Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Zaťažená RAM

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
striky
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 26 pro 2011 20:13
Kontaktovat uživatele:
Kontaktovat uživatele striky

Zaťažená RAM

#1 Příspěvek od striky »

Dobrý večer,

poprosil by som vás o radu či je problém s mojim NB v podobe vírusu alebo vo veci bude niečo iné. Problém sa prejavuje v podobe zaťaženej RAM hneď po štarte na úrovni 1,7GB z celkovo 4GB fyzickej čo nieje nič hrozné ale je to cíteľné. NB reaguje pomaly, abnormálne pomaly. OS som preinštaloval za pomoci oficiálne obnovy a následne prekopal zo zálohy v programe Norton Ghost za stavu kedy bol OS čerstvý ale mne vyhovujúco "naladený". No aj napriek týmto krokom problém pretrváva, môžte sa mi teda pozrieť na LOG? Vopred vďaka, s pozdravom striky..

LOG:
Logfile of random's system information tool 1.09 (written by random/random)
Run by striky at 2011-12-26 20:11:07
Microsoft Windows 7 Home Premium
System drive C: has 114 GB (75%) free of 153 GB
Total RAM: 4001 MB (57% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:11:13, on 26. 12. 2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\vsnp2uvc.exe
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\SonicMaster\SonicMasterTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files (x86)\Razer\Copperhead\razerhid.exe
C:\Program Files (x86)\Creative\SB Arena Surround Headset\Volume Panel\VolPanlu.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Razer\Copperhead\razertra.exe
C:\Program Files (x86)\Razer\Copperhead\razerofa.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files\trend micro\striky.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Atheros\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [FLxHCIm] "C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe"
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\SonicMaster\SonicMasterTray.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [Copperhead] C:\Program Files (x86)\Razer\Copperhead\razerhid.exe
O4 - HKLM\..\Run: [VolPanel] "C:\Program Files (x86)\Creative\SB Arena Surround Headset\Volume Panel\VolPanlu.exe" /r
O4 - HKLM\..\Run: [CtaMon] Rundll32 CtaMon.dll,RunMonitor
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-4060087143-736695321-1803416541-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-4060087143-736695321-1803416541-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Atheros\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Atheros\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Atheros\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Intel(R) Turbo Boost Technology Monitor (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: wampapache - Apache Software Foundation - E:\Data\Websites\wamp\bin\apache\apache2.2.11\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - E:\Data\Websites\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12378 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe"
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Atheros\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Atheros\Bluetooth Suite\AthBtTray.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"taskhost.exe"
"C:\Windows\vsnp2uvc.exe"
"C:\Program Files (x86)\Atheros\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"C:\Program Files (x86)\Atheros\Bluetooth Suite\adminservice.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\AsScrPro.exe"
taskeng.exe {41C9ACAA-02EF-4102-8A27-9CC77DE008DA}
"C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe"
"C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe"
taskeng.exe {10008788-7679-4C38-B7B1-53A804655703}
"C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\SonicMaster\SonicMasterTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
"C:\Program Files (x86)\Razer\Copperhead\razerhid.exe"
"C:\Program Files (x86)\Creative\SB Arena Surround Headset\Volume Panel\VolPanlu.exe" /r
"C:\Windows\System32\rundll32.exe" CtaMon.dll,RunMonitor
"C:\Program Files\Intel\TurboBoost\TurboBoost.exe"
"C:\Program Files (x86)\Razer\Copperhead\razertra.exe"
"C:\Program Files (x86)\Razer\Copperhead\razerofa.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\SearchFilterHost.exe" 0 528 532 540 65536 536
"C:\Windows\SysWOW64\ACEngSvr.exe" -Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
ATKOSD.exe
KBFiltr.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
WDC.exe
taskmgr.exe /3
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=4988.1942a4e0.940756069 "C:\Windows\system32\Macromed\Flash\NPSWF32.dll" Mozilla.Firefox.9.0.1 -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.jar" 4988 "\\.\pipe\gecko-crash-server-pipe.4988" plugin
"E:\downloads\RSITx64.exe"
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4060087143-736695321-1803416541-1002Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4060087143-736695321-1803416541-1002UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\striky\AppData\Roaming\Mozilla\Firefox\Profiles\pl2u4kc7.default

prefs.js - "browser.startup.homepage" - "http://sk.start3.mozilla.com/firefox?cl ... k:official"
prefs.js - "extensions.enabledItems" - "extension@virtusdesigns.com:3.6.7, LogMeInClient@logmein.com:1.0.0.586, personas@christopher.beard:1.6.1, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {9c51bd27-6ed8-4000-a2bf-36cb95c0c947}:11.0.1, {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15, {AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.0.0.6906, {8f8fe09b-0bd3-4470-bc1b-8cad42b8203a}:0.16, firebug@software.joehewitt.com:1.6.2, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.16, {07b2a769-ed19-4483-87ce-c643914c81bb}:3.0.0.91, {5c8bfb7c-9a54-11dc-8314-0800200c9a66}:3.6.7"
prefs.js - "keyword.URL" - "http://search.yahoo.com/search?fr=green ... =937811&p="

