Logfile of random's system information tool 1.09 (written by random/random)
Run by Martin at 2012-02-01 18:57:39
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 358 GB (78%) free of 460 GB
Total RAM: 4061 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:57:45, on 1.2.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSOEMON.EXE
C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil.exe
C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\AVG\AVG2012\avgtray.exe
C:\Program Files (x86)\AVG Secure Search\vprot.exe
C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil VoIP Plugin.exe
C:\Program Files (x86)\AVG\AVG PC Tuneup\BoostSpeed.exe
C:\Program Files (x86)\Opera\opera.exe
C:\Program Files\trend micro\Martin.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2786678
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll
R3 - URLSearchHook: MyAshampoo Toolbar - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files (x86)\MyAshampoo\prxtbMyA0.dll
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSSRCAS.DLL
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSSRCAS.DLL
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSBAR.DLL
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\10.0.0.7\AVG Secure Search_toolbar.dll
O2 - BHO: MyAshampoo - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files (x86)\MyAshampoo\prxtbMyA0.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: uTorrentBar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Users\Martin\AppData\Local\Seznam.cz\bin\core.4.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\10.0.0.7\AVG Secure Search_toolbar.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll
O3 - Toolbar: MyAshampoo Toolbar - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files (x86)\MyAshampoo\prxtbMyA0.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: My Web Search - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSBAR.DLL
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - Global Startup: BlueSoleil.lnk = C:\Program Files (x86)\IVT Corporation\BlueSoleil\gprs.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O4 - Global Startup: SRS Premium Sound.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files\Motorola\Bluetooth\btmshell.dll,-247 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files\Motorola\Bluetooth\btmshell.dll,-247 - {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\SysWOW64\Skype4COM.dll
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\10.0.6\ViProtocol.dll
O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: Bluetooth Device Manager - Unknown owner - C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe (file missing)
O23 - Service: Bluetooth Media Service - Unknown owner - C:\Program Files\Motorola\Bluetooth\audiosrv.exe (file missing)
O23 - Service: Bluetooth OBEX Service - Unknown owner - C:\Program Files\Motorola\Bluetooth\obexsrv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Guard.Mail.ru - Unknown owner - C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: My Web Search Service (MyWebSearchService) - MyWebSearch.com - C:\PROGRA~2\MYWEBS~1\bar\1.bin\mwssvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Start BT in service - Unknown owner - C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\10.0.6\ToolbarUpdater.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 15908 bytes
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu - Paměť Ram na 53% v nečinosti PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
karlospatmat
- Vzorný návštěvník
- Příspěvky: 384
- Registrován: 28 led 2012 23:21
- Bydliště: Novosedly nad Nežárkou
- Kontaktovat uživatele:
Prosím o kontrolu - Paměť Ram na 53% v nečinosti PC
Windows 7 64bitový (6.1,sestavení 7601)Service Pack 1
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji:
Cclener, MBAM
email:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji:
Cclener, MBAMemail:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
-
karlospatmat
- Vzorný návštěvník
- Příspěvky: 384
- Registrován: 28 led 2012 23:21
- Bydliště: Novosedly nad Nežárkou
- Kontaktovat uživatele:
Re: Prosím o kontrolu - Paměť Ram na 53% v nečinosti PC
======Listing Processes======
\SystemRoot\System32\smss.exe
C:\PROGRA~2\AVG\AVG2012\avgrsa.exe /boot
C:\Program Files (x86)\AVG\AVG2012\avgcsrva.exe /pipeName=5105031f-5814-4b66-8774-c059b0b9b267 /coreSdkOptions=286 /logConfFile="C:\ProgramData\AVG2012\temp\d0896f10-6345-4026-aaef-9d506de83b21-1a8-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2012\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg2012" /tempPath="C:\ProgramData\AVG2012\temp\"
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\AVG\AVG2012\avgfws.exe"
"C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe"
"C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe"
"C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
taskeng.exe {165FD37D-606F-43D9-8679-34F3042FD6C0}
"C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe"
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe"
Atouch64.exe
"C:\Program Files (x86)\Google\Update\1.3.21.99\GoogleCrashHandler.exe"
C:\PROGRA~2\MYWEBS~1\bar\1.bin\mwssvc.exe
"C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe"
"C:\Program Files (x86)\Google\Update\1.3.21.99\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe"
C:\Windows\system32\viakaraokesrv.exe
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\10.0.6\ToolbarUpdater.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe"
"C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesApp64.exe" /TUStart /pid:2396
"C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe"
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Windows\SysWOW64\ACEngSvr.exe" -Embedding
"C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\AVG\AVG2012\avgcsrva.exe /pipeName=fbd3f562-664e-4449-9c66-01144f912b34 /coreSdkOptions=18 /logConfFile="C:\ProgramData\AVG2012\temp\6b75dc56-29ed-4f68-9e4c-d90f0b87a510-b30-oopp.tmp" /loggerName=AVG.NS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2012\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg2012" /tempPath="C:\ProgramData\AVG2012\temp\"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSOEMON.EXE"
"C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil.exe"
"C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe" /f=srs_premium_sound_nopreset.zip
"C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe"
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
"C:\Program Files (x86)\AVG Secure Search\vprot.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil VoIP Plugin.exe"
C:\Windows\system32\wbem\wmiprvse.exe
ATKOSD.exe
KBFiltr.exe
WDC.exe
Explorer.exe
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\AVG\AVG PC Tuneup\BoostSpeed.exe"
"C:\Program Files (x86)\Opera\opera.exe"
"C:\Users\Martin\AppData\Local\Opera\Opera\temporary_downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\Norton Security Scan for Martin.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\x22ecfqi.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://eu.ask.com/?l=dis&o=101916"
prefs.js - "keyword.URL" - "http://search.babylon.com/?AF=100789&ba ... 330973c&q="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.0.61118.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3]
"Description"=Office Live Update v1.3
"Path"=C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8051.1204]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mywebsearch.com/Plugin]
"Description"=My Web Search Plugin
"Path"=C:\Program Files (x86)\MyWebSearch\bar\1.bin\NPMyWebS.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=15.0.1.13]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprjplug;version=15.0.1.13]
"Description"=RealJukebox Netscape Plugin
"Path"=C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.1.13]
"Description"=RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.1.13]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpjplug;version=15.0.1.13]
"Description"=15.0.1.13
"Path"=C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=1.1.11]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files (x86)\Mozilla Firefox\searchplugins\
avg-secure-search.xml
babylon.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\x22ecfqi.default\extensions\
engine@conduit.com
ffxtlbr@babylon.com
m3ffxtbr@mywebsearch.com
toolbar@ask.com
{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}
{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\x22ecfqi.default\searchplugins\
askcom.xml
conduit.xml
\SystemRoot\System32\smss.exe
C:\PROGRA~2\AVG\AVG2012\avgrsa.exe /boot
C:\Program Files (x86)\AVG\AVG2012\avgcsrva.exe /pipeName=5105031f-5814-4b66-8774-c059b0b9b267 /coreSdkOptions=286 /logConfFile="C:\ProgramData\AVG2012\temp\d0896f10-6345-4026-aaef-9d506de83b21-1a8-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2012\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg2012" /tempPath="C:\ProgramData\AVG2012\temp\"
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\AVG\AVG2012\avgfws.exe"
"C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe"
"C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe"
"C:\Program Files (x86)\Guard-ICQ\GuardICQ.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
taskeng.exe {165FD37D-606F-43D9-8679-34F3042FD6C0}
"C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe"
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe"
Atouch64.exe
"C:\Program Files (x86)\Google\Update\1.3.21.99\GoogleCrashHandler.exe"
C:\PROGRA~2\MYWEBS~1\bar\1.bin\mwssvc.exe
"C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe"
"C:\Program Files (x86)\Google\Update\1.3.21.99\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe"
C:\Windows\system32\viakaraokesrv.exe
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\10.0.6\ToolbarUpdater.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe"
"C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesApp64.exe" /TUStart /pid:2396
"C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe"
"C:\Windows\AsScrPro.exe"
"C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
"C:\Windows\SysWOW64\ACEngSvr.exe" -Embedding
"C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\AVG\AVG2012\avgcsrva.exe /pipeName=fbd3f562-664e-4449-9c66-01144f912b34 /coreSdkOptions=18 /logConfFile="C:\ProgramData\AVG2012\temp\6b75dc56-29ed-4f68-9e4c-d90f0b87a510-b30-oopp.tmp" /loggerName=AVG.NS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2012\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg2012" /tempPath="C:\ProgramData\AVG2012\temp\"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSOEMON.EXE"
"C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil.exe"
"C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe" /f=srs_premium_sound_nopreset.zip
"C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe"
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
"C:\Program Files (x86)\AVG Secure Search\vprot.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\IVT Corporation\BlueSoleil\BlueSoleil VoIP Plugin.exe"
C:\Windows\system32\wbem\wmiprvse.exe
ATKOSD.exe
KBFiltr.exe
WDC.exe
Explorer.exe
C:\Windows\servicing\TrustedInstaller.exe
"C:\Program Files (x86)\AVG\AVG PC Tuneup\BoostSpeed.exe"
"C:\Program Files (x86)\Opera\opera.exe"
"C:\Users\Martin\AppData\Local\Opera\Opera\temporary_downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\Norton Security Scan for Martin.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\x22ecfqi.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://eu.ask.com/?l=dis&o=101916"
prefs.js - "keyword.URL" - "http://search.babylon.com/?AF=100789&ba ... 330973c&q="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.0.61118.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3]
"Description"=Office Live Update v1.3
"Path"=C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8051.1204]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@mywebsearch.com/Plugin]
"Description"=My Web Search Plugin
"Path"=C:\Program Files (x86)\MyWebSearch\bar\1.bin\NPMyWebS.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=15.0.1.13]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprjplug;version=15.0.1.13]
"Description"=RealJukebox Netscape Plugin
"Path"=C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.1.13]
"Description"=RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.1.13]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpjplug;version=15.0.1.13]
"Description"=15.0.1.13
"Path"=C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=1.1.11]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files (x86)\Mozilla Firefox\searchplugins\
avg-secure-search.xml
babylon.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\x22ecfqi.default\extensions\
engine@conduit.com
ffxtlbr@babylon.com
m3ffxtbr@mywebsearch.com
toolbar@ask.com
{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}
{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\x22ecfqi.default\searchplugins\
askcom.xml
conduit.xml
Windows 7 64bitový (6.1,sestavení 7601)Service Pack 1
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji: Cclener, MBAM
email:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji:
Cclener, MBAMemail:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
-
karlospatmat
- Vzorný návštěvník
- Příspěvky: 384
- Registrován: 28 led 2012 23:21
- Bydliště: Novosedly nad Nežárkou
- Kontaktovat uživatele:
Re: Prosím o kontrolu - Paměť Ram na 53% v nečinosti PC
=====Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll [2011-11-11 1942368]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2008-12-08 68960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner64.dll [2010-04-20 750064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-04-20 346736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2010-04-20 318960]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00A6FAF1-072E-44cf-8957-5838F569A31D}]
MyWebSearch Search Assistant BHO - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSSRCAS.DLL [2012-02-01 58800]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{07B18EA1-A523-4961-B6BB-170DE4475CCA}]
mwsBar BHO - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSBAR.DLL [2012-02-01 833032]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2012-01-21 425680]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll [2011-11-11 1378144]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner.dll [2010-04-20 433648]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\10.0.0.7\AVG Secure Search_toolbar.dll [2012-01-30 1811296]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]
MyAshampoo Toolbar - C:\Program Files (x86)\MyAshampoo\prxtbMyA0.dll [2011-05-09 176936]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2010-04-20 256112]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17 3855520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2010-04-20 761840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
uTorrentBar Toolbar - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll [2011-05-09 176936]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2010-04-20 458736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Ukazatel S-Rank - C:\Users\Martin\AppData\Local\Seznam.cz\bin\core.4.dll [2012-01-10 1151520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-04-20 346736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2010-04-20 256112]
