F8BDF}
VLC media player 1.0.5-->C:\Program Files\VideoLAN\VLC\uninstall.exe
VMware Remote Console Plug-in-->MsiExec.exe /X{D2F28E39-9813-41D3-8EC9-BAADA38C426D}
Warcraft III-->C:\windows\War3Unin.exe C:\windows\War3Unin.dat
Windows Driver Package - Broadcom Bluetooth (06/15/2009 6.2.0.9000)-->C:\PROGRA~1\DIFX\7F01D4C0B2897E27\DPInst.exe /u C:\windows\System32\DriverStore\FileRepository\bcbtums-win7x86-brcm.inf_x86_neutral_6f5c4fcf7ed58496\bcbtums-win7x86-brcm.inf
Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405)-->C:\PROGRA~1\DIFX\7F01D4C0B2897E27\DPInst.exe /u C:\windows\System32\DriverStore\FileRepository\bcbtums-vistax86-brcm.inf_x86_neutral_a622a4701b0a8e59\bcbtums-vistax86-brcm.inf
Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800)-->C:\PROGRA~1\DIFX\7F01D4C0B2897E27\DPInst.exe /u C:\windows\System32\DriverStore\FileRepository\bcbthid32.inf_x86_neutral_6c4f31312ffe9ed6\bcbthid32.inf
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
WinRAR-->C:\Program Files\WinRAR\uninstall.exe
WinSCP 4.2.7-->"C:\Program Files\WinSCP\unins000.exe"
WinZip 12.0-->MsiExec.exe /X{CD95F661-A5C4-44F5-A6AA-ECDD91C240B7}
Wireshark 1.4.6-->"C:\Program Files\Wireshark\uninstall.exe"
World of Goo-->"C:\hry\PacSteamT\steam.exe" steam://uninstall/22000
World of Warcraft-->C:\Program Files\Common Files\Blizzard Entertainment\World of Warcraft\Uninstall.exe
Worms 4 Mayhem-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{45E7C481-3EF4-4FCB-AF0B-19F70D618F0C}\setup.exe" -l0x9 -removeonly
Worms 4 Totální nářez-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\10\INTEL3~1\IDriver.exe /M{45E7C481-3EF4-4FCB-AF0B-19F70D618F0C}
Základní software zařízení HP Deskjet 1050 J410 series-->MsiExec.exe /I{496F4FDB-A4A5-4AB1-89C2-7B4FFD37F9F1}

======System event log======

Computer Name: lemur
Event Code: 7036
Message: Stav služby Načítání obrázků (WIA) byl změněn na: Pozastaveno
Record Number: 81746
Source Name: Service Control Manager
Time Written: 20110426220404.071209-000
Event Type: Informace
User:

Computer Name: lemur
Event Code: 7036
Message: Stav služby Služba WinHTTP WPAD byl změněn na: Zastaveno
Record Number: 81745
Source Name: Service Control Manager
Time Written: 20110426220147.186752-000
Event Type: Informace
User:

Computer Name: lemur
Event Code: 245
Message: Aplikace war3.exe 243776krát uzamkla primární povrch.
Record Number: 81744
Source Name: Win32k
Time Written: 20110426215637.431493-000
Event Type: Informace
User:

Computer Name: lemur
Event Code: 7036
Message: Stav služby Služba WinHTTP WPAD byl změněn na: Spuštěno
Record Number: 81743
Source Name: Service Control Manager
Time Written: 20110426214517.186540-000
Event Type: Informace
User:

Computer Name: lemur
Event Code: 7040
Message: Režim spuštění služby Služba inteligentního přenosu na pozadí byl změněn z automatické spouštění na spouštění na vyžádání.
Record Number: 81742
Source Name: Service Control Manager
Time Written: 20110426204419.429777-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

=====Application event log=====

Computer Name: lemur
Event Code: 1033
Message: Instalační služba systému Windows provedla instalaci produktu. Název produktu: Norton Online Backup. Verze produktu: 1.2.20.0. Jazyk produktu: 1029. Výrobce: Symantec. Stav instalace (úspěch nebo chyba): 0.
Record Number: 2046
Source Name: MsiInstaller
Time Written: 20100513151902.000000-000
Event Type: Informace
User: lemur\brseker

Computer Name: lemur
Event Code: 11707
Message: Produkt: Norton Online Backup - Instalace byla úspěšně dokončena.
Record Number: 2045
Source Name: MsiInstaller
Time Written: 20100513151902.000000-000
Event Type: Informace
User: lemur\brseker

Computer Name: lemur
Event Code: 10000
Message: Zahajování relace 0 – ‎2010‎-‎05‎-‎13T15:19:02.111211300Z.
Record Number: 2044
Source Name: Microsoft-Windows-RestartManager
Time Written: 20100513151902.111211-000
Event Type: Informace
User: lemur\brseker

Computer Name: lemur
Event Code: 1040
Message: Probíhá zahajování transakce Instalační služby systému Windows: C:\Users\brseker\AppData\Local\Temp\7zSF8BF.tmp\ActivationInstaller.msi. ID procesu klienta: 5032
Record Number: 2043
Source Name: MsiInstaller
Time Written: 20100513151856.000000-000
Event Type: Informace
User: lemur\brseker

Computer Name: lemur
Event Code: 0
Message: Událost PowerEvent byla službou úspěšně zpracována.
Record Number: 2042
Source Name: HP ProtectTools Service
Time Written: 20100513151852.000000-000
Event Type: Informace
User:

=====Security event log=====

Computer Name: lemur
Event Code: 4634
Message: Účet byl odhlášen.

Předmět:
ID zabezpečení: S-1-5-21-3415639909-2736430775-3772740974-1003
Název účtu: brseker
Doména účtu: lemur
ID přihlášení: 0xc4a957

Typ přihlášení: 2

Tato událost je generována, pokud je zničena relace přihlášení. Může být spojena s událostí přihlášení pomocí hodnoty ID přihlášení. Hodnoty ID přihlášení jsou jednoznačné pouze v rámci jednotlivých restartů stejného počítače.
Record Number: 50937
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110617092941.334333-000
Event Type: Úspěšný audit
User:

Computer Name: lemur
Event Code: 4634
Message: Účet byl odhlášen.

Předmět:
ID zabezpečení: S-1-5-21-3415639909-2736430775-3772740974-1003
Název účtu: brseker
Doména účtu: lemur
ID přihlášení: 0xc4a995

Typ přihlášení: 2

Tato událost je generována, pokud je zničena relace přihlášení. Může být spojena s událostí přihlášení pomocí hodnoty ID přihlášení. Hodnoty ID přihlášení jsou jednoznačné pouze v rámci jednotlivých restartů stejného počítače.
Record Number: 50936
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110617092941.333333-000
Event Type: Úspěšný audit
User:

Computer Name: lemur
Event Code: 4672
Message: Novému přihlášení byla přiřazena zvláštní oprávnění.

Předmět:
ID zabezpečení: S-1-5-21-3415639909-2736430775-3772740974-1003
Název účtu: brseker
Doména účtu: lemur
ID přihlášení: 0xc4a957

Oprávnění: SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 50935
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110617092941.309332-000
Event Type: Úspěšný audit
User:

Computer Name: lemur
Event Code: 4624
Message: Účet byl úspěšně přihlášen.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: LEMUR$
Doména účtu: DOMA
ID přihlášení: 0x3e7

Typ přihlášení: 2

Nové přihlášení:
ID zabezpečení: S-1-5-21-3415639909-2736430775-3772740974-1003
Název účtu: brseker
Doména účtu: lemur
ID přihlášení: 0xc4a995
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Informace o procesu:
ID procesu: 0x730
Název procesu: C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe

Informace o síti:
Název pracovní stanice: LEMUR
Adresa zdrojové sítě -
Zdrojový port: -

Podrobné informace o ověření:
Proces přihlášení: Advapi
Balíček ověření: Negotiate
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0

Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.

Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.

Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).

Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.

Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.

Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 50934
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110617092941.309332-000
Event Type: Úspěšný audit
User:

Computer Name: lemur
Event Code: 4624
Message: Účet byl úspěšně přihlášen.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: LEMUR$
Doména účtu: DOMA
ID přihlášení: 0x3e7

Typ přihlášení: 2

Nové přihlášení:
ID zabezpečení: S-1-5-21-3415639909-2736430775-3772740974-1003
Název účtu: brseker
Doména účtu: lemur
ID přihlášení: 0xc4a957
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Informace o procesu:
ID procesu: 0x730
Název procesu: C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe

Informace o síti:
Název pracovní stanice: LEMUR
Adresa zdrojové sítě -
Zdrojový port: -

Podrobné informace o ověření:
Proces přihlášení: Advapi
Balíček ověření: Negotiate
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0

Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.

Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.

Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).

Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.

Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.

Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 50933
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20110617092941.309332-000
Event Type: Úspěšný audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"FTP_PASSIVE"=1
"LANG"=cs
"NUMBER_OF_PROCESSORS"=4
"OnlineServices"=Online Services
"OS"=Windows_NT
"Path"=C:\Program Files\AMD APP\bin\x86;C:\Program Files\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;c:\Program Files\Hewlett-Packard\Drive Encryption\;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\WIDCOMM\Bluetooth Software\;C:\Program Files\TortoiseHg\;C:\strawberry\c\bin;C:\strawberry\perl\site\bin;C:\strawberry\perl\bin;C:\Program Files\CMake 2.8\bin;C:\Python27;C:\MinGW\bin;C:\Program Files\TortoiseSVN\bin
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PCBRAND"=s
"Platform"=BNB
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 37 Stepping 2, GenuineIntel
"PROCESSOR_LEVEL"=6
"PROCESSOR_REVISION"=2502
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"PTSM_install_path"=c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin
"TEMP"=%SystemRoot%\TEMP
"TERM"=dumb
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"VS100COMNTOOLS"=C:\Program Files\Microsoft Visual Studio 10.0\Common7\Tools\
"VS90COMNTOOLS"=C:\Program Files\Microsoft Visual Studio 9.0\Common7\Tools\
"windir"=%SystemRoot%
"AMDAPPSDKROOT"=C:\Program Files\AMD APP\

-----------------EOF-----------------

Bych natvrdo odinstaloval...Poté nový RSIT

Tady je novy log z RSIT:

Logfile of random's system information tool 1.09 (written by random/random)
Run by brseker at 2011-11-20 21:58:47
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 65 GB (23%) free of 288 GB
Total RAM: 2994 MB (72% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:59:23, on 20.11.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\windows\system32\taskhost.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\windows\system32\wuauclt.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\totalcmd\TOTALCMD.EXE
C:\install\RSIT.exe
C:\Program Files\trend micro\brseker.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol 52\AxAutoMntSrv.exe" -automount
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://c:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - Trusted IP range: http://192.168.5.3
O15 - Trusted IP range: 82.117.152.130
O15 - Trusted IP range: http://82.117.152.130
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O16 - DPF: {B94C2238-346E-4C5E-9B36-8CC627F35574} (VMware Remote Console Plug-in 2.5.0.00000) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{6650DCBC-B889-4A4F-8C31-7202A4DAA417}: NameServer = 62.84.128.6,62.84.132.6
O17 - HKLM\System\CS1\Services\Tcpip\..\{6650DCBC-B889-4A4F-8C31-7202A4DAA417}: NameServer = 62.84.128.6,62.84.132.6
O17 - HKLM\System\CS2\Services\Tcpip\..\{6650DCBC-B889-4A4F-8C31-7202A4DAA417}: NameServer = 62.84.128.6,62.84.132.6
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\aestsrv.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\windows\system32\atiesrxx.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - c:\Windows\system32\flcdlock.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard - C:\windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\STacSV.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol 52\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files\Tunngle\TnglCtrl.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe

--
End of file - 8226 bytes

======Scheduled tasks folder======

C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3415639909-2736430775-3772740974-1003Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3415639909-2736430775-3772740974-1003UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\brseker\AppData\Roaming\Mozilla\Firefox\Profiles\uig4grzs.default

prefs.js - "browser.startup.homepage" - "http://seznam.cz/"
prefs.js - "extensions.enabledItems" - "otis@digitalpersona.com:5.0.0.4191, {73a6fe31-595d-460b-a920-fcc0f8843232}:2.0.9.7, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.2, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, 2020Player@2020Technologies.com:4.5.2.0, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, battlefieldheroespatcher@ea.com:5.0.31.0, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.1.94, {6904342A-8307-11DF-A508-4AE2DFD72085}:2.1.1.94, fdm_ffext@freedownloadmanager.org:1.3.4, {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26, {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}:6.0.29, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.21"