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

C:\Users\striky\AppData\Roaming\Mozilla\Firefox\Profiles\pl2u4kc7.default\extensions\
extension@virtusdesigns.com
LogMeInClient@logmein.com
plugin3@gameplaylabs.com
{07b2a769-ed19-4483-87ce-c643914c81bb}
{20a82645-c095-46ed-80e3-08825760534b}
{5c8bfb7c-9a54-11dc-8314-0800200c9a66}
{9c51bd27-6ed8-4000-a2bf-36cb95c0c947}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-01-21 6723984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-02-21 346736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2011-02-21 318960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-01-16 688528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-01-21 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Atheros\Bluetooth Suite\IEPlugIn.dll [2010-11-26 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-02-21 256112]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2011-02-21 761840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-01-16 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2011-02-21 458736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-02-21 346736]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-02-21 256112]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-12-03 167960]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-12-03 391704]
"Persistence"=C:\Windows\system32\igfxpers.exe [2010-12-03 417304]
"ETDWare"=C:\Program Files\Elantech\ETDCtrl.exe [2010-06-10 649608]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2010-08-11 324096]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2010-11-30 2186856]
"AtherosBtStack"=C:\Program Files (x86)\Atheros\Bluetooth Suite\BtvStack.exe [2010-11-26 613536]
"AthBtTray"=C:\Program Files (x86)\Atheros\Bluetooth Suite\AthBtTray.exe [2010-11-26 379040]
"snp2uvc"=C:\Windows\vsnp2uvc.exe [2010-01-21 909824]
"IntelTBRunOnce"=wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs []
"Setwallpaper"=c:\programdata\SetWallpaper.cmd []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2011-02-21 3058304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS WebStorage]
C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-01-21 91520]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\striky\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-23 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [2011-12-16 1508408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-11-30 11660904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdatePSTShortCut]
C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe [2010-11-17 222504]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"FLxHCIm"=C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe [2010-11-20 37888]
"SonicMasterTray"=C:\Program Files (x86)\ASUS\SonicMaster\SonicMasterTray.exe [2010-07-10 984400]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-07 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2010-09-24 1601536]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2011-11-28 3744552]
"Copperhead"=C:\Program Files (x86)\Razer\Copperhead\razerhid.exe [2009-11-19 135168]
"VolPanel"=C:\Program Files (x86)\Creative\SB Arena Surround Headset\Volume Panel\VolPanlu.exe [2009-05-04 241789]
"CtaMon"=Rundll32 CtaMon.dll,RunMonitor []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-11-28 384000]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-01-21 6723984]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-01-21 4222864]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2011-12-26 20:11:07 ----D---- C:\rsit
2011-12-26 20:11:07 ----D---- C:\Program Files\trend micro
2011-12-26 17:06:13 ----SHD---- C:\Config.Msi
2011-12-26 17:00:04 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS
2011-12-26 17:00:04 ----A---- C:\Windows\system32\drivers\bthport.sys
2011-12-26 17:00:02 ----A---- C:\Windows\system32\drivers\usbport.sys
2011-12-26 17:00:02 ----A---- C:\Windows\system32\drivers\usbhub.sys
2011-12-26 17:00:02 ----A---- C:\Windows\system32\drivers\usbehci.sys
2011-12-26 17:00:01 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2011-12-26 17:00:01 ----A---- C:\Windows\system32\drivers\usbohci.sys
2011-12-26 17:00:01 ----A---- C:\Windows\system32\drivers\usbd.sys
2011-12-26 17:00:01 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2011-12-26 16:59:56 ----A---- C:\Windows\system32\drivers\ntfs.sys
2011-12-26 16:59:55 ----A---- C:\Windows\system32\esent.dll
2011-12-26 16:59:55 ----A---- C:\Windows\system32\drivers\nvstor.sys
2011-12-26 16:59:55 ----A---- C:\Windows\system32\drivers\nvraid.sys
2011-12-26 16:59:55 ----A---- C:\Windows\system32\drivers\amdsata.sys
2011-12-26 16:59:54 ----A---- C:\Windows\SYSWOW64\esent.dll
2011-12-26 16:59:54 ----A---- C:\Windows\system32\drivers\storport.sys
2011-12-26 16:59:54 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2011-12-26 16:59:54 ----A---- C:\Windows\system32\drivers\amdxata.sys
2011-12-26 16:59:53 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2011-12-26 16:59:53 ----A---- C:\Windows\system32\fsutil.exe
2011-12-26 16:59:53 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2011-12-26 16:07:57 ----D---- C:\ProgramData\Creative
2011-12-26 15:22:22 ----N---- C:\Windows\Ctregrun.exe
2011-12-26 15:21:39 ----HD---- C:\Program Files (x86)\Creative Installation Information
2011-12-26 15:21:32 ----RA---- C:\Windows\system32\xfiCta.ini
2011-12-26 15:21:22 ----RA---- C:\Windows\SYSWOW64\CtaMon.dll
2011-12-26 15:21:22 ----RA---- C:\Windows\CtaMCcfg.ini
2011-12-26 15:21:22 ----RA---- C:\Windows\CtaDefE.exe
2011-12-26 15:21:22 ----RA---- C:\Windows\AddCat.exe
2011-12-26 15:21:20 ----A---- C:\Windows\SYSWOW64\CmdRtr.DLL
2011-12-26 15:21:20 ----A---- C:\Windows\SYSWOW64\APOMngr.DLL
2011-12-26 15:21:20 ----A---- C:\Windows\system32\CmdRtr64.DLL
2011-12-26 15:21:20 ----A---- C:\Windows\system32\APOMgr64.DLL
2011-12-26 15:21:18 ----A---- C:\Windows\system32\wrap_oal.dll
2011-12-26 15:21:17 ----RA---- C:\Windows\SYSWOW64\tmpA737.tmp
2011-12-26 15:21:17 ----A---- C:\Windows\SYSWOW64\wrap_oal.dll
2011-12-26 15:21:17 ----A---- C:\Windows\SYSWOW64\OpenAL32.dll
2011-12-26 15:21:17 ----A---- C:\Windows\system32\OpenAL32.dll
2011-12-26 15:21:14 ----N---- C:\Windows\SYSWOW64\Sens_oal.dll
2011-12-26 15:21:14 ----N---- C:\Windows\system32\Sens_oal.dll
2011-12-26 15:20:21 ----D---- C:\Program Files\Creative
2011-12-26 15:20:12 ----D---- C:\Program Files (x86)\Creative
2011-12-26 15:18:47 ----A---- C:\Windows\system32\drivers\copperhd.sys
2011-12-26 15:18:46 ----D---- C:\Program Files (x86)\Razer
2011-12-26 15:18:34 ----D---- C:\Users\striky\AppData\Roaming\InstallShield
2011-12-26 15:15:08 ----D---- C:\Users\striky\AppData\Roaming\Nero
2011-12-25 15:07:29 ----D---- C:\Users\striky\AppData\Roaming\PC Suite
2011-12-25 15:07:29 ----D---- C:\Users\striky\AppData\Roaming\Nokia
2011-12-25 15:07:28 ----D---- C:\ProgramData\PC Suite
2011-12-25 15:05:34 ----D---- C:\Program Files\DIFX
2011-12-25 15:05:34 ----A---- C:\Windows\system32\drivers\pccsmcfdx64.sys
2011-12-25 15:05:30 ----D---- C:\Program Files (x86)\PC Connectivity Solution
2011-12-25 15:05:23 ----A---- C:\Windows\system32\nmwcdclsX64.dll
2011-12-25 15:05:22 ----D---- C:\Program Files (x86)\Nokia
2011-12-25 15:04:51 ----D---- C:\ProgramData\Installations
2011-12-24 12:27:21 ----D---- C:\Program Files (x86)\Nero
2011-12-24 12:27:10 ----D---- C:\ProgramData\Nero
2011-12-24 12:21:08 ----D---- C:\Users\striky\AppData\Roaming\HeidiSQL
2011-12-24 12:21:05 ----D---- C:\ProgramData\HeidiSQL
2011-12-24 12:21:04 ----D---- C:\Program Files (x86)\HeidiSQL
2011-12-24 12:11:12 ----D---- C:\Users\striky\AppData\Roaming\NVIDIA
2011-12-24 12:09:57 ----D---- C:\Program Files\Adobe
2011-12-24 12:08:28 ----D---- C:\ProgramData\Adobe
2011-12-24 12:08:20 ----D---- C:\Windows\SYSWOW64\spool
2011-12-24 12:07:06 ----D---- C:\Program Files (x86)\Adobe
2011-12-24 12:06:59 ----D---- C:\Program Files\Common Files\Macrovision Shared
2011-12-24 12:06:59 ----D---- C:\Program Files\Common Files\Adobe
2011-12-24 11:58:59 ----D---- C:\Users\striky\AppData\Roaming\vlc
2011-12-24 11:57:00 ----D---- C:\Program Files (x86)\VideoLAN
2011-12-24 10:24:07 ----D---- C:\Windows\SYSWOW64\Wat
2011-12-24 10:24:07 ----D---- C:\Windows\system32\Wat
2011-12-23 22:49:20 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll
2011-12-23 22:49:20 ----A---- C:\Windows\system32\wcncsvc.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\wininet.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\msrating.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\msls31.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\jscript.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\ieui.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\ieakeng.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\wextract.exe
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\url.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\occache.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\mshta.exe
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\inseng.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\ieakui.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\ieaksie.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\icardie.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\admparse.dll
2011-12-23 22:39:28 ----A---- C:\Windows\system32\wininet.dll
2011-12-23 22:39:28 ----A---- C:\Windows\system32\urlmon.dll
2011-12-23 22:39:28 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2011-12-23 22:39:28 ----A---- C:\Windows\system32\msrating.dll
2011-12-23 22:39:28 ----A---- C:\Windows\system32\msls31.dll
2011-12-23 22:39:28 ----A---- C:\Windows\system32\jsproxy.dll
2011-12-23 22:39:28 ----A---- C:\Windows\system32\iertutil.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\wextract.exe
2011-12-23 22:39:27 ----A---- C:\Windows\system32\webcheck.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\url.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2011-12-23 22:39:27 ----A---- C:\Windows\system32\pngfilt.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\occache.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\mshtmler.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\mshtmled.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\mshtml.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\mshta.exe
2011-12-23 22:39:27 ----A---- C:\Windows\system32\msfeedssync.exe
2011-12-23 22:39:27 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\msfeeds.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\licmgr10.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\jscript9.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\jscript.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\inseng.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\imgutil.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\iexpress.exe
2011-12-23 22:39:27 ----A---- C:\Windows\system32\ieUnatt.exe
2011-12-23 22:39:27 ----A---- C:\Windows\system32\ieui.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\iesysprep.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\iesetup.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\iernonce.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\iepeers.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\ieframe.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\iedkcs32.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\ieapfltr.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\ieapfltr.dat
2011-12-23 22:39:27 ----A---- C:\Windows\system32\ieakui.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\ieaksie.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\ieakeng.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\IEAdvpack.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\ie4uinit.exe
2011-12-23 22:39:27 ----A---- C:\Windows\system32\icardie.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\dxtrans.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\dxtmsft.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\admparse.dll
2011-12-23 22:39:26 ----A---- C:\Windows\system32\vbscript.dll
2011-12-23 22:31:58 ----A---- C:\Windows\system32\MRT.exe
2011-12-23 22:28:31 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2011-12-23 22:28:31 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2011-12-23 22:28:31 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2011-12-23 22:28:31 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2011-12-23 22:28:31 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2011-12-23 22:28:31 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2011-12-23 22:28:31 ----A---- C:\Windows\system32\PresentationHost.exe
2011-12-23 22:28:31 ----A---- C:\Windows\system32\netfxperf.dll
2011-12-23 22:28:31 ----A---- C:\Windows\system32\mscoree.dll
2011-12-23 22:28:31 ----A---- C:\Windows\system32\dfshim.dll
2011-12-23 22:28:17 ----A---- C:\Windows\system32\browserchoice.exe
2011-12-23 22:23:20 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2011-12-23 22:23:20 ----A---- C:\Windows\system32\prevhost.exe
2011-12-23 22:21:52 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2011-12-23 22:21:52 ----A---- C:\Windows\system32\EncDec.dll
2011-12-23 22:21:47 ----A---- C:\Windows\system32\msxml6.dll
2011-12-23 22:21:47 ----A---- C:\Windows\system32\msxml3.dll
2011-12-23 22:21:46 ----A---- C:\Windows\system32\upnp.dll
2011-12-23 22:21:45 ----A---- C:\Windows\SYSWOW64\upnp.dll
2011-12-23 22:21:44 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2011-12-23 22:21:44 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2011-12-23 22:21:44 ----A---- C:\Windows\system32\winhttp.dll
2011-12-23 22:21:44 ----A---- C:\Windows\system32\WebClnt.dll
2011-12-23 22:21:44 ----A---- C:\Windows\system32\davclnt.dll
2011-12-23 22:21:43 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2011-12-23 22:21:43 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2011-12-23 22:21:43 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2011-12-23 22:21:43 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2011-12-23 22:21:43 ----A---- C:\Windows\system32\wscapi.dll
2011-12-23 22:21:42 ----A---- C:\Windows\SYSWOW64\slwga.dll
2011-12-23 22:21:42 ----A---- C:\Windows\system32\wscsvc.dll
2011-12-23 22:21:42 ----A---- C:\Windows\system32\slwga.dll
2011-12-23 22:21:36 ----A---- C:\Windows\SYSWOW64\tzres.dll
2011-12-23 22:21:36 ----A---- C:\Windows\system32\tzres.dll
2011-12-23 22:21:21 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2011-12-23 22:21:21 ----A---- C:\Windows\system32\psisdecd.dll
2011-12-23 22:21:18 ----A---- C:\Windows\system32\win32k.sys
2011-12-23 22:21:14 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2011-12-23 22:21:14 ----A---- C:\Windows\system32\poqexec.exe
2011-12-23 22:21:10 ----A---- C:\Windows\system32\CPFilters.dll
2011-12-23 22:21:09 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2011-12-23 22:21:06 ----A---- C:\Windows\SYSWOW64\sbe.dll
2011-12-23 22:21:06 ----A---- C:\Windows\system32\sbe.dll
2011-12-23 22:21:05 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-12-23 22:21:03 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2011-12-23 22:21:03 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2011-12-23 22:21:03 ----A---- C:\Windows\system32\oleaut32.dll
2011-12-23 22:21:03 ----A---- C:\Windows\system32\oleacc.dll
2011-12-23 22:21:02 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2011-12-23 22:21:02 ----A---- C:\Windows\system32\kerberos.dll
2011-12-23 22:20:59 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2011-12-23 22:20:59 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2011-12-23 22:20:59 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2011-12-23 22:20:59 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2011-12-23 22:20:59 ----A---- C:\Windows\system32\odbctrac.dll
2011-12-23 22:20:59 ----A---- C:\Windows\system32\odbccu32.dll
2011-12-23 22:20:59 ----A---- C:\Windows\system32\odbccr32.dll
2011-12-23 22:20:59 ----A---- C:\Windows\system32\odbccp32.dll
2011-12-23 22:20:58 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2011-12-23 22:20:41 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2011-12-23 22:20:41 ----A---- C:\Windows\system32\xmllite.dll
2011-12-23 22:20:38 ----A---- C:\Windows\system32\csrsrv.dll
2011-12-23 22:20:36 ----A---- C:\Windows\system32\mssrch.dll
2011-12-23 22:20:35 ----A---- C:\Windows\SYSWOW64\tquery.dll
2011-12-23 22:20:35 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2011-12-23 22:20:35 ----A---- C:\Windows\system32\tquery.dll
2011-12-23 22:20:35 ----A---- C:\Windows\system32\SearchIndexer.exe
2011-12-23 22:20:35 ----A---- C:\Windows\system32\mssph.dll
2011-12-23 22:20:34 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2011-12-23 22:20:34 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2011-12-23 22:20:34 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2011-12-23 22:20:34 ----A---- C:\Windows\SYSWOW64\mssph.dll
2011-12-23 22:20:34 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2011-12-23 22:20:34 ----A---- C:\Windows\system32\mssvp.dll
2011-12-23 22:20:34 ----A---- C:\Windows\system32\msscntrs.dll
2011-12-23 22:20:33 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2011-12-23 22:20:33 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2011-12-23 22:20:33 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2011-12-23 22:20:33 ----A---- C:\Windows\system32\SearchFilterHost.exe
2011-12-23 22:20:33 ----A---- C:\Windows\system32\mssphtb.dll
2011-12-23 22:20:31 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2011-12-23 22:20:31 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2011-12-23 22:20:31 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2011-12-23 22:20:31 ----A---- C:\Windows\system32\FntCache.dll
2011-12-23 22:20:31 ----A---- C:\Windows\system32\DWrite.dll
2011-12-23 22:20:31 ----A---- C:\Windows\system32\d3d10warp.dll
2011-12-23 22:20:31 ----A---- C:\Windows\system32\d2d1.dll
2011-12-23 22:20:30 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2011-12-23 22:20:30 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2011-12-23 22:20:30 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-12-23 22:20:30 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-12-23 22:20:30 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2011-12-23 22:20:30 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-12-23 22:20:29 ----A---- C:\Windows\system32\cdd.dll
2011-12-23 22:20:25 ----A---- C:\Windows\system32\drivers\afd.sys
2011-12-23 22:20:23 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2011-12-23 22:20:23 ----A---- C:\Windows\system32\XpsPrint.dll
2011-12-23 22:20:20 ----A---- C:\Windows\SYSWOW64\explorer.exe
2011-12-23 22:20:20 ----A---- C:\Windows\explorer.exe
2011-12-23 22:20:16 ----A---- C:\Windows\system32\drivers\dfsc.sys
2011-12-23 22:20:15 ----A---- C:\Windows\system32\mfc42u.dll
2011-12-23 22:20:15 ----A---- C:\Windows\system32\mfc42.dll
2011-12-23 22:20:14 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2011-12-23 22:20:14 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2011-12-23 22:20:13 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-12-23 22:20:13 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-12-23 22:20:13 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-12-23 22:20:08 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2011-12-23 22:20:08 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2011-12-23 22:20:08 ----A---- C:\Windows\system32\atmlib.dll
2011-12-23 22:20:08 ----A---- C:\Windows\system32\atmfd.dll
2011-12-23 22:20:07 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2011-12-23 22:20:07 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-12-23 22:20:02 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-12-23 22:20:01 ----A---- C:\Windows\system32\drivers\fvevol.sys
2011-12-23 22:17:26 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2011-12-23 22:17:26 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2011-12-23 22:17:26 ----A---- C:\Windows\system32\OpenCL.dll
2011-12-23 22:17:26 ----A---- C:\Windows\system32\nvwgf2umx.dll
2011-12-23 22:17:25 ----A---- C:\Windows\SYSWOW64\nvoptimusmft.dll
2011-12-23 22:17:25 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2011-12-23 22:17:25 ----A---- C:\Windows\SYSWOW64\nvdecodemft.dll
2011-12-23 22:17:25 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2011-12-23 22:17:25 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2011-12-23 22:17:25 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2011-12-23 22:17:25 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2011-12-23 22:17:25 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2011-12-23 22:17:25 ----A---- C:\Windows\system32\nvoptimusmft.dll
2011-12-23 22:17:25 ----A---- C:\Windows\system32\nvoglv64.dll
2011-12-23 22:17:25 ----A---- C:\Windows\system32\nvdecodemft.dll
2011-12-23 22:17:25 ----A---- C:\Windows\system32\nvd3dumx.dll
2011-12-23 22:17:25 ----A---- C:\Windows\system32\nvcuvid.dll
2011-12-23 22:17:25 ----A---- C:\Windows\system32\nvcuvenc.dll
2011-12-23 22:17:25 ----A---- C:\Windows\system32\nvcuda.dll
2011-12-23 22:17:25 ----A---- C:\Windows\system32\nvcompiler.dll
2011-12-23 22:17:25 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2011-12-23 22:17:25 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2011-12-23 22:15:25 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2011-12-23 22:15:25 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2011-12-23 22:15:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-12-23 22:15:23 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2011-12-23 22:15:23 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2011-12-23 22:15:23 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-12-23 22:15:23 ----A---- C:\Windows\system32\d3d10_1.dll
2011-12-23 22:15:22 ----A---- C:\Windows\system32\KernelBase.dll
2011-12-23 22:15:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2011-12-23 22:15:21 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-12-23 22:15:21 ----A---- C:\Windows\SYSWOW64\wow32.dll
2011-12-23 22:15:21 ----A---- C:\Windows\SYSWOW64\setup16.exe
2011-12-23 22:15:21 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2011-12-23 22:15:21 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2011-12-23 22:15:21 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2011-12-23 22:15:21 ----A---- C:\Windows\SYSWOW64\instnm.exe
2011-12-23 22:15:21 ----A---- C:\Windows\system32\wow64win.dll
2011-12-23 22:15:21 ----A---- C:\Windows\system32\wow64cpu.dll
2011-12-23 22:15:21 ----A---- C:\Windows\system32\wow64.dll
2011-12-23 22:15:21 ----A---- C:\Windows\system32\winsrv.dll
2011-12-23 22:15:21 ----A---- C:\Windows\system32\ntvdm64.dll
2011-12-23 22:15:21 ----A---- C:\Windows\system32\kernel32.dll
2011-12-23 22:15:21 ----A---- C:\Windows\system32\conhost.exe
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2011-12-23 22:15:18 ----A---- C:\Windows\SYSWOW64\user.exe
2011-12-23 22:15:17 ----A---- C:\Windows\SYSWOW64\odbc32.dll
2011-12-23 22:15:17 ----A---- C:\Windows\system32\odbc32.dll
2011-12-23 22:15:15 ----A---- C:\Windows\system32\ntdll.dll
2011-12-23 22:15:14 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2011-12-23 22:15:07 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2011-12-23 22:15:07 ----A---- C:\Windows\system32\mstscax.dll
2011-12-23 22:15:06 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2011-12-23 22:15:06 ----A---- C:\Windows\system32\mstsc.exe
2011-12-23 22:15:06 ----A---- C:\Windows\system32\FXSCOVER.exe
2011-12-23 22:15:05 ----A---- C:\Windows\system32\winresume.exe
2011-12-23 22:15:05 ----A---- C:\Windows\system32\winload.exe
2011-12-23 22:15:05 ----A---- C:\Windows\system32\kdusb.dll
2011-12-23 22:15:05 ----A---- C:\Windows\system32\kdcom.dll
2011-12-23 22:15:05 ----A---- C:\Windows\system32\kd1394.dll
2011-12-23 22:15:04 ----A---- C:\Windows\system32\drivers\srv.sys
2011-12-23 22:15:03 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2011-12-23 22:15:03 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2011-12-23 22:15:03 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-12-23 22:15:03 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-12-23 22:15:03 ----A---- C:\Windows\system32\dnsrslvr.dll
2011-12-23 22:15:03 ----A---- C:\Windows\system32\dnscacheugc.exe
2011-12-23 22:15:03 ----A---- C:\Windows\system32\dnsapi.dll
2011-12-23 22:15:02 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2011-12-23 22:15:02 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2011-12-23 22:15:02 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2011-12-23 22:15:02 ----A---- C:\Windows\SYSWOW64\devobj.dll
2011-12-23 22:15:02 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2011-12-23 22:15:02 ----A---- C:\Windows\system32\umpnpmgr.dll
2011-12-23 22:15:02 ----A---- C:\Windows\system32\inetcomm.dll
2011-12-23 22:15:01 ----A---- C:\Windows\system32\drivers\bowser.sys