{95B7759C-8C7F-4BF1-B163-73684A933233} - AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\10.0.0.7\AVG Secure Search_toolbar.dll [2012-01-30 1811296]
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll [2011-08-17 1055808]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152]
{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - uTorrentBar Toolbar - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll [2011-05-09 176936]
{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - MyAshampoo Toolbar - C:\Program Files (x86)\MyAshampoo\prxtbMyA0.dll [2011-05-09 176936]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]
{07B18EA9-A523-4961-B6BB-170DE4475CCA} - My Web Search - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSBAR.DLL [2012-02-01 833032]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ASUS WebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe [2009-12-24 1736704]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-10-13 162584]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-10-13 386840]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2011-10-13 17351304]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2012-01-03 35736]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSMTray]
C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe [2009-06-24 272952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2010-04-20 3058304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2009-11-02 103720]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateP2GoShortCut"=C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2010-12-22 2870896]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe [2009-08-17 6859392]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe [2009-08-20 170624]
"AVG_TRAY"=C:\Program Files (x86)\AVG\AVG2012\avgtray.exe [2012-01-24 2416480]
"vProt"=C:\Program Files (x86)\AVG Secure Search\vprot.exe [2012-01-30 939872]
"TkBellExe"=C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [2012-01-21 296056]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
BlueSoleil.lnk - C:\Program Files (x86)\IVT Corporation\BlueSoleil\gprs.exe
FancyStart daemon.lnk - C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe
SRS Premium Sound.lnk - C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-10-13 272896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2012-01-21 249344]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AcroRd32.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\controldeck.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\excel.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\fancystart.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\infopath.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\labelprint.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\liveupdate.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msaccess.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mspub.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mstore.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\olrsubmission.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\onenote.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\outlook.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\power2go.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\power2goexpress.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\powerpnt.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\realconverter.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\realplay.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\realtrimmer.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rnxproc.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\uninst.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\winword.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll [2011-11-11 1942368]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2008-12-08 68960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner64.dll [2010-04-20 750064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-04-20 346736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2010-04-20 318960]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00A6FAF1-072E-44cf-8957-5838F569A31D}]
MyWebSearch Search Assistant BHO - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSSRCAS.DLL [2012-02-01 58800]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{07B18EA1-A523-4961-B6BB-170DE4475CCA}]
mwsBar BHO - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSBAR.DLL [2012-02-01 833032]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2012-01-21 425680]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll [2011-11-11 1378144]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner.dll [2010-04-20 433648]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\10.0.0.7\AVG Secure Search_toolbar.dll [2012-01-30 1811296]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}]
MyAshampoo Toolbar - C:\Program Files (x86)\MyAshampoo\prxtbMyA0.dll [2011-05-09 176936]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2010-04-20 256112]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17 3855520]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2010-04-20 761840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
uTorrentBar Toolbar - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll [2011-05-09 176936]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2010-04-20 458736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Ukazatel S-Rank - C:\Users\Martin\AppData\Local\Seznam.cz\bin\core.4.dll [2012-01-10 1151520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-04-20 346736]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2010-04-20 256112]
{95B7759C-8C7F-4BF1-B163-73684A933233} - AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\10.0.0.7\AVG Secure Search_toolbar.dll [2012-01-30 1811296]
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll [2011-08-17 1055808]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-10-21 1219152]
{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - uTorrentBar Toolbar - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll [2011-05-09 176936]
{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - MyAshampoo Toolbar - C:\Program Files (x86)\MyAshampoo\prxtbMyA0.dll [2011-05-09 176936]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]
{07B18EA9-A523-4961-B6BB-170DE4475CCA} - My Web Search - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSBAR.DLL [2012-02-01 833032]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ASUS WebStorage"=C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe [2009-12-24 1736704]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-10-13 162584]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-10-13 386840]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2011-10-13 17351304]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [2012-01-03 35736]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSMTray]
C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe [2009-06-24 272952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2010-04-20 3058304]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2009-11-02 103720]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"UpdateP2GoShortCut"=C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2010-12-22 2870896]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe [2009-08-17 6859392]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe [2009-08-20 170624]
"AVG_TRAY"=C:\Program Files (x86)\AVG\AVG2012\avgtray.exe [2012-01-24 2416480]
"vProt"=C:\Program Files (x86)\AVG Secure Search\vprot.exe [2012-01-30 939872]
"TkBellExe"=C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [2012-01-21 296056]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
BlueSoleil.lnk - C:\Program Files (x86)\IVT Corporation\BlueSoleil\gprs.exe
FancyStart daemon.lnk - C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe
SRS Premium Sound.lnk - C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-10-13 272896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2012-01-21 249344]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AcroRd32.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\controldeck.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\excel.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\fancystart.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\infopath.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\labelprint.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\liveupdate.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msaccess.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mspub.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mstore.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\olrsubmission.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\onenote.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\outlook.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\power2go.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\power2goexpress.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\powerpnt.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\realconverter.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\realplay.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\realtrimmer.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rnxproc.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\uninst.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\winword.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
Windows 7 64bitový (6.1,sestavení 7601)Service Pack 1
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji: Cclener, MBAM
email:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji:
Cclener, MBAMemail:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
Re: Prosím o kontrolu - Paměť Ram na 53% v nečinosti PC
vycisti PC s MBAM
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
-
karlospatmat
- Vzorný návštěvník
- Příspěvky: 384
- Registrován: 28 led 2012 23:21
- Bydliště: Novosedly nad Nežárkou
- Kontaktovat uživatele:
Re: Prosím o kontrolu - Paměť Ram na 53% v nečinosti PC
Dobrý večer děkuli za radu našlo to spousty havěti. Jen se zeptám jestli se to nemůže mezi sebou tlouct s antivirem? Po spuštění Vámi doporučeného programu se po chvíli začal ozívat antivirový program že zachytil spousta trojanů tak nevím.
Windows 7 64bitový (6.1,sestavení 7601)Service Pack 1
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji: Cclener, MBAM
email:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji:
Cclener, MBAMemail:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
Re: Prosím o kontrolu - Paměť Ram na 53% v nečinosti PC
nuz to je typicke AVG, preto ho nemam radkarlospatmat píše:Dobrý večer děkuli za radu našlo to spousty havěti. Jen se zeptám jestli se to nemůže mezi sebou tlouct s antivirem? Po spuštění Vámi doporučeného programu se po chvíli začal ozívat antivirový program že zachytil spousta trojanů tak nevím.
ked ma hlasit nakazu je ticho, akonahle to scanuje iny program, tak "pinda"
vloz aktualny log RSIT a popis spravanie sa PC
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
-
karlospatmat
- Vzorný návštěvník
- Příspěvky: 384
- Registrován: 28 led 2012 23:21
- Bydliště: Novosedly nad Nežárkou
- Kontaktovat uživatele:
Re: Prosím o kontrolu - Paměť Ram na 53% v nečinosti PC
Tady je log http://leteckaposta.cz/741693939
Jinak chování pc se o trochu zlepšilo. Budu to pozorovat jestli se to ustálí.
Jinak chování pc se o trochu zlepšilo. Budu to pozorovat jestli se to ustálí.
Windows 7 64bitový (6.1,sestavení 7601)Service Pack 1
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji: Cclener, MBAM
email:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji:
Cclener, MBAMemail:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
-
karlospatmat
- Vzorný návštěvník
- Příspěvky: 384
- Registrován: 28 led 2012 23:21
- Bydliště: Novosedly nad Nežárkou
- Kontaktovat uživatele:
Re: Prosím o kontrolu - Paměť Ram na 53% v nečinosti PC
Tak v nečinosti PC cpu: 2%, ram klesla z 53% na 40%.
Windows 7 64bitový (6.1,sestavení 7601)Service Pack 1
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji: Cclener, MBAM
email:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji:
Cclener, MBAMemail:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
Re: Prosím o kontrolu - Paměť Ram na 53% v nečinosti PC
hlavne odinstaluj ASK Toolbar a vsetky ostatne nepotrebne toolbary
zvysok pozriem zajtra rano
zvysok pozriem zajtra rano
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
-
karlospatmat
- Vzorný návštěvník
- Příspěvky: 384
- Registrován: 28 led 2012 23:21
- Bydliště: Novosedly nad Nežárkou
- Kontaktovat uživatele:
Re: Prosím o kontrolu - Paměť Ram na 53% v nečinosti PC
ok
Windows 7 64bitový (6.1,sestavení 7601)Service Pack 1
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji: Cclener, MBAM
email:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji:
Cclener, MBAMemail:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
-
karlospatmat
- Vzorný návštěvník
- Příspěvky: 384
- Registrován: 28 led 2012 23:21
- Bydliště: Novosedly nad Nežárkou
- Kontaktovat uživatele:
Re: Prosím o kontrolu - Paměť Ram na 53% v nečinosti PC
Tak by mělo být vše odinstalováno. Snad jsem nepřehlédl žádný toolbar.
Windows 7 64bitový (6.1,sestavení 7601)Service Pack 1
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji: Cclener, MBAM
email:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji:
Cclener, MBAMemail:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
Re: Prosím o kontrolu - Paměť Ram na 53% v nečinosti PC
vycisti PC s CCleanerom a potom:
stiahni a uloz na plochu ComboFix
potom spust pod uctom s administratorskym opravnenim
akcia trva cca. 5-10 minut, niekedy i dlhsie -, Pocas scanu nespustaj ziadne ine aplikacie
Nie je dovod na paniku ak stroj bude restartovany
upozornenie: ak pouzivas antispyware s rezidentnim stitem, ten pred scanom vypni.
po restarte aplikacie vytvori log, ulozeny na C:\Combofix.txt (jeho obsah vloz sem)
stiahni a uloz na plochu ComboFix
potom spust pod uctom s administratorskym opravnenim
akcia trva cca. 5-10 minut, niekedy i dlhsie -, Pocas scanu nespustaj ziadne ine aplikacie
Nie je dovod na paniku ak stroj bude restartovany
upozornenie: ak pouzivas antispyware s rezidentnim stitem, ten pred scanom vypni.
po restarte aplikacie vytvori log, ulozeny na C:\Combofix.txt (jeho obsah vloz sem)
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
-
karlospatmat
- Vzorný návštěvník
- Příspěvky: 384
- Registrován: 28 led 2012 23:21
- Bydliště: Novosedly nad Nežárkou
- Kontaktovat uživatele:
Re: Prosím o kontrolu - Paměť Ram na 53% v nečinosti PC
ComboFix 12-02-02.02 - Martin 03.02.2012 9:26.2.2 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4061.2406 [GMT 1:00]
Spuštěný z: c:\users\Martin\Desktop\ComboFix.exe
AV: AVG Internet Security 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
FW: AVG Firewall *Disabled* {621CC794-9486-F902-D092-0484E8EA828B}
SP: AVG Internet Security 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Martin\AppData\Roaming\3v
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-01-03 do 2012-02-03 )))))))))))))))))))))))))))))))
.
.