"otis@digitalpersona.com"=c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt\
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video
"{6904342A-8307-11DF-A508-4AE2DFD72085}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
components.list
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsINIProcessor.js
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
npFoxitReaderPlugin.dll
npnul32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\brseker\AppData\Roaming\Mozilla\Firefox\Profiles\uig4grzs.default\extensions\
2020Player@2020Technologies.com
battlefieldheroespatcher@ea.com
{73a6fe31-595d-460b-a920-fcc0f8843232}
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08 3118976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{593DDEC6-7468-4cdd-90E1-42DADAA222E9}]
DivX HiQ - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08 3118976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-10-18 42272]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-12-09 98304]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2009-12-03 495711]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"Windows Mobile Device Center"=C:\windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AlcoholAutomount"=C:\Program Files\Alcohol 52\AxAutoMntSrv.exe [2009-11-15 33120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface]
C:\Users\brseker\AppData\Local\Akamai\netsession_win.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-03-21 1230704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DTRun]
c:\Program Files\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\facemoods]
C:\Program Files\facemoods.com\facemoods\1.4.17.7\facemoodssrv.exe /md I []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\File Sanitizer]
C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\brseker\AppData\Local\Google\Update\GoogleUpdate.exe [2010-07-12 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPADVISOR]
C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPPowerAssistant]
C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe /hidden []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPWirelessAssistant]
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAAnotif]
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-08-25 186904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TortoiseHgOverlayIconServer]
C:\Program Files\TortoiseHg\TortoiseHgOverlayServer.exe [2010-05-13 44448]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\DeviceNP]
C:\windows\system32\DeviceNP.dll [2009-11-17 75320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"VIDC.FPS1"=frapsvid.dll
"VIDC.IV41"=IR41_32.AX
"vidc.VP60"=C:\windows\system32\vp6vfw.dll
"vidc.VP61"=C:\windows\system32\vp6vfw.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2020-10-24 14:24:46 ----D---- C:\Users\brseker\AppData\Roaming\Hamachi
2020-10-24 14:24:35 ----D---- C:\Program Files\Hamachi
2020-10-24 14:24:35 ----A---- C:\windows\system32\drivers\hamachi.sys
2011-11-20 21:31:22 ----A---- C:\windows\system32\drivers\revoflt.sys
2011-11-20 21:31:21 ----D---- C:\Program Files\Revo Uninstaller Pro
2011-11-20 21:28:20 ----D---- C:\Users\brseker\AppData\Roaming\Notepad++
2011-11-20 21:28:20 ----D---- C:\Program Files\Notepad++
2011-11-20 20:34:41 ----D---- C:\Program Files\trend micro
2011-11-20 20:34:40 ----D---- C:\rsit
2011-11-19 19:21:06 ----A---- C:\windows\system32\XAudio2_6.dll
2011-11-19 19:21:06 ----A---- C:\windows\system32\XAPOFX1_4.dll
2011-11-19 19:21:06 ----A---- C:\windows\system32\xactengine3_6.dll
2011-11-19 19:21:06 ----A---- C:\windows\system32\X3DAudio1_7.dll
2011-11-19 19:21:05 ----A---- C:\windows\system32\XAudio2_5.dll
2011-11-19 19:21:05 ----A---- C:\windows\system32\xactengine3_5.dll
2011-11-19 19:21:05 ----A---- C:\windows\system32\D3DCompiler_42.dll
2011-11-19 19:21:04 ----A---- C:\windows\system32\d3dx11_42.dll
2011-11-19 19:21:04 ----A---- C:\windows\system32\d3dcsx_42.dll
2011-11-19 19:21:03 ----A---- C:\windows\system32\D3DX9_42.dll
2011-11-19 19:21:03 ----A---- C:\windows\system32\d3dx10_42.dll
2011-11-19 19:21:02 ----A---- C:\windows\system32\d3dx10_41.dll
2011-11-19 19:21:02 ----A---- C:\windows\system32\D3DCompiler_41.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\XAudio2_4.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\XAPOFX1_3.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\xactengine3_4.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\D3DX9_41.dll
2011-11-19 19:21:00 ----A---- C:\windows\system32\X3DAudio1_6.dll
2011-11-19 19:21:00 ----A---- C:\windows\system32\d3dx10_40.dll
2011-11-19 19:21:00 ----A---- C:\windows\system32\D3DCompiler_40.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\XAudio2_3.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\XAPOFX1_2.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\xactengine3_3.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\X3DAudio1_5.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\D3DX9_40.dll
2011-11-19 19:20:57 ----A---- C:\windows\system32\XAudio2_2.dll
2011-11-19 19:20:57 ----A---- C:\windows\system32\XAPOFX1_1.dll
2011-11-19 19:20:57 ----A---- C:\windows\system32\xactengine3_2.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\XAudio2_1.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\XAPOFX1_0.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\xactengine3_1.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\X3DAudio1_4.dll
2011-11-19 19:20:55 ----A---- C:\windows\system32\d3dx10_38.dll
2011-11-19 19:20:55 ----A---- C:\windows\system32\D3DCompiler_38.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\XAudio2_0.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\xactengine3_0.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\X3DAudio1_3.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\D3DX9_38.dll
2011-11-19 19:20:53 ----A---- C:\windows\system32\D3DX9_37.dll
2011-11-19 19:20:53 ----A---- C:\windows\system32\d3dx10_37.dll
2011-11-19 19:20:53 ----A---- C:\windows\system32\D3DCompiler_37.dll
2011-11-19 19:20:52 ----A---- C:\windows\system32\xactengine2_10.dll
2011-11-19 19:20:51 ----A---- C:\windows\system32\d3dx9_36.dll
2011-11-19 19:20:51 ----A---- C:\windows\system32\d3dx10_36.dll
2011-11-19 19:20:51 ----A---- C:\windows\system32\D3DCompiler_36.dll
2011-11-19 19:20:50 ----A---- C:\windows\system32\xactengine2_9.dll
2011-11-19 19:20:49 ----A---- C:\windows\system32\d3dx10_35.dll
2011-11-19 19:20:49 ----A---- C:\windows\system32\D3DCompiler_35.dll
2011-11-19 19:20:48 ----A---- C:\windows\system32\d3dx9_35.dll
2011-11-19 19:20:47 ----A---- C:\windows\system32\xactengine2_8.dll
2011-11-19 19:20:47 ----A---- C:\windows\system32\X3DAudio1_2.dll
2011-11-06 18:42:40 ----D---- C:\Program Files\TortoiseSVN
2011-11-05 20:29:36 ----D---- C:\ProgramData\Prometheus
2011-11-05 20:29:36 ----D---- C:\Program Files\Fyzika
2011-11-04 17:50:35 ----A---- C:\windows\system32\esent.dll
2011-11-04 17:50:34 ----A---- C:\windows\system32\fsutil.exe
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\USBSTOR.SYS
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\storport.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\nvstor.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\nvraid.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\ntfs.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\iaStorV.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\amdxata.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\amdsata.sys
2011-11-04 17:50:31 ----A---- C:\windows\system32\shell32.dll
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbuhci.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbport.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbohci.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbhub.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbehci.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbd.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbccgp.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\BTHUSB.SYS
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\bthport.sys
2011-10-26 09:47:52 ----D---- C:\Program Files\Common Files\Java
2011-10-26 09:47:13 ----A---- C:\windows\system32\javaws.exe
2011-10-26 09:47:13 ----A---- C:\windows\system32\javaw.exe
2011-10-26 09:47:13 ----A---- C:\windows\system32\java.exe

======List of files/folders modified in the last 1 month======

2011-11-20 21:58:56 ----D---- C:\Users\brseker\AppData\Roaming\Skype
2011-11-20 21:58:11 ----D---- C:\windows\Temp
2011-11-20 21:54:09 ----D---- C:\windows\System32
2011-11-20 21:54:09 ----D---- C:\windows\inf
2011-11-20 21:54:09 ----A---- C:\windows\system32\PerfStringBackup.INI
2011-11-20 21:51:33 ----D---- C:\windows\system32\catroot2
2011-11-20 21:50:05 ----D---- C:\windows\system32\config
2011-11-20 21:49:59 ----A---- C:\windows\system32\log.txt
2011-11-20 21:48:59 ----RD---- C:\Program Files
2011-11-20 21:48:33 ----SHD---- C:\windows\Installer
2011-11-20 21:48:21 ----SHD---- C:\System Volume Information
2011-11-20 21:47:23 ----HD---- C:\ProgramData
2011-11-20 21:44:52 ----D---- C:\Program Files\SourceTec
2011-11-20 21:44:23 ----D---- C:\Program Files\Common Files
2011-11-20 21:43:44 ----D---- C:\Program Files\Hewlett-Packard
2011-11-20 21:35:23 ----D---- C:\windows\system32\drivers
2011-11-20 21:31:33 ----D---- C:\windows\winsxs
2011-11-20 21:30:40 ----D---- C:\install
2011-11-20 21:18:04 ----D---- C:\ProgramData\HPQLOG
2011-11-20 21:14:15 ----D---- C:\windows\system32\zh-Hant
2011-11-20 21:14:15 ----D---- C:\windows\system32\zh-Hans
2011-11-20 21:14:15 ----D---- C:\windows\system32\pt
2011-11-20 21:14:15 ----D---- C:\windows\system32\ko
2011-11-20 21:14:15 ----D---- C:\windows\system32\ja
2011-11-20 21:14:15 ----D---- C:\windows\system32\it
2011-11-20 21:14:15 ----D---- C:\windows\system32\fr
2011-11-20 21:14:15 ----D---- C:\windows\system32\es
2011-11-20 21:14:15 ----D---- C:\windows\system32\en-US
2011-11-20 21:14:15 ----D---- C:\windows\system32\de
2011-11-20 21:14:15 ----D---- C:\windows\system32\cs
2011-11-20 21:12:55 ----D---- C:\Windows
2011-11-20 19:54:20 ----D---- C:\Users\brseker\AppData\Roaming\vlc
2011-11-20 19:38:47 ----D---- C:\Program Files\Steam
2011-11-19 19:50:56 ----D---- C:\dan
2011-11-19 19:43:21 ----D---- C:\skola
2011-11-19 19:20:42 ----RSD---- C:\windows\assembly
2011-11-19 19:14:20 ----D---- C:\hry
2011-11-19 15:13:36 ----D---- C:\windows\Prefetch
2011-11-19 14:25:28 ----D---- C:\Users\brseker\AppData\Roaming\.minecraft
2011-11-19 11:53:37 ----D---- C:\windows\debug
2011-11-19 11:50:16 ----HD---- C:\Program Files\InstallShield Installation Information
2011-11-19 11:49:33 ----D---- C:\Program Files\AddOn Studio for World of Warcraft
2011-11-19 11:45:32 ----D---- C:\ProgramData\Firefly Studios
2011-11-19 11:43:25 ----D---- C:\Program Files\OpenSSL-Win32
2011-11-19 11:42:24 ----D---- C:\Program Files\JDownloader
2011-11-19 11:41:47 ----D---- C:\Program Files\HP
2011-11-19 11:40:23 ----D---- C:\Fraps
2011-11-19 11:39:33 ----D---- C:\Program Files\Common Files\ArcSoft
2011-11-19 11:39:24 ----D---- C:\Users\brseker\AppData\Roaming\ArcSoft
2011-11-19 11:39:10 ----D---- C:\ProgramData\Media Center Programs
2011-11-19 11:29:33 ----D---- C:\Program Files\ElcomSoft
2011-11-15 17:08:40 ----D---- C:\Program Files\Common Files\Steam
2011-11-14 13:40:38 ----D---- C:\Users\brseker\AppData\Roaming\.purple
2011-11-10 23:58:45 ----D---- C:\windows\rescache
2011-11-10 07:53:35 ----D---- C:\Users\brseker\AppData\Roaming\Zoner
2011-11-06 18:42:41 ----D---- C:\Program Files\Common Files\TortoiseOverlays
2011-11-04 22:59:18 ----D---- C:\windows\Microsoft.NET
2011-11-04 18:07:38 ----D---- C:\windows\system32\cs-CZ
2011-11-04 18:07:37 ----D---- C:\windows\system32\DriverStore
2011-11-04 17:56:16 ----D---- C:\windows\system32\catroot
2011-10-30 19:07:19 ----D---- C:\windows\system32\Tasks
2011-10-27 13:00:46 ----D---- C:\Users\brseker\AppData\Roaming\FileZilla
2011-10-27 11:34:08 ----D---- C:\Users\brseker\AppData\Roaming\VMware
2011-10-26 09:46:50 ----D---- C:\Program Files\Java
2011-10-24 14:03:41 ----D---- C:\Users\brseker\AppData\Roaming\Tunngle
2011-10-24 14:03:32 ----D---- C:\Program Files\Tunngle
2011-10-23 19:50:19 ----D---- C:\ProgramData\Tunngle