======List of files/folders modified in the last 1 month======

2011-12-26 20:11:07 ----RD---- C:\Program Files
2011-12-26 20:10:57 ----A---- C:\Windows\SYSWOW64\log.txt
2011-12-26 20:09:29 ----D---- C:\Windows\Temp
2011-12-26 20:09:25 ----D---- C:\Windows\system32\Tasks
2011-12-26 19:47:14 ----D---- C:\Windows\system32\config
2011-12-26 19:46:56 ----D---- C:\Windows\System32
2011-12-26 19:46:56 ----D---- C:\Windows\inf
2011-12-26 19:46:56 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-12-26 19:43:44 ----D---- C:\Windows\winsxs
2011-12-26 18:34:07 ----D---- C:\Windows
2011-12-26 18:15:58 ----D---- C:\Windows\SYSWOW64\pl-PL
2011-12-26 18:15:58 ----D---- C:\Windows\SYSWOW64\hu-HU
2011-12-26 18:15:58 ----D---- C:\Windows\SYSWOW64\en-US
2011-12-26 18:15:58 ----D---- C:\Windows\SYSWOW64\cs-CZ
2011-12-26 18:15:58 ----D---- C:\Windows\SysWOW64
2011-12-26 18:15:58 ----D---- C:\Windows\system32\pl-PL
2011-12-26 18:15:58 ----D---- C:\Windows\system32\hu-HU
2011-12-26 18:15:58 ----D---- C:\Windows\system32\en-US
2011-12-26 18:15:58 ----D---- C:\Windows\system32\DriverStore
2011-12-26 18:15:58 ----D---- C:\Windows\system32\drivers
2011-12-26 18:15:58 ----D---- C:\Windows\system32\cs-CZ
2011-12-26 18:15:27 ----D---- C:\Users\striky\AppData\Roaming\ICQ
2011-12-26 17:18:45 ----SHD---- C:\Windows\Installer
2011-12-26 17:18:44 ----RSD---- C:\Windows\assembly
2011-12-26 17:15:48 ----D---- C:\Windows\Microsoft.NET
2011-12-26 17:09:24 ----D---- C:\Windows\system32\catroot
2011-12-26 17:05:27 ----D---- C:\Windows\system32\catroot2
2011-12-26 16:07:57 ----HD---- C:\ProgramData
2011-12-26 16:07:45 ----A---- C:\Windows\system32\AutoRunFilter.ini
2011-12-26 16:07:38 ----A---- C:\Windows\system32\ServiceFilter.ini
2011-12-26 16:07:28 ----A---- C:\Windows\system32\acovcnt.exe
2011-12-26 16:05:01 ----D---- C:\Windows\Prefetch
2011-12-26 16:04:57 ----D---- C:\Windows\system32\wdi
2011-12-26 15:53:20 ----D---- C:\Program Files (x86)\ICQ7.6
2011-12-26 15:22:30 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-12-26 15:21:40 ----D---- C:\Program Files (x86)\Common Files
2011-12-26 15:21:39 ----RD---- C:\Program Files (x86)
2011-12-26 15:14:47 ----D---- C:\Users\striky\AppData\Roaming\Skype
2011-12-26 15:13:48 ----RD---- C:\Program Files (x86)\Skype
2011-12-26 15:12:07 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-12-25 15:05:34 ----DC---- C:\Windows\system32\DRVSTORE
2011-12-24 23:28:22 ----D---- C:\Users\striky\AppData\Roaming\Adobe
2011-12-24 12:10:57 ----D---- C:\ProgramData\FLEXnet
2011-12-24 12:09:09 ----RSD---- C:\Windows\Fonts
2011-12-24 12:06:59 ----D---- C:\Program Files\Common Files
2011-12-24 11:42:27 ----D---- C:\Windows\SYSWOW64\NV
2011-12-24 11:42:27 ----D---- C:\Windows\system32\NV
2011-12-24 10:32:33 ----D---- C:\Program Files (x86)\Microsoft.NET
2011-12-24 10:28:40 ----D---- C:\ProgramData\NVIDIA
2011-12-24 10:24:53 ----D---- C:\Windows\AppPatch
2011-12-24 10:24:51 ----D---- C:\Windows\SYSWOW64\sk-SK
2011-12-24 10:24:51 ----D---- C:\Program Files\Internet Explorer
2011-12-24 10:24:51 ----D---- C:\Program Files\Common Files\System
2011-12-24 10:24:51 ----D---- C:\Program Files (x86)\Internet Explorer
2011-12-24 10:24:50 ----D---- C:\Windows\SYSWOW64\sr-Latn-CS
2011-12-24 10:24:50 ----D---- C:\Windows\system32\sk-SK
2011-12-24 10:24:49 ----D---- C:\Windows\SYSWOW64\lt-LT
2011-12-24 10:24:49 ----D---- C:\Windows\system32\sr-Latn-CS
2011-12-24 10:24:49 ----D---- C:\Windows\system32\lt-LT
2011-12-24 10:24:48 ----D---- C:\Windows\SYSWOW64\lv-LV
2011-12-24 10:24:48 ----D---- C:\Windows\system32\lv-LV
2011-12-24 10:24:47 ----D---- C:\Windows\SYSWOW64\et-EE
2011-12-24 10:24:47 ----D---- C:\Windows\system32\et-EE
2011-12-24 10:24:46 ----D---- C:\Windows\SYSWOW64\sl-SI
2011-12-24 10:24:46 ----D---- C:\Windows\SYSWOW64\hr-HR
2011-12-24 10:24:46 ----D---- C:\Windows\system32\hr-HR
2011-12-24 10:24:45 ----D---- C:\Windows\SYSWOW64\ro-RO
2011-12-24 10:24:45 ----D---- C:\Windows\system32\sl-SI
2011-12-24 10:24:44 ----D---- C:\Windows\system32\ro-RO
2011-12-24 10:24:39 ----D---- C:\Windows\SYSWOW64\bg-BG
2011-12-24 10:24:39 ----D---- C:\Windows\system32\bg-BG
2011-12-24 10:24:34 ----D---- C:\Windows\SYSWOW64\migration
2011-12-24 10:24:26 ----D---- C:\Windows\PolicyDefinitions
2011-12-24 10:24:25 ----D---- C:\Windows\system32\migration
2011-12-24 10:24:19 ----D---- C:\Program Files\Windows Mail
2011-12-24 10:24:19 ----D---- C:\Program Files (x86)\Windows Mail
2011-12-24 10:24:07 ----D---- C:\Windows\ehome
2011-12-24 10:24:05 ----D---- C:\Windows\system32\Boot
2011-12-24 10:18:14 ----D---- C:\Windows\system32\LogFiles
2011-12-23 22:48:18 ----D---- C:\Windows\Logs
2011-12-23 22:32:00 ----D---- C:\Windows\debug
2011-12-23 22:29:58 ----D---- C:\Windows\Tasks
2011-12-23 22:19:29 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2011-11-28 19:01:23 ----A---- C:\Windows\SYSWOW64\aswBoot.exe
2011-11-28 19:01:14 ----A---- C:\Windows\system32\aswBoot.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-11-05 438808]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2011-10-15 28992]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2011-02-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-11-28 42328]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-11-28 591192]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-11-28 304472]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-11-28 58712]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2010-07-26 17024]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-08-23 254528]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-06-27 88632]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-11-28 24408]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-11-28 66904]
R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2010-04-17 13832]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-07-08 2228736]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2010-11-26 28832]
R3 copperhd;Razer Copperhead Driver; C:\Windows\system32\drivers\copperhd.sys [2009-11-10 14336]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2010-09-08 129024]
R3 FLxHCIc;Fresco Logic xHCI (USB3) Device Driver; C:\Windows\system32\DRIVERS\FLxHCIc.sys [2010-11-20 210944]
R3 FLxHCIh;Fresco Logic xHCI (USB3) Hub Device Driver; C:\Windows\system32\DRIVERS\FLxHCIh.sys [2010-11-20 49664]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2010-11-28 12252192]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-11-30 2647528]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-06-23 333928]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2010-09-07 1800832]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2010-11-26 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2010-11-26 298144]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2010-11-26 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2010-11-26 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2010-11-26 154272]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2010-11-26 275616]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2011-04-28 552448]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2010-11-30 379520]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Atheros\Ath_CoexAgent.exe [2010-05-25 151552]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Atheros\Bluetooth Suite\adminservice.exe [2010-11-26 52896]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-11-28 44768]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [2009-02-23 307200]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-21 325656]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-05-15 935208]
R2 NVSvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-10-15 1640768]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120]
R2 TurboBoost;Intel(R) Turbo Boost Technology Monitor; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-04-17 134928]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-02-21 135664]
S2 KMService;KMService; C:\Windows\syswow64\srvany.exe [2003-04-18 8192]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2011-12-26 79360]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-12-24 1038088]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-12-24 655624]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-02-21 135664]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-02-21 182768]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-01-21 30963576]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-11-30 718888]
S3 wampapache;wampapache; E:\Data\Websites\wamp\bin\apache\apache2.2.11\bin\httpd.exe [2008-12-10 24636]
S3 wampmysqld;wampmysqld; E:\Data\Websites\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe [2009-06-17 6582912]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-12-23 1255736]

-----------------EOF-----------------
Naposledy upravil(a) vyosek dne 26 pro 2011 20:22, celkem upraveno 1 x.
Důvod: log odstranen z code
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119513
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zaťažená RAM

#2 Příspěvek od Rudy »

Zdravím!
Nejprve odinstalujte vše, co má v názvu slovo toolbar.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
striky
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 26 pro 2011 20:13
Kontaktovat uživatele:
Kontaktovat uživatele striky

Re: Zaťažená RAM

#3 Příspěvek od striky »

Ďakujem za odpoveď, spravil som ako ste žiadali. Jediné vašej požiadavke vyhovoval ,,Google toolbar for IE". Po odstránení LOG vyzerá následovne:

Logfile of random's system information tool 1.09 (written by random/random)
Run by striky at 2011-12-26 21:00:31
Microsoft Windows 7 Home Premium
System drive C: has 114 GB (75%) free of 153 GB
Total RAM: 4001 MB (57% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:00:34, on 26. 12. 2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Windows\vsnp2uvc.exe
C:\Program Files (x86)\ASUS\SonicMaster\SonicMasterTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files (x86)\Razer\Copperhead\razerhid.exe
C:\Program Files (x86)\Creative\SB Arena Surround Headset\Volume Panel\VolPanlu.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Razer\Copperhead\razertra.exe
C:\Program Files (x86)\Razer\Copperhead\razerofa.exe
C:\Program Files (x86)\ICQ7.6\ICQ.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\Windows\AsScrPro.exe
C:\Program Files\trend micro\striky.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Atheros\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (file missing)
O4 - HKLM\..\Run: [FLxHCIm] "C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe"
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\SonicMaster\SonicMasterTray.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [Copperhead] C:\Program Files (x86)\Razer\Copperhead\razerhid.exe
O4 - HKLM\..\Run: [VolPanel] "C:\Program Files (x86)\Creative\SB Arena Surround Headset\Volume Panel\VolPanlu.exe" /r
O4 - HKLM\..\Run: [CtaMon] Rundll32 CtaMon.dll,RunMonitor
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Atheros\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Atheros\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Atheros\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Intel(R) Turbo Boost Technology Monitor (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: wampapache - Apache Software Foundation - E:\Data\Websites\wamp\bin\apache\apache2.2.11\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - E:\Data\Websites\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11626 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe"
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Atheros\Ath_CoexAgent.exe"
"C:\Program Files (x86)\Atheros\Bluetooth Suite\adminservice.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe"
"C:\Program Files\Intel\TurboBoost\TurboBoost.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"taskhost.exe"
taskeng.exe {06DFB901-1E1E-40F6-B8C6-68F29434532E}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
taskeng.exe {0D92367A-B2BF-479A-981E-D77752C0C36C}
"C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SF3
"C:\Program Files (x86)\Atheros\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Atheros\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Windows\vsnp2uvc.exe"
"C:\Windows\SysWOW64\ACEngSvr.exe" -Embedding
"C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\ASUS\SonicMaster\SonicMasterTray.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Razer\Copperhead\razerhid.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Creative\SB Arena Surround Headset\Volume Panel\VolPanlu.exe" /r
"C:\Windows\System32\rundll32.exe" CtaMon.dll,RunMonitor
"C:\Program Files (x86)\Razer\Copperhead\razertra.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"C:\Program Files (x86)\Razer\Copperhead\razerofa.exe"
C:\Windows\system32\wbem\wmiprvse.exe
ATKOSD.exe
KBFiltr.exe
WDC.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 528 532 540 65536 536
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\ICQ7.6\ICQ.exe"
"C:\totalcmd\TOTALCMD.EXE"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"E:\downloads\RSITx64.exe"
"C:\Windows\AsScrPro.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4060087143-736695321-1803416541-1002Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4060087143-736695321-1803416541-1002UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\striky\AppData\Roaming\Mozilla\Firefox\Profiles\pl2u4kc7.default

prefs.js - "browser.startup.homepage" - "http://sk.start3.mozilla.com/firefox?cl ... k:official"
prefs.js - "extensions.enabledItems" - "extension@virtusdesigns.com:3.6.7, LogMeInClient@logmein.com:1.0.0.586, personas@christopher.beard:1.6.1, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {9c51bd27-6ed8-4000-a2bf-36cb95c0c947}:11.0.1, {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15, {AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.0.0.6906, {8f8fe09b-0bd3-4470-bc1b-8cad42b8203a}:0.16, firebug@software.joehewitt.com:1.6.2, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.16, {07b2a769-ed19-4483-87ce-c643914c81bb}:3.0.0.91, {5c8bfb7c-9a54-11dc-8314-0800200c9a66}:3.6.7"
prefs.js - "keyword.URL" - "http://search.yahoo.com/search?fr=green ... =937811&p="