2012-02-03 08:36 . 2012-02-03 08:36 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-02-03 08:36 . 2012-02-03 08:36 -------- d-----w- c:\users\Administrator\AppData\Local\temp
2012-02-02 20:05 . 2012-02-02 20:05 -------- d-----w- c:\program files (x86)\Nokia
2012-02-02 20:05 . 2012-02-02 20:05 -------- d-----w- c:\program files\DIFX
2012-02-02 20:04 . 2012-02-03 07:27 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
2012-02-02 20:04 . 2012-02-02 20:04 -------- d-----w- c:\programdata\Installations
2012-02-02 16:42 . 2012-02-02 16:42 -------- d-----w- C:\$AVG
2012-02-02 16:32 . 2010-12-20 17:09 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2012-02-02 16:32 . 2012-02-02 16:32 -------- d-----w- c:\programdata\Malwarebytes
2012-02-02 16:32 . 2012-02-02 16:32 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-02-02 16:32 . 2010-12-20 17:08 24152 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-02-01 16:21 . 2011-10-17 14:55 559384 ----a-w- c:\windows\system32\drivers\iaStor.sys
2012-02-01 10:54 . 2012-02-01 10:54 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-02-01 10:54 . 2012-02-01 10:54 484176 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-01-31 19:21 . 2007-06-24 20:56 37384 ----a-w- c:\windows\system32\drivers\BlueletSCOAudio.sys
2012-01-31 19:21 . 2007-06-24 20:56 37896 ----a-w- c:\windows\system32\drivers\blueletaudio.sys
2012-01-31 19:21 . 2007-03-05 19:47 25360 ----a-w- c:\windows\system32\drivers\BtNetDrv.sys
2012-01-31 19:21 . 2007-03-05 19:44 23184 ----a-w- c:\windows\system32\drivers\VHIDMini.sys
2012-01-31 19:21 . 2007-03-05 19:42 49680 ----a-w- c:\windows\system32\drivers\BTHidMgr.sys
2012-01-31 19:21 . 2007-03-05 19:41 24976 ----a-w- c:\windows\system32\drivers\VBTEnum.sys
2012-01-31 19:21 . 2007-03-05 19:39 63248 ----a-w- c:\windows\system32\drivers\VcommMgr.sys
2012-01-31 19:21 . 2007-03-05 19:38 47120 ----a-w- c:\windows\system32\drivers\VComm.sys
2012-01-31 19:21 . 2006-10-09 14:29 32832 ----a-w- c:\windows\system32\drivers\BTNetFilter.sys
2012-01-31 19:21 . 2012-02-03 07:26 -------- d-----w- c:\program files (x86)\IVT Corporation
2012-01-31 09:32 . 2012-01-31 09:32 -------- d-----w- c:\program files (x86)\JAM Software
2012-01-30 18:04 . 2012-02-02 23:42 -------- d-----w- c:\windows\system32\appmgmt
2012-01-30 13:10 . 2012-02-02 19:58 -------- d-----w- c:\program files (x86)\ExpressFiles
2012-01-29 22:11 . 2012-01-29 22:11 -------- d-----w- c:\program files (x86)\Nová složka
2012-01-29 22:04 . 2012-01-30 18:27 -------- d-----w- c:\program files (x86)\Innovative Solutions
2012-01-29 21:40 . 2012-01-29 21:40 -------- d-----w- c:\programdata\Innovative Solutions
2012-01-29 21:28 . 2011-10-13 11:10 90112 ----a-w- c:\windows\system32\igfxCoIn_v2555.dll
2012-01-29 21:28 . 2011-10-13 10:30 208896 ----a-w- c:\windows\SysWow64\iglhsip32.dll
2012-01-29 21:28 . 2011-10-13 10:30 206336 ----a-w- c:\windows\system32\iglhsip64.dll
2012-01-29 21:28 . 2011-10-13 10:30 188416 ----a-w- c:\windows\system32\iglhcp64.dll
2012-01-29 21:28 . 2011-10-13 10:30 147456 ----a-w- c:\windows\SysWow64\iglhcp32.dll
2012-01-29 21:23 . 2007-06-24 20:56 47368 ----a-w- c:\windows\system32\drivers\btcusb.sys
2012-01-29 21:23 . 2007-06-24 20:56 16392 ----a-w- c:\windows\system32\btinstall.dll
2012-01-29 19:44 . 2012-01-29 19:44 -------- d-----w- c:\windows\system32\Macromed
2012-01-29 19:19 . 2012-01-29 19:45 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-01-29 18:28 . 2012-01-29 18:28 -------- d-----w- c:\programdata\ASUS
2012-01-29 10:21 . 2012-01-29 10:22 -------- d-----w- C:\MyBootCD
2012-01-28 23:56 . 2012-01-28 23:57 -------- d-----w- c:\program files (x86)\Common Files\Nero
2012-01-28 23:56 . 2012-01-29 00:01 -------- d-----w- c:\program files (x86)\Nero
2012-01-28 23:24 . 2012-01-28 23:24 -------- d-----w- c:\programdata\ashampoo
2012-01-28 23:24 . 2012-01-28 23:37 -------- d-----w- c:\program files (x86)\Ashampoo
2012-01-28 23:17 . 2012-01-30 18:30 -------- d-----w- c:\program files (x86)\CrystalDiskInfo
2012-01-28 22:39 . 2012-02-02 17:54 -------- d-----w- C:\rsit
2012-01-28 22:39 . 2012-02-02 17:53 -------- d-----w- c:\program files\trend micro
2012-01-28 22:16 . 2012-01-28 22:16 -------- d-----w- c:\program files (x86)\Common Files\Symantec Shared
2012-01-28 17:26 . 2012-01-28 17:26 21712 ----a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS
2012-01-28 17:23 . 2012-01-28 17:32 -------- d-----w- c:\program files (x86)\HWiNFO32
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\programdata\Symantec
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\windows\system32\drivers\NSSx64
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\program files (x86)\Norton Security Scan
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\programdata\Norton
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\program files (x86)\NortonInstaller
2012-01-27 20:46 . 2012-01-30 18:30 -------- d-----w- c:\programdata\McAfee Security Scan
2012-01-27 20:46 . 2012-01-27 20:46 -------- d-----w- c:\programdata\McAfee
2012-01-27 20:46 . 2012-01-27 20:46 -------- d-----w- c:\program files (x86)\McAfee Security Scan
2012-01-27 20:46 . 2012-01-27 20:46 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2012-01-27 20:43 . 2012-01-27 20:43 -------- d-----w- c:\windows\SysWow64\Adobe
2012-01-27 16:20 . 2012-01-27 16:20 -------- d-----w- C:\NVIDIA
2012-01-27 15:39 . 2010-12-14 15:34 550512 ----a-w- c:\windows\system32\VIASysFx.dll
2012-01-27 15:39 . 2010-12-14 15:34 993392 ----a-w- c:\windows\system32\VIAPropPageExt.dll
2012-01-27 15:39 . 2010-12-14 15:34 86640 ----a-w- c:\windows\system32\ViaMicArrayPropPageExt.dll
2012-01-27 15:39 . 2010-12-14 15:34 202864 ----a-w- c:\windows\system32\ViaMicArrayAPO.dll
2012-01-27 15:39 . 2010-12-14 15:34 27760 ----a-w- c:\windows\system32\ViakaraokeSrv.exe
2012-01-27 15:39 . 2010-12-14 15:34 1357424 ----a-w- c:\windows\system32\drivers\viahduaa.sys
2012-01-27 15:39 . 2010-12-14 15:34 123504 ----a-w- c:\windows\system32\ViaKaraokeApo.dll
2012-01-27 15:39 . 2010-12-14 15:34 91760 ----a-w- c:\windows\system32\Dts2PropPageExt.dll
2012-01-27 15:39 . 2010-12-14 15:34 116848 ----a-w- c:\windows\system32\ViaKaraokePropPageExt.dll
2012-01-27 15:39 . 2010-12-14 15:34 248944 ----a-w- c:\windows\system32\Dts2APO.dll
2012-01-27 15:39 . 2011-09-21 09:25 21992 ----a-w- c:\windows\system32\drivers\cpuz135_x64.sys
2012-01-27 15:39 . 2012-01-27 15:39 -------- d-----w- c:\program files\CPUID
2012-01-27 15:36 . 2012-01-27 15:37 -------- d-----w- c:\program files (x86)\audio
2012-01-27 15:21 . 2012-01-27 15:21 -------- d-----w- c:\windows\SysWow64\Atheros_L1e
2012-01-27 15:19 . 2012-01-30 18:30 -------- d-----w- c:\programdata\FLEXnet
2012-01-27 15:19 . 2010-06-30 11:02 52736 ----a-w- c:\windows\system32\drivers\btmcom.sys
2012-01-27 15:18 . 2012-01-30 18:30 -------- d-----w- c:\program files\Motorola
2012-01-27 15:18 . 2010-07-28 16:52 476928 ----a-w- c:\windows\system32\drivers\btmusb.sys
2012-01-27 15:18 . 2010-07-15 11:22 323848 ----a-w- c:\windows\system32\btmcls.dll
2012-01-27 15:18 . 2012-01-30 18:30 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2012-01-27 15:18 . 2012-01-30 18:30 -------- d-----w- c:\program files (x86)\Common Files\Macrovision Shared
2012-01-27 15:08 . 2012-01-27 15:08 -------- d-----w- c:\program files (x86)\Driver-Soft
2012-01-25 20:31 . 2012-01-25 20:31 -------- d-----w- c:\program files (x86)\ESET
2012-01-25 16:07 . 2012-01-25 16:07 243 ----a-w- C:\user.js
2012-01-25 16:07 . 2012-01-25 16:07 -------- d-----w- c:\programdata\Babylon
2012-01-25 16:07 . 2012-01-25 16:07 -------- d-----w- c:\program files\Logon Screen
2012-01-22 20:25 . 2009-09-04 16:29 235344 ----a-w- c:\windows\SysWow64\d3dx11_42.dll
2012-01-22 20:24 . 2008-07-10 10:00 3851784 ----a-w- c:\windows\SysWow64\D3DX9_39.dll
2012-01-22 20:19 . 2011-11-02 22:08 509952 ----a-w- c:\windows\system32\ntshrui.dll
2012-01-22 20:19 . 2011-11-02 21:09 442880 ----a-w- c:\windows\SysWow64\ntshrui.dll
2012-01-22 20:18 . 2012-01-22 20:21 -------- d--h--w- c:\windows\msdownld.tmp
2012-01-22 13:31 . 2012-01-22 13:31 -------- d-----w- c:\program files (x86)\FastStone Image Viewer
2012-01-22 13:23 . 2012-01-22 13:23 -------- d-----w- c:\program files (x86)\Lamer
2012-01-22 13:14 . 2011-11-28 13:51 33872 ----a-w- c:\windows\system32\drivers\anvsnddrv.sys
2012-01-22 13:14 . 2011-11-28 13:51 235520 ----a-w- c:\windows\SysWow64\xvidvfw.dll
2012-01-22 13:14 . 2011-11-28 13:51 632832 ----a-w- c:\windows\SysWow64\xvidcore.dll
2012-01-22 13:14 . 2011-11-28 13:51 143872 ----a-w- c:\windows\SysWow64\xvid.ax
2012-01-22 13:11 . 2012-01-22 13:27 -------- d-----w- c:\program files (x86)\AnvSoft
2012-01-22 13:09 . 2012-01-22 13:09 -------- d-----w- c:\program files (x86)\Conduit
2012-01-22 13:09 . 2012-01-22 13:09 -------- d-----w- c:\program files (x86)\uTorrent
2012-01-22 12:55 . 2012-01-22 12:55 -------- d-----w- c:\windows\system32\SPReview
2012-01-22 11:55 . 2012-01-22 11:55 -------- d-----w- c:\windows\system32\EventProviders
2012-01-22 11:52 . 2010-11-20 13:27 2086912 ----a-w- c:\windows\system32\ole32.dll
2012-01-22 11:51 . 2010-11-20 13:27 1246720 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tipskins.dll
2012-01-22 11:50 . 2010-11-20 13:27 1808384 ----a-w- c:\windows\system32\pnidui.dll
2012-01-22 11:49 . 2010-11-20 13:27 244224 ----a-w- c:\windows\system32\spp.dll
2012-01-22 11:48 . 2010-11-20 13:24 442368 ----a-w- c:\windows\system32\winspool.drv
2012-01-22 11:47 . 2010-11-20 13:28 166784 ----a-w- c:\windows\system32\basecsp.dll
2012-01-22 11:46 . 2010-11-20 13:27 172544 ----a-w- c:\windows\system32\twext.dll
2012-01-22 11:45 . 2010-11-20 13:27 37376 ----a-w- c:\windows\system32\shimgvw.dll
2012-01-22 11:44 . 2010-11-20 13:33 6656 ----a-w- c:\windows\system32\drivers\cs-CZ\rdvgkmd.sys.mui
2012-01-22 11:44 . 2010-11-20 13:25 4096 ----a-w- c:\windows\system32\drivers\cs-CZ\tsusbhub.sys.mui
2012-01-22 11:44 . 2010-11-20 13:32 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\rdpwd.sys.mui
2012-01-22 11:44 . 2010-11-20 13:26 3584 ----a-w- c:\windows\system32\drivers\cs-CZ\tsusbflt.sys.mui
2012-01-22 11:44 . 2010-11-20 13:32 4608 ----a-w- c:\windows\system32\drivers\cs-CZ\kbdclass.sys.mui
2012-01-22 11:44 . 2010-11-20 13:31 3072 ----a-w- c:\windows\system32\drivers\cs-CZ\GAGP30KX.SYS.mui
2012-01-22 11:44 . 2010-11-20 13:43 3584 ----a-w- c:\windows\system32\drivers\pl-PL\tsusbflt.sys.mui
2012-01-22 11:44 . 2010-11-20 13:41 6656 ----a-w- c:\windows\system32\drivers\pl-PL\rdvgkmd.sys.mui
2012-01-22 11:44 . 2010-11-20 13:38 4608 ----a-w- c:\windows\system32\drivers\pl-PL\tsusbhub.sys.mui
2012-01-22 11:44 . 2010-11-20 13:45 2560 ----a-w- c:\windows\system32\drivers\pl-PL\rdpwd.sys.mui
2012-01-22 11:44 . 2010-11-20 13:41 3072 ----a-w- c:\windows\system32\drivers\pl-PL\NV_AGP.SYS.mui
2012-01-22 11:44 . 2010-11-20 13:38 7680 ----a-w- c:\windows\system32\drivers\pl-PL\luafv.sys.mui
2012-01-22 11:43 . 2010-11-20 13:34 6656 ----a-w- c:\windows\system32\drivers\hu-HU\rdvgkmd.sys.mui
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-22 14:03 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2012-01-22 14:03 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2012-01-21 19:30 . 2012-01-21 19:30 203776 ----a-w- c:\windows\SysWow64\webcheck.dll
2012-01-21 19:30 . 2012-01-21 19:30 249344 ----a-w- c:\windows\system32\webcheck.dll
2011-12-06 14:55 . 2010-04-20 04:30 53248 ----a-w- c:\windows\SysWow64\CSVer.dll
2009-04-08 17:31 . 2009-04-08 17:31 106496 ----a-w- c:\program files (x86)\Common Files\CPInstallAction.dll
2008-08-12 04:45 . 2008-08-12 04:45 155648 ----a-w- c:\program files (x86)\Common Files\MSIactionall.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-01-26_05.16.01 )))))))))))))))))))))))))))))))))))))))))
.