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2009-07-08 25656]
R0 iaStor;Intel RAID Controller; C:\windows\system32\DRIVERS\iaStor.sys [2009-08-07 330264]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2009-12-16 110520]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2009-12-16 51800]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2009-12-16 13256]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\windows\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sptd;sptd; C:\windows\System32\Drivers\sptd.sys [2010-05-13 691696]
R1 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys [2009-12-15 214664]
R1 mfetdik;McAfee Inc. mfetdik; C:\windows\system32\drivers\mfetdik.sys [2009-12-15 55304]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2009-12-16 40088]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 lirsgt;lirsgt; C:\windows\system32\DRIVERS\lirsgt.sys [2011-06-22 25416]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2009-07-08 33848]
R3 Afc;PPdus ASPI Shell; C:\windows\system32\drivers\Afc.sys [2006-11-11 18688]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2009-11-02 1163328]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdW73.sys [2011-10-14 211984]
R3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2009-12-08 5092864]
R3 hamachi;Hamachi Network Interface; C:\windows\system32\DRIVERS\hamachi.sys [2020-10-24 25280]
R3 HECI;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECI.sys [2009-09-17 41088]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2009-12-19 1763968]
R3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt.sys [2009-12-03 423424]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle); C:\windows\system32\DRIVERS\tap0901t.sys [2009-09-16 27136]
S0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\windows\System32\drivers\sfdrv01.sys [2005-05-17 50176]
S0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\windows\System32\drivers\sfsync02.sys [2005-05-16 19968]
S2 atksgt;atksgt; C:\windows\system32\DRIVERS\atksgt.sys [2011-06-22 278984]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys []
S3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys []
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\windows\system32\drivers\AtiHdmi.sys [2009-11-18 100352]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2011-04-28 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2009-09-17 86056]
S3 btwavdt;Bluetooth AVDT; C:\windows\system32\DRIVERS\btwavdt.sys [2009-09-17 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 29472]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2009-09-17 18472]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv.sys [2009-10-21 32312]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt []
S3 GarenaPEngine;GarenaPEngine; \??\C:\Users\brseker\AppData\Local\Temp\VEG238A.tmp []
S3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2009-07-16 15872]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 MfeAVFK;McAfee Inc. MfeAVFK; C:\windows\system32\drivers\MfeAVFK.sys [2009-12-15 79816]
S3 MfeBOPK;McAfee Inc. MfeBOPK; C:\windows\system32\drivers\MfeBOPK.sys [2009-12-15 35272]
S3 MfeRKDK;McAfee Inc. MfeRKDK; C:\windows\system32\drivers\MfeRKDK.sys [2009-12-15 34248]
S3 NETw5s32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit; C:\windows\system32\DRIVERS\NETw5s32.sys [2009-10-03 6114816]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 Revoflt;Revoflt; C:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2009-11-11 181792]
S3 SCREAMINGBDRIVER;Screaming Bee Audio; C:\windows\system32\drivers\ScreamingBAudio.sys [2009-12-01 34384]
S3 sisagp;Filtr SIS sběrnice AGP; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usb_rndisx;Adaptér USB RNDIS; C:\windows\system32\DRIVERS\usb8023x.sys [2009-07-14 15872]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 viaagp;Filtr VIA sběrnice AGP; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\aestsrv.exe [2009-03-03 81920]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-11-02 14336]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2009-12-08 172032]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\windows\system32\svchost.exe [2009-07-14 20992]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-09-04 595232]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2009-07-08 26168]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-08-25 354840]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\windows\system32\svchost.exe [2009-07-14 20992]
R2 simptcp;@%SystemRoot%\system32\simptcp.dll,-200; C:\windows\System32\tcpsvcs.exe [2009-07-14 9216]
R2 STacSV;Audio Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\STacSV.exe [2009-12-03 229461]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol 52\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 TeamViewer5;TeamViewer 5; C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe [2010-07-06 173352]
R2 TunngleService;TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [2011-10-14 745832]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2009-12-14 1639728]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\windows\system32\svchost.exe [2009-07-14 20992]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-29 136176]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\system32\flcdlock.exe [2009-11-17 362040]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-04-20 1045256]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-29 136176]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2011-11-14 419624]
S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\windows\system32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-05-24 1343400]
S4 NetMsmqActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Spustíme si HijackThis (Pokud nenajdeme nebo nemáme,tak stáhneme ZDE )

• Dále klikneme na tlačítko Do a system scan only
• Najdeme a označíme následující položky:
  

  Kód: Vybrat vše

  R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
  R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
  R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
  F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
  O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
  O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
  O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
  O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
  O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
  O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
  O15 - Trusted Zone: http://*.mcafee.com (HKLM)
  O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
  O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
  O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
  O15 - Trusted IP range: http://192.168.5.3
  O15 - Trusted IP range: 82.117.152.130
  O15 - Trusted IP range: http://82.117.152.130
  O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
  O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
  O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
  O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
  O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
  

• klikneme na položku Fix checked a potvrdíme tlačítkem Ano

Otevřeme si Poznámkový blok

• (stiskneme klávesovou kombinaci WIN+R a napíšeme ,,notepad,, bez úvozovek a dáme enter)
• Vložíme do něj následující script:

  Kód: Vybrat vše

  Windows Registry Editor Version 5.00
  
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DTRun]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\facemoods]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\File Sanitizer]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPADVISOR]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPPowerAssistant]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPWirelessAssistant]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAAnotif]
  [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TortoiseHgOverlayIconServer]
  
  

• Soubor uložíme jako oprava.reg (při ukládání nastavte Uložit jako typ:Všechny soubory)
• Poté tento soubor spustíme a potvrdíme

TFC

• Stáhneme a spustíme program
• Klikneme na Start a potvrdíme OK
• Program začne uklízet,poté restartuje pc
• po použití program smažte

Údržba PC:

1)Čištění dočasných složek + neplatné registry
Ccleaner

• Stáhneme a nainstalujeme program
• Spustíme program
• ČISTIČ
  Windows zde necháme vše jak je (pokud používáme IE,tak odškrkneme jeho položky) a zaškrkneme položky Start Menu zástupci a Zástupci na ploše a odškrkneme volbu Zbytky souborů v paměti
  Aplikace - necháme jak je,ale pokud používáme nějaký prohlížeč (Google chrome,Firefox,Opera..) tak odškrkneme jeho položky
  >Stiskeneme tlačítko Analyzovat a poté Spustit Cleaner
• Registry
  >Stiskneme tlačítko Hledej problémy,program začne hledat neplatné registry..podé zvolíme Opravit vybrané problémy..
  >Program se zeptá,zda chceme vytvořit zálohu registrů,zvolíme ano a uložíme si někde zálohu(kdyby byli po opravení registru s něčím problémy,tak zálohu obnovíme tak,že spustíme uloženou zálohu a potvrdíme ano),dále zvolíme Opravit všechny problémy a Zavřít
  >opakujte dokud nebude registr bez problémů
• Program používáme 1x 14dní (záleží na používání pc,můžeme i jednou týdně)

2)Defragmentace disku
Defraggler

• Stáhneme a nainstalujeme program
• Spustíme program
• Vybereme disk ( C:,D:..prostě který používáme)
• Pokud je ve sloupci Fragmentace více než 5% dejte Defragmentovat
• Proveďte se všemi používanými disky
• Provádíme 1x za měsíc

3)Aktualizace programů
FileHippo.com Update Checker

• Stáhneme a nainstalujeme program(Při instalaci odškrkneme volbu Run at Startup )
• Spustíme program
• Program vyhledá nainstalované programy v PC a zjistí dostupné aktualizace
• Poté se vám otevře internetová stránka,kde budou nabídnuté aplikace k aktualizování
  >X Updates Detected..to jsou dostupné aktualizace..
  > klikneme na zelenou šipečku a stáhneme program,poté nainstalujeme jeho aktuální verzi
  > X Beta Updates Detected..tyto aktualizace nestahujte,jedná se o betaverze,které jsou ve vývoji a jsou nestabilní
• Provádíme 1x za 14 dní nebo jednou za měsíc

Jak se chová PC + nový RSIT

PC už nabíhá rychleji než dřív, jen nastal problém, že po zadání hesla se chvílí nic neděje a pak se objeví zpráva:
"Služba biometrického ověřování nepracuje správně" a jsou tam možnosti:
Přihlásit se bez biometrické identifikace
Počkat 30 sekund a pak se dotázat znovu
Při první možnosti mě to přihlásí a vše funguje jak má, hledal jsem na netu nějaké řešení, bohužel nefungovalo, zřejmě je to pozůstatek některé z těch HP utilit...
Přikládám nový log z RSIT:

Logfile of random's system information tool 1.09 (written by random/random)
Run by brseker at 2011-11-21 18:56:08
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 65 GB (23%) free of 288 GB
Total RAM: 2994 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:56:18, on 21.11.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\IDT\WDM\sttray.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\windows\system32\wuauclt.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\windows\system32\rundll32.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\totalcmd\TOTALCMD.EXE
C:\install\RSIT.exe
C:\Program Files\trend micro\brseker.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol 52\AxAutoMntSrv.exe" -automount
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://c:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://192.168.5.3
O15 - Trusted IP range: 82.117.152.130
O15 - Trusted IP range: http://82.117.152.130
O16 - DPF: {B94C2238-346E-4C5E-9B36-8CC627F35574} (VMware Remote Console Plug-in 2.5.0.00000) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{6650DCBC-B889-4A4F-8C31-7202A4DAA417}: NameServer = 62.84.128.6,62.84.132.6
O17 - HKLM\System\CS1\Services\Tcpip\..\{6650DCBC-B889-4A4F-8C31-7202A4DAA417}: NameServer = 62.84.128.6,62.84.132.6
O17 - HKLM\System\CS2\Services\Tcpip\..\{6650DCBC-B889-4A4F-8C31-7202A4DAA417}: NameServer = 62.84.128.6,62.84.132.6
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\aestsrv.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\windows\system32\atiesrxx.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - c:\Windows\system32\flcdlock.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard - C:\windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\STacSV.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol 52\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files\Tunngle\TnglCtrl.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe

--
End of file - 8128 bytes

======Scheduled tasks folder======

C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3415639909-2736430775-3772740974-1003Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3415639909-2736430775-3772740974-1003UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\brseker\AppData\Roaming\Mozilla\Firefox\Profiles\uig4grzs.default

prefs.js - "browser.startup.homepage" - "http://seznam.cz/"
prefs.js - "extensions.enabledItems" - "otis@digitalpersona.com:5.0.0.4191, {73a6fe31-595d-460b-a920-fcc0f8843232}:2.0.9.7, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.2, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, 2020Player@2020Technologies.com:4.5.2.0, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, battlefieldheroespatcher@ea.com:5.0.31.0, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.1.94, {6904342A-8307-11DF-A508-4AE2DFD72085}:2.1.1.94, fdm_ffext@freedownloadmanager.org:1.3.4, {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26, {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}:6.0.29, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.21"