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

C:\Users\striky\AppData\Roaming\Mozilla\Firefox\Profiles\pl2u4kc7.default\extensions\
extension@virtusdesigns.com
LogMeInClient@logmein.com
plugin3@gameplaylabs.com
{07b2a769-ed19-4483-87ce-c643914c81bb}
{20a82645-c095-46ed-80e3-08825760534b}
{5c8bfb7c-9a54-11dc-8314-0800200c9a66}
{9c51bd27-6ed8-4000-a2bf-36cb95c0c947}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-01-21 6723984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-01-16 688528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-01-21 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Atheros\Bluetooth Suite\IEPlugIn.dll [2010-11-26 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-01-16 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-12-03 167960]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-12-03 391704]
"Persistence"=C:\Windows\system32\igfxpers.exe [2010-12-03 417304]
"ETDWare"=C:\Program Files\Elantech\ETDCtrl.exe [2010-06-10 649608]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2010-08-11 324096]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2010-11-30 2186856]
"AtherosBtStack"=C:\Program Files (x86)\Atheros\Bluetooth Suite\BtvStack.exe [2010-11-26 613536]
"AthBtTray"=C:\Program Files (x86)\Atheros\Bluetooth Suite\AthBtTray.exe [2010-11-26 379040]
"snp2uvc"=C:\Windows\vsnp2uvc.exe [2010-01-21 909824]
"IntelTBRunOnce"=wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs []
"Setwallpaper"=c:\programdata\SetWallpaper.cmd []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2011-02-21 3058304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS WebStorage]
C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2010-01-21 91520]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\striky\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-23 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [2011-12-16 1508408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-11-30 11660904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdatePSTShortCut]
C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe [2010-11-17 222504]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"FLxHCIm"=C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe [2010-11-20 37888]
"SonicMasterTray"=C:\Program Files (x86)\ASUS\SonicMaster\SonicMasterTray.exe [2010-07-10 984400]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-07 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2010-09-24 1601536]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2011-11-28 3744552]
"Copperhead"=C:\Program Files (x86)\Razer\Copperhead\razerhid.exe [2009-11-19 135168]
"VolPanel"=C:\Program Files (x86)\Creative\SB Arena Surround Headset\Volume Panel\VolPanlu.exe [2009-05-04 241789]
"CtaMon"=Rundll32 CtaMon.dll,RunMonitor []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-11-28 384000]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-01-21 6723984]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2010-01-21 4222864]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2011-12-26 20:52:20 ----D---- C:\Users\striky\AppData\Roaming\Google
2011-12-26 20:11:07 ----D---- C:\rsit
2011-12-26 20:11:07 ----D---- C:\Program Files\trend micro
2011-12-26 17:00:04 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS
2011-12-26 17:00:04 ----A---- C:\Windows\system32\drivers\bthport.sys
2011-12-26 17:00:02 ----A---- C:\Windows\system32\drivers\usbport.sys
2011-12-26 17:00:02 ----A---- C:\Windows\system32\drivers\usbhub.sys
2011-12-26 17:00:02 ----A---- C:\Windows\system32\drivers\usbehci.sys
2011-12-26 17:00:01 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2011-12-26 17:00:01 ----A---- C:\Windows\system32\drivers\usbohci.sys
2011-12-26 17:00:01 ----A---- C:\Windows\system32\drivers\usbd.sys
2011-12-26 17:00:01 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2011-12-26 16:59:56 ----A---- C:\Windows\system32\drivers\ntfs.sys
2011-12-26 16:59:55 ----A---- C:\Windows\system32\esent.dll
2011-12-26 16:59:55 ----A---- C:\Windows\system32\drivers\nvstor.sys
2011-12-26 16:59:55 ----A---- C:\Windows\system32\drivers\nvraid.sys
2011-12-26 16:59:55 ----A---- C:\Windows\system32\drivers\amdsata.sys
2011-12-26 16:59:54 ----A---- C:\Windows\SYSWOW64\esent.dll
2011-12-26 16:59:54 ----A---- C:\Windows\system32\drivers\storport.sys
2011-12-26 16:59:54 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2011-12-26 16:59:54 ----A---- C:\Windows\system32\drivers\amdxata.sys
2011-12-26 16:59:53 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2011-12-26 16:59:53 ----A---- C:\Windows\system32\fsutil.exe
2011-12-26 16:59:53 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2011-12-26 16:07:57 ----D---- C:\ProgramData\Creative
2011-12-26 15:22:22 ----N---- C:\Windows\Ctregrun.exe
2011-12-26 15:21:39 ----HD---- C:\Program Files (x86)\Creative Installation Information
2011-12-26 15:21:32 ----RA---- C:\Windows\system32\xfiCta.ini
2011-12-26 15:21:22 ----RA---- C:\Windows\SYSWOW64\CtaMon.dll
2011-12-26 15:21:22 ----RA---- C:\Windows\CtaMCcfg.ini
2011-12-26 15:21:22 ----RA---- C:\Windows\CtaDefE.exe
2011-12-26 15:21:22 ----RA---- C:\Windows\AddCat.exe
2011-12-26 15:21:20 ----A---- C:\Windows\SYSWOW64\CmdRtr.DLL
2011-12-26 15:21:20 ----A---- C:\Windows\SYSWOW64\APOMngr.DLL
2011-12-26 15:21:20 ----A---- C:\Windows\system32\CmdRtr64.DLL
2011-12-26 15:21:20 ----A---- C:\Windows\system32\APOMgr64.DLL
2011-12-26 15:21:18 ----A---- C:\Windows\system32\wrap_oal.dll
2011-12-26 15:21:17 ----RA---- C:\Windows\SYSWOW64\tmpA737.tmp
2011-12-26 15:21:17 ----A---- C:\Windows\SYSWOW64\wrap_oal.dll
2011-12-26 15:21:17 ----A---- C:\Windows\SYSWOW64\OpenAL32.dll
2011-12-26 15:21:17 ----A---- C:\Windows\system32\OpenAL32.dll
2011-12-26 15:21:14 ----N---- C:\Windows\SYSWOW64\Sens_oal.dll
2011-12-26 15:21:14 ----N---- C:\Windows\system32\Sens_oal.dll
2011-12-26 15:20:21 ----D---- C:\Program Files\Creative
2011-12-26 15:20:12 ----D---- C:\Program Files (x86)\Creative
2011-12-26 15:18:47 ----A---- C:\Windows\system32\drivers\copperhd.sys
2011-12-26 15:18:46 ----D---- C:\Program Files (x86)\Razer
2011-12-26 15:18:34 ----D---- C:\Users\striky\AppData\Roaming\InstallShield
2011-12-26 15:15:08 ----D---- C:\Users\striky\AppData\Roaming\Nero
2011-12-25 15:07:29 ----D---- C:\Users\striky\AppData\Roaming\PC Suite
2011-12-25 15:07:29 ----D---- C:\Users\striky\AppData\Roaming\Nokia
2011-12-25 15:07:28 ----D---- C:\ProgramData\PC Suite
2011-12-25 15:05:34 ----D---- C:\Program Files\DIFX
2011-12-25 15:05:34 ----A---- C:\Windows\system32\drivers\pccsmcfdx64.sys
2011-12-25 15:05:30 ----D---- C:\Program Files (x86)\PC Connectivity Solution
2011-12-25 15:05:23 ----A---- C:\Windows\system32\nmwcdclsX64.dll
2011-12-25 15:05:22 ----D---- C:\Program Files (x86)\Nokia
2011-12-25 15:04:51 ----D---- C:\ProgramData\Installations
2011-12-24 12:27:21 ----D---- C:\Program Files (x86)\Nero
2011-12-24 12:27:10 ----D---- C:\ProgramData\Nero
2011-12-24 12:21:08 ----D---- C:\Users\striky\AppData\Roaming\HeidiSQL
2011-12-24 12:21:05 ----D---- C:\ProgramData\HeidiSQL
2011-12-24 12:21:04 ----D---- C:\Program Files (x86)\HeidiSQL
2011-12-24 12:11:12 ----D---- C:\Users\striky\AppData\Roaming\NVIDIA
2011-12-24 12:09:57 ----D---- C:\Program Files\Adobe
2011-12-24 12:08:28 ----D---- C:\ProgramData\Adobe
2011-12-24 12:08:20 ----D---- C:\Windows\SYSWOW64\spool
2011-12-24 12:07:06 ----D---- C:\Program Files (x86)\Adobe
2011-12-24 12:06:59 ----D---- C:\Program Files\Common Files\Macrovision Shared
2011-12-24 12:06:59 ----D---- C:\Program Files\Common Files\Adobe
2011-12-24 11:58:59 ----D---- C:\Users\striky\AppData\Roaming\vlc
2011-12-24 11:57:00 ----D---- C:\Program Files (x86)\VideoLAN
2011-12-24 10:24:07 ----D---- C:\Windows\SYSWOW64\Wat
2011-12-24 10:24:07 ----D---- C:\Windows\system32\Wat
2011-12-23 22:49:20 ----A---- C:\Windows\SYSWOW64\wcncsvc.dll
2011-12-23 22:49:20 ----A---- C:\Windows\system32\wcncsvc.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\wininet.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\msrating.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\msls31.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\jscript.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\ieui.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\ieakeng.dll
2011-12-23 22:39:29 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\wextract.exe
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\url.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\occache.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\mshta.exe
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\inseng.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\ieakui.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\ieaksie.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\icardie.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2011-12-23 22:39:28 ----A---- C:\Windows\SYSWOW64\admparse.dll
2011-12-23 22:39:28 ----A---- C:\Windows\system32\wininet.dll
2011-12-23 22:39:28 ----A---- C:\Windows\system32\urlmon.dll
2011-12-23 22:39:28 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2011-12-23 22:39:28 ----A---- C:\Windows\system32\msrating.dll
2011-12-23 22:39:28 ----A---- C:\Windows\system32\msls31.dll
2011-12-23 22:39:28 ----A---- C:\Windows\system32\jsproxy.dll
2011-12-23 22:39:28 ----A---- C:\Windows\system32\iertutil.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\wextract.exe
2011-12-23 22:39:27 ----A---- C:\Windows\system32\webcheck.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\url.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2011-12-23 22:39:27 ----A---- C:\Windows\system32\pngfilt.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\occache.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\mshtmler.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\mshtmled.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\mshtml.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\mshta.exe
2011-12-23 22:39:27 ----A---- C:\Windows\system32\msfeedssync.exe
2011-12-23 22:39:27 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\msfeeds.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\licmgr10.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\jscript9.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\jscript.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\inseng.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\imgutil.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\iexpress.exe
2011-12-23 22:39:27 ----A---- C:\Windows\system32\ieUnatt.exe
2011-12-23 22:39:27 ----A---- C:\Windows\system32\ieui.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\iesysprep.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\iesetup.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\iernonce.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\iepeers.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\ieframe.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\iedkcs32.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\ieapfltr.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\ieapfltr.dat
2011-12-23 22:39:27 ----A---- C:\Windows\system32\ieakui.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\ieaksie.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\ieakeng.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\IEAdvpack.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\ie4uinit.exe
2011-12-23 22:39:27 ----A---- C:\Windows\system32\icardie.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\dxtrans.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\dxtmsft.dll
2011-12-23 22:39:27 ----A---- C:\Windows\system32\admparse.dll
2011-12-23 22:39:26 ----A---- C:\Windows\system32\vbscript.dll
2011-12-23 22:31:58 ----A---- C:\Windows\system32\MRT.exe
2011-12-23 22:28:31 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2011-12-23 22:28:31 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2011-12-23 22:28:31 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2011-12-23 22:28:31 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2011-12-23 22:28:31 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2011-12-23 22:28:31 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2011-12-23 22:28:31 ----A---- C:\Windows\system32\PresentationHost.exe
2011-12-23 22:28:31 ----A---- C:\Windows\system32\netfxperf.dll