- 2011-02-11 17:41 . 2011-02-11 17:41 23552 c:\windows\SysWOW64\igfxexps32.dll
+ 2012-01-29 21:27 . 2011-10-13 10:32 23552 c:\windows\SysWOW64\igfxexps32.dll
+ 2012-01-29 21:27 . 2011-10-13 11:04 92356 c:\windows\SysWOW64\igfcg500m.bin
+ 2009-07-14 04:54 . 2012-02-03 07:29 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-07-14 04:54 . 2012-01-25 23:47 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:54 . 2012-02-03 07:29 65536 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2012-02-03 07:29 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-07-14 04:54 . 2012-01-25 23:47 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2012-01-27 15:21 . 2007-06-20 19:13 82432 c:\windows\SysWOW64\Atheros_L1e\DriUpdate64.exe
+ 2012-01-27 20:43 . 2012-01-27 20:43 87901 c:\windows\SysWOW64\Adobe\Shockwave 11\uninstaller.exe
+ 2011-11-22 13:34 . 2011-11-22 13:34 86016 c:\windows\SysWOW64\Adobe\Shockwave 11\SwMenu.dll
+ 2011-11-22 13:19 . 2011-11-22 13:19 73408 c:\windows\SysWOW64\Adobe\Shockwave 11\gtapi.dll
+ 2011-11-22 13:19 . 2011-11-22 13:19 64512 c:\windows\SysWOW64\Adobe\Shockwave 11\gcapi_dll.dll
+ 2011-11-22 13:36 . 2011-11-22 13:36 12800 c:\windows\SysWOW64\Adobe\Shockwave 11\DynaPlayer.dll
+ 2010-04-20 04:34 . 2012-02-03 07:17 51294 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2012-02-03 07:32 51240 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2009-12-14 09:53 . 2011-10-13 10:37 61952 c:\windows\system32\igfxsrvc.dll
+ 2012-01-29 21:27 . 2011-10-13 10:37 27648 c:\windows\system32\igfxexps.dll
- 2009-12-14 09:53 . 2009-12-14 09:53 27648 c:\windows\system32\igfxexps.dll
+ 2012-01-29 21:27 . 2011-10-13 11:04 92356 c:\windows\system32\igfcg500m.bin
+ 2009-07-14 05:30 . 2012-02-01 16:21 86016 c:\windows\system32\DriverStore\infpub.dat
- 2009-07-14 05:30 . 2012-01-25 20:21 86016 c:\windows\system32\DriverStore\infpub.dat
+ 2012-01-27 15:39 . 2010-12-14 15:34 86640 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\ViaMicArrayPropPageExt.dll
+ 2012-01-27 15:39 . 2010-12-14 15:34 27760 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\ViakaraokeSrv.exe
+ 2012-01-27 15:39 . 2007-12-04 10:28 86016 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\nQPropPageExt.dll
+ 2012-01-27 15:39 . 2007-12-04 10:28 82432 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\nQAPO.dll
+ 2012-01-27 15:39 . 2010-12-14 15:34 91760 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\Dts2PropPageExt.dll
+ 2009-06-05 17:15 . 2009-06-05 17:15 42176 c:\windows\system32\DriverStore\FileRepository\snp2uvc.inf_amd64_neutral_ec341c26c1ceaaa3\x64\sncduvc.sys
+ 2009-06-05 17:15 . 2009-06-05 17:15 19008 c:\windows\system32\DriverStore\FileRepository\snp2uvc.inf_amd64_neutral_ec341c26c1ceaaa3\x64\DrvInst.exe
+ 2010-03-29 10:17 . 2010-03-29 10:17 64040 c:\windows\system32\DriverStore\FileRepository\netl1e64.inf_amd64_neutral_c498f99be7861086\L1E62x64.sys
+ 2012-01-29 21:28 . 2011-10-13 11:10 90112 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igxpco64.dll
+ 2012-01-29 21:27 . 2011-10-13 10:37 61952 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxsrvc.dll
+ 2012-01-29 21:27 . 2011-10-13 10:32 23552 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxexps32.dll
+ 2012-01-29 21:27 . 2011-10-13 10:37 27648 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxexps.dll
+ 2012-01-29 21:27 . 2011-10-13 11:04 92356 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfcg500m.bin
+ 2012-01-27 15:18 . 2010-07-16 13:08 30208 c:\windows\system32\DriverStore\FileRepository\btmnet.inf_amd64_neutral_984a90e8af1542cf\Win64\btmnet.sys
+ 2012-01-27 15:18 . 2010-06-30 11:02 34176 c:\windows\system32\DriverStore\FileRepository\btmhid.inf_amd64_neutral_cd525431569ff866\Win64\btmhid.sys
+ 2012-01-27 15:18 . 2010-06-30 11:02 52736 c:\windows\system32\DriverStore\FileRepository\btmcom.inf_amd64_neutral_bd93bed26f3d41c4\Win64\btmcom.sys
+ 2012-01-27 15:18 . 2010-07-26 15:05 43008 c:\windows\system32\DriverStore\FileRepository\btmaud.inf_amd64_neutral_122dad32d8fc416c\Win64\btmaud.sys
+ 2012-01-29 21:23 . 2011-07-27 09:28 19464 c:\windows\system32\DriverStore\FileRepository\btcusb.inf_amd64_neutral_255252c2f936c65a\btinstall.dll
+ 2012-01-29 21:23 . 2011-07-27 09:28 42888 c:\windows\system32\DriverStore\FileRepository\btcusb.inf_amd64_neutral_255252c2f936c65a\btcusb.sys
+ 2010-03-29 10:17 . 2010-03-29 10:17 64040 c:\windows\system32\drivers\L1E62x64.sys
+ 2009-07-14 04:46 . 2012-02-03 07:32 90512 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
+ 2012-01-31 14:30 . 2012-01-31 14:30 25600 c:\windows\Installer\f72daf.msi
+ 2012-01-28 23:59 . 2012-01-28 23:59 75048 c:\windows\Installer\{EDCDFAD5-DF80-4600-A493-E9DAD6810230}\ScWaveEditorStartM_3939FC794F8E448CB7E44465B4F58E0D.exe
+ 2012-01-28 23:59 . 2012-01-28 23:59 75048 c:\windows\Installer\{EDCDFAD5-DF80-4600-A493-E9DAD6810230}\ARPPRODUCTICON.exe
- 2012-01-21 17:50 . 2012-01-21 17:50 45056 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\BsolStartupShortcut_5F4A9C5DDE4741A284DAEED5CA08428B.exe
+ 2012-01-31 19:22 . 2012-01-31 19:22 45056 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\BsolStartupShortcut_5F4A9C5DDE4741A284DAEED5CA08428B.exe
+ 2012-01-31 19:22 . 2012-01-31 19:22 45056 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\BsolDesktopShortcut_5F4A9C5DDE4741A284DAEED5CA08428B.exe
- 2012-01-21 17:50 . 2012-01-21 17:50 45056 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\BsolDesktopShortcut_5F4A9C5DDE4741A284DAEED5CA08428B.exe
- 2012-01-21 17:50 . 2012-01-21 17:50 45056 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\BlueSoleilShortcut_A4441B3FD7624BD9B8E935C7D26B381D.exe
+ 2012-01-31 19:22 . 2012-01-31 19:22 45056 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\BlueSoleilShortcut_A4441B3FD7624BD9B8E935C7D26B381D.exe
+ 2012-01-29 00:01 . 2012-01-29 00:01 75048 c:\windows\Installer\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}\ARPPRODUCTICON.exe
+ 2012-01-27 20:43 . 2012-01-27 20:43 10134 c:\windows\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 73624 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\wow_helper.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 17304 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\ViewerPS.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 35736 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\reader_sl.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 88992 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\PDFPrevHndlr.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 94608 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\eula.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 64952 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\armsvc.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 49064 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\acrotextextractor.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 17824 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\AcroRd32Info.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 63912 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\acroiehelpershim.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 64928 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\AcroIEHelper.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 63384 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\Acrofx32.dll
+ 2009-10-22 12:35 . 2009-10-22 12:35 2694 c:\windows\Uninstvga.bat
+ 2012-01-21 17:53 . 2012-02-02 23:18 3704 c:\windows\system32\wdi\ERCQueuedResolutions.dat
+ 2012-01-21 17:26 . 2012-02-03 07:32 9944 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2228829363-2496496693-1347899441-1001_UserData.bin
+ 2012-01-29 21:27 . 2011-10-13 10:36 4096 c:\windows\system32\IGFXDEVLib.dll
- 2009-12-14 09:52 . 2009-12-14 09:52 4096 c:\windows\system32\IGFXDEVLib.dll
+ 2009-10-22 12:35 . 2009-10-22 12:35 2694 c:\windows\system32\DriverStore\FileRepository\snp2uvc.inf_amd64_neutral_ec341c26c1ceaaa3\Uninstvga.bat
+ 2008-06-25 18:00 . 2008-06-25 18:00 1682 c:\windows\system32\DriverStore\FileRepository\snp2uvc.inf_amd64_neutral_ec341c26c1ceaaa3\Uninstuxga.bat
+ 2009-02-02 08:57 . 2009-02-02 08:57 2008 c:\windows\system32\DriverStore\FileRepository\snp2uvc.inf_amd64_neutral_ec341c26c1ceaaa3\Uninstsxga.bat
+ 2012-01-29 21:27 . 2011-10-13 10:36 4096 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\IGFXDEVLib.dll
- 2012-01-25 20:17 . 2012-01-25 20:17 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-02-03 07:28 . 2012-02-03 07:28 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-02-03 07:28 . 2012-02-03 07:28 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2012-01-25 20:17 . 2012-01-25 20:17 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2012-01-21 17:50 . 2012-01-21 17:50 8854 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\Uninstall_BlueSoleil_DA0C16B5026041ACAA4BA0D7EA548378.exe
+ 2012-01-31 19:22 . 2012-01-31 19:22 8854 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\Uninstall_BlueSoleil_DA0C16B5026041ACAA4BA0D7EA548378.exe
+ 2012-01-31 19:22 . 2012-01-31 19:22 3638 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\ARPPRODUCTICON.exe
- 2012-01-21 17:50 . 2012-01-21 17:50 3638 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\ARPPRODUCTICON.exe
+ 2009-09-14 18:05 . 2009-09-14 18:05 374064 c:\windows\SysWOW64\twnlib4.dll
+ 2012-01-29 19:45 . 2012-01-29 19:45 247968 c:\windows\SysWOW64\Macromed\Flash\FlashUtil11e_Plugin.exe
+ 2012-01-29 19:19 . 2012-01-29 19:19 247968 c:\windows\SysWOW64\Macromed\Flash\FlashUtil11e_ActiveX.exe
+ 2012-01-29 19:19 . 2012-01-29 19:19 335520 c:\windows\SysWOW64\Macromed\Flash\FlashUtil11e_ActiveX.dll
+ 2009-09-14 18:05 . 2009-09-14 18:05 808240 c:\windows\SysWOW64\imagxra7.dll
+ 2009-09-14 18:05 . 2009-09-14 18:05 263472 c:\windows\SysWOW64\imagxr7.dll
+ 2009-09-14 18:04 . 2009-09-14 18:04 497296 c:\windows\SysWOW64\imagxpr7.dll
+ 2012-01-29 21:27 . 2011-10-13 11:04 982240 c:\windows\SysWOW64\igkrng500.bin
+ 2012-01-29 21:27 . 2011-10-13 10:31 228864 c:\windows\SysWOW64\igfxdv32.dll
+ 2009-12-14 10:16 . 2011-10-13 10:58 571904 c:\windows\SysWOW64\igdumdx32.dll
+ 2012-01-29 21:27 . 2011-10-13 11:04 439308 c:\windows\SysWOW64\igcompkrng500.bin
- 2012-01-21 19:11 . 2012-01-25 20:17 262144 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2012-01-21 19:11 . 2012-02-03 07:29 262144 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2011-11-22 13:19 . 2011-11-22 13:19 279992 c:\windows\SysWOW64\Adobe\Shockwave 11\SymCCIS.dll
+ 2011-11-22 13:34 . 2011-11-22 13:34 114176 c:\windows\SysWOW64\Adobe\Shockwave 11\SwInit.exe
+ 2011-11-22 13:36 . 2011-11-22 13:36 434176 c:\windows\SysWOW64\Adobe\Shockwave 11\Proj.dll
+ 2011-11-22 13:35 . 2011-11-22 13:35 365056 c:\windows\SysWOW64\Adobe\Shockwave 11\Plugin.dll
+ 2011-11-22 13:23 . 2011-11-22 13:23 990208 c:\windows\SysWOW64\Adobe\Shockwave 11\iml32.dll
+ 2011-11-22 13:19 . 2011-11-22 13:19 929792 c:\windows\SysWOW64\Adobe\Shockwave 11\gi.dll
+ 2011-11-22 13:34 . 2011-11-22 13:34 542720 c:\windows\SysWOW64\Adobe\Shockwave 11\Control.dll
+ 2011-11-22 13:42 . 2011-11-22 13:42 113080 c:\windows\SysWOW64\Adobe\Director\SWDNLD.EXE
+ 2011-11-22 13:42 . 2011-11-22 13:42 279480 c:\windows\SysWOW64\Adobe\Director\SwDir.dll
+ 2011-11-22 13:36 . 2011-11-22 13:36 145920 c:\windows\SysWOW64\Adobe\Director\np32dsw.dll
+ 2012-01-22 21:16 . 2012-01-27 12:05 131810 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2009-08-03 19:55 . 2012-02-01 14:57 689726 c:\windows\system32\perfh015.dat
- 2009-08-03 19:55 . 2012-01-24 18:48 689726 c:\windows\system32\perfh015.dat
+ 2009-08-03 20:06 . 2012-02-01 14:57 632180 c:\windows\system32\perfh00E.dat
- 2009-08-03 20:06 . 2012-01-24 18:48 632180 c:\windows\system32\perfh00E.dat
+ 2009-07-14 02:36 . 2012-02-01 14:57 616008 c:\windows\system32\perfh009.dat
- 2009-07-14 02:36 . 2012-01-24 18:48 616008 c:\windows\system32\perfh009.dat
+ 2009-08-03 20:00 . 2012-02-01 14:57 631292 c:\windows\system32\perfh005.dat
- 2009-08-03 20:00 . 2012-01-24 18:48 631292 c:\windows\system32\perfh005.dat
- 2009-08-03 19:55 . 2012-01-24 18:48 134840 c:\windows\system32\perfc015.dat
+ 2009-08-03 19:55 . 2012-02-01 14:57 134840 c:\windows\system32\perfc015.dat
- 2009-08-03 20:06 . 2012-01-24 18:48 148310 c:\windows\system32\perfc00E.dat