"otis@digitalpersona.com"=c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt\
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video
"{6904342A-8307-11DF-A508-4AE2DFD72085}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
components.list
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsINIProcessor.js
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
npFoxitReaderPlugin.dll
npnul32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\brseker\AppData\Roaming\Mozilla\Firefox\Profiles\uig4grzs.default\extensions\
2020Player@2020Technologies.com
battlefieldheroespatcher@ea.com
{73a6fe31-595d-460b-a920-fcc0f8843232}
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08 3118976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{593DDEC6-7468-4cdd-90E1-42DADAA222E9}]
DivX HiQ - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08 3118976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-10-18 42272]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-12-09 98304]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2009-12-03 495711]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"Windows Mobile Device Center"=C:\windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AlcoholAutomount"=C:\Program Files\Alcohol 52\AxAutoMntSrv.exe [2009-11-15 33120]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"VIDC.FPS1"=frapsvid.dll
"VIDC.IV41"=IR41_32.AX
"vidc.VP60"=C:\windows\system32\vp6vfw.dll
"vidc.VP61"=C:\windows\system32\vp6vfw.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2020-10-24 14:24:46 ----D---- C:\Users\brseker\AppData\Roaming\Hamachi
2020-10-24 14:24:35 ----D---- C:\Program Files\Hamachi
2020-10-24 14:24:35 ----A---- C:\windows\system32\drivers\hamachi.sys
2011-11-21 00:18:53 ----D---- C:\windows\system32\GPBAK
2011-11-21 00:18:53 ----A---- C:\windows\unins000.exe
2011-11-21 00:18:53 ----A---- C:\windows\unins000.dat
2011-11-21 00:08:58 ----A---- C:\windows\system32\gpedit.msc
2011-11-21 00:08:19 ----A---- C:\windows\system32\appmgr.dll
2011-11-21 00:08:18 ----A---- C:\windows\system32\appmgmts.dll
2011-11-20 21:31:22 ----A---- C:\windows\system32\drivers\revoflt.sys
2011-11-20 21:31:21 ----D---- C:\Program Files\Revo Uninstaller Pro
2011-11-20 21:28:20 ----D---- C:\Users\brseker\AppData\Roaming\Notepad++
2011-11-20 21:28:20 ----D---- C:\Program Files\Notepad++
2011-11-20 20:34:41 ----D---- C:\Program Files\trend micro
2011-11-20 20:34:40 ----D---- C:\rsit
2011-11-19 19:21:06 ----A---- C:\windows\system32\XAudio2_6.dll
2011-11-19 19:21:06 ----A---- C:\windows\system32\XAPOFX1_4.dll
2011-11-19 19:21:06 ----A---- C:\windows\system32\xactengine3_6.dll
2011-11-19 19:21:06 ----A---- C:\windows\system32\X3DAudio1_7.dll
2011-11-19 19:21:05 ----A---- C:\windows\system32\XAudio2_5.dll
2011-11-19 19:21:05 ----A---- C:\windows\system32\xactengine3_5.dll
2011-11-19 19:21:05 ----A---- C:\windows\system32\D3DCompiler_42.dll
2011-11-19 19:21:04 ----A---- C:\windows\system32\d3dx11_42.dll
2011-11-19 19:21:04 ----A---- C:\windows\system32\d3dcsx_42.dll
2011-11-19 19:21:03 ----A---- C:\windows\system32\D3DX9_42.dll
2011-11-19 19:21:03 ----A---- C:\windows\system32\d3dx10_42.dll
2011-11-19 19:21:02 ----A---- C:\windows\system32\d3dx10_41.dll
2011-11-19 19:21:02 ----A---- C:\windows\system32\D3DCompiler_41.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\XAudio2_4.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\XAPOFX1_3.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\xactengine3_4.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\D3DX9_41.dll
2011-11-19 19:21:00 ----A---- C:\windows\system32\X3DAudio1_6.dll
2011-11-19 19:21:00 ----A---- C:\windows\system32\d3dx10_40.dll
2011-11-19 19:21:00 ----A---- C:\windows\system32\D3DCompiler_40.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\XAudio2_3.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\XAPOFX1_2.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\xactengine3_3.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\X3DAudio1_5.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\D3DX9_40.dll
2011-11-19 19:20:57 ----A---- C:\windows\system32\XAudio2_2.dll
2011-11-19 19:20:57 ----A---- C:\windows\system32\XAPOFX1_1.dll
2011-11-19 19:20:57 ----A---- C:\windows\system32\xactengine3_2.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\XAudio2_1.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\XAPOFX1_0.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\xactengine3_1.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\X3DAudio1_4.dll
2011-11-19 19:20:55 ----A---- C:\windows\system32\d3dx10_38.dll
2011-11-19 19:20:55 ----A---- C:\windows\system32\D3DCompiler_38.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\XAudio2_0.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\xactengine3_0.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\X3DAudio1_3.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\D3DX9_38.dll
2011-11-19 19:20:53 ----A---- C:\windows\system32\D3DX9_37.dll
2011-11-19 19:20:53 ----A---- C:\windows\system32\d3dx10_37.dll
2011-11-19 19:20:53 ----A---- C:\windows\system32\D3DCompiler_37.dll
2011-11-19 19:20:52 ----A---- C:\windows\system32\xactengine2_10.dll
2011-11-19 19:20:51 ----A---- C:\windows\system32\d3dx9_36.dll
2011-11-19 19:20:51 ----A---- C:\windows\system32\d3dx10_36.dll
2011-11-19 19:20:51 ----A---- C:\windows\system32\D3DCompiler_36.dll
2011-11-19 19:20:50 ----A---- C:\windows\system32\xactengine2_9.dll
2011-11-19 19:20:49 ----A---- C:\windows\system32\d3dx10_35.dll
2011-11-19 19:20:49 ----A---- C:\windows\system32\D3DCompiler_35.dll
2011-11-19 19:20:48 ----A---- C:\windows\system32\d3dx9_35.dll
2011-11-19 19:20:47 ----A---- C:\windows\system32\xactengine2_8.dll
2011-11-19 19:20:47 ----A---- C:\windows\system32\X3DAudio1_2.dll
2011-11-06 18:42:40 ----D---- C:\Program Files\TortoiseSVN
2011-11-05 20:29:36 ----D---- C:\ProgramData\Prometheus
2011-11-05 20:29:36 ----D---- C:\Program Files\Fyzika
2011-11-04 17:50:35 ----A---- C:\windows\system32\esent.dll
2011-11-04 17:50:34 ----A---- C:\windows\system32\fsutil.exe
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\USBSTOR.SYS
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\storport.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\nvstor.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\nvraid.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\ntfs.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\iaStorV.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\amdxata.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\amdsata.sys
2011-11-04 17:50:31 ----A---- C:\windows\system32\shell32.dll
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbuhci.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbport.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbohci.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbhub.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbehci.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbd.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbccgp.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\BTHUSB.SYS
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\bthport.sys
2011-10-26 09:47:52 ----D---- C:\Program Files\Common Files\Java
2011-10-26 09:47:13 ----A---- C:\windows\system32\javaws.exe
2011-10-26 09:47:13 ----A---- C:\windows\system32\javaw.exe
2011-10-26 09:47:13 ----A---- C:\windows\system32\java.exe

======List of files/folders modified in the last 1 month======

2011-11-21 18:56:18 ----D---- C:\windows\Prefetch
2011-11-21 18:56:04 ----D---- C:\install
2011-11-21 18:49:52 ----D---- C:\Users\brseker\AppData\Roaming\Skype
2011-11-21 16:44:27 ----D---- C:\windows\Temp
2011-11-21 16:37:32 ----D---- C:\windows\system32\config
2011-11-21 16:29:08 ----D---- C:\windows\System32
2011-11-21 16:29:08 ----D---- C:\windows\inf
2011-11-21 16:29:08 ----A---- C:\windows\system32\PerfStringBackup.INI
2011-11-21 16:24:12 ----A---- C:\windows\system32\log.txt
2011-11-21 00:18:58 ----HD---- C:\windows\system32\GroupPolicy
2011-11-21 00:18:53 ----D---- C:\Windows
2011-11-21 00:01:18 ----D---- C:\Program Files\Steam
2011-11-20 23:52:23 ----D---- C:\windows\system32\DriverStore
2011-11-20 23:52:23 ----D---- C:\windows\system32\drivers
2011-11-20 23:52:23 ----D---- C:\windows\system32\catroot
2011-11-20 21:51:33 ----D---- C:\windows\system32\catroot2
2011-11-20 21:48:59 ----RD---- C:\Program Files
2011-11-20 21:48:33 ----SHD---- C:\windows\Installer
2011-11-20 21:48:21 ----SHD---- C:\System Volume Information
2011-11-20 21:47:23 ----HD---- C:\ProgramData
2011-11-20 21:44:52 ----D---- C:\Program Files\SourceTec
2011-11-20 21:44:23 ----D---- C:\Program Files\Common Files
2011-11-20 21:43:44 ----D---- C:\Program Files\Hewlett-Packard
2011-11-20 21:31:33 ----D---- C:\windows\winsxs
2011-11-20 21:18:04 ----D---- C:\ProgramData\HPQLOG
2011-11-20 21:14:15 ----D---- C:\windows\system32\zh-Hant
2011-11-20 21:14:15 ----D---- C:\windows\system32\zh-Hans
2011-11-20 21:14:15 ----D---- C:\windows\system32\pt
2011-11-20 21:14:15 ----D---- C:\windows\system32\ko
2011-11-20 21:14:15 ----D---- C:\windows\system32\ja
2011-11-20 21:14:15 ----D---- C:\windows\system32\it
2011-11-20 21:14:15 ----D---- C:\windows\system32\fr
2011-11-20 21:14:15 ----D---- C:\windows\system32\es
2011-11-20 21:14:15 ----D---- C:\windows\system32\en-US
2011-11-20 21:14:15 ----D---- C:\windows\system32\de
2011-11-20 21:14:15 ----D---- C:\windows\system32\cs
2011-11-20 19:54:20 ----D---- C:\Users\brseker\AppData\Roaming\vlc
2011-11-19 19:50:56 ----D---- C:\dan
2011-11-19 19:43:21 ----D---- C:\skola
2011-11-19 19:20:42 ----RSD---- C:\windows\assembly
2011-11-19 19:14:20 ----D---- C:\hry
2011-11-19 14:25:28 ----D---- C:\Users\brseker\AppData\Roaming\.minecraft
2011-11-19 11:53:37 ----D---- C:\windows\debug
2011-11-19 11:50:16 ----HD---- C:\Program Files\InstallShield Installation Information
2011-11-19 11:49:33 ----D---- C:\Program Files\AddOn Studio for World of Warcraft
2011-11-19 11:45:32 ----D---- C:\ProgramData\Firefly Studios
2011-11-19 11:43:25 ----D---- C:\Program Files\OpenSSL-Win32
2011-11-19 11:42:24 ----D---- C:\Program Files\JDownloader
2011-11-19 11:41:47 ----D---- C:\Program Files\HP
2011-11-19 11:40:23 ----D---- C:\Fraps
2011-11-19 11:39:33 ----D---- C:\Program Files\Common Files\ArcSoft
2011-11-19 11:39:24 ----D---- C:\Users\brseker\AppData\Roaming\ArcSoft
2011-11-19 11:39:10 ----D---- C:\ProgramData\Media Center Programs
2011-11-19 11:29:33 ----D---- C:\Program Files\ElcomSoft
2011-11-15 17:08:40 ----D---- C:\Program Files\Common Files\Steam
2011-11-14 13:40:38 ----D---- C:\Users\brseker\AppData\Roaming\.purple
2011-11-10 23:58:45 ----D---- C:\windows\rescache
2011-11-10 07:53:35 ----D---- C:\Users\brseker\AppData\Roaming\Zoner
2011-11-06 18:42:41 ----D---- C:\Program Files\Common Files\TortoiseOverlays
2011-11-04 22:59:18 ----D---- C:\windows\Microsoft.NET
2011-11-04 18:07:38 ----D---- C:\windows\system32\cs-CZ
2011-10-30 19:07:19 ----D---- C:\windows\system32\Tasks
2011-10-27 13:00:46 ----D---- C:\Users\brseker\AppData\Roaming\FileZilla
2011-10-27 11:34:08 ----D---- C:\Users\brseker\AppData\Roaming\VMware
2011-10-26 09:46:50 ----D---- C:\Program Files\Java
2011-10-24 14:03:41 ----D---- C:\Users\brseker\AppData\Roaming\Tunngle
2011-10-24 14:03:32 ----D---- C:\Program Files\Tunngle
2011-10-23 19:50:19 ----D---- C:\ProgramData\Tunngle