2011-12-23 22:28:31 ----A---- C:\Windows\system32\mscoree.dll
2011-12-23 22:28:31 ----A---- C:\Windows\system32\dfshim.dll
2011-12-23 22:28:17 ----A---- C:\Windows\system32\browserchoice.exe
2011-12-23 22:23:20 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2011-12-23 22:23:20 ----A---- C:\Windows\system32\prevhost.exe
2011-12-23 22:21:52 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2011-12-23 22:21:52 ----A---- C:\Windows\system32\EncDec.dll
2011-12-23 22:21:47 ----A---- C:\Windows\system32\msxml6.dll
2011-12-23 22:21:47 ----A---- C:\Windows\system32\msxml3.dll
2011-12-23 22:21:46 ----A---- C:\Windows\system32\upnp.dll
2011-12-23 22:21:45 ----A---- C:\Windows\SYSWOW64\upnp.dll
2011-12-23 22:21:44 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2011-12-23 22:21:44 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2011-12-23 22:21:44 ----A---- C:\Windows\system32\winhttp.dll
2011-12-23 22:21:44 ----A---- C:\Windows\system32\WebClnt.dll
2011-12-23 22:21:44 ----A---- C:\Windows\system32\davclnt.dll
2011-12-23 22:21:43 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2011-12-23 22:21:43 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2011-12-23 22:21:43 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2011-12-23 22:21:43 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2011-12-23 22:21:43 ----A---- C:\Windows\system32\wscapi.dll
2011-12-23 22:21:42 ----A---- C:\Windows\SYSWOW64\slwga.dll
2011-12-23 22:21:42 ----A---- C:\Windows\system32\wscsvc.dll
2011-12-23 22:21:42 ----A---- C:\Windows\system32\slwga.dll
2011-12-23 22:21:36 ----A---- C:\Windows\SYSWOW64\tzres.dll
2011-12-23 22:21:36 ----A---- C:\Windows\system32\tzres.dll
2011-12-23 22:21:21 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2011-12-23 22:21:21 ----A---- C:\Windows\system32\psisdecd.dll
2011-12-23 22:21:18 ----A---- C:\Windows\system32\win32k.sys
2011-12-23 22:21:14 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2011-12-23 22:21:14 ----A---- C:\Windows\system32\poqexec.exe
2011-12-23 22:21:10 ----A---- C:\Windows\system32\CPFilters.dll
2011-12-23 22:21:09 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2011-12-23 22:21:06 ----A---- C:\Windows\SYSWOW64\sbe.dll
2011-12-23 22:21:06 ----A---- C:\Windows\system32\sbe.dll
2011-12-23 22:21:05 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-12-23 22:21:03 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2011-12-23 22:21:03 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2011-12-23 22:21:03 ----A---- C:\Windows\system32\oleaut32.dll
2011-12-23 22:21:03 ----A---- C:\Windows\system32\oleacc.dll
2011-12-23 22:21:02 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2011-12-23 22:21:02 ----A---- C:\Windows\system32\kerberos.dll
2011-12-23 22:20:59 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2011-12-23 22:20:59 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2011-12-23 22:20:59 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2011-12-23 22:20:59 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2011-12-23 22:20:59 ----A---- C:\Windows\system32\odbctrac.dll
2011-12-23 22:20:59 ----A---- C:\Windows\system32\odbccu32.dll
2011-12-23 22:20:59 ----A---- C:\Windows\system32\odbccr32.dll
2011-12-23 22:20:59 ----A---- C:\Windows\system32\odbccp32.dll
2011-12-23 22:20:58 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2011-12-23 22:20:41 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2011-12-23 22:20:41 ----A---- C:\Windows\system32\xmllite.dll
2011-12-23 22:20:38 ----A---- C:\Windows\system32\csrsrv.dll
2011-12-23 22:20:36 ----A---- C:\Windows\system32\mssrch.dll
2011-12-23 22:20:35 ----A---- C:\Windows\SYSWOW64\tquery.dll
2011-12-23 22:20:35 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2011-12-23 22:20:35 ----A---- C:\Windows\system32\tquery.dll
2011-12-23 22:20:35 ----A---- C:\Windows\system32\SearchIndexer.exe
2011-12-23 22:20:35 ----A---- C:\Windows\system32\mssph.dll
2011-12-23 22:20:34 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2011-12-23 22:20:34 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2011-12-23 22:20:34 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2011-12-23 22:20:34 ----A---- C:\Windows\SYSWOW64\mssph.dll
2011-12-23 22:20:34 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2011-12-23 22:20:34 ----A---- C:\Windows\system32\mssvp.dll
2011-12-23 22:20:34 ----A---- C:\Windows\system32\msscntrs.dll
2011-12-23 22:20:33 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2011-12-23 22:20:33 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2011-12-23 22:20:33 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2011-12-23 22:20:33 ----A---- C:\Windows\system32\SearchFilterHost.exe
2011-12-23 22:20:33 ----A---- C:\Windows\system32\mssphtb.dll
2011-12-23 22:20:31 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2011-12-23 22:20:31 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2011-12-23 22:20:31 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2011-12-23 22:20:31 ----A---- C:\Windows\system32\FntCache.dll
2011-12-23 22:20:31 ----A---- C:\Windows\system32\DWrite.dll
2011-12-23 22:20:31 ----A---- C:\Windows\system32\d3d10warp.dll
2011-12-23 22:20:31 ----A---- C:\Windows\system32\d2d1.dll
2011-12-23 22:20:30 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2011-12-23 22:20:30 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2011-12-23 22:20:30 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-12-23 22:20:30 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-12-23 22:20:30 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2011-12-23 22:20:30 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-12-23 22:20:29 ----A---- C:\Windows\system32\cdd.dll
2011-12-23 22:20:25 ----A---- C:\Windows\system32\drivers\afd.sys
2011-12-23 22:20:23 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2011-12-23 22:20:23 ----A---- C:\Windows\system32\XpsPrint.dll
2011-12-23 22:20:20 ----A---- C:\Windows\SYSWOW64\explorer.exe
2011-12-23 22:20:20 ----A---- C:\Windows\explorer.exe
2011-12-23 22:20:16 ----A---- C:\Windows\system32\drivers\dfsc.sys
2011-12-23 22:20:15 ----A---- C:\Windows\system32\mfc42u.dll
2011-12-23 22:20:15 ----A---- C:\Windows\system32\mfc42.dll
2011-12-23 22:20:14 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2011-12-23 22:20:14 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2011-12-23 22:20:13 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-12-23 22:20:13 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-12-23 22:20:13 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-12-23 22:20:08 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2011-12-23 22:20:08 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2011-12-23 22:20:08 ----A---- C:\Windows\system32\atmlib.dll
2011-12-23 22:20:08 ----A---- C:\Windows\system32\atmfd.dll
2011-12-23 22:20:07 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2011-12-23 22:20:07 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-12-23 22:20:02 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-12-23 22:20:01 ----A---- C:\Windows\system32\drivers\fvevol.sys
2011-12-23 22:17:26 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2011-12-23 22:17:26 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2011-12-23 22:17:26 ----A---- C:\Windows\system32\OpenCL.dll
2011-12-23 22:17:26 ----A---- C:\Windows\system32\nvwgf2umx.dll
2011-12-23 22:17:25 ----A---- C:\Windows\SYSWOW64\nvoptimusmft.dll
2011-12-23 22:17:25 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2011-12-23 22:17:25 ----A---- C:\Windows\SYSWOW64\nvdecodemft.dll
2011-12-23 22:17:25 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2011-12-23 22:17:25 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2011-12-23 22:17:25 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2011-12-23 22:17:25 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2011-12-23 22:17:25 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2011-12-23 22:17:25 ----A---- C:\Windows\system32\nvoptimusmft.dll
2011-12-23 22:17:25 ----A---- C:\Windows\system32\nvoglv64.dll
2011-12-23 22:17:25 ----A---- C:\Windows\system32\nvdecodemft.dll
2011-12-23 22:17:25 ----A---- C:\Windows\system32\nvd3dumx.dll
2011-12-23 22:17:25 ----A---- C:\Windows\system32\nvcuvid.dll
2011-12-23 22:17:25 ----A---- C:\Windows\system32\nvcuvenc.dll
2011-12-23 22:17:25 ----A---- C:\Windows\system32\nvcuda.dll
2011-12-23 22:17:25 ----A---- C:\Windows\system32\nvcompiler.dll
2011-12-23 22:17:25 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2011-12-23 22:17:25 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2011-12-23 22:15:25 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2011-12-23 22:15:25 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2011-12-23 22:15:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-12-23 22:15:23 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2011-12-23 22:15:23 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2011-12-23 22:15:23 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-12-23 22:15:23 ----A---- C:\Windows\system32\d3d10_1.dll
2011-12-23 22:15:22 ----A---- C:\Windows\system32\KernelBase.dll
2011-12-23 22:15:21 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2011-12-23 22:15:21 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-12-23 22:15:21 ----A---- C:\Windows\SYSWOW64\wow32.dll
2011-12-23 22:15:21 ----A---- C:\Windows\SYSWOW64\setup16.exe
2011-12-23 22:15:21 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2011-12-23 22:15:21 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2011-12-23 22:15:21 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2011-12-23 22:15:21 ----A---- C:\Windows\SYSWOW64\instnm.exe
2011-12-23 22:15:21 ----A---- C:\Windows\system32\wow64win.dll
2011-12-23 22:15:21 ----A---- C:\Windows\system32\wow64cpu.dll
2011-12-23 22:15:21 ----A---- C:\Windows\system32\wow64.dll
2011-12-23 22:15:21 ----A---- C:\Windows\system32\winsrv.dll
2011-12-23 22:15:21 ----A---- C:\Windows\system32\ntvdm64.dll
2011-12-23 22:15:21 ----A---- C:\Windows\system32\kernel32.dll
2011-12-23 22:15:21 ----A---- C:\Windows\system32\conhost.exe
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2011-12-23 22:15:19 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2011-12-23 22:15:18 ----A---- C:\Windows\SYSWOW64\user.exe
2011-12-23 22:15:17 ----A---- C:\Windows\SYSWOW64\odbc32.dll
2011-12-23 22:15:17 ----A---- C:\Windows\system32\odbc32.dll
2011-12-23 22:15:15 ----A---- C:\Windows\system32\ntdll.dll
2011-12-23 22:15:14 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2011-12-23 22:15:07 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2011-12-23 22:15:07 ----A---- C:\Windows\system32\mstscax.dll
2011-12-23 22:15:06 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2011-12-23 22:15:06 ----A---- C:\Windows\system32\mstsc.exe
2011-12-23 22:15:06 ----A---- C:\Windows\system32\FXSCOVER.exe
2011-12-23 22:15:05 ----A---- C:\Windows\system32\winresume.exe
2011-12-23 22:15:05 ----A---- C:\Windows\system32\winload.exe
2011-12-23 22:15:05 ----A---- C:\Windows\system32\kdusb.dll
2011-12-23 22:15:05 ----A---- C:\Windows\system32\kdcom.dll
2011-12-23 22:15:05 ----A---- C:\Windows\system32\kd1394.dll
2011-12-23 22:15:04 ----A---- C:\Windows\system32\drivers\srv.sys
2011-12-23 22:15:03 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2011-12-23 22:15:03 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2011-12-23 22:15:03 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-12-23 22:15:03 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-12-23 22:15:03 ----A---- C:\Windows\system32\dnsrslvr.dll
2011-12-23 22:15:03 ----A---- C:\Windows\system32\dnscacheugc.exe
2011-12-23 22:15:03 ----A---- C:\Windows\system32\dnsapi.dll
2011-12-23 22:15:02 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2011-12-23 22:15:02 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2011-12-23 22:15:02 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2011-12-23 22:15:02 ----A---- C:\Windows\SYSWOW64\devobj.dll
2011-12-23 22:15:02 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2011-12-23 22:15:02 ----A---- C:\Windows\system32\umpnpmgr.dll
2011-12-23 22:15:02 ----A---- C:\Windows\system32\inetcomm.dll
2011-12-23 22:15:01 ----A---- C:\Windows\system32\drivers\bowser.sys