+ 2009-08-03 20:06 . 2012-02-01 14:57 148310 c:\windows\system32\perfc00E.dat
- 2009-07-14 02:36 . 2012-01-24 18:48 106388 c:\windows\system32\perfc009.dat
+ 2009-07-14 02:36 . 2012-02-01 14:57 106388 c:\windows\system32\perfc009.dat
+ 2009-08-03 20:00 . 2012-02-01 14:57 121914 c:\windows\system32\perfc005.dat
- 2009-08-03 20:00 . 2012-01-24 18:48 121914 c:\windows\system32\perfc005.dat
+ 2012-01-29 19:45 . 2012-01-29 19:45 461984 c:\windows\system32\Macromed\Flash\FlashUtil64_11_1_102_Plugin.exe
+ 2012-01-31 23:21 . 2012-01-31 23:21 461984 c:\windows\system32\Macromed\Flash\FlashUtil64_11_1_102_ActiveX.exe
+ 2012-01-31 23:21 . 2012-01-31 23:21 376480 c:\windows\system32\Macromed\Flash\FlashUtil64_11_1_102_ActiveX.dll
+ 2012-01-29 21:27 . 2011-10-13 11:04 982240 c:\windows\system32\igkrng500.bin
+ 2012-01-29 21:27 . 2011-10-13 11:14 162584 c:\windows\system32\igfxtray.exe
+ 2012-01-29 21:27 . 2011-10-13 10:37 380416 c:\windows\system32\igfxTMM.dll
+ 2012-01-29 21:27 . 2011-10-13 11:14 510232 c:\windows\system32\igfxsrvc.exe
+ 2009-12-14 09:52 . 2011-10-13 10:36 830464 c:\windows\system32\igfxress.dll
+ 2011-02-11 17:46 . 2011-10-13 10:37 244224 c:\windows\system32\igfxpph.dll
+ 2012-01-29 21:27 . 2011-10-13 11:14 417560 c:\windows\system32\igfxpers.exe
+ 2012-01-29 21:27 . 2011-10-13 11:14 224024 c:\windows\system32\igfxext.exe
- 2009-12-14 09:52 . 2009-12-14 09:52 142336 c:\windows\system32\igfxdo.dll
+ 2012-01-29 21:27 . 2011-10-13 10:36 142336 c:\windows\system32\igfxdo.dll
+ 2009-12-14 09:52 . 2011-10-13 10:36 272896 c:\windows\system32\igfxdev.dll
+ 2012-01-29 21:27 . 2011-10-13 11:04 439308 c:\windows\system32\igcompkrng500.bin
+ 2012-01-29 21:27 . 2011-10-13 11:14 386840 c:\windows\system32\hkcmd.exe
+ 2009-12-14 09:52 . 2011-10-13 10:36 108544 c:\windows\system32\hccutils.dll
- 2009-12-14 09:52 . 2009-12-14 09:52 108544 c:\windows\system32\hccutils.dll
+ 2012-01-29 21:27 . 2011-10-13 10:36 119808 c:\windows\system32\gfxSrvc.dll
+ 2009-07-14 05:30 . 2012-02-01 16:21 143360 c:\windows\system32\DriverStore\infstrng.dat
- 2009-07-14 05:30 . 2012-01-25 20:21 143360 c:\windows\system32\DriverStore\infstrng.dat
+ 2009-07-14 05:30 . 2012-02-01 16:21 143360 c:\windows\system32\DriverStore\infstor.dat
- 2009-07-14 05:30 . 2012-01-22 16:52 143360 c:\windows\system32\DriverStore\infstor.dat
+ 2012-01-27 15:39 . 2010-12-14 15:34 550512 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\VIASysFx.dll
+ 2012-01-27 15:39 . 2010-12-14 15:34 993392 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\VIAPropPageExt.dll
+ 2012-01-27 15:39 . 2010-12-14 15:34 202864 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\ViaMicArrayAPO.dll
+ 2012-01-27 15:39 . 2010-12-14 15:34 116848 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\ViaKaraokePropPageExt.dll
+ 2012-01-27 15:39 . 2010-12-14 15:34 123504 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\ViaKaraokeApo.dll
+ 2012-01-27 15:35 . 2009-06-12 10:01 143360 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\slviq64.dll
+ 2012-01-27 15:39 . 2009-06-12 10:07 154112 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\slvipp64.dll
+ 2012-01-27 15:39 . 2009-06-12 09:59 259584 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\sluapo64.dll
+ 2012-01-27 15:39 . 2009-06-12 09:57 160256 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\sltshd64.dll
+ 2012-01-27 15:39 . 2009-06-12 10:00 416768 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\slprop64.dll
+ 2012-01-27 15:39 . 2009-06-12 10:04 188416 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\slmaxv64.dll
+ 2012-01-27 15:39 . 2009-06-12 10:04 193536 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\slInit64.dll
+ 2012-01-27 15:39 . 2009-06-12 10:01 140800 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\slh36064.dll
+ 2012-01-27 15:39 . 2009-06-12 10:01 117248 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\slgeq64.dll
+ 2012-01-27 15:39 . 2009-06-12 09:57 131584 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\slcsii64.dll
+ 2012-01-27 15:39 . 2009-06-12 09:58 169472 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\slcshp64.dll
+ 2012-01-27 15:39 . 2010-12-14 15:34 248944 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\Dts2APO.dll
+ 2009-06-05 17:15 . 2009-06-05 17:15 381504 c:\windows\system32\DriverStore\FileRepository\snp2uvc.inf_amd64_neutral_ec341c26c1ceaaa3\x64\vsnpvc64.dll
+ 2009-06-05 17:14 . 2009-06-05 17:14 311872 c:\windows\system32\DriverStore\FileRepository\snp2uvc.inf_amd64_neutral_ec341c26c1ceaaa3\vsnp2uvc.dll
+ 2012-01-29 21:28 . 2011-10-13 10:30 206336 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\iglhsip64.dll
+ 2012-01-29 21:28 . 2011-10-13 10:30 208896 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\iglhsip32.dll
+ 2012-01-29 21:28 . 2011-10-13 10:30 188416 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\iglhcp64.dll
+ 2012-01-29 21:28 . 2011-10-13 10:30 147456 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\iglhcp32.dll
+ 2012-01-29 21:28 . 2011-10-13 11:04 874048 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igkrng575.bin
+ 2012-01-29 21:27 . 2011-10-13 11:04 982240 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igkrng500.bin
+ 2012-01-29 21:27 . 2011-10-13 11:14 162584 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxtray.exe
+ 2012-01-29 21:27 . 2011-10-13 10:37 380416 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxTMM.dll
+ 2012-01-29 21:27 . 2011-10-13 11:14 510232 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxsrvc.exe
+ 2012-01-29 21:27 . 2011-10-13 10:36 830464 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxress.dll
+ 2012-01-29 21:27 . 2011-10-13 10:37 244224 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxpph.dll
+ 2012-01-29 21:27 . 2011-10-13 11:14 417560 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxpers.exe
+ 2012-01-29 21:27 . 2011-10-13 11:14 224024 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxext.exe
+ 2012-01-29 21:27 . 2011-10-13 10:31 228864 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxdv32.dll
+ 2012-01-29 21:27 . 2011-10-13 10:36 142336 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxdo.dll
+ 2012-01-29 21:27 . 2011-10-13 10:36 272896 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxdev.dll
+ 2012-01-29 21:27 . 2011-10-13 11:04 104796 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfcg575m.bin
+ 2012-01-29 21:27 . 2011-10-13 10:58 571904 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igdumdx32.dll
+ 2012-01-29 21:27 . 2011-10-13 11:04 127868 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igcompkrng575.bin
+ 2012-01-29 21:27 . 2011-10-13 11:04 439308 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igcompkrng500.bin
+ 2012-01-29 21:27 . 2011-10-13 11:14 386840 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\hkcmd.exe
+ 2012-01-29 21:27 . 2011-10-13 10:36 108544 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\hccutils.dll
+ 2012-01-29 21:27 . 2011-10-13 10:36 119808 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\gfxSrvc.dll
+ 2012-01-29 21:27 . 2011-10-13 11:14 152856 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\difx64.exe
+ 2012-02-01 16:21 . 2011-10-17 14:55 559384 c:\windows\system32\DriverStore\FileRepository\iaahci.inf_amd64_neutral_74f348dee3038044\iaStor.sys
+ 2012-01-27 15:18 . 2010-07-28 16:52 476928 c:\windows\system32\DriverStore\FileRepository\btmusb.inf_amd64_neutral_6cbec41ad052c134\Win64\btmusb.sys
+ 2012-01-27 15:18 . 2010-07-15 11:22 323848 c:\windows\system32\DriverStore\FileRepository\btmusb.inf_amd64_neutral_6cbec41ad052c134\Win64\btmcls.dll
+ 2012-01-29 21:27 . 2011-10-13 11:14 152856 c:\windows\system32\difx64.exe
- 2012-01-21 23:02 . 2012-01-22 17:24 453272 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2012-01-21 23:02 . 2012-01-29 23:03 453272 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2009-07-14 05:01 . 2012-02-03 07:21 389832 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2009-07-14 05:01 . 2012-01-25 20:15 389832 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2007-04-10 16:31 . 2007-04-10 16:31 930816 c:\windows\Installer\d2a0a0.msi
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{FCF00A6E-FB58-477A-ABE9-232907105521}\NeroCoverDesigner_EF89736D5D4B4006B5966729E642699E.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{FCF00A6E-FB58-477A-ABE9-232907105521}\ARPPRODUCTICON.exe
+ 2012-01-29 00:00 . 2012-01-29 00:00 587048 c:\windows\Installer\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}\ScStartSmartDeskto_3AF47A4E14DF4546B1449D27245505A0.exe
+ 2012-01-29 00:00 . 2012-01-29 00:00 587048 c:\windows\Installer\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}\NeroStartSmart.ex_2882597C6E684EBDA23F3CF2CA0CBC30.exe
+ 2012-01-29 00:00 . 2012-01-29 00:00 587048 c:\windows\Installer\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}\ARPPRODUCTICON.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 300328 c:\windows\Installer\{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}\ARPPRODUCTICON.exe
+ 2012-01-28 23:58 . 2012-01-28 23:58 587048 c:\windows\Installer\{F412B4AF-388C-4FF5-9B2F-33DB1C536953}\NeroInfoTool.ex_2882597C6E684EBDA23F3CF2CA0CBC30.exe
+ 2012-01-28 23:58 . 2012-01-28 23:58 587048 c:\windows\Installer\{F412B4AF-388C-4FF5-9B2F-33DB1C536953}\ARPPRODUCTICON.exe
+ 2012-01-28 23:58 . 2012-01-28 23:58 587048 c:\windows\Installer\{E337E787-CF61-4B7B-B84F-509202A54023}\NeroRescueAgent.ex_2882597C6E684EBDA23F3CF2CA0CBC30.exe
+ 2012-01-28 23:58 . 2012-01-28 23:58 587048 c:\windows\Installer\{E337E787-CF61-4B7B-B84F-509202A54023}\ARPPRODUCTICON.exe
+ 2012-01-28 23:59 . 2012-01-28 23:59 587048 c:\windows\Installer\{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}\ScSoundTraxStartMe_92F39C657A3840139A47B92C3EFBBBBB.exe
+ 2012-01-28 23:59 . 2012-01-28 23:59 587048 c:\windows\Installer\{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}\ARPPRODUCTICON.exe
+ 2012-01-28 23:56 . 2012-01-28 23:56 300328 c:\windows\Installer\{C3580AC4-C827-4332-B935-9A282ED5BB97}\ARPPRODUCTICON.exe
+ 2012-01-28 23:59 . 2012-01-28 23:59 587048 c:\windows\Installer\{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}\NewShortcut1_28CF345AD4354131AA47B77D4165D813.exe
+ 2012-01-28 23:59 . 2012-01-28 23:59 587048 c:\windows\Installer\{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}\NeroVision.ex_2882597C6E684EBDA23F3CF2CA0CBC30.exe
+ 2012-01-28 23:59 . 2012-01-28 23:59 587048 c:\windows\Installer\{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}\ARPPRODUCTICON.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{943CFD7D-5336-47AF-9418-E02473A5A517}\ARPPRODUCTICON.exe
+ 2012-01-28 23:58 . 2012-01-28 23:58 587048 c:\windows\Installer\{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}\ScRecodeStartMenu_563A75F05683422E8C558ED3B6DA617D.exe
+ 2012-01-28 23:58 . 2012-01-28 23:58 587048 c:\windows\Installer\{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}\ARPPRODUCTICON.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{7A5D731D-B4B3-490E-B339-75685712BAAB}\ScBurningROMStartM_FF88F478D1E748AC86035D457D563142.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{7A5D731D-B4B3-490E-B339-75685712BAAB}\ScBurningROMStartM_7533AE23D677474387D2A66427FA7052.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{7A5D731D-B4B3-490E-B339-75685712BAAB}\ARPPRODUCTICON.exe
+ 2012-01-28 23:58 . 2012-01-28 23:58 587048 c:\windows\Installer\{70550193-1C22-445C-8FA4-564E155DB1A7}\NeroExpress.exe_81A8FD91A6494AD5B4998149EAAC7E7C.exe
+ 2012-01-28 23:58 . 2012-01-28 23:58 587048 c:\windows\Installer\{70550193-1C22-445C-8FA4-564E155DB1A7}\ARPPRODUCTICON.exe
+ 2012-01-28 23:56 . 2012-01-28 23:56 587048 c:\windows\Installer\{6DFB899F-17A2-48F0-A533-ED8D6866CF38}\ScControlCenterSta_FC2653898C5047A6A872CAF6433C43A8.exe
+ 2012-01-28 23:56 . 2012-01-28 23:56 587048 c:\windows\Installer\{6DFB899F-17A2-48F0-A533-ED8D6866CF38}\ARPPRODUCTICON.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{68AB6930-5BFF-4FF6-923B-516A91984FE6}\BackItUp._AB9F1F47710540918A47B78D2BED5DAD.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{68AB6930-5BFF-4FF6-923B-516A91984FE6}\BackItUp._6DE631547FD24BC5962A4E5F07A1BE20.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{68AB6930-5BFF-4FF6-923B-516A91984FE6}\ARPPRODUCTICON.exe