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2009-07-08 25656]
R0 iaStor;Intel RAID Controller; C:\windows\system32\DRIVERS\iaStor.sys [2009-08-07 330264]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2009-12-16 110520]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2009-12-16 51800]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2009-12-16 13256]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\windows\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sptd;sptd; C:\windows\System32\Drivers\sptd.sys [2010-05-13 691696]
R1 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys [2009-12-15 214664]
R1 mfetdik;McAfee Inc. mfetdik; C:\windows\system32\drivers\mfetdik.sys [2009-12-15 55304]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2009-12-16 40088]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 lirsgt;lirsgt; C:\windows\system32\DRIVERS\lirsgt.sys [2011-06-22 25416]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2009-07-08 33848]
R3 Afc;PPdus ASPI Shell; C:\windows\system32\drivers\Afc.sys [2006-11-11 18688]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2009-11-02 1163328]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys [2009-09-22 1172992]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdW73.sys [2011-10-14 211984]
R3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2009-12-08 5092864]
R3 hamachi;Hamachi Network Interface; C:\windows\system32\DRIVERS\hamachi.sys [2020-10-24 25280]
R3 HECI;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECI.sys [2009-09-17 41088]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2009-12-19 1763968]
R3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt.sys [2009-12-03 423424]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle); C:\windows\system32\DRIVERS\tap0901t.sys [2009-09-16 27136]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\windows\System32\drivers\sfdrv01.sys [2005-05-17 50176]
S0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\windows\System32\drivers\sfsync02.sys [2005-05-16 19968]
S2 atksgt;atksgt; C:\windows\system32\DRIVERS\atksgt.sys [2011-06-22 278984]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys []
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\windows\system32\drivers\AtiHdmi.sys [2009-11-18 100352]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2011-04-28 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2009-09-17 86056]
S3 btwavdt;Bluetooth AVDT; C:\windows\system32\DRIVERS\btwavdt.sys [2009-09-17 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 29472]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2009-09-17 18472]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv.sys [2009-10-21 32312]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt []
S3 GarenaPEngine;GarenaPEngine; \??\C:\Users\brseker\AppData\Local\Temp\VEG238A.tmp []
S3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2009-07-16 15872]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 MfeAVFK;McAfee Inc. MfeAVFK; C:\windows\system32\drivers\MfeAVFK.sys [2009-12-15 79816]
S3 MfeBOPK;McAfee Inc. MfeBOPK; C:\windows\system32\drivers\MfeBOPK.sys [2009-12-15 35272]
S3 MfeRKDK;McAfee Inc. MfeRKDK; C:\windows\system32\drivers\MfeRKDK.sys [2009-12-15 34248]
S3 NETw5s32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit; C:\windows\system32\DRIVERS\NETw5s32.sys [2009-10-03 6114816]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 Revoflt;Revoflt; C:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2009-11-11 181792]
S3 SCREAMINGBDRIVER;Screaming Bee Audio; C:\windows\system32\drivers\ScreamingBAudio.sys [2009-12-01 34384]
S3 sisagp;Filtr SIS sběrnice AGP; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usb_rndisx;Adaptér USB RNDIS; C:\windows\system32\DRIVERS\usb8023x.sys [2009-07-14 15872]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 viaagp;Filtr VIA sběrnice AGP; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\aestsrv.exe [2009-03-03 81920]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-11-02 14336]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2009-12-08 172032]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\windows\system32\svchost.exe [2009-07-14 20992]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-09-04 595232]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-08-25 354840]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\windows\system32\svchost.exe [2009-07-14 20992]
R2 simptcp;@%SystemRoot%\system32\simptcp.dll,-200; C:\windows\System32\tcpsvcs.exe [2009-07-14 9216]
R2 STacSV;Audio Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\STacSV.exe [2009-12-03 229461]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol 52\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 TeamViewer5;TeamViewer 5; C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe [2010-07-06 173352]
R2 TunngleService;TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [2011-10-14 745832]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\windows\system32\svchost.exe [2009-07-14 20992]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-29 136176]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\system32\flcdlock.exe [2009-11-17 362040]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-04-20 1045256]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-29 136176]
S3 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2009-07-08 26168]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2011-11-14 419624]
S3 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2009-12-14 1639728]
S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\windows\system32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-05-24 1343400]
S4 NetMsmqActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Ahoj,pisi ti z mobilu,na pc budu asi az ve stredu..zkus znovu nainstalovat to hp protect tool,najde na strankach hp..pak muzes odinstalovat a snad se to zmeni =)

Bohuzel, nepomohlo. Ale i tak diky za pomoc.

Zkusím ručně dočistit, snad nám to neudělá paskudu...


Stáhneme si na Plochu program OTM

• Spustíme soubor OTM.exe (pokud máte Windows Vista nebo Windows 7,tak na soubor klikněte pravým tlačítkem myši a dejte ,,Spustit jako správce,,)
• Spustí se nám program OTM a do levého okna ,,Paste Instructions for Items to be Moved,, vložíme následující skript a stiskneme tlačítko MoveIt
  

  Kód: Vybrat vše

  
  :Files
  C:\windows\tasks\GoogleUpdateTaskMachineCore.job
  C:\windows\tasks\GoogleUpdateTaskMachineUA.job
  C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3415639909-2736430775-3772740974-1003Core.job
  C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3415639909-2736430775-3772740974-1003UA.job
  C:\windows\system32\DRIVERS\hpdskflt.sys
  
  :Reg
  [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
  "StartCCC"=-
  [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
  "notification packages"=hex(7):"scecli"
  
  :Services
  hpdskflt
  gupdate
  gupdatem
  
  :Commands
  [EmptyFlash]
  [EmptyTemp]
  
  

• Po restartu pc se vám objeví log z OTM,ten mi sem prosím vložte..

Po restartu to zaclo hazet BSOD, tak jsem spustil Windowsama doporucenou opravu systemu, to pomohlo.
Tady je log:

All processes killed
========== FILES ==========
C:\windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3415639909-2736430775-3772740974-1003Core.job moved successfully.
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3415639909-2736430775-3772740974-1003UA.job moved successfully.
C:\windows\system32\DRIVERS\hpdskflt.sys moved successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\StartCCC deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\\"notification packages"|hex(7):"scecli" /E : value set successfully!
========== SERVICES/DRIVERS ==========
Error: Unable to stop service hpdskflt!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\hpdskflt deleted successfully.
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
========== COMMANDS ==========

[EMPTYFLASH]

User: All Users

User: brseker
->Flash cache emptied: 2841 bytes

User: Default

User: Default User

User: Public

Total Flash Files Cleaned = 0.00 mb


[EMPTYTEMP]

User: All Users

User: brseker
->Temp folder emptied: 35595 bytes
->Temporary Internet Files folder emptied: 1400229 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 314247943 bytes
->Apple Safari cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 4804865 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 306.00 mb


OTM by OldTimer - Version 3.1.19.0 log created on 11232011_172345

Poprosím o nový RSIT...

Tady je:

Logfile of random's system information tool 1.09 (written by random/random)
Run by brseker at 2011-11-23 17:48:00
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 64 GB (22%) free of 288 GB
Total RAM: 2994 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:48:04, on 23.11.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\windows\system32\taskhost.exe
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\windows\Explorer.EXE
C:\Program Files\IDT\WDM\sttray.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\windows\system32\wuauclt.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\windows\system32\rundll32.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\totalcmd\TOTALCMD.EXE
C:\install\RSIT.exe
C:\Program Files\trend micro\brseker.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe,
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol 52\AxAutoMntSrv.exe" -automount
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://c:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - Trusted IP range: http://192.168.5.3
O15 - Trusted IP range: 82.117.152.130
O15 - Trusted IP range: http://82.117.152.130
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O16 - DPF: {B94C2238-346E-4C5E-9B36-8CC627F35574} (VMware Remote Console Plug-in 2.5.0.00000) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{6650DCBC-B889-4A4F-8C31-7202A4DAA417}: NameServer = 62.84.128.6,62.84.132.6
O17 - HKLM\System\CS1\Services\Tcpip\..\{6650DCBC-B889-4A4F-8C31-7202A4DAA417}: NameServer = 62.84.128.6,62.84.132.6
O17 - HKLM\System\CS2\Services\Tcpip\..\{6650DCBC-B889-4A4F-8C31-7202A4DAA417}: NameServer = 62.84.128.6,62.84.132.6
O20 - Winlogon Notify: DeviceNP - DeviceNP.dll (file missing)
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\aestsrv.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\windows\system32\atiesrxx.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - c:\Windows\system32\flcdlock.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard - C:\windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\STacSV.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol 52\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files\Tunngle\TnglCtrl.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe

--
End of file - 9033 bytes

======Scheduled tasks folder======

C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3415639909-2736430775-3772740974-1003Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3415639909-2736430775-3772740974-1003UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\brseker\AppData\Roaming\Mozilla\Firefox\Profiles\uig4grzs.default

prefs.js - "browser.startup.homepage" - "http://seznam.cz/"
prefs.js - "extensions.enabledItems" - "otis@digitalpersona.com:5.0.0.4191, {73a6fe31-595d-460b-a920-fcc0f8843232}:2.0.9.7, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.2, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, 2020Player@2020Technologies.com:4.5.2.0, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, battlefieldheroespatcher@ea.com:5.0.31.0, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.1.94, {6904342A-8307-11DF-A508-4AE2DFD72085}:2.1.1.94, fdm_ffext@freedownloadmanager.org:1.3.4, {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26, {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}:6.0.29, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.21"