======List of files/folders modified in the last 1 month======

2011-12-26 21:00:20 ----D---- C:\Windows\Temp
2011-12-26 20:59:51 ----D---- C:\Windows\system32\Tasks
2011-12-26 20:57:28 ----A---- C:\Windows\SYSWOW64\log.txt
2011-12-26 20:54:24 ----D---- C:\Program Files (x86)\Google
2011-12-26 20:54:14 ----RD---- C:\Program Files
2011-12-26 20:52:20 ----SHD---- C:\Windows\Installer
2011-12-26 20:52:20 ----HD---- C:\ProgramData
2011-12-26 20:49:32 ----RSD---- C:\Windows\assembly
2011-12-26 20:49:32 ----D---- C:\Windows\Microsoft.NET
2011-12-26 20:25:06 ----D---- C:\Users\striky\AppData\Roaming\ICQ
2011-12-26 20:13:17 ----D---- C:\Windows\System32
2011-12-26 20:13:17 ----D---- C:\Windows\inf
2011-12-26 20:13:17 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-12-26 19:47:14 ----D---- C:\Windows\system32\config
2011-12-26 19:43:44 ----D---- C:\Windows\winsxs
2011-12-26 18:34:07 ----D---- C:\Windows
2011-12-26 18:15:58 ----D---- C:\Windows\SYSWOW64\pl-PL
2011-12-26 18:15:58 ----D---- C:\Windows\SYSWOW64\hu-HU
2011-12-26 18:15:58 ----D---- C:\Windows\SYSWOW64\en-US
2011-12-26 18:15:58 ----D---- C:\Windows\SYSWOW64\cs-CZ
2011-12-26 18:15:58 ----D---- C:\Windows\SysWOW64
2011-12-26 18:15:58 ----D---- C:\Windows\system32\pl-PL
2011-12-26 18:15:58 ----D---- C:\Windows\system32\hu-HU
2011-12-26 18:15:58 ----D---- C:\Windows\system32\en-US
2011-12-26 18:15:58 ----D---- C:\Windows\system32\DriverStore
2011-12-26 18:15:58 ----D---- C:\Windows\system32\drivers
2011-12-26 18:15:58 ----D---- C:\Windows\system32\cs-CZ
2011-12-26 17:09:24 ----D---- C:\Windows\system32\catroot
2011-12-26 17:05:27 ----D---- C:\Windows\system32\catroot2
2011-12-26 16:07:45 ----A---- C:\Windows\system32\AutoRunFilter.ini
2011-12-26 16:07:38 ----A---- C:\Windows\system32\ServiceFilter.ini
2011-12-26 16:07:28 ----A---- C:\Windows\system32\acovcnt.exe
2011-12-26 16:05:01 ----D---- C:\Windows\Prefetch
2011-12-26 16:04:57 ----D---- C:\Windows\system32\wdi
2011-12-26 15:53:20 ----D---- C:\Program Files (x86)\ICQ7.6
2011-12-26 15:22:30 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-12-26 15:21:40 ----D---- C:\Program Files (x86)\Common Files
2011-12-26 15:21:39 ----RD---- C:\Program Files (x86)
2011-12-26 15:14:47 ----D---- C:\Users\striky\AppData\Roaming\Skype
2011-12-26 15:13:48 ----RD---- C:\Program Files (x86)\Skype
2011-12-26 15:12:07 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-12-25 15:05:34 ----DC---- C:\Windows\system32\DRVSTORE
2011-12-24 23:28:22 ----D---- C:\Users\striky\AppData\Roaming\Adobe
2011-12-24 12:10:57 ----D---- C:\ProgramData\FLEXnet
2011-12-24 12:09:09 ----RSD---- C:\Windows\Fonts
2011-12-24 12:06:59 ----D---- C:\Program Files\Common Files
2011-12-24 11:42:27 ----D---- C:\Windows\SYSWOW64\NV
2011-12-24 11:42:27 ----D---- C:\Windows\system32\NV
2011-12-24 10:32:33 ----D---- C:\Program Files (x86)\Microsoft.NET
2011-12-24 10:28:40 ----D---- C:\ProgramData\NVIDIA
2011-12-24 10:24:53 ----D---- C:\Windows\AppPatch
2011-12-24 10:24:51 ----D---- C:\Windows\SYSWOW64\sk-SK
2011-12-24 10:24:51 ----D---- C:\Program Files\Internet Explorer
2011-12-24 10:24:51 ----D---- C:\Program Files\Common Files\System
2011-12-24 10:24:51 ----D---- C:\Program Files (x86)\Internet Explorer
2011-12-24 10:24:50 ----D---- C:\Windows\SYSWOW64\sr-Latn-CS
2011-12-24 10:24:50 ----D---- C:\Windows\system32\sk-SK
2011-12-24 10:24:49 ----D---- C:\Windows\SYSWOW64\lt-LT
2011-12-24 10:24:49 ----D---- C:\Windows\system32\sr-Latn-CS
2011-12-24 10:24:49 ----D---- C:\Windows\system32\lt-LT
2011-12-24 10:24:48 ----D---- C:\Windows\SYSWOW64\lv-LV
2011-12-24 10:24:48 ----D---- C:\Windows\system32\lv-LV
2011-12-24 10:24:47 ----D---- C:\Windows\SYSWOW64\et-EE
2011-12-24 10:24:47 ----D---- C:\Windows\system32\et-EE
2011-12-24 10:24:46 ----D---- C:\Windows\SYSWOW64\sl-SI
2011-12-24 10:24:46 ----D---- C:\Windows\SYSWOW64\hr-HR
2011-12-24 10:24:46 ----D---- C:\Windows\system32\hr-HR
2011-12-24 10:24:45 ----D---- C:\Windows\SYSWOW64\ro-RO
2011-12-24 10:24:45 ----D---- C:\Windows\system32\sl-SI
2011-12-24 10:24:44 ----D---- C:\Windows\system32\ro-RO
2011-12-24 10:24:39 ----D---- C:\Windows\SYSWOW64\bg-BG
2011-12-24 10:24:39 ----D---- C:\Windows\system32\bg-BG
2011-12-24 10:24:34 ----D---- C:\Windows\SYSWOW64\migration
2011-12-24 10:24:26 ----D---- C:\Windows\PolicyDefinitions
2011-12-24 10:24:25 ----D---- C:\Windows\system32\migration
2011-12-24 10:24:19 ----D---- C:\Program Files\Windows Mail
2011-12-24 10:24:19 ----D---- C:\Program Files (x86)\Windows Mail
2011-12-24 10:24:07 ----D---- C:\Windows\ehome
2011-12-24 10:24:05 ----D---- C:\Windows\system32\Boot
2011-12-24 10:18:14 ----D---- C:\Windows\system32\LogFiles
2011-12-23 22:48:18 ----D---- C:\Windows\Logs
2011-12-23 22:32:00 ----D---- C:\Windows\debug
2011-12-23 22:29:58 ----D---- C:\Windows\Tasks
2011-12-23 22:19:29 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2011-11-28 19:01:23 ----A---- C:\Windows\SYSWOW64\aswBoot.exe
2011-11-28 19:01:14 ----A---- C:\Windows\system32\aswBoot.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-11-05 438808]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2011-10-15 28992]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2011-02-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-11-28 42328]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-11-28 591192]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-11-28 304472]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-11-28 58712]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2010-07-26 17024]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-08-23 254528]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-06-27 88632]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-11-28 24408]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-11-28 66904]
R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2010-04-17 13832]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-07-08 2228736]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2010-11-26 28832]
R3 copperhd;Razer Copperhead Driver; C:\Windows\system32\drivers\copperhd.sys [2009-11-10 14336]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2010-09-08 129024]
R3 FLxHCIc;Fresco Logic xHCI (USB3) Device Driver; C:\Windows\system32\DRIVERS\FLxHCIc.sys [2010-11-20 210944]
R3 FLxHCIh;Fresco Logic xHCI (USB3) Hub Device Driver; C:\Windows\system32\DRIVERS\FLxHCIh.sys [2010-11-20 49664]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2010-11-28 12252192]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-11-30 2647528]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-06-23 333928]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2010-09-07 1800832]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2010-11-26 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2010-11-26 298144]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2010-11-26 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2010-11-26 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2010-11-26 154272]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2010-11-26 275616]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2011-04-28 552448]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2010-11-30 379520]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-16 84536]
R2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Atheros\Ath_CoexAgent.exe [2010-05-25 151552]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Atheros\Bluetooth Suite\adminservice.exe [2010-11-26 52896]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-11-28 44768]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [2009-02-23 307200]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-05-15 935208]
R2 NVSvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-10-15 1640768]
R2 TurboBoost;Intel(R) Turbo Boost Technology Monitor; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-04-17 134928]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-02-21 135664]
S2 KMService;KMService; C:\Windows\syswow64\srvany.exe [2003-04-18 8192]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-21 325656]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2011-12-26 79360]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-12-24 1038088]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-12-24 655624]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-02-21 135664]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-02-21 182768]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-01-21 30963576]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-11-30 718888]
S3 wampapache;wampapache; E:\Data\Websites\wamp\bin\apache\apache2.2.11\bin\httpd.exe [2008-12-10 24636]
S3 wampmysqld;wampmysqld; E:\Data\Websites\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe [2009-06-17 6582912]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-12-23 1255736]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119513
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zaťažená RAM