+ 2012-01-28 23:56 . 2012-01-28 23:56 300328 c:\windows\Installer\{63AA3EAB-23BB-48B2-9AD0-44F878075604}\ARPPRODUCTICON.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{34490F4E-48D0-492E-8249-B48BECF0537C}\NeroDiscSpeed.ex_2882597C6E684EBDA23F3CF2CA0CBC30.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{34490F4E-48D0-492E-8249-B48BECF0537C}\ARPPRODUCTICON.exe
+ 2012-01-28 23:56 . 2012-01-28 23:56 300328 c:\windows\Installer\{277C1559-4CF7-44FF-8D07-98AA9C13AABD}\ARPPRODUCTICON.exe
+ 2012-01-28 23:56 . 2012-01-28 23:56 300328 c:\windows\Installer\{237CCB62-8454-43E3-B158-3ACD0134852E}\ARPPRODUCTICON.exe
+ 2012-01-28 23:58 . 2012-01-28 23:58 587048 c:\windows\Installer\{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}\NeroMediaHub._63C8A7B0BBE5459F9AC436392B2FF50D.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 249232 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\sqlite.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 394136 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\pdfshell.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 183696 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\nppdf32.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 104344 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\AiodLite.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 937920 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\adobearm.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 102808 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\AcroRdIF.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 755088 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\AcroPDF.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 296344 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\acrobroker.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 205720 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\a3dutils.dll
+ 2010-04-20 04:38 . 2007-04-11 14:35 414632 c:\windows\difxapi.dll
- 2010-04-20 04:38 . 2007-04-11 07:34 414632 c:\windows\difxapi.dll
+ 2009-07-18 03:21 . 2012-01-29 19:45 8527008 c:\windows\SysWOW64\Macromed\Flash\NPSWF32.dll
+ 2009-09-14 18:05 . 2009-09-14 18:05 1762608 c:\windows\SysWOW64\imagx7.dll
+ 2009-12-14 10:21 . 2011-10-13 11:01 4967424 c:\windows\SysWOW64\igdumd32.dll
+ 2012-01-29 21:27 . 2011-10-13 10:55 4411392 c:\windows\SysWOW64\igd10umd32.dll
+ 2011-11-22 13:42 . 2011-11-22 13:42 1040824 c:\windows\SysWOW64\Adobe\Shockwave 11\SwHelper_1163633.exe
+ 2011-11-22 13:19 . 2011-11-22 13:19 2376368 c:\windows\SysWOW64\Adobe\Shockwave 11\gt.exe
+ 2011-11-22 13:24 . 2011-11-22 13:24 1742336 c:\windows\SysWOW64\Adobe\Shockwave 11\dirapi.dll
+ 2012-01-29 21:27 . 2011-10-13 11:05 6549504 c:\windows\system32\igdumd64.dll
+ 2011-02-11 18:07 . 2011-10-13 10:57 4722176 c:\windows\system32\igd10umd64.dll
+ 2012-01-29 21:27 . 2011-10-13 11:14 3157784 c:\windows\system32\GfxUI.exe
+ 2012-01-27 15:39 . 2010-12-14 15:34 1357424 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\viahduaa.sys
+ 2009-06-05 17:15 . 2009-06-05 17:15 1806400 c:\windows\system32\DriverStore\FileRepository\snp2uvc.inf_amd64_neutral_ec341c26c1ceaaa3\x64\snp2uvc.sys
+ 2012-01-29 21:27 . 2011-10-13 11:05 6549504 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igdumd64.dll
+ 2012-01-29 21:27 . 2011-10-13 11:01 4967424 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igdumd32.dll
+ 2012-01-29 21:27 . 2011-10-13 10:57 4722176 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igd10umd64.dll
+ 2012-01-29 21:27 . 2011-10-13 10:55 4411392 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igd10umd32.dll
+ 2012-01-29 21:27 . 2011-10-13 11:14 3157784 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\GfxUI.exe
- 2009-07-14 04:45 . 2012-01-24 17:14 6056856 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
+ 2009-07-14 04:45 . 2012-02-03 07:32 6056856 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
+ 2012-01-21 22:46 . 2012-02-03 07:21 4139136 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2228829363-2496496693-1347899441-1001-12288.dat
+ 2011-06-06 20:43 . 2011-06-06 20:43 2328064 c:\windows\Installer\d2a098.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 2082816 c:\windows\Installer\97924.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 1616384 c:\windows\Installer\9791d.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 1616384 c:\windows\Installer\97915.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 1616896 c:\windows\Installer\9790d.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 1616384 c:\windows\Installer\97905.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 1616896 c:\windows\Installer\978fd.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 1616384 c:\windows\Installer\978f5.msi
+ 2012-01-28 23:51 . 2012-01-28 23:51 1616384 c:\windows\Installer\978ed.msi
+ 2012-01-28 23:51 . 2012-01-28 23:51 1616384 c:\windows\Installer\978e5.msi
+ 2012-01-28 23:51 . 2012-01-28 23:51 1616384 c:\windows\Installer\978dd.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 1616384 c:\windows\Installer\978d5.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 1616896 c:\windows\Installer\978cd.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 1616384 c:\windows\Installer\978c5.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 1616896 c:\windows\Installer\978bd.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 1616896 c:\windows\Installer\978b5.msi
+ 2012-01-28 23:54 . 2012-01-28 23:54 1616384 c:\windows\Installer\978ad.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 2910208 c:\windows\Installer\978a5.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 1940480 c:\windows\Installer\9789c.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 8159744 c:\windows\Installer\97894.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 3600384 c:\windows\Installer\9788c.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 2125312 c:\windows\Installer\9787c.msi
+ 2012-01-28 23:51 . 2012-01-28 23:51 3468800 c:\windows\Installer\97874.msi
+ 2012-01-28 23:51 . 2012-01-28 23:51 2124800 c:\windows\Installer\9786c.msi
+ 2012-01-28 23:51 . 2012-01-28 23:51 8760320 c:\windows\Installer\97864.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 2125312 c:\windows\Installer\9785c.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 2838528 c:\windows\Installer\97854.msi
+ 2012-01-28 23:54 . 2012-01-28 23:54 6398464 c:\windows\Installer\9784c.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 1531392 c:\windows\Installer\97844.msi
+ 2012-01-28 23:51 . 2012-01-28 23:51 1350656 c:\windows\Installer\97834.msi
+ 2012-01-28 23:51 . 2012-01-28 23:51 1335808 c:\windows\Installer\9782c.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 1233920 c:\windows\Installer\97824.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 1066496 c:\windows\Installer\9781c.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 2034176 c:\windows\Installer\9780c.msi
+ 2012-02-01 10:03 . 2012-02-01 10:03 7629312 c:\windows\Installer\5e44e.msi
+ 2008-04-16 07:00 . 2008-04-16 07:00 1815828 c:\windows\Installer\53ae2.msi
+ 2012-02-01 19:48 . 2012-02-01 19:48 2833408 c:\windows\Installer\26c2d9.msi
+ 2009-07-12 01:35 . 2009-07-12 01:35 2736640 c:\windows\Installer\166482.msi
+ 2011-06-06 11:55 . 2011-06-06 11:55 2215312 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\rt3d.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 1189004 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\JSByteCodeWin.bin
+ 2011-06-06 11:55 . 2011-06-06 11:55 6543768 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\authplay.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 1240992 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\AdobeCollabSync.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 1480600 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\AcroRd32.exe
+ 2012-01-29 21:27 . 2011-10-13 10:42 11405312 c:\windows\SysWOW64\ig4icd32.dll
+ 2012-01-29 19:45 . 2012-01-29 19:45 11336864 c:\windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll
+ 2012-01-29 21:27 . 2011-10-13 10:50 15546880 c:\windows\system32\ig4icd64.dll
+ 2012-01-29 21:27 . 2011-10-13 11:05 10629184 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igdkmd64.sys
+ 2012-01-29 21:27 . 2011-10-13 10:50 15546880 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\ig4icd64.dll
+ 2012-01-29 21:27 . 2011-10-13 10:42 11405312 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\ig4icd32.dll
+ 2012-01-29 21:27 . 2011-10-13 11:05 10629184 c:\windows\system32\drivers\igdkmd64.sys
+ 2012-01-28 23:50 . 2012-01-28 23:50 20566528 c:\windows\Installer\97884.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 11721216 c:\windows\Installer\9783c.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 10167808 c:\windows\Installer\97814.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 12591616 c:\windows\Installer\97805.msi
+ 2012-01-03 17:58 . 2012-01-03 17:58 15929344 c:\windows\Installer\2b62b.msp
+ 2011-06-06 11:55 . 2011-06-06 11:55 24731544 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\AcroRd32.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 00:08 143360 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2011-10-13 17351304]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"UpdateP2GoShortCut"="c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2010-12-22 2870896]
"HControlUser"="c:\program files (x86)\ASUS\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"ATKOSD2"="c:\program files (x86)\ASUS\ATKOSD2\ATKOSD2.exe" [2009-08-17 6859392]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Media\DMedia.exe" [2009-08-20 170624]
"AVG_TRAY"="c:\program files (x86)\AVG\AVG2012\avgtray.exe" [2012-01-24 2416480]
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\update\realsched.exe" [2012-01-21 296056]
"ExpressFiles"="c:\program files (x86)\ExpressFiles\ExpressFiles.exe" [2012-02-02 424568]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
BlueSoleil.lnk - c:\program files (x86)\IVT Corporation\BlueSoleil\gprs.exe [2008-3-19 43608]
FancyStart daemon.lnk - c:\windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe [2010-4-20 12862]
SRS Premium Sound.lnk - c:\windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe [2010-4-20 156952]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~2\AVG\AVG2012\avgrsa.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"Guard.Mail.ru.gui"="c:\program files (x86)\Guard-ICQ\GuardICQ.exe" /gui
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
"UpdateLBPShortCut"="c:\program files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "c:\program files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
"NBAgent"="c:\program files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
"ROC_roc_dec12"="c:\program files (x86)\AVG Secure Search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12
"MyWebSearch Email Plugin"=c:\progra~2\MYWEBS~1\bar\1.bin\mwsoemon.exe
"My Web Search Bar Search Scope Monitor"="c:\progra~2\MYWEBS~1\bar\1.bin\m3SrchMn.exe" /m=2 /w /h
.
R4 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S0 AVGIDSEH;AVGIDSEH;c:\windows\system32\DRIVERS\AVGIDSEH.Sys [x]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [x]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [x]
S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [x]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [x]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [x]
S2 ASMMAP64;ASMMAP64;c:\program files\ATKGFNEX\ASMMAP64.sys [2007-07-24 14904]
S2 avgfws;AVG Firewall;c:\program files (x86)\AVG\AVG2012\avgfws.exe [2011-11-23 2391832]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2012\AVGIDSAgent.exe [2011-10-12 4433248]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2012\avgwdsvc.exe [2011-08-02 192776]
S3 anvsnddrv;AnvSoft Virtual Sound Device;c:\windows\system32\drivers\anvsnddrv.sys [x]
S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\AVGIDSDriver.Sys [x]
S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\AVGIDSFilter.Sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-02-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-04-20 04:11]
.