"otis@digitalpersona.com"=c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt\
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video
"{6904342A-8307-11DF-A508-4AE2DFD72085}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
components.list
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsINIProcessor.js
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
npFoxitReaderPlugin.dll
npnul32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\brseker\AppData\Roaming\Mozilla\Firefox\Profiles\uig4grzs.default\extensions\
2020Player@2020Technologies.com
battlefieldheroespatcher@ea.com
{73a6fe31-595d-460b-a920-fcc0f8843232}
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08 3118976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{593DDEC6-7468-4cdd-90E1-42DADAA222E9}]
DivX HiQ - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08 3118976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-10-18 42272]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-12-09 98304]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2009-12-03 495711]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"Windows Mobile Device Center"=C:\windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AlcoholAutomount"=C:\Program Files\Alcohol 52\AxAutoMntSrv.exe [2009-11-15 33120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Akamai NetSession Interface]
C:\Users\brseker\AppData\Local\Akamai\netsession_win.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2011-03-21 1230704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DTRun]
c:\Program Files\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\facemoods]
C:\Program Files\facemoods.com\facemoods\1.4.17.7\facemoodssrv.exe /md I []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\File Sanitizer]
C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\brseker\AppData\Local\Google\Update\GoogleUpdate.exe [2010-07-12 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPADVISOR]
C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPPowerAssistant]
C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe /hidden []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPWirelessAssistant]
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe 120 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAAnotif]
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-08-25 186904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TortoiseHgOverlayIconServer]
C:\Program Files\TortoiseHg\TortoiseHgOverlayServer.exe [2010-05-13 44448]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\DeviceNP]
C:\windows\system32\DeviceNP.dll [2009-11-17 75320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"VIDC.FPS1"=frapsvid.dll
"VIDC.IV41"=IR41_32.AX
"vidc.VP60"=C:\windows\system32\vp6vfw.dll
"vidc.VP61"=C:\windows\system32\vp6vfw.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2020-10-24 14:24:46 ----D---- C:\Users\brseker\AppData\Roaming\Hamachi
2020-10-24 14:24:35 ----D---- C:\Program Files\Hamachi
2020-10-24 14:24:35 ----A---- C:\windows\system32\drivers\hamachi.sys
2011-11-23 17:23:45 ----D---- C:\_OTM
2011-11-20 21:31:22 ----A---- C:\windows\system32\drivers\revoflt.sys
2011-11-20 21:31:21 ----D---- C:\Program Files\Revo Uninstaller Pro
2011-11-20 21:28:20 ----D---- C:\Users\brseker\AppData\Roaming\Notepad++
2011-11-20 21:28:20 ----D---- C:\Program Files\Notepad++
2011-11-20 20:34:41 ----D---- C:\Program Files\trend micro
2011-11-20 20:34:40 ----D---- C:\rsit
2011-11-19 19:21:06 ----A---- C:\windows\system32\XAudio2_6.dll
2011-11-19 19:21:06 ----A---- C:\windows\system32\XAPOFX1_4.dll
2011-11-19 19:21:06 ----A---- C:\windows\system32\xactengine3_6.dll
2011-11-19 19:21:06 ----A---- C:\windows\system32\X3DAudio1_7.dll
2011-11-19 19:21:05 ----A---- C:\windows\system32\XAudio2_5.dll
2011-11-19 19:21:05 ----A---- C:\windows\system32\xactengine3_5.dll
2011-11-19 19:21:05 ----A---- C:\windows\system32\D3DCompiler_42.dll
2011-11-19 19:21:04 ----A---- C:\windows\system32\d3dx11_42.dll
2011-11-19 19:21:04 ----A---- C:\windows\system32\d3dcsx_42.dll
2011-11-19 19:21:03 ----A---- C:\windows\system32\D3DX9_42.dll
2011-11-19 19:21:03 ----A---- C:\windows\system32\d3dx10_42.dll
2011-11-19 19:21:02 ----A---- C:\windows\system32\d3dx10_41.dll
2011-11-19 19:21:02 ----A---- C:\windows\system32\D3DCompiler_41.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\XAudio2_4.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\XAPOFX1_3.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\xactengine3_4.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\D3DX9_41.dll
2011-11-19 19:21:00 ----A---- C:\windows\system32\X3DAudio1_6.dll
2011-11-19 19:21:00 ----A---- C:\windows\system32\d3dx10_40.dll
2011-11-19 19:21:00 ----A---- C:\windows\system32\D3DCompiler_40.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\XAudio2_3.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\XAPOFX1_2.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\xactengine3_3.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\X3DAudio1_5.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\D3DX9_40.dll
2011-11-19 19:20:57 ----A---- C:\windows\system32\XAudio2_2.dll
2011-11-19 19:20:57 ----A---- C:\windows\system32\XAPOFX1_1.dll
2011-11-19 19:20:57 ----A---- C:\windows\system32\xactengine3_2.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\XAudio2_1.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\XAPOFX1_0.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\xactengine3_1.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\X3DAudio1_4.dll
2011-11-19 19:20:55 ----A---- C:\windows\system32\d3dx10_38.dll
2011-11-19 19:20:55 ----A---- C:\windows\system32\D3DCompiler_38.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\XAudio2_0.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\xactengine3_0.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\X3DAudio1_3.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\D3DX9_38.dll
2011-11-19 19:20:53 ----A---- C:\windows\system32\D3DX9_37.dll
2011-11-19 19:20:53 ----A---- C:\windows\system32\d3dx10_37.dll
2011-11-19 19:20:53 ----A---- C:\windows\system32\D3DCompiler_37.dll
2011-11-19 19:20:52 ----A---- C:\windows\system32\xactengine2_10.dll
2011-11-19 19:20:51 ----A---- C:\windows\system32\d3dx9_36.dll
2011-11-19 19:20:51 ----A---- C:\windows\system32\d3dx10_36.dll
2011-11-19 19:20:51 ----A---- C:\windows\system32\D3DCompiler_36.dll
2011-11-19 19:20:50 ----A---- C:\windows\system32\xactengine2_9.dll
2011-11-19 19:20:49 ----A---- C:\windows\system32\d3dx10_35.dll
2011-11-19 19:20:49 ----A---- C:\windows\system32\D3DCompiler_35.dll
2011-11-19 19:20:48 ----A---- C:\windows\system32\d3dx9_35.dll
2011-11-19 19:20:47 ----A---- C:\windows\system32\xactengine2_8.dll
2011-11-19 19:20:47 ----A---- C:\windows\system32\X3DAudio1_2.dll
2011-11-06 18:42:40 ----D---- C:\Program Files\TortoiseSVN
2011-11-05 20:29:36 ----D---- C:\ProgramData\Prometheus
2011-11-05 20:29:36 ----D---- C:\Program Files\Fyzika
2011-11-04 17:50:35 ----A---- C:\windows\system32\esent.dll
2011-11-04 17:50:34 ----A---- C:\windows\system32\fsutil.exe
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\USBSTOR.SYS
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\storport.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\nvstor.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\nvraid.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\ntfs.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\iaStorV.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\amdxata.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\amdsata.sys
2011-11-04 17:50:31 ----A---- C:\windows\system32\shell32.dll
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbuhci.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbport.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbohci.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbhub.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbehci.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbd.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbccgp.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\BTHUSB.SYS
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\bthport.sys
2011-10-26 09:47:52 ----D---- C:\Program Files\Common Files\Java
2011-10-26 09:47:13 ----A---- C:\windows\system32\javaws.exe
2011-10-26 09:47:13 ----A---- C:\windows\system32\javaw.exe
2011-10-26 09:47:13 ----A---- C:\windows\system32\java.exe

======List of files/folders modified in the last 1 month======

2011-11-23 17:46:20 ----D---- C:\Users\brseker\AppData\Roaming\Skype
2011-11-23 17:40:40 ----D---- C:\windows\System32
2011-11-23 17:40:40 ----D---- C:\windows\inf
2011-11-23 17:40:40 ----A---- C:\windows\system32\PerfStringBackup.INI
2011-11-23 17:39:29 ----D---- C:\windows\Prefetch
2011-11-23 17:38:43 ----D---- C:\windows\Temp
2011-11-23 17:36:40 ----D---- C:\windows\system32\config
2011-11-23 17:36:29 ----A---- C:\windows\system32\log.txt
2011-11-23 17:35:28 ----D---- C:\windows\Tasks
2011-11-23 17:35:28 ----D---- C:\windows\system32\wfp
2011-11-23 17:35:28 ----D---- C:\windows\system32\wbem
2011-11-23 17:35:28 ----D---- C:\windows\system32\DriverStore
2011-11-23 17:35:28 ----D---- C:\windows\system32\drivers\etc
2011-11-23 17:35:28 ----D---- C:\windows\system32\catroot2
2011-11-23 17:35:28 ----D---- C:\Windows
2011-11-23 17:35:27 ----D---- C:\windows\system32\drivers
2011-11-23 17:35:27 ----D---- C:\windows\system32\CodeIntegrity
2011-11-23 17:35:26 ----D---- C:\windows\security
2011-11-23 17:35:26 ----D---- C:\Users\brseker\AppData\Roaming\vlc
2011-11-23 17:35:26 ----D---- C:\Users\brseker\AppData\Roaming\GHISLER
2011-11-23 17:35:25 ----RD---- C:\Program Files
2011-11-23 17:35:25 ----D---- C:\Program Files\Validity Sensors
2011-11-23 17:35:25 ----D---- C:\Program Files\Steam
2011-11-23 17:35:25 ----D---- C:\install
2011-11-23 17:35:21 ----HD---- C:\windows\system32\GroupPolicy
2011-11-23 17:35:20 ----D---- C:\windows\registration
2011-11-23 17:35:16 ----D---- C:\windows\system32\catroot
2011-11-23 17:35:04 ----D---- C:\Program Files\Hewlett-Packard
2011-11-23 17:27:41 ----SHD---- C:\System Volume Information
2011-11-23 17:26:35 ----D---- C:\windows\system32\LogFiles
2011-11-21 20:57:12 ----D---- C:\foun
2011-11-20 21:47:23 ----HD---- C:\ProgramData
2011-11-20 21:44:52 ----D---- C:\Program Files\SourceTec
2011-11-20 21:44:23 ----D---- C:\Program Files\Common Files
2011-11-20 21:41:45 ----SHD---- C:\windows\Installer
2011-11-20 21:31:33 ----D---- C:\windows\winsxs
2011-11-20 21:18:04 ----D---- C:\ProgramData\HPQLOG
2011-11-20 21:14:15 ----D---- C:\windows\system32\zh-Hant
2011-11-20 21:14:15 ----D---- C:\windows\system32\zh-Hans
2011-11-20 21:14:15 ----D---- C:\windows\system32\pt
2011-11-20 21:14:15 ----D---- C:\windows\system32\ko
2011-11-20 21:14:15 ----D---- C:\windows\system32\ja
2011-11-20 21:14:15 ----D---- C:\windows\system32\it
2011-11-20 21:14:15 ----D---- C:\windows\system32\fr
2011-11-20 21:14:15 ----D---- C:\windows\system32\es
2011-11-20 21:14:15 ----D---- C:\windows\system32\en-US
2011-11-20 21:14:15 ----D---- C:\windows\system32\de
2011-11-20 21:14:15 ----D---- C:\windows\system32\cs
2011-11-19 19:50:56 ----D---- C:\dan
2011-11-19 19:43:21 ----D---- C:\skola
2011-11-19 19:20:42 ----RSD---- C:\windows\assembly
2011-11-19 19:14:20 ----D---- C:\hry
2011-11-19 14:25:28 ----D---- C:\Users\brseker\AppData\Roaming\.minecraft
2011-11-19 11:53:37 ----D---- C:\windows\debug
2011-11-19 11:50:16 ----HD---- C:\Program Files\InstallShield Installation Information
2011-11-19 11:49:33 ----D---- C:\Program Files\AddOn Studio for World of Warcraft
2011-11-19 11:45:32 ----D---- C:\ProgramData\Firefly Studios
2011-11-19 11:43:25 ----D---- C:\Program Files\OpenSSL-Win32
2011-11-19 11:42:24 ----D---- C:\Program Files\JDownloader
2011-11-19 11:41:47 ----D---- C:\Program Files\HP
2011-11-19 11:40:23 ----D---- C:\Fraps
2011-11-19 11:39:33 ----D---- C:\Program Files\Common Files\ArcSoft
2011-11-19 11:39:24 ----D---- C:\Users\brseker\AppData\Roaming\ArcSoft
2011-11-19 11:39:10 ----D---- C:\ProgramData\Media Center Programs
2011-11-19 11:29:33 ----D---- C:\Program Files\ElcomSoft
2011-11-15 17:08:40 ----D---- C:\Program Files\Common Files\Steam
2011-11-14 13:40:38 ----D---- C:\Users\brseker\AppData\Roaming\.purple
2011-11-10 23:58:45 ----D---- C:\windows\rescache
2011-11-10 07:53:35 ----D---- C:\Users\brseker\AppData\Roaming\Zoner
2011-11-06 18:42:41 ----D---- C:\Program Files\Common Files\TortoiseOverlays
2011-11-04 22:59:18 ----D---- C:\windows\Microsoft.NET
2011-11-04 18:07:38 ----D---- C:\windows\system32\cs-CZ
2011-10-30 19:07:19 ----D---- C:\windows\system32\Tasks
2011-10-27 13:00:46 ----D---- C:\Users\brseker\AppData\Roaming\FileZilla
2011-10-27 11:34:08 ----D---- C:\Users\brseker\AppData\Roaming\VMware
2011-10-26 09:46:50 ----D---- C:\Program Files\Java
2011-10-24 14:03:41 ----D---- C:\Users\brseker\AppData\Roaming\Tunngle
2011-10-24 14:03:32 ----D---- C:\Program Files\Tunngle