#4 Příspěvek od Rudy »

OK. Pokud nenastala změna, otevřte taskmanager (ctrl>alt>del) a zjistěte, který proces nejvíc systém zatěžuje.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
striky
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 26 pro 2011 20:13
Kontaktovat uživatele:
Kontaktovat uživatele striky

Re: Zaťažená RAM

#5 Příspěvek od striky »

Zmena nenastala a správca úloh poskytuje dosť skreslené údaje nakoľko z toho čo tam vidím súčet hodnôt na hodnotu 1,7GB nevyskladám ale:
- najviac samozrejme berie Firefox (pri písaní tejto odpovede) - 298MB
- svchost.exe (Host Process for Windows Services) - 98MB
- dwm.exe (Desktop Window Manager) - 33MB
- svchost.exe (Host Process for Windows Services) - 22MB
- explorer.exe - 19MB

Ako postúpovať ďalej? :)
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119513
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zaťažená RAM

#6 Příspěvek od Rudy »

Na zkoušku vypněte aut. aktualizace, příp. reinstalujte antivirus.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
striky
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 26 pro 2011 20:13
Kontaktovat uživatele:
Kontaktovat uživatele striky

Re: Zaťažená RAM

#7 Příspěvek od striky »

Dobrý večer,

aktuálne som bez antiviráku (avast), vypnuté windows update a i napriek tomu hneď po štarte 1,69GB zaťažená RAM. Čo to len môže byť? Napadá ma, že som nedávno "prepálil" BIOS na najnovšiu verziu poskytovanú na stránkach výrobcu NB. Mohlo tento problém spôsobiť táto zmena?
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119513
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zaťažená RAM

#8 Příspěvek od Rudy »

Dejte log z ComboFix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
striky
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 26 pro 2011 20:13
Kontaktovat uživatele:
Kontaktovat uživatele striky

Re: Zaťažená RAM

#9 Příspěvek od striky »

ComboFix 11-12-27.01 - striky . 12. 2011 20:12:26.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.421.1051.18.4001.2083 [GMT 1:00]
Running from: e:\downloads\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
SP: avast! Antivirus *Disabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\FullRemove.exe
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\SysWow64\tmpA727.tmp
c:\windows\SysWow64\tmpA737.tmp
.
.
((((((((((((((((((((((((( Files Created from 2011-11-27 to 2011-12-27 )))))))))))))))))))))))))))))))
.
.
2011-12-27 19:17 . 2011-12-27 19:17 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2011-12-27 19:17 . 2011-12-27 19:17 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-12-27 18:51 . 2010-02-11 18:42 51280 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-12-27 18:51 . 2010-02-11 18:42 120912 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-12-27 18:51 . 2010-02-11 18:39 28752 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-12-27 18:51 . 2010-02-11 18:38 63568 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-12-27 18:51 . 2010-02-11 18:38 22096 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-12-27 18:51 . 2010-02-11 18:53 153184 ----a-w- c:\windows\SysWow64\aswBoot.exe
2011-12-27 18:38 . 2011-12-27 18:48 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{7AE1F9EC-F065-4F6C-8081-06D294CC4516}\offreg.dll
2011-12-26 19:11 . 2011-12-26 20:00 -------- d-----w- c:\program files\trend micro
2011-12-26 19:11 . 2011-12-26 19:11 -------- d-----w- C:\rsit
2011-12-26 16:00 . 2011-04-28 03:58 552448 ----a-w- c:\windows\system32\drivers\bthport.sys
2011-12-26 16:00 . 2011-04-28 03:58 80384 ----a-w- c:\windows\system32\drivers\BTHUSB.SYS
2011-12-26 16:00 . 2011-03-29 03:32 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2011-12-26 16:00 . 2011-03-29 03:32 324608 ----a-w- c:\windows\system32\drivers\usbport.sys
2011-12-26 16:00 . 2011-03-29 03:32 52224 ----a-w- c:\windows\system32\drivers\usbehci.sys
2011-12-26 16:00 . 2011-03-29 03:32 99328 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2011-12-26 16:00 . 2011-03-29 03:32 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2011-12-26 16:00 . 2011-03-29 03:32 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2011-12-26 16:00 . 2011-03-29 03:32 7936 ----a-w- c:\windows\system32\drivers\usbd.sys
2011-12-26 15:59 . 2011-03-11 06:23 1657216 ----a-w- c:\windows\system32\drivers\ntfs.sys
2011-12-26 15:59 . 2011-03-11 06:23 166272 ----a-w- c:\windows\system32\drivers\nvstor.sys
2011-12-26 15:59 . 2011-03-11 06:23 148352 ----a-w- c:\windows\system32\drivers\nvraid.sys
2011-12-26 15:59 . 2011-03-11 06:22 107904 ----a-w- c:\windows\system32\drivers\amdsata.sys
2011-12-26 15:59 . 2011-03-11 06:18 2566144 ----a-w- c:\windows\system32\esent.dll
2011-12-26 15:59 . 2011-03-11 06:23 187264 ----a-w- c:\windows\system32\drivers\storport.sys
2011-12-26 15:59 . 2011-03-11 06:23 410496 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2011-12-26 15:59 . 2011-03-11 06:22 27008 ----a-w- c:\windows\system32\drivers\amdxata.sys
2011-12-26 15:59 . 2011-03-11 05:39 1686016 ----a-w- c:\windows\SysWow64\esent.dll
2011-12-26 15:59 . 2011-03-11 06:15 96768 ----a-w- c:\windows\system32\fsutil.exe
2011-12-26 15:59 . 2011-03-11 05:37 74240 ----a-w- c:\windows\SysWow64\fsutil.exe
2011-12-26 15:07 . 2011-12-26 15:08 -------- d-----w- c:\programdata\Creative
2011-12-26 14:22 . 2003-06-12 22:25 7062 ----a-w- c:\windows\SysWow64\audiopid.vxd
2011-12-26 14:22 . 2000-05-22 08:58 647872 ------w- c:\windows\SysWow64\Mscomct2.ocx
2011-12-26 14:22 . 2006-10-06 06:17 53248 ------w- c:\windows\Ctregrun.exe
2011-12-26 14:20 . 2011-12-26 14:20 -------- d-----w- c:\program files (x86)\Common Files\Creative Labs Shared
2011-12-26 14:20 . 2011-12-26 14:21 -------- d-----w- c:\program files\Creative
2011-12-26 14:20 . 2011-12-26 14:22 -------- d-----w- c:\program files (x86)\Creative
2011-12-26 14:19 . 2003-11-10 17:14 729088 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iKernel.dll
2011-12-26 14:19 . 2003-11-10 17:13 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\ctor.dll
2011-12-26 14:19 . 2003-11-10 17:12 266240 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iscript.dll
2011-12-26 14:19 . 2003-11-10 17:12 192512 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iuser.dll
2011-12-26 14:19 . 2003-11-10 17:11 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\DotNetInstaller.exe
2011-12-26 14:19 . 2011-12-26 14:19 311428 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\setup.dll
2011-12-26 14:19 . 2011-12-26 14:19 188548 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iGdi.dll
2011-12-26 14:18 . 2005-11-10 12:58 69632 ----a-w- c:\windows\system32\copperhd.cpl
2011-12-26 14:18 . 2009-11-10 14:50 14336 ----a-w- c:\windows\system32\drivers\copperhd.sys
2011-12-26 14:18 . 2011-12-26 14:18 -------- d-----w- c:\program files (x86)\Razer
2011-12-26 14:18 . 2011-12-26 14:18 -------- d-----w- c:\users\striky\AppData\Roaming\InstallShield
2011-12-26 14:15 . 2011-12-26 14:16 -------- d-----w- c:\users\striky\AppData\Roaming\Nero
2011-12-26 14:11 . 2011-12-26 14:11 626688 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcr80.dll
2011-12-26 14:11 . 2011-12-26 14:11 548864 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcp80.dll
2011-12-26 14:11 . 2011-12-26 14:11 479232 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcm80.dll
2011-12-26 14:11 . 2011-12-26 14:11 43992 ----a-w- c:\program files (x86)\Mozilla Firefox\mozutils.dll
2011-12-25 14:07 . 2011-12-25 14:07 -------- d-----w- c:\users\striky\AppData\Roaming\Nokia
2011-12-25 14:07 . 2011-12-25 14:07 -------- d-----w- c:\users\striky\AppData\Roaming\PC Suite
2011-12-25 14:07 . 2011-12-25 14:07 -------- d-----w- c:\programdata\PC Suite
2011-12-25 14:05 . 2011-12-25 14:05 -------- d-----w- c:\program files (x86)\Common Files\PCSuite
2011-12-25 14:05 . 2011-12-25 14:05 -------- d-----w- c:\program files (x86)\Common Files\Nokia
2011-12-25 14:05 . 2011-12-25 14:05 -------- d-----w- c:\program files\DIFX
2011-12-25 14:05 . 2008-08-28 10:44 25600 ----a-w- c:\windows\system32\drivers\pccsmcfdx64.sys
2011-12-25 14:05 . 2011-12-25 14:05 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
2011-12-25 14:05 . 2011-11-01 09:07 57856 ----a-w- c:\windows\system32\nmwcdclsX64.dll
2011-12-25 14:05 . 2011-12-25 14:05 -------- d-----w- c:\program files (x86)\Nokia
2011-12-25 14:04 . 2011-12-25 14:04 -------- d-----w- c:\programdata\Installations
2011-12-24 11:32 . 2011-12-24 11:32 -------- d-----w- c:\users\striky\AppData\Local\CrashDumps
2011-12-24 11:27 . 2011-12-24 11:31 -------- d-----w- c:\program files (x86)\Nero
2011-12-24 11:27 . 2011-12-24 11:31 -------- d-----w- c:\program files (x86)\Common Files\Nero
2011-12-24 11:27 . 2011-12-24 11:29 -------- d-----w- c:\programdata\Nero
2011-12-24 11:21 . 2011-12-24 11:21 -------- d-----w- c:\users\striky\AppData\Roaming\HeidiSQL
2011-12-24 11:21 . 2011-12-24 11:21 -------- d-----w- c:\programdata\HeidiSQL
2011-12-24 11:21 . 2011-12-24 11:21 -------- d-----w- c:\program files (x86)\HeidiSQL
2011-12-24 11:11 . 2011-12-24 11:11 -------- d-----w- c:\users\striky\AppData\Roaming\NVIDIA
2011-12-24 11:08 . 2011-12-24 11:08 -------- d-----w- c:\windows\SysWow64\spool
2011-12-24 11:07 . 2011-12-27 19:05 -------- d-----w- c:\users\striky\AppData\Local\Adobe
2011-12-24 11:06 . 2011-12-24 11:10 -------- d-----w- c:\program files\Common Files\Adobe
2011-12-24 11:06 . 2011-12-24 11:06 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2011-12-24 11:06 . 2011-12-24 11:06 -------- d-----w- c:\program files (x86)\Common Files\Macrovision Shared
2011-12-24 11:05 . 2011-12-24 11:20 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2011-12-24 10:58 . 2011-12-24 10:59 -------- d-----w- c:\users\striky\AppData\Roaming\vlc
2011-12-24 10:57 . 2011-12-24 10:57 -------- d-----w- c:\program files (x86)\VideoLAN
2011-12-24 09:24 . 2011-12-24 09:24 -------- d-----w- c:\windows\SysWow64\Wat
2011-12-24 09:24 . 2011-12-24 09:24 -------- d-----w- c:\windows\system32\Wat
2011-12-23 21:49 . 2010-09-14 06:45 367104 ----a-w- c:\windows\system32\wcncsvc.dll
2011-12-23 21:49 . 2010-09-14 06:07 276992 ----a-w- c:\windows\SysWow64\wcncsvc.dll
2011-12-23 21:29 . 2011-11-30 01:21 8822856 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{7AE1F9EC-F065-4F6C-8081-06D294CC4516}\mpengine.dll
2011-12-23 21:28 . 2009-11-25 11:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll
2011-12-23 21:28 . 2009-11-25 11:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll
2011-12-23 21:28 . 2009-11-25 11:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
2011-12-23 21:28 . 2009-11-25 11:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll
2011-12-23 21:28 . 2009-11-25 11:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe
2011-12-23 21:28 . 2009-11-25 11:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
2011-12-23 21:28 . 2009-11-25 11:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2011-12-23 21:28 . 2009-11-25 11:47 444752 ----a-w- c:\windows\system32\mscoree.dll
2011-12-23 21:28 . 2009-11-25 11:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
2011-12-23 21:28 . 2009-11-25 11:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
2011-12-23 21:28 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2011-12-23 21:23 . 2011-02-18 06:33 31232 ----a-w- c:\windows\system32\prevhost.exe
2011-12-23 21:23 . 2011-02-18 05:33 31232 ----a-w- c:\windows\SysWow64\prevhost.exe
2011-12-23 21:20 . 2011-06-15 09:58 212992 ----a-w- c:\windows\system32\odbctrac.dll
2011-12-23 21:17 . 2011-10-15 08:53 8791360 ----a-w- c:\windows\system32\nvwgf2umx.dll
2011-12-23 21:15 . 2011-06-23 05:29 5507968 ----a-w- c:\windows\system32\ntoskrnl.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-12-26 15:07 . 2011-08-23 17:41 45056 ----a-w- c:\windows\system32\acovcnt.exe
2011-12-23 21:39 . 2011-12-23 21:39 203776 ----a-w- c:\windows\SysWow64\webcheck.dll
2011-12-23 21:39 . 2011-12-23 21:39 249344 ----a-w- c:\windows\system32\webcheck.dll
2011-11-28 18:01 . 2011-08-23 22:17 256960 ----a-w- c:\windows\system32\aswBoot.exe
2011-11-15 13:29 . 2011-08-23 19:30 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-10-15 08:53 . 2011-08-23 22:03 716608 ----a-w- c:\windows\SysWow64\nvumdshim.dll
2011-10-15 08:53 . 2011-08-23 22:03 2458432 ----a-w- c:\windows\SysWow64\nvapi.dll
2011-10-15 08:53 . 2011-08-23 22:03 1533248 ----a-w- c:\windows\system32\nvdispco64.dll
2011-10-15 08:53 . 2011-08-23 22:03 1454400 ----a-w- c:\windows\system32\nvgenco64.dll
2011-10-15 08:53 . 2011-02-21 09:01 860992 ----a-w- c:\windows\system32\nvumdshimx.dll
2011-10-15 08:53 . 2011-02-21 09:01 241984 ----a-w- c:\windows\system32\nvinitx.dll
2011-10-15 08:53 . 2011-02-21 09:01 203072 ----a-w- c:\windows\SysWow64\nvinit.dll
2011-10-15 08:53 . 2011-02-21 09:01 2808128 ----a-w- c:\windows\system32\nvapi64.dll
2011-10-15 08:53 . 2010-12-05 11:13 222528 ----a-w- c:\windows\system32\nvmctray.dll
2011-10-15 08:53 . 2010-12-05 11:13 1985841 ----a-w- c:\windows\system32\nvcoproc.bin
2011-10-15 08:53 . 2010-12-05 11:13 55616 ----a-w- c:\windows\system32\nv3dappshextr.dll
2011-10-15 08:53 . 2010-12-05 11:13 539456 ----a-w- c:\windows\system32\nvhotkey.dll
2011-10-15 08:53 . 2010-12-05 11:13 3074368 ----a-w- c:\windows\system32\nvsvcr.dll
2011-10-15 08:53 . 2010-12-05 11:13 1640768 ----a-w- c:\windows\system32\nvvsvc.exe
2011-10-15 08:53 . 2010-12-05 11:13 137536 ----a-w- c:\windows\system32\nvshext.dll
2011-10-15 08:53 . 2010-12-05 11:13 1349440 ----a-w- c:\windows\system32\nv3dappshext.dll
2011-10-15 08:53 . 2010-12-05 11:13 837952 ----a-w- c:\windows\system32\easyUpdatusAPIU64.dll
2011-10-15 08:53 . 2010-12-05 11:13 10406208 ----a-w- c:\windows\system32\nvcpl.dll
2011-10-15 08:53 . 2010-12-05 11:12 5067584 ----a-w- c:\windows\system32\nvsvc64.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1475072]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"FLxHCIm"="c:\program files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe" [2010-11-20 37888]
"SonicMasterTray"="c:\program files (x86)\ASUS\SonicMaster\SonicMasterTray.exe" [2010-07-10 984400]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-10-07 170624]
"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"Wireless Console 3"="c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe" [2010-09-24 1601536]
"Copperhead"="c:\program files (x86)\Razer\Copperhead\razerhid.exe" [2009-11-19 135168]
"VolPanel"="c:\program files (x86)\Creative\SB Arena Surround Headset\Volume Panel\VolPanlu.exe" [2009-05-04 241789]
"CtaMon"="CtaMon.dll" [2008-08-27 9728]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"midi2"=wdmaud.drv
.
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-02-21 135664]
R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys [x]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [x]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys [x]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys [x]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys [x]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys [x]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2011-12-26 79360]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-12-24 1038088]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-02-21 135664]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-01-21 30963576]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys [x]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [x]
S1 aswSP;aswSP; [x]
S1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2010-07-26 17024]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [x]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files (x86)\Atheros\Ath_CoexAgent.exe [2010-05-24 151552]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Atheros\Bluetooth Suite\adminservice.exe [2010-11-26 52896]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [x]
S2 TurboBoost;Intel(R) Turbo Boost Technology Monitor;c:\program files\Intel\TurboBoost\TurboBoost.exe [2010-04-17 134928]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys [x]
S3 copperhd;Razer Copperhead Driver;c:\windows\system32\drivers\copperhd.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [x]
S3 FLxHCIc;Fresco Logic xHCI (USB3) Device Driver;c:\windows\system32\DRIVERS\FLxHCIc.sys [x]
S3 FLxHCIh;Fresco Logic xHCI (USB3) Hub Device Driver;c:\windows\system32\DRIVERS\FLxHCIh.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
.
.
Contents of the 'Scheduled Tasks' folder
.
2011-12-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-02-21 08:26]
.
2011-12-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-02-21 08:26]
.
2011-12-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4060087143-736695321-1803416541-1002Core.job
- c:\users\striky\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-23 21:29]
.
2011-12-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4060087143-736695321-1803416541-1002UA.job
- c:\users\striky\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-23 21:29]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-12-03 167960]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-12-03 391704]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-12-03 417304]
"AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2010-08-11 324096]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2010-11-30 2186856]
"AtherosBtStack"="c:\program files (x86)\Atheros\Bluetooth Suite\BtvStack.exe" [2010-11-26 613536]
"AthBtTray"="c:\program files (x86)\Atheros\Bluetooth Suite\AthBtTray.exe" [2010-11-26 379040]
"snp2uvc"="c:\windows\vsnp2uvc.exe" [2010-01-21 909824]
"IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://asus.msn.com
mStart Page = hxxp://asus.msn.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovať do programu Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&oslať do programu OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: {{7644E42D-B096-457F-8B5B-901238FC81AE} - c:\program files (x86)\ICQ7.6\ICQ.exe
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\striky\AppData\Roaming\Mozilla\Firefox\Profiles\pl2u4kc7.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://sk.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:sk:official
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=937811&p=
FF - user.js: browser.blink_allowed - true
FF - user.js: network.prefetch-next - true
FF - user.js: nglayout.initialpaint.delay - 50
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: browser.urlbar.autoFill - false
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
FF - user.js: browser.urlbar.hideGoButton - true
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
Toolbar-Locked - (no file)
HKLM-Run-ETDWare - c:\program files (x86)\Elantech\ETDCtrl.exe
HKLM-Run-Setwallpaper - c:\programdata\SetWallpaper.cmd
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10d.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10d.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2011-12-27 20:19:43
ComboFix-quarantined-files.txt 2011-12-27 19:19
.
Pre-Run: 118 487 531 520 bytes free
Post-Run: 120 925 536 256 bytes free
.
- - End Of File - - 990BD925C87D2C8053B6B863684E6B91
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119513
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zaťažená RAM