2012-02-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-04-20 04:11]
.
2012-01-28 c:\windows\Tasks\Norton Security Scan for Martin.job
- c:\progra~2\NORTON~2\Engine\370~1.18\Nss.exe [2012-01-28 10:01]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-01 23:52 159744 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ASUS WebStorage"="c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe" [2009-12-24 1736704]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-10-13 162584]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-10-13 386840]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files (x86)\ICQ7.7\ICQ.exe
IE: {{bd707fe6-39f6-4bda-9265-86a76719bdc5} - c:\program files\Motorola\Bluetooth\btmiesend.htm
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\x22ecfqi.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - AVG Secure Search
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?AF=100789&babsrc=adbartrp&mntrId=0cdd3cc500000000000000158330973c&q=
FF - prefs.js: network.proxy.http - 58.58.180.122
FF - prefs.js: network.proxy.type - 1
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=100789
FF - user.js: extensions.BabylonToolbar_i.babExt - somoto
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.id - 0cdd3cc500000000000000158330973c
FF - user.js: extensions.BabylonToolbar_i.hardId - 0cdd3cc500000000000000158330973c
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15364
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1717:07
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - tb5
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
URLSearchHooks-{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - (no file)
URLSearchHooks-{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - (no file)
Toolbar-Locked - (no file)
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
WebBrowser-{A1E75A0E-4397-4BA8-BB50-E19FB66890F4} - (no file)
WebBrowser-{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
AddRemove-ASUS_Screensaver - c:\windows\system32\ASUS_Screensaver.scr
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-02-03 09:42:00
ComboFix-quarantined-files.txt 2012-02-03 08:41
ComboFix2.txt 2012-01-26 05:20
.
Před spuštěním: Volných bajtů: 367 924 740 096
Po spuštění: Volných bajtů: 367 651 463 168
.
- - End Of File - - 916FA31EE5D0DA946FF3B3FCDB9AC276
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4061.2406 [GMT 1:00]
Spuštěný z: c:\users\Martin\Desktop\ComboFix.exe
AV: AVG Internet Security 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
FW: AVG Firewall *Disabled* {621CC794-9486-F902-D092-0484E8EA828B}
SP: AVG Internet Security 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Martin\AppData\Roaming\3v
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-01-03 do 2012-02-03 )))))))))))))))))))))))))))))))
.
.
2012-02-03 08:36 . 2012-02-03 08:36 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-02-03 08:36 . 2012-02-03 08:36 -------- d-----w- c:\users\Administrator\AppData\Local\temp
2012-02-02 20:05 . 2012-02-02 20:05 -------- d-----w- c:\program files (x86)\Nokia
2012-02-02 20:05 . 2012-02-02 20:05 -------- d-----w- c:\program files\DIFX
2012-02-02 20:04 . 2012-02-03 07:27 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
2012-02-02 20:04 . 2012-02-02 20:04 -------- d-----w- c:\programdata\Installations
2012-02-02 16:42 . 2012-02-02 16:42 -------- d-----w- C:\$AVG
2012-02-02 16:32 . 2010-12-20 17:09 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2012-02-02 16:32 . 2012-02-02 16:32 -------- d-----w- c:\programdata\Malwarebytes
2012-02-02 16:32 . 2012-02-02 16:32 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-02-02 16:32 . 2010-12-20 17:08 24152 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-02-01 16:21 . 2011-10-17 14:55 559384 ----a-w- c:\windows\system32\drivers\iaStor.sys
2012-02-01 10:54 . 2012-02-01 10:54 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-02-01 10:54 . 2012-02-01 10:54 484176 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-01-31 19:21 . 2007-06-24 20:56 37384 ----a-w- c:\windows\system32\drivers\BlueletSCOAudio.sys
2012-01-31 19:21 . 2007-06-24 20:56 37896 ----a-w- c:\windows\system32\drivers\blueletaudio.sys
2012-01-31 19:21 . 2007-03-05 19:47 25360 ----a-w- c:\windows\system32\drivers\BtNetDrv.sys
2012-01-31 19:21 . 2007-03-05 19:44 23184 ----a-w- c:\windows\system32\drivers\VHIDMini.sys
2012-01-31 19:21 . 2007-03-05 19:42 49680 ----a-w- c:\windows\system32\drivers\BTHidMgr.sys
2012-01-31 19:21 . 2007-03-05 19:41 24976 ----a-w- c:\windows\system32\drivers\VBTEnum.sys
2012-01-31 19:21 . 2007-03-05 19:39 63248 ----a-w- c:\windows\system32\drivers\VcommMgr.sys
2012-01-31 19:21 . 2007-03-05 19:38 47120 ----a-w- c:\windows\system32\drivers\VComm.sys
2012-01-31 19:21 . 2006-10-09 14:29 32832 ----a-w- c:\windows\system32\drivers\BTNetFilter.sys
2012-01-31 19:21 . 2012-02-03 07:26 -------- d-----w- c:\program files (x86)\IVT Corporation
2012-01-31 09:32 . 2012-01-31 09:32 -------- d-----w- c:\program files (x86)\JAM Software
2012-01-30 18:04 . 2012-02-02 23:42 -------- d-----w- c:\windows\system32\appmgmt
2012-01-30 13:10 . 2012-02-02 19:58 -------- d-----w- c:\program files (x86)\ExpressFiles
2012-01-29 22:11 . 2012-01-29 22:11 -------- d-----w- c:\program files (x86)\Nová složka
2012-01-29 22:04 . 2012-01-30 18:27 -------- d-----w- c:\program files (x86)\Innovative Solutions
2012-01-29 21:40 . 2012-01-29 21:40 -------- d-----w- c:\programdata\Innovative Solutions
2012-01-29 21:28 . 2011-10-13 11:10 90112 ----a-w- c:\windows\system32\igfxCoIn_v2555.dll
2012-01-29 21:28 . 2011-10-13 10:30 208896 ----a-w- c:\windows\SysWow64\iglhsip32.dll
2012-01-29 21:28 . 2011-10-13 10:30 206336 ----a-w- c:\windows\system32\iglhsip64.dll
2012-01-29 21:28 . 2011-10-13 10:30 188416 ----a-w- c:\windows\system32\iglhcp64.dll
2012-01-29 21:28 . 2011-10-13 10:30 147456 ----a-w- c:\windows\SysWow64\iglhcp32.dll
2012-01-29 21:23 . 2007-06-24 20:56 47368 ----a-w- c:\windows\system32\drivers\btcusb.sys
2012-01-29 21:23 . 2007-06-24 20:56 16392 ----a-w- c:\windows\system32\btinstall.dll
2012-01-29 19:44 . 2012-01-29 19:44 -------- d-----w- c:\windows\system32\Macromed
2012-01-29 19:19 . 2012-01-29 19:45 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-01-29 18:28 . 2012-01-29 18:28 -------- d-----w- c:\programdata\ASUS
2012-01-29 10:21 . 2012-01-29 10:22 -------- d-----w- C:\MyBootCD
2012-01-28 23:56 . 2012-01-28 23:57 -------- d-----w- c:\program files (x86)\Common Files\Nero
2012-01-28 23:56 . 2012-01-29 00:01 -------- d-----w- c:\program files (x86)\Nero
2012-01-28 23:24 . 2012-01-28 23:24 -------- d-----w- c:\programdata\ashampoo
2012-01-28 23:24 . 2012-01-28 23:37 -------- d-----w- c:\program files (x86)\Ashampoo
2012-01-28 23:17 . 2012-01-30 18:30 -------- d-----w- c:\program files (x86)\CrystalDiskInfo
2012-01-28 22:39 . 2012-02-02 17:54 -------- d-----w- C:\rsit
2012-01-28 22:39 . 2012-02-02 17:53 -------- d-----w- c:\program files\trend micro
2012-01-28 22:16 . 2012-01-28 22:16 -------- d-----w- c:\program files (x86)\Common Files\Symantec Shared
2012-01-28 17:26 . 2012-01-28 17:26 21712 ----a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS
2012-01-28 17:23 . 2012-01-28 17:32 -------- d-----w- c:\program files (x86)\HWiNFO32
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\programdata\Symantec
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\windows\system32\drivers\NSSx64
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\program files (x86)\Norton Security Scan
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\programdata\Norton
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\program files (x86)\NortonInstaller
2012-01-27 20:46 . 2012-01-30 18:30 -------- d-----w- c:\programdata\McAfee Security Scan
2012-01-27 20:46 . 2012-01-27 20:46 -------- d-----w- c:\programdata\McAfee
2012-01-27 20:46 . 2012-01-27 20:46 -------- d-----w- c:\program files (x86)\McAfee Security Scan
2012-01-27 20:46 . 2012-01-27 20:46 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2012-01-27 20:43 . 2012-01-27 20:43 -------- d-----w- c:\windows\SysWow64\Adobe
2012-01-27 16:20 . 2012-01-27 16:20 -------- d-----w- C:\NVIDIA
2012-01-27 15:39 . 2010-12-14 15:34 550512 ----a-w- c:\windows\system32\VIASysFx.dll
2012-01-27 15:39 . 2010-12-14 15:34 993392 ----a-w- c:\windows\system32\VIAPropPageExt.dll
2012-01-27 15:39 . 2010-12-14 15:34 86640 ----a-w- c:\windows\system32\ViaMicArrayPropPageExt.dll
2012-01-27 15:39 . 2010-12-14 15:34 202864 ----a-w- c:\windows\system32\ViaMicArrayAPO.dll
2012-01-27 15:39 . 2010-12-14 15:34 27760 ----a-w- c:\windows\system32\ViakaraokeSrv.exe
2012-01-27 15:39 . 2010-12-14 15:34 1357424 ----a-w- c:\windows\system32\drivers\viahduaa.sys
2012-01-27 15:39 . 2010-12-14 15:34 123504 ----a-w- c:\windows\system32\ViaKaraokeApo.dll
2012-01-27 15:39 . 2010-12-14 15:34 91760 ----a-w- c:\windows\system32\Dts2PropPageExt.dll
2012-01-27 15:39 . 2010-12-14 15:34 116848 ----a-w- c:\windows\system32\ViaKaraokePropPageExt.dll
2012-01-27 15:39 . 2010-12-14 15:34 248944 ----a-w- c:\windows\system32\Dts2APO.dll
2012-01-27 15:39 . 2011-09-21 09:25 21992 ----a-w- c:\windows\system32\drivers\cpuz135_x64.sys
2012-01-27 15:39 . 2012-01-27 15:39 -------- d-----w- c:\program files\CPUID
2012-01-27 15:36 . 2012-01-27 15:37 -------- d-----w- c:\program files (x86)\audio
2012-01-27 15:21 . 2012-01-27 15:21 -------- d-----w- c:\windows\SysWow64\Atheros_L1e
2012-01-27 15:19 . 2012-01-30 18:30 -------- d-----w- c:\programdata\FLEXnet
2012-01-27 15:19 . 2010-06-30 11:02 52736 ----a-w- c:\windows\system32\drivers\btmcom.sys
2012-01-27 15:18 . 2012-01-30 18:30 -------- d-----w- c:\program files\Motorola
2012-01-27 15:18 . 2010-07-28 16:52 476928 ----a-w- c:\windows\system32\drivers\btmusb.sys
2012-01-27 15:18 . 2010-07-15 11:22 323848 ----a-w- c:\windows\system32\btmcls.dll
2012-01-27 15:18 . 2012-01-30 18:30 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2012-01-27 15:18 . 2012-01-30 18:30 -------- d-----w- c:\program files (x86)\Common Files\Macrovision Shared
2012-01-27 15:08 . 2012-01-27 15:08 -------- d-----w- c:\program files (x86)\Driver-Soft
2012-01-25 20:31 . 2012-01-25 20:31 -------- d-----w- c:\program files (x86)\ESET
2012-01-25 16:07 . 2012-01-25 16:07 243 ----a-w- C:\user.js
2012-01-25 16:07 . 2012-01-25 16:07 -------- d-----w- c:\programdata\Babylon
2012-01-25 16:07 . 2012-01-25 16:07 -------- d-----w- c:\program files\Logon Screen
2012-01-22 20:25 . 2009-09-04 16:29 235344 ----a-w- c:\windows\SysWow64\d3dx11_42.dll
2012-01-22 20:24 . 2008-07-10 10:00 3851784 ----a-w- c:\windows\SysWow64\D3DX9_39.dll
2012-01-22 20:19 . 2011-11-02 22:08 509952 ----a-w- c:\windows\system32\ntshrui.dll
2012-01-22 20:19 . 2011-11-02 21:09 442880 ----a-w- c:\windows\SysWow64\ntshrui.dll
2012-01-22 20:18 . 2012-01-22 20:21 -------- d--h--w- c:\windows\msdownld.tmp
2012-01-22 13:31 . 2012-01-22 13:31 -------- d-----w- c:\program files (x86)\FastStone Image Viewer
2012-01-22 13:23 . 2012-01-22 13:23 -------- d-----w- c:\program files (x86)\Lamer