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2009-07-08 25656]
R0 iaStor;Intel RAID Controller; C:\windows\system32\DRIVERS\iaStor.sys [2009-08-07 330264]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2009-12-16 110520]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2009-12-16 51800]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2009-12-16 13256]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\windows\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sptd;sptd; C:\windows\System32\Drivers\sptd.sys [2010-05-13 691696]
R1 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys [2009-12-15 214664]
R1 mfetdik;McAfee Inc. mfetdik; C:\windows\system32\drivers\mfetdik.sys [2009-12-15 55304]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2009-12-16 40088]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 lirsgt;lirsgt; C:\windows\system32\DRIVERS\lirsgt.sys [2011-06-22 25416]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2009-07-08 33848]
R3 Afc;PPdus ASPI Shell; C:\windows\system32\drivers\Afc.sys [2006-11-11 18688]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2009-11-02 1163328]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdW73.sys [2011-10-14 211984]
R3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2009-12-08 5092864]
R3 hamachi;Hamachi Network Interface; C:\windows\system32\DRIVERS\hamachi.sys [2020-10-24 25280]
R3 HECI;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECI.sys [2009-09-17 41088]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2009-12-19 1763968]
R3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt.sys [2009-12-03 423424]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle); C:\windows\system32\DRIVERS\tap0901t.sys [2009-09-16 27136]
S0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\windows\System32\drivers\sfdrv01.sys [2005-05-17 50176]
S0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\windows\System32\drivers\sfsync02.sys [2005-05-16 19968]
S2 atksgt;atksgt; C:\windows\system32\DRIVERS\atksgt.sys [2011-06-22 278984]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys []
S3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys []
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\windows\system32\drivers\AtiHdmi.sys [2009-11-18 100352]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2011-04-28 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2009-09-17 86056]
S3 btwavdt;Bluetooth AVDT; C:\windows\system32\DRIVERS\btwavdt.sys [2009-09-17 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 29472]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2009-09-17 18472]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv.sys [2009-10-21 32312]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt []
S3 GarenaPEngine;GarenaPEngine; \??\C:\Users\brseker\AppData\Local\Temp\VEG238A.tmp []
S3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2009-07-16 15872]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 MfeAVFK;McAfee Inc. MfeAVFK; C:\windows\system32\drivers\MfeAVFK.sys [2009-12-15 79816]
S3 MfeBOPK;McAfee Inc. MfeBOPK; C:\windows\system32\drivers\MfeBOPK.sys [2009-12-15 35272]
S3 MfeRKDK;McAfee Inc. MfeRKDK; C:\windows\system32\drivers\MfeRKDK.sys [2009-12-15 34248]
S3 NETw5s32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit; C:\windows\system32\DRIVERS\NETw5s32.sys [2009-10-03 6114816]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 Revoflt;Revoflt; C:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2009-11-11 181792]
S3 SCREAMINGBDRIVER;Screaming Bee Audio; C:\windows\system32\drivers\ScreamingBAudio.sys [2009-12-01 34384]
S3 sisagp;Filtr SIS sběrnice AGP; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usb_rndisx;Adaptér USB RNDIS; C:\windows\system32\DRIVERS\usb8023x.sys [2009-07-14 15872]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 viaagp;Filtr VIA sběrnice AGP; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\aestsrv.exe [2009-03-03 81920]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-11-02 14336]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2009-12-08 172032]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\windows\system32\svchost.exe [2009-07-14 20992]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-09-04 595232]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2009-07-08 26168]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-08-25 354840]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\windows\system32\svchost.exe [2009-07-14 20992]
R2 simptcp;@%SystemRoot%\system32\simptcp.dll,-200; C:\windows\System32\tcpsvcs.exe [2009-07-14 9216]
R2 STacSV;Audio Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\STacSV.exe [2009-12-03 229461]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol 52\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 TeamViewer5;TeamViewer 5; C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe [2010-07-06 173352]
R2 TunngleService;TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [2011-10-14 745832]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2009-12-14 1639728]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\windows\system32\svchost.exe [2009-07-14 20992]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-29 136176]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\system32\flcdlock.exe [2009-11-17 362040]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-04-20 1045256]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-29 136176]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2011-11-14 419624]
S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\windows\system32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-05-24 1343400]
S4 NetMsmqActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Opakuj krok http://www.viry.cz/forum/viewtopic.php? ... 1#p1056831, poté nový RSIT

Novy RSIT:

Logfile of random's system information tool 1.09 (written by random/random)
Run by brseker at 2011-11-23 17:58:52
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 64 GB (22%) free of 288 GB
Total RAM: 2994 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:59:01, on 23.11.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DPAgent.exe
C:\windows\system32\taskhost.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\windows\system32\rundll32.exe
C:\Users\brseker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\windows\system32\wuauclt.exe
C:\totalcmd\TOTALCMD.EXE
C:\install\RSIT.exe
C:\Program Files\trend micro\brseker.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol 52\AxAutoMntSrv.exe" -automount
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://c:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://192.168.5.3
O15 - Trusted IP range: 82.117.152.130
O15 - Trusted IP range: http://82.117.152.130
O16 - DPF: {B94C2238-346E-4C5E-9B36-8CC627F35574} (VMware Remote Console Plug-in 2.5.0.00000) -
O17 - HKLM\System\CCS\Services\Tcpip\..\{6650DCBC-B889-4A4F-8C31-7202A4DAA417}: NameServer = 62.84.128.6,62.84.132.6
O17 - HKLM\System\CS1\Services\Tcpip\..\{6650DCBC-B889-4A4F-8C31-7202A4DAA417}: NameServer = 62.84.128.6,62.84.132.6
O17 - HKLM\System\CS2\Services\Tcpip\..\{6650DCBC-B889-4A4F-8C31-7202A4DAA417}: NameServer = 62.84.128.6,62.84.132.6
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\aestsrv.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: AMD External Events Utility - AMD - C:\windows\system32\atiesrxx.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: HP ProtectTools Device Locking / Auditing (FLCDLOCK) - Hewlett-Packard Ltd - c:\Windows\system32\flcdlock.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard - C:\windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\STacSV.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol 52\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files\Tunngle\TnglCtrl.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Validity VCS Fingerprint Service (vcsFPService) - Validity Sensors, Inc. - C:\windows\system32\vcsFPService.exe

--
End of file - 7636 bytes

======Scheduled tasks folder======

C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3415639909-2736430775-3772740974-1003Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3415639909-2736430775-3772740974-1003UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\brseker\AppData\Roaming\Mozilla\Firefox\Profiles\uig4grzs.default

prefs.js - "browser.startup.homepage" - "http://seznam.cz/"
prefs.js - "extensions.enabledItems" - "otis@digitalpersona.com:5.0.0.4191, {73a6fe31-595d-460b-a920-fcc0f8843232}:2.0.9.7, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.2, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, 2020Player@2020Technologies.com:4.5.2.0, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, battlefieldheroespatcher@ea.com:5.0.31.0, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.1.94, {6904342A-8307-11DF-A508-4AE2DFD72085}:2.1.1.94, fdm_ffext@freedownloadmanager.org:1.3.4, {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26, {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}:6.0.29, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.21"

"otis@digitalpersona.com"=c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\FirefoxExt\
"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video
"{6904342A-8307-11DF-A508-4AE2DFD72085}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
components.list
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsINIProcessor.js
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
npFoxitReaderPlugin.dll
npnul32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
jyxo-cz.xml
mall-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\brseker\AppData\Roaming\Mozilla\Firefox\Profiles\uig4grzs.default\extensions\
2020Player@2020Technologies.com
battlefieldheroespatcher@ea.com
{73a6fe31-595d-460b-a920-fcc0f8843232}
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08 3118976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{593DDEC6-7468-4cdd-90E1-42DADAA222E9}]
DivX HiQ - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08 3118976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-10-18 42272]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-12-09 98304]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2009-12-03 495711]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-06-04 1791272]
"Windows Mobile Device Center"=C:\windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AlcoholAutomount"=C:\Program Files\Alcohol 52\AxAutoMntSrv.exe [2009-11-15 33120]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=DPPassFilter
scecli

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"VIDC.FPS1"=frapsvid.dll
"VIDC.IV41"=IR41_32.AX
"vidc.VP60"=C:\windows\system32\vp6vfw.dll
"vidc.VP61"=C:\windows\system32\vp6vfw.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2020-10-24 14:24:46 ----D---- C:\Users\brseker\AppData\Roaming\Hamachi
2020-10-24 14:24:35 ----D---- C:\Program Files\Hamachi
2020-10-24 14:24:35 ----A---- C:\windows\system32\drivers\hamachi.sys
2011-11-23 17:23:45 ----D---- C:\_OTM
2011-11-20 21:31:22 ----A---- C:\windows\system32\drivers\revoflt.sys
2011-11-20 21:31:21 ----D---- C:\Program Files\Revo Uninstaller Pro
2011-11-20 21:28:20 ----D---- C:\Users\brseker\AppData\Roaming\Notepad++
2011-11-20 21:28:20 ----D---- C:\Program Files\Notepad++
2011-11-20 20:34:41 ----D---- C:\Program Files\trend micro
2011-11-20 20:34:40 ----D---- C:\rsit
2011-11-19 19:21:06 ----A---- C:\windows\system32\XAudio2_6.dll
2011-11-19 19:21:06 ----A---- C:\windows\system32\XAPOFX1_4.dll
2011-11-19 19:21:06 ----A---- C:\windows\system32\xactengine3_6.dll
2011-11-19 19:21:06 ----A---- C:\windows\system32\X3DAudio1_7.dll
2011-11-19 19:21:05 ----A---- C:\windows\system32\XAudio2_5.dll
2011-11-19 19:21:05 ----A---- C:\windows\system32\xactengine3_5.dll
2011-11-19 19:21:05 ----A---- C:\windows\system32\D3DCompiler_42.dll
2011-11-19 19:21:04 ----A---- C:\windows\system32\d3dx11_42.dll
2011-11-19 19:21:04 ----A---- C:\windows\system32\d3dcsx_42.dll
2011-11-19 19:21:03 ----A---- C:\windows\system32\D3DX9_42.dll
2011-11-19 19:21:03 ----A---- C:\windows\system32\d3dx10_42.dll
2011-11-19 19:21:02 ----A---- C:\windows\system32\d3dx10_41.dll
2011-11-19 19:21:02 ----A---- C:\windows\system32\D3DCompiler_41.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\XAudio2_4.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\XAPOFX1_3.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\xactengine3_4.dll
2011-11-19 19:21:01 ----A---- C:\windows\system32\D3DX9_41.dll
2011-11-19 19:21:00 ----A---- C:\windows\system32\X3DAudio1_6.dll
2011-11-19 19:21:00 ----A---- C:\windows\system32\d3dx10_40.dll
2011-11-19 19:21:00 ----A---- C:\windows\system32\D3DCompiler_40.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\XAudio2_3.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\XAPOFX1_2.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\xactengine3_3.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\X3DAudio1_5.dll
2011-11-19 19:20:58 ----A---- C:\windows\system32\D3DX9_40.dll
2011-11-19 19:20:57 ----A---- C:\windows\system32\XAudio2_2.dll
2011-11-19 19:20:57 ----A---- C:\windows\system32\XAPOFX1_1.dll
2011-11-19 19:20:57 ----A---- C:\windows\system32\xactengine3_2.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\XAudio2_1.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\XAPOFX1_0.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\xactengine3_1.dll
2011-11-19 19:20:56 ----A---- C:\windows\system32\X3DAudio1_4.dll
2011-11-19 19:20:55 ----A---- C:\windows\system32\d3dx10_38.dll
2011-11-19 19:20:55 ----A---- C:\windows\system32\D3DCompiler_38.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\XAudio2_0.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\xactengine3_0.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\X3DAudio1_3.dll
2011-11-19 19:20:54 ----A---- C:\windows\system32\D3DX9_38.dll
2011-11-19 19:20:53 ----A---- C:\windows\system32\D3DX9_37.dll
2011-11-19 19:20:53 ----A---- C:\windows\system32\d3dx10_37.dll
2011-11-19 19:20:53 ----A---- C:\windows\system32\D3DCompiler_37.dll
2011-11-19 19:20:52 ----A---- C:\windows\system32\xactengine2_10.dll
2011-11-19 19:20:51 ----A---- C:\windows\system32\d3dx9_36.dll
2011-11-19 19:20:51 ----A---- C:\windows\system32\d3dx10_36.dll
2011-11-19 19:20:51 ----A---- C:\windows\system32\D3DCompiler_36.dll
2011-11-19 19:20:50 ----A---- C:\windows\system32\xactengine2_9.dll
2011-11-19 19:20:49 ----A---- C:\windows\system32\d3dx10_35.dll
2011-11-19 19:20:49 ----A---- C:\windows\system32\D3DCompiler_35.dll
2011-11-19 19:20:48 ----A---- C:\windows\system32\d3dx9_35.dll
2011-11-19 19:20:47 ----A---- C:\windows\system32\xactengine2_8.dll
2011-11-19 19:20:47 ----A---- C:\windows\system32\X3DAudio1_2.dll
2011-11-06 18:42:40 ----D---- C:\Program Files\TortoiseSVN
2011-11-05 20:29:36 ----D---- C:\ProgramData\Prometheus
2011-11-05 20:29:36 ----D---- C:\Program Files\Fyzika
2011-11-04 17:50:35 ----A---- C:\windows\system32\esent.dll
2011-11-04 17:50:34 ----A---- C:\windows\system32\fsutil.exe
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\USBSTOR.SYS
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\storport.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\nvstor.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\nvraid.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\ntfs.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\iaStorV.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\amdxata.sys
2011-11-04 17:50:34 ----A---- C:\windows\system32\drivers\amdsata.sys
2011-11-04 17:50:31 ----A---- C:\windows\system32\shell32.dll
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbuhci.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbport.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbohci.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbhub.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbehci.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbd.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\usbccgp.sys
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\BTHUSB.SYS
2011-11-04 17:50:30 ----A---- C:\windows\system32\drivers\bthport.sys
2011-10-26 09:47:52 ----D---- C:\Program Files\Common Files\Java
2011-10-26 09:47:13 ----A---- C:\windows\system32\javaws.exe
2011-10-26 09:47:13 ----A---- C:\windows\system32\javaw.exe
2011-10-26 09:47:13 ----A---- C:\windows\system32\java.exe