#10 Příspěvek od Rudy »

Ještě dočistíme. Přesuňte ComboFix na plochu. Otevřte poznámkový blok a zkopírujte do něj:
KillAll::

Folder::
c:\program files (x86)\Google\Update

Collect::
c:\windows\system32\acovcnt.exe

Driver::
gupdate
gupdatem

Firefox::
FF - ProfilePath - c:\users\striky\AppData\Roaming\Mozilla\Firefox\Profiles\pl2u4kc7.default\
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=green ... =937811&p=
Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

Obrázek
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
striky
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 26 pro 2011 20:13
Kontaktovat uživatele:
Kontaktovat uživatele striky

Re: Zaťažená RAM

#11 Příspěvek od striky »

Done, avšak zmena nenastala. 1,69GB 4ever :(

ComboFix 11-12-27.01 - striky . 12. 2011 21:28:19.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.421.1051.18.4001.2072 [GMT 1:00]
Running from: c:\users\striky\Desktop\ComboFix.exe
Command switches used :: c:\users\striky\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
SP: avast! Antivirus *Disabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Google\Update
c:\program files (x86)\Google\Update\1.3.21.65\GoogleCrashHandler.exe
c:\program files (x86)\Google\Update\1.3.21.65\GoogleUpdate.exe
c:\program files (x86)\Google\Update\1.3.21.65\GoogleUpdateBroker.exe
c:\program files (x86)\Google\Update\1.3.21.65\GoogleUpdateHelper.msi
c:\program files (x86)\Google\Update\1.3.21.65\GoogleUpdateOnDemand.exe
c:\program files (x86)\Google\Update\1.3.21.65\goopdate.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_am.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_ar.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_bg.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_bn.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_ca.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_cs.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_da.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_de.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_el.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_en-GB.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_en.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_es-419.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_es.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_et.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_fa.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_fi.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_fil.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_fr.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_gu.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_hi.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_hr.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_hu.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_id.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_is.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_it.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_iw.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_ja.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_kn.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_ko.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_lt.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_lv.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_ml.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_mr.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_ms.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_nl.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_no.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_pl.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_pt-BR.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_pt-PT.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_ro.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_ru.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_sk.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_sl.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_sr.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_sv.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_sw.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_ta.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_te.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_th.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_tr.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_uk.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_ur.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_vi.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_zh-CN.dll
c:\program files (x86)\Google\Update\1.3.21.65\goopdateres_zh-TW.dll
c:\program files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll
c:\program files (x86)\Google\Update\1.3.21.65\psmachine.dll
c:\program files (x86)\Google\Update\1.3.21.65\psuser.dll
c:\program files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\13.0.782.215\chrome_installer.exe
c:\program files (x86)\Google\Update\Download\{FC6AFF0E-11F8-4914-A2CB-C1AF1A25A787}\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\Google\Update\Install\{6D716C0E-E77C-4066-8CFD-EC681DB223CB}\chrome_installer.exe
c:\windows\system32\acovcnt.exe
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_gupdate
-------\Service_gupdatem
.
.
((((((((((((((((((((((((( Files Created from 2011-11-27 to 2011-12-27 )))))))))))))))))))))))))))))))
.
.
2011-12-27 18:51 . 2010-02-11 18:42 51280 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-12-27 18:51 . 2010-02-11 18:42 120912 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-12-27 18:51 . 2010-02-11 18:39 28752 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-12-27 18:51 . 2010-02-11 18:38 63568 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2011-12-27 18:51 . 2010-02-11 18:38 22096 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-12-27 18:51 . 2010-02-11 18:53 153184 ----a-w- c:\windows\SysWow64\aswBoot.exe
2011-12-26 19:11 . 2011-12-26 20:00 -------- d-----w- c:\program files\trend micro
2011-12-26 19:11 . 2011-12-26 19:11 -------- d-----w- C:\rsit
2011-12-26 16:00 . 2011-04-28 03:58 552448 ----a-w- c:\windows\system32\drivers\bthport.sys
2011-12-26 16:00 . 2011-04-28 03:58 80384 ----a-w- c:\windows\system32\drivers\BTHUSB.SYS
2011-12-26 16:00 . 2011-03-29 03:32 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2011-12-26 16:00 . 2011-03-29 03:32 324608 ----a-w- c:\windows\system32\drivers\usbport.sys
2011-12-26 16:00 . 2011-03-29 03:32 52224 ----a-w- c:\windows\system32\drivers\usbehci.sys
2011-12-26 16:00 . 2011-03-29 03:32 99328 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2011-12-26 16:00 . 2011-03-29 03:32 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2011-12-26 16:00 . 2011-03-29 03:32 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2011-12-26 16:00 . 2011-03-29 03:32 7936 ----a-w- c:\windows\system32\drivers\usbd.sys
2011-12-26 15:59 . 2011-03-11 06:23 1657216 ----a-w- c:\windows\system32\drivers\ntfs.sys
2011-12-26 15:59 . 2011-03-11 06:23 166272 ----a-w- c:\windows\system32\drivers\nvstor.sys
2011-12-26 15:59 . 2011-03-11 06:23 148352 ----a-w- c:\windows\system32\drivers\nvraid.sys
2011-12-26 15:59 . 2011-03-11 06:22 107904 ----a-w- c:\windows\system32\drivers\amdsata.sys
2011-12-26 15:59 . 2011-03-11 06:18 2566144 ----a-w- c:\windows\system32\esent.dll
2011-12-26 15:59 . 2011-03-11 06:23 187264 ----a-w- c:\windows\system32\drivers\storport.sys
2011-12-26 15:59 . 2011-03-11 06:23 410496 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2011-12-26 15:59 . 2011-03-11 06:22 27008 ----a-w- c:\windows\system32\drivers\amdxata.sys
2011-12-26 15:59 . 2011-03-11 05:39 1686016 ----a-w- c:\windows\SysWow64\esent.dll
2011-12-26 15:59 . 2011-03-11 06:15 96768 ----a-w- c:\windows\system32\fsutil.exe
2011-12-26 15:59 . 2011-03-11 05:37 74240 ----a-w- c:\windows\SysWow64\fsutil.exe
2011-12-26 15:07 . 2011-12-26 15:08 -------- d-----w- c:\programdata\Creative
2011-12-26 14:22 . 2003-06-12 22:25 7062 ----a-w- c:\windows\SysWow64\audiopid.vxd
2011-12-26 14:22 . 2000-05-22 08:58 647872 ------w- c:\windows\SysWow64\Mscomct2.ocx
2011-12-26 14:22 . 2006-10-06 06:17 53248 ------w- c:\windows\Ctregrun.exe
2011-12-26 14:20 . 2011-12-26 14:20 -------- d-----w- c:\program files (x86)\Common Files\Creative Labs Shared
2011-12-26 14:20 . 2011-12-26 14:21 -------- d-----w- c:\program files\Creative
2011-12-26 14:20 . 2011-12-26 14:22 -------- d-----w- c:\program files (x86)\Creative
2011-12-26 14:19 . 2003-11-10 17:14 729088 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iKernel.dll
2011-12-26 14:19 . 2003-11-10 17:13 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\ctor.dll
2011-12-26 14:19 . 2003-11-10 17:12 266240 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iscript.dll
2011-12-26 14:19 . 2003-11-10 17:12 192512 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iuser.dll
2011-12-26 14:19 . 2003-11-10 17:11 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\DotNetInstaller.exe
2011-12-26 14:19 . 2011-12-26 14:19 311428 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\setup.dll
2011-12-26 14:19 . 2011-12-26 14:19 188548 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iGdi.dll
2011-12-26 14:18 . 2005-11-10 12:58 69632 ----a-w- c:\windows\system32\copperhd.cpl
2011-12-26 14:18 . 2009-11-10 14:50 14336 ----a-w- c:\windows\system32\drivers\copperhd.sys
2011-12-26 14:18 . 2011-12-26 14:18 -------- d-----w- c:\program files (x86)\Razer
2011-12-26 14:18 . 2011-12-26 14:18 -------- d-----w- c:\users\striky\AppData\Roaming\InstallShield
2011-12-26 14:15 . 2011-12-26 14:16 -------- d-----w- c:\users\striky\AppData\Roaming\Nero
2011-12-26 14:11 . 2011-12-26 14:11 626688 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcr80.dll
2011-12-26 14:11 . 2011-12-26 14:11 548864 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcp80.dll
2011-12-26 14:11 . 2011-12-26 14:11 479232 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcm80.dll
2011-12-26 14:11 . 2011-12-26 14:11 43992 ----a-w- c:\program files (x86)\Mozilla Firefox\mozutils.dll
2011-12-25 14:07 . 2011-12-25 14:07 -------- d-----w- c:\users\striky\AppData\Roaming\Nokia
2011-12-25 14:07 . 2011-12-25 14:07 -------- d-----w- c:\users\striky\AppData\Roaming\PC Suite
2011-12-25 14:07 . 2011-12-25 14:07 -------- d-----w- c:\programdata\PC Suite
2011-12-25 14:05 . 2011-12-25 14:05 -------- d-----w- c:\program files (x86)\Common Files\PCSuite
2011-12-25 14:05 . 2011-12-25 14:05 -------- d-----w- c:\program files (x86)\Common Files\Nokia
2011-12-25 14:05 . 2011-12-25 14:05 -------- d-----w- c:\program files\DIFX
2011-12-25 14:05 . 2008-08-28 10:44 25600 ----a-w- c:\windows\system32\drivers\pccsmcfdx64.sys
2011-12-25 14:05 . 2011-12-25 14:05 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
2011-12-25 14:05 . 2011-11-01 09:07 57856 ----a-w- c:\windows\system32\nmwcdclsX64.dll
2011-12-25 14:05 . 2011-12-25 14:05 -------- d-----w- c:\program files (x86)\Nokia
2011-12-25 14:04 . 2011-12-25 14:04 -------- d-----w- c:\programdata\Installations
2011-12-24 11:32 . 2011-12-24 11:32 -------- d-----w- c:\users\striky\AppData\Local\CrashDumps
2011-12-24 11:27 . 2011-12-24 11:31 -------- d-----w- c:\program files (x86)\Nero
2011-12-24 11:27 . 2011-12-24 11:31 -------- d-----w- c:\program files (x86)\Common Files\Nero
2011-12-24 11:27 . 2011-12-24 11:29 -------- d-----w- c:\programdata\Nero
2011-12-24 11:21 . 2011-12-24 11:21 -------- d-----w- c:\users\striky\AppData\Roaming\HeidiSQL
2011-12-24 11:21 . 2011-12-24 11:21 -------- d-----w- c:\programdata\HeidiSQL
2011-12-24 11:21 . 2011-12-24 11:21 -------- d-----w- c:\program files (x86)\HeidiSQL
2011-12-24 11:11 . 2011-12-24 11:11 -------- d-----w- c:\users\striky\AppData\Roaming\NVIDIA
2011-12-24 11:08 . 2011-12-24 11:08 -------- d-----w- c:\windows\SysWow64\spool
2011-12-24 11:07 . 2011-12-27 19:05 -------- d-----w- c:\users\striky\AppData\Local\Adobe
2011-12-24 11:06 . 2011-12-24 11:10 -------- d-----w- c:\program files\Common Files\Adobe
2011-12-24 11:06 . 2011-12-24 11:06 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2011-12-24 11:06 . 2011-12-24 11:06 -------- d-----w- c:\program files (x86)\Common Files\Macrovision Shared
2011-12-24 11:05 . 2011-12-24 11:20 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2011-12-24 10:58 . 2011-12-24 10:59 -------- d-----w- c:\users\striky\AppData\Roaming\vlc
2011-12-24 10:57 . 2011-12-24 10:57 -------- d-----w- c:\program files (x86)\VideoLAN
2011-12-24 09:24 . 2011-12-24 09:24 -------- d-----w- c:\windows\SysWow64\Wat
2011-12-24 09:24 . 2011-12-24 09:24 -------- d-----w- c:\windows\system32\Wat
2011-12-23 21:49 . 2010-09-14 06:45 367104 ----a-w- c:\windows\system32\wcncsvc.dll
2011-12-23 21:49 . 2010-09-14 06:07 276992 ----a-w- c:\windows\SysWow64\wcncsvc.dll
2011-12-23 21:29 . 2011-11-30 01:21 8822856 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{7AE1F9EC-F065-4F6C-8081-06D294CC4516}\mpengine.dll
2011-12-23 21:28 . 2009-11-25 11:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll
2011-12-23 21:28 . 2009-11-25 11:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll
2011-12-23 21:28 . 2009-11-25 11:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
2011-12-23 21:28 . 2009-11-25 11:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll
2011-12-23 21:28 . 2009-11-25 11:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe
2011-12-23 21:28 . 2009-11-25 11:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
2011-12-23 21:28 . 2009-11-25 11:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2011-12-23 21:28 . 2009-11-25 11:47 444752 ----a-w- c:\windows\system32\mscoree.dll
2011-12-23 21:28 . 2009-11-25 11:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
2011-12-23 21:28 . 2009-11-25 11:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
2011-12-23 21:28 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2011-12-23 21:23 . 2011-02-18 06:33 31232 ----a-w- c:\windows\system32\prevhost.exe
2011-12-23 21:23 . 2011-02-18 05:33 31232 ----a-w- c:\windows\SysWow64\prevhost.exe
2011-12-23 21:20 . 2011-06-15 09:58 212992 ----a-w- c:\windows\system32\odbctrac.dll
2011-12-23 21:17 . 2011-10-15 08:53 8791360 ----a-w- c:\windows\system32\nvwgf2umx.dll
2011-12-23 21:15 . 2011-06-23 05:29 5507968 ----a-w- c:\windows\system32\ntoskrnl.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-12-23 21:39 . 2011-12-23 21:39 203776 ----a-w- c:\windows\SysWow64\webcheck.dll
2011-12-23 21:39 . 2011-12-23 21:39 249344 ----a-w- c:\windows\system32\webcheck.dll
2011-11-28 18:01 . 2011-08-23 22:17 256960 ----a-w- c:\windows\system32\aswBoot.exe
2011-11-15 13:29 . 2011-08-23 19:30 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-10-15 08:53 . 2011-08-23 22:03 716608 ----a-w- c:\windows\SysWow64\nvumdshim.dll
2011-10-15 08:53 . 2011-08-23 22:03 2458432 ----a-w- c:\windows\SysWow64\nvapi.dll
2011-10-15 08:53 . 2011-08-23 22:03 1533248 ----a-w- c:\windows\system32\nvdispco64.dll
2011-10-15 08:53 . 2011-08-23 22:03 1454400 ----a-w- c:\windows\system32\nvgenco64.dll
2011-10-15 08:53 . 2011-02-21 09:01 860992 ----a-w- c:\windows\system32\nvumdshimx.dll
2011-10-15 08:53 . 2011-02-21 09:01 241984 ----a-w- c:\windows\system32\nvinitx.dll
2011-10-15 08:53 . 2011-02-21 09:01 203072 ----a-w- c:\windows\SysWow64\nvinit.dll
2011-10-15 08:53 . 2011-02-21 09:01 2808128 ----a-w- c:\windows\system32\nvapi64.dll
2011-10-15 08:53 . 2010-12-05 11:13 222528 ----a-w- c:\windows\system32\nvmctray.dll
2011-10-15 08:53 . 2010-12-05 11:13 1985841 ----a-w- c:\windows\system32\nvcoproc.bin
2011-10-15 08:53 . 2010-12-05 11:13 55616 ----a-w- c:\windows\system32\nv3dappshextr.dll
2011-10-15 08:53 . 2010-12-05 11:13 539456 ----a-w- c:\windows\system32\nvhotkey.dll
2011-10-15 08:53 . 2010-12-05 11:13 3074368 ----a-w- c:\windows\system32\nvsvcr.dll
2011-10-15 08:53 . 2010-12-05 11:13 1640768 ----a-w- c:\windows\system32\nvvsvc.exe
2011-10-15 08:53 . 2010-12-05 11:13 137536 ----a-w- c:\windows\system32\nvshext.dll
2011-10-15 08:53 . 2010-12-05 11:13 1349440 ----a-w- c:\windows\system32\nv3dappshext.dll
2011-10-15 08:53 . 2010-12-05 11:13 837952 ----a-w- c:\windows\system32\easyUpdatusAPIU64.dll
2011-10-15 08:53 . 2010-12-05 11:13 10406208 ----a-w- c:\windows\system32\nvcpl.dll
2011-10-15 08:53 . 2010-12-05 11:12 5067584 ----a-w- c:\windows\system32\nvsvc64.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-12-27_19.17.19 )))))))))))))))))))))))))))))))))))))))))
.
- 2009-07-14 04:54 . 2011-12-27 18:53 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:54 . 2011-12-27 20:33 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:54 . 2011-12-27 20:33 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2011-12-27 18:53 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2011-12-27 18:53 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2011-12-27 20:33 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2011-12-27 18:35 . 2011-12-27 18:45 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-12-27 20:33 . 2011-12-27 20:33 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-12-27 20:33 . 2011-12-27 20:33 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2011-12-27 18:35 . 2011-12-27 18:45 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-02-21 09:26 . 2011-12-27 20:32 921808 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
- 2011-02-21 09:26 . 2011-12-26 23:30 921808 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2009-07-14 05:01 . 2011-12-27 20:32 458148 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2009-07-14 05:01 . 2011-12-26 23:30 458148 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2011-08-23 22:04 . 2011-12-27 20:32 7865416 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-4060087143-736695321-1803416541-1002-12288.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1475072]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"FLxHCIm"="c:\program files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe" [2010-11-20 37888]
"SonicMasterTray"="c:\program files (x86)\ASUS\SonicMaster\SonicMasterTray.exe" [2010-07-10 984400]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-10-07 170624]
"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"Wireless Console 3"="c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe" [2010-09-24 1601536]
"Copperhead"="c:\program files (x86)\Razer\Copperhead\razerhid.exe" [2009-11-19 135168]
"VolPanel"="c:\program files (x86)\Creative\SB Arena Surround Headset\Volume Panel\VolPanlu.exe" [2009-05-04 241789]
"CtaMon"="CtaMon.dll" [2008-08-27 9728]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"midi2"=wdmaud.drv
.
R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys [x]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [x]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys [x]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys [x]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys [x]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys [x]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2011-12-26 79360]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-12-24 1038088]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-01-21 30963576]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys [x]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [x]
S1 aswSP;aswSP; [x]
S1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2010-07-26 17024]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [x]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files (x86)\Atheros\Ath_CoexAgent.exe [2010-05-24 151552]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Atheros\Bluetooth Suite\adminservice.exe [2010-11-26 52896]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [x]
S2 TurboBoost;Intel(R) Turbo Boost Technology Monitor;c:\program files\Intel\TurboBoost\TurboBoost.exe [2010-04-17 134928]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys [x]
S3 copperhd;Razer Copperhead Driver;c:\windows\system32\drivers\copperhd.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [x]
S3 FLxHCIc;Fresco Logic xHCI (USB3) Device Driver;c:\windows\system32\DRIVERS\FLxHCIc.sys [x]
S3 FLxHCIh;Fresco Logic xHCI (USB3) Hub Device Driver;c:\windows\system32\DRIVERS\FLxHCIh.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
.
.
Contents of the 'Scheduled Tasks' folder
.
2011-12-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4060087143-736695321-1803416541-1002Core.job
- c:\users\striky\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-23 21:29]
.
2011-12-27 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4060087143-736695321-1803416541-1002UA.job
- c:\users\striky\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-23 21:29]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-12-03 167960]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-12-03 391704]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-12-03 417304]
"ETDWare"="c:\program files (x86)\Elantech\ETDCtrl.exe" [BU]
"AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2010-08-11 324096]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2010-11-30 2186856]
"AtherosBtStack"="c:\program files (x86)\Atheros\Bluetooth Suite\BtvStack.exe" [2010-11-26 613536]
"AthBtTray"="c:\program files (x86)\Atheros\Bluetooth Suite\AthBtTray.exe" [2010-11-26 379040]
"snp2uvc"="c:\windows\vsnp2uvc.exe" [2010-01-21 909824]
"IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]
"Setwallpaper"="c:\programdata\SetWallpaper.cmd" [BU]
"combofix"="c:\combofix\CF1178.3XE" [2009-07-14 344576]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://asus.msn.com
mStart Page = hxxp://asus.msn.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovať do programu Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&oslať do programu OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: {{7644E42D-B096-457F-8B5B-901238FC81AE} - c:\program files (x86)\ICQ7.6\ICQ.exe
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\striky\AppData\Roaming\Mozilla\Firefox\Profiles\pl2u4kc7.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://sk.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:sk:official
FF - user.js: browser.blink_allowed - true
FF - user.js: network.prefetch-next - true
FF - user.js: nglayout.initialpaint.delay - 50
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: browser.urlbar.autoFill - false
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
FF - user.js: browser.urlbar.hideGoButton - true
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10d.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10d.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Creative\Shared Files\CTAudSvc.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
c:\windows\AsScrPro.exe
c:\windows\SysWOW64\rundll32.exe
c:\program files (x86)\Razer\Copperhead\razertra.exe
c:\program files (x86)\Razer\Copperhead\razerofa.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Completion time: 2011-12-27 21:37:35 - machine was rebooted
ComboFix-quarantined-files.txt 2011-12-27 20:37
ComboFix2.txt 2011-12-27 19:19
.
Pre-Run: 120 954 343 424 bytes free
Post-Run: 120 687 177 728 bytes free
.
- - End Of File - - 5A4A19D4621D1E4885B47CBBBF671976
Upload was successful
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119513
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zaťažená RAM

#12 Příspěvek od Rudy »

Zajímavé, v čem to může být. Zkuste smazat Cache prohlížeče a dejte oba logy z GMER: http://www.viry.cz/forum/viewtopic.php?f=29&t=62878 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
striky
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 26 pro 2011 20:13
Kontaktovat uživatele:
Kontaktovat uživatele striky

Re: Zaťažená RAM

#13 Příspěvek od striky »

Pokúšam sa akokoľvek a stále mi to ihneď po spustení robí prázdny log a to samozrejme som na správcovskom účte resp. pre istotu i tak volím voľbu "spustiť ako správca" no bezvýsledne. Cache som vymazal iba z FF, Chrome som nechal tak ale môžem vymazať aj jemu. Pokúsim sa o to znovu zajtra, na dnes stačilo treba ísť spať, práca ráno čaká. Zatiaľ veľmi pekne ďakujem za ochotu, zajtra večer môžme pokračovať. S pozdravom striky..
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119513
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zaťažená RAM

#14 Příspěvek od Rudy »

OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
striky
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 26 pro 2011 20:13
Kontaktovat uživatele:
Kontaktovat uživatele striky

Re: Zaťažená RAM

#15 Příspěvek od striky »

Dobrý večer,

tak nech sa snažím akokoľvek, stále mi prvý log urobí prázdny + môžem kontrolovať len tieto položky:
- Services
- Registry
- Files

Ostatné odfajknúť nejde, skúšal som vymazať cache z FF, Chrome, vypnúť avast a i tak nič. Spraviť teda i tak aspoň druhý log?
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“