======List of files/folders modified in the last 1 month======

2011-11-23 17:58:28 ----D---- C:\install
2011-11-23 17:57:29 ----D---- C:\windows\System32
2011-11-23 17:57:29 ----D---- C:\windows\inf
2011-11-23 17:57:29 ----A---- C:\windows\system32\PerfStringBackup.INI
2011-11-23 17:55:55 ----D---- C:\windows\Prefetch
2011-11-23 17:55:08 ----D---- C:\Users\brseker\AppData\Roaming\Skype
2011-11-23 17:54:10 ----D---- C:\windows\Temp
2011-11-23 17:53:30 ----D---- C:\windows\system32\catroot2
2011-11-23 17:52:00 ----D---- C:\windows\system32\config
2011-11-23 17:51:52 ----A---- C:\windows\system32\log.txt
2011-11-23 17:35:28 ----D---- C:\windows\Tasks
2011-11-23 17:35:28 ----D---- C:\windows\system32\wfp
2011-11-23 17:35:28 ----D---- C:\windows\system32\wbem
2011-11-23 17:35:28 ----D---- C:\windows\system32\DriverStore
2011-11-23 17:35:28 ----D---- C:\windows\system32\drivers\etc
2011-11-23 17:35:28 ----D---- C:\Windows
2011-11-23 17:35:27 ----D---- C:\windows\system32\drivers
2011-11-23 17:35:27 ----D---- C:\windows\system32\CodeIntegrity
2011-11-23 17:35:26 ----D---- C:\windows\security
2011-11-23 17:35:26 ----D---- C:\Users\brseker\AppData\Roaming\vlc
2011-11-23 17:35:26 ----D---- C:\Users\brseker\AppData\Roaming\GHISLER
2011-11-23 17:35:25 ----RD---- C:\Program Files
2011-11-23 17:35:25 ----D---- C:\Program Files\Validity Sensors
2011-11-23 17:35:25 ----D---- C:\Program Files\Steam
2011-11-23 17:35:21 ----HD---- C:\windows\system32\GroupPolicy
2011-11-23 17:35:20 ----D---- C:\windows\registration
2011-11-23 17:35:16 ----D---- C:\windows\system32\catroot
2011-11-23 17:35:04 ----D---- C:\Program Files\Hewlett-Packard
2011-11-23 17:27:41 ----SHD---- C:\System Volume Information
2011-11-23 17:26:35 ----D---- C:\windows\system32\LogFiles
2011-11-21 20:57:12 ----D---- C:\foun
2011-11-20 21:47:23 ----HD---- C:\ProgramData
2011-11-20 21:44:52 ----D---- C:\Program Files\SourceTec
2011-11-20 21:44:23 ----D---- C:\Program Files\Common Files
2011-11-20 21:41:45 ----SHD---- C:\windows\Installer
2011-11-20 21:31:33 ----D---- C:\windows\winsxs
2011-11-20 21:18:04 ----D---- C:\ProgramData\HPQLOG
2011-11-20 21:14:15 ----D---- C:\windows\system32\zh-Hant
2011-11-20 21:14:15 ----D---- C:\windows\system32\zh-Hans
2011-11-20 21:14:15 ----D---- C:\windows\system32\pt
2011-11-20 21:14:15 ----D---- C:\windows\system32\ko
2011-11-20 21:14:15 ----D---- C:\windows\system32\ja
2011-11-20 21:14:15 ----D---- C:\windows\system32\it
2011-11-20 21:14:15 ----D---- C:\windows\system32\fr
2011-11-20 21:14:15 ----D---- C:\windows\system32\es
2011-11-20 21:14:15 ----D---- C:\windows\system32\en-US
2011-11-20 21:14:15 ----D---- C:\windows\system32\de
2011-11-20 21:14:15 ----D---- C:\windows\system32\cs
2011-11-19 19:50:56 ----D---- C:\dan
2011-11-19 19:43:21 ----D---- C:\skola
2011-11-19 19:20:42 ----RSD---- C:\windows\assembly
2011-11-19 19:14:20 ----D---- C:\hry
2011-11-19 14:25:28 ----D---- C:\Users\brseker\AppData\Roaming\.minecraft
2011-11-19 11:53:37 ----D---- C:\windows\debug
2011-11-19 11:50:16 ----HD---- C:\Program Files\InstallShield Installation Information
2011-11-19 11:49:33 ----D---- C:\Program Files\AddOn Studio for World of Warcraft
2011-11-19 11:45:32 ----D---- C:\ProgramData\Firefly Studios
2011-11-19 11:43:25 ----D---- C:\Program Files\OpenSSL-Win32
2011-11-19 11:42:24 ----D---- C:\Program Files\JDownloader
2011-11-19 11:41:47 ----D---- C:\Program Files\HP
2011-11-19 11:40:23 ----D---- C:\Fraps
2011-11-19 11:39:33 ----D---- C:\Program Files\Common Files\ArcSoft
2011-11-19 11:39:24 ----D---- C:\Users\brseker\AppData\Roaming\ArcSoft
2011-11-19 11:39:10 ----D---- C:\ProgramData\Media Center Programs
2011-11-19 11:29:33 ----D---- C:\Program Files\ElcomSoft
2011-11-15 17:08:40 ----D---- C:\Program Files\Common Files\Steam
2011-11-14 13:40:38 ----D---- C:\Users\brseker\AppData\Roaming\.purple
2011-11-10 23:58:45 ----D---- C:\windows\rescache
2011-11-10 07:53:35 ----D---- C:\Users\brseker\AppData\Roaming\Zoner
2011-11-06 18:42:41 ----D---- C:\Program Files\Common Files\TortoiseOverlays
2011-11-04 22:59:18 ----D---- C:\windows\Microsoft.NET
2011-11-04 18:07:38 ----D---- C:\windows\system32\cs-CZ
2011-10-30 19:07:19 ----D---- C:\windows\system32\Tasks
2011-10-27 13:00:46 ----D---- C:\Users\brseker\AppData\Roaming\FileZilla
2011-10-27 11:34:08 ----D---- C:\Users\brseker\AppData\Roaming\VMware
2011-10-26 09:46:50 ----D---- C:\Program Files\Java
2011-10-24 14:03:41 ----D---- C:\Users\brseker\AppData\Roaming\Tunngle
2011-10-24 14:03:32 ----D---- C:\Program Files\Tunngle

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 hpdskflt;HP Filter; C:\windows\system32\DRIVERS\hpdskflt.sys [2009-07-08 25656]
R0 iaStor;Intel RAID Controller; C:\windows\system32\DRIVERS\iaStor.sys [2009-08-07 330264]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 SafeBoot;SafeBoot; C:\windows\system32\drivers\SafeBoot.sys [2009-12-16 110520]
R0 SbAlg;SbAlg; C:\windows\system32\drivers\SbAlg.sys [2009-12-16 51800]
R0 SbFsLock;SbFsLock; C:\windows\system32\drivers\SbFsLock.sys [2009-12-16 13256]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\windows\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sptd;sptd; C:\windows\System32\Drivers\sptd.sys [2010-05-13 691696]
R1 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys [2009-12-15 214664]
R1 mfetdik;McAfee Inc. mfetdik; C:\windows\system32\drivers\mfetdik.sys [2009-12-15 55304]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2009-12-16 40088]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 lirsgt;lirsgt; C:\windows\system32\DRIVERS\lirsgt.sys [2011-06-22 25416]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2009-07-08 33848]
R3 Afc;PPdus ASPI Shell; C:\windows\system32\drivers\Afc.sys [2006-11-11 18688]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2009-11-02 1163328]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\windows\system32\drivers\AtihdW73.sys [2011-10-14 211984]
R3 atikmdag;atikmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2009-12-08 5092864]
R3 hamachi;Hamachi Network Interface; C:\windows\system32\DRIVERS\hamachi.sys [2020-10-24 25280]
R3 HECI;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECI.sys [2009-09-17 41088]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2009-12-19 1763968]
R3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt.sys [2009-12-03 423424]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle); C:\windows\system32\DRIVERS\tap0901t.sys [2009-09-16 27136]
S0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\windows\System32\drivers\sfdrv01.sys [2005-05-17 50176]
S0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\windows\System32\drivers\sfsync02.sys [2005-05-16 19968]
S2 atksgt;atksgt; C:\windows\system32\DRIVERS\atksgt.sys [2011-06-22 278984]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 ARCVCAM;ARCVCAM, ArcSoft Webcam Sharing Manager Driver; C:\windows\system32\DRIVERS\ArcSoftVCapture.sys []
S3 athr;Atheros Extensible Wireless LAN device driver; C:\windows\system32\DRIVERS\athr.sys []
S3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\windows\system32\drivers\AtiHdmi.sys [2009-11-18 100352]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2011-04-28 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2009-09-17 86056]
S3 btwavdt;Bluetooth AVDT; C:\windows\system32\DRIVERS\btwavdt.sys [2009-09-17 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 29472]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2009-09-17 18472]
S3 DAMDrv;DAMDrv; C:\windows\system32\DRIVERS\DAMDrv.sys [2009-10-21 32312]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Home Edition\kerneld.wnt []
S3 GarenaPEngine;GarenaPEngine; \??\C:\Users\brseker\AppData\Local\Temp\VEG238A.tmp []
S3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2009-07-16 15872]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 MfeAVFK;McAfee Inc. MfeAVFK; C:\windows\system32\drivers\MfeAVFK.sys [2009-12-15 79816]
S3 MfeBOPK;McAfee Inc. MfeBOPK; C:\windows\system32\drivers\MfeBOPK.sys [2009-12-15 35272]
S3 MfeRKDK;McAfee Inc. MfeRKDK; C:\windows\system32\drivers\MfeRKDK.sys [2009-12-15 34248]
S3 NETw5s32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit; C:\windows\system32\DRIVERS\NETw5s32.sys [2009-10-03 6114816]
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 Revoflt;Revoflt; C:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUStor.sys [2009-11-11 181792]
S3 SCREAMINGBDRIVER;Screaming Bee Audio; C:\windows\system32\drivers\ScreamingBAudio.sys [2009-12-01 34384]
S3 sisagp;Filtr SIS sběrnice AGP; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usb_rndisx;Adaptér USB RNDIS; C:\windows\system32\DRIVERS\usb8023x.sys [2009-07-14 15872]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 viaagp;Filtr VIA sběrnice AGP; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\aestsrv.exe [2009-03-03 81920]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-11-02 14336]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2009-12-08 172032]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\windows\system32\svchost.exe [2009-07-14 20992]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-09-04 595232]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2009-07-08 26168]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-08-25 354840]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-11-04 268824]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\windows\system32\svchost.exe [2009-07-14 20992]
R2 simptcp;@%SystemRoot%\system32\simptcp.dll,-200; C:\windows\System32\tcpsvcs.exe [2009-07-14 9216]
R2 STacSV;Audio Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_9fc8b38ddee9fbba\STacSV.exe [2009-12-03 229461]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol 52\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 TeamViewer5;TeamViewer 5; C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe [2010-07-06 173352]
R2 TunngleService;TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [2011-10-14 745832]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-11-04 2320920]
R2 vcsFPService;Validity VCS Fingerprint Service; C:\windows\system32\vcsFPService.exe [2009-12-14 1639728]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\windows\system32\svchost.exe [2009-07-14 20992]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-29 136176]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 FLCDLOCK;HP ProtectTools Device Locking / Auditing; c:\Windows\system32\flcdlock.exe [2009-11-17 362040]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-04-20 1045256]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-29 136176]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2011-11-14 419624]
S3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\windows\system32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-05-24 1343400]
S4 NetMsmqActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@c:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------