2012-01-22 13:14 . 2011-11-28 13:51 33872 ----a-w- c:\windows\system32\drivers\anvsnddrv.sys
2012-01-22 13:14 . 2011-11-28 13:51 235520 ----a-w- c:\windows\SysWow64\xvidvfw.dll
2012-01-22 13:14 . 2011-11-28 13:51 632832 ----a-w- c:\windows\SysWow64\xvidcore.dll
2012-01-22 13:14 . 2011-11-28 13:51 143872 ----a-w- c:\windows\SysWow64\xvid.ax
2012-01-22 13:11 . 2012-01-22 13:27 -------- d-----w- c:\program files (x86)\AnvSoft
2012-01-22 13:09 . 2012-01-22 13:09 -------- d-----w- c:\program files (x86)\Conduit
2012-01-22 13:09 . 2012-01-22 13:09 -------- d-----w- c:\program files (x86)\uTorrent
2012-01-22 12:55 . 2012-01-22 12:55 -------- d-----w- c:\windows\system32\SPReview
2012-01-22 11:55 . 2012-01-22 11:55 -------- d-----w- c:\windows\system32\EventProviders
2012-01-22 11:52 . 2010-11-20 13:27 2086912 ----a-w- c:\windows\system32\ole32.dll
2012-01-22 11:51 . 2010-11-20 13:27 1246720 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tipskins.dll
2012-01-22 11:50 . 2010-11-20 13:27 1808384 ----a-w- c:\windows\system32\pnidui.dll
2012-01-22 11:49 . 2010-11-20 13:27 244224 ----a-w- c:\windows\system32\spp.dll
2012-01-22 11:48 . 2010-11-20 13:24 442368 ----a-w- c:\windows\system32\winspool.drv
2012-01-22 11:47 . 2010-11-20 13:28 166784 ----a-w- c:\windows\system32\basecsp.dll
2012-01-22 11:46 . 2010-11-20 13:27 172544 ----a-w- c:\windows\system32\twext.dll
2012-01-22 11:45 . 2010-11-20 13:27 37376 ----a-w- c:\windows\system32\shimgvw.dll
2012-01-22 11:44 . 2010-11-20 13:33 6656 ----a-w- c:\windows\system32\drivers\cs-CZ\rdvgkmd.sys.mui
2012-01-22 11:44 . 2010-11-20 13:25 4096 ----a-w- c:\windows\system32\drivers\cs-CZ\tsusbhub.sys.mui
2012-01-22 11:44 . 2010-11-20 13:32 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\rdpwd.sys.mui
2012-01-22 11:44 . 2010-11-20 13:26 3584 ----a-w- c:\windows\system32\drivers\cs-CZ\tsusbflt.sys.mui
2012-01-22 11:44 . 2010-11-20 13:32 4608 ----a-w- c:\windows\system32\drivers\cs-CZ\kbdclass.sys.mui
2012-01-22 11:44 . 2010-11-20 13:31 3072 ----a-w- c:\windows\system32\drivers\cs-CZ\GAGP30KX.SYS.mui
2012-01-22 11:44 . 2010-11-20 13:43 3584 ----a-w- c:\windows\system32\drivers\pl-PL\tsusbflt.sys.mui
2012-01-22 11:44 . 2010-11-20 13:41 6656 ----a-w- c:\windows\system32\drivers\pl-PL\rdvgkmd.sys.mui
2012-01-22 11:44 . 2010-11-20 13:38 4608 ----a-w- c:\windows\system32\drivers\pl-PL\tsusbhub.sys.mui
2012-01-22 11:44 . 2010-11-20 13:45 2560 ----a-w- c:\windows\system32\drivers\pl-PL\rdpwd.sys.mui
2012-01-22 11:44 . 2010-11-20 13:41 3072 ----a-w- c:\windows\system32\drivers\pl-PL\NV_AGP.SYS.mui
2012-01-22 11:44 . 2010-11-20 13:38 7680 ----a-w- c:\windows\system32\drivers\pl-PL\luafv.sys.mui
2012-01-22 11:43 . 2010-11-20 13:34 6656 ----a-w- c:\windows\system32\drivers\hu-HU\rdvgkmd.sys.mui
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-22 14:03 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2012-01-22 14:03 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2012-01-21 19:30 . 2012-01-21 19:30 203776 ----a-w- c:\windows\SysWow64\webcheck.dll
2012-01-21 19:30 . 2012-01-21 19:30 249344 ----a-w- c:\windows\system32\webcheck.dll
2011-12-06 14:55 . 2010-04-20 04:30 53248 ----a-w- c:\windows\SysWow64\CSVer.dll
2009-04-08 17:31 . 2009-04-08 17:31 106496 ----a-w- c:\program files (x86)\Common Files\CPInstallAction.dll
2008-08-12 04:45 . 2008-08-12 04:45 155648 ----a-w- c:\program files (x86)\Common Files\MSIactionall.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-01-26_05.16.01 )))))))))))))))))))))))))))))))))))))))))
.
- 2011-02-11 17:41 . 2011-02-11 17:41 23552 c:\windows\SysWOW64\igfxexps32.dll
+ 2012-01-29 21:27 . 2011-10-13 10:32 23552 c:\windows\SysWOW64\igfxexps32.dll
+ 2012-01-29 21:27 . 2011-10-13 11:04 92356 c:\windows\SysWOW64\igfcg500m.bin
+ 2009-07-14 04:54 . 2012-02-03 07:29 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-07-14 04:54 . 2012-01-25 23:47 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:54 . 2012-02-03 07:29 65536 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2012-02-03 07:29 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-07-14 04:54 . 2012-01-25 23:47 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2012-01-27 15:21 . 2007-06-20 19:13 82432 c:\windows\SysWOW64\Atheros_L1e\DriUpdate64.exe
+ 2012-01-27 20:43 . 2012-01-27 20:43 87901 c:\windows\SysWOW64\Adobe\Shockwave 11\uninstaller.exe
+ 2011-11-22 13:34 . 2011-11-22 13:34 86016 c:\windows\SysWOW64\Adobe\Shockwave 11\SwMenu.dll
+ 2011-11-22 13:19 . 2011-11-22 13:19 73408 c:\windows\SysWOW64\Adobe\Shockwave 11\gtapi.dll
+ 2011-11-22 13:19 . 2011-11-22 13:19 64512 c:\windows\SysWOW64\Adobe\Shockwave 11\gcapi_dll.dll
+ 2011-11-22 13:36 . 2011-11-22 13:36 12800 c:\windows\SysWOW64\Adobe\Shockwave 11\DynaPlayer.dll
+ 2010-04-20 04:34 . 2012-02-03 07:17 51294 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2012-02-03 07:32 51240 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2009-12-14 09:53 . 2011-10-13 10:37 61952 c:\windows\system32\igfxsrvc.dll
+ 2012-01-29 21:27 . 2011-10-13 10:37 27648 c:\windows\system32\igfxexps.dll
- 2009-12-14 09:53 . 2009-12-14 09:53 27648 c:\windows\system32\igfxexps.dll
+ 2012-01-29 21:27 . 2011-10-13 11:04 92356 c:\windows\system32\igfcg500m.bin
+ 2009-07-14 05:30 . 2012-02-01 16:21 86016 c:\windows\system32\DriverStore\infpub.dat
- 2009-07-14 05:30 . 2012-01-25 20:21 86016 c:\windows\system32\DriverStore\infpub.dat
+ 2012-01-27 15:39 . 2010-12-14 15:34 86640 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\ViaMicArrayPropPageExt.dll
+ 2012-01-27 15:39 . 2010-12-14 15:34 27760 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\ViakaraokeSrv.exe
+ 2012-01-27 15:39 . 2007-12-04 10:28 86016 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\nQPropPageExt.dll
+ 2012-01-27 15:39 . 2007-12-04 10:28 82432 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\nQAPO.dll
+ 2012-01-27 15:39 . 2010-12-14 15:34 91760 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\Dts2PropPageExt.dll
+ 2009-06-05 17:15 . 2009-06-05 17:15 42176 c:\windows\system32\DriverStore\FileRepository\snp2uvc.inf_amd64_neutral_ec341c26c1ceaaa3\x64\sncduvc.sys
+ 2009-06-05 17:15 . 2009-06-05 17:15 19008 c:\windows\system32\DriverStore\FileRepository\snp2uvc.inf_amd64_neutral_ec341c26c1ceaaa3\x64\DrvInst.exe
+ 2010-03-29 10:17 . 2010-03-29 10:17 64040 c:\windows\system32\DriverStore\FileRepository\netl1e64.inf_amd64_neutral_c498f99be7861086\L1E62x64.sys
+ 2012-01-29 21:28 . 2011-10-13 11:10 90112 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igxpco64.dll
+ 2012-01-29 21:27 . 2011-10-13 10:37 61952 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxsrvc.dll
+ 2012-01-29 21:27 . 2011-10-13 10:32 23552 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxexps32.dll
+ 2012-01-29 21:27 . 2011-10-13 10:37 27648 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxexps.dll
+ 2012-01-29 21:27 . 2011-10-13 11:04 92356 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfcg500m.bin
+ 2012-01-27 15:18 . 2010-07-16 13:08 30208 c:\windows\system32\DriverStore\FileRepository\btmnet.inf_amd64_neutral_984a90e8af1542cf\Win64\btmnet.sys
+ 2012-01-27 15:18 . 2010-06-30 11:02 34176 c:\windows\system32\DriverStore\FileRepository\btmhid.inf_amd64_neutral_cd525431569ff866\Win64\btmhid.sys
+ 2012-01-27 15:18 . 2010-06-30 11:02 52736 c:\windows\system32\DriverStore\FileRepository\btmcom.inf_amd64_neutral_bd93bed26f3d41c4\Win64\btmcom.sys
+ 2012-01-27 15:18 . 2010-07-26 15:05 43008 c:\windows\system32\DriverStore\FileRepository\btmaud.inf_amd64_neutral_122dad32d8fc416c\Win64\btmaud.sys
+ 2012-01-29 21:23 . 2011-07-27 09:28 19464 c:\windows\system32\DriverStore\FileRepository\btcusb.inf_amd64_neutral_255252c2f936c65a\btinstall.dll
+ 2012-01-29 21:23 . 2011-07-27 09:28 42888 c:\windows\system32\DriverStore\FileRepository\btcusb.inf_amd64_neutral_255252c2f936c65a\btcusb.sys
+ 2010-03-29 10:17 . 2010-03-29 10:17 64040 c:\windows\system32\drivers\L1E62x64.sys
+ 2009-07-14 04:46 . 2012-02-03 07:32 90512 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
+ 2012-01-31 14:30 . 2012-01-31 14:30 25600 c:\windows\Installer\f72daf.msi
+ 2012-01-28 23:59 . 2012-01-28 23:59 75048 c:\windows\Installer\{EDCDFAD5-DF80-4600-A493-E9DAD6810230}\ScWaveEditorStartM_3939FC794F8E448CB7E44465B4F58E0D.exe
+ 2012-01-28 23:59 . 2012-01-28 23:59 75048 c:\windows\Installer\{EDCDFAD5-DF80-4600-A493-E9DAD6810230}\ARPPRODUCTICON.exe
- 2012-01-21 17:50 . 2012-01-21 17:50 45056 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\BsolStartupShortcut_5F4A9C5DDE4741A284DAEED5CA08428B.exe
+ 2012-01-31 19:22 . 2012-01-31 19:22 45056 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\BsolStartupShortcut_5F4A9C5DDE4741A284DAEED5CA08428B.exe
+ 2012-01-31 19:22 . 2012-01-31 19:22 45056 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\BsolDesktopShortcut_5F4A9C5DDE4741A284DAEED5CA08428B.exe
- 2012-01-21 17:50 . 2012-01-21 17:50 45056 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\BsolDesktopShortcut_5F4A9C5DDE4741A284DAEED5CA08428B.exe
- 2012-01-21 17:50 . 2012-01-21 17:50 45056 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\BlueSoleilShortcut_A4441B3FD7624BD9B8E935C7D26B381D.exe
+ 2012-01-31 19:22 . 2012-01-31 19:22 45056 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\BlueSoleilShortcut_A4441B3FD7624BD9B8E935C7D26B381D.exe
+ 2012-01-29 00:01 . 2012-01-29 00:01 75048 c:\windows\Installer\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}\ARPPRODUCTICON.exe
+ 2012-01-27 20:43 . 2012-01-27 20:43 10134 c:\windows\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 73624 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\wow_helper.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 17304 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\ViewerPS.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 35736 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\reader_sl.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 88992 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\PDFPrevHndlr.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 94608 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\eula.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 64952 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\armsvc.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 49064 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\acrotextextractor.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 17824 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\AcroRd32Info.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 63912 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\acroiehelpershim.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 64928 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\AcroIEHelper.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 63384 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\Acrofx32.dll
+ 2009-10-22 12:35 . 2009-10-22 12:35 2694 c:\windows\Uninstvga.bat
+ 2012-01-21 17:53 . 2012-02-02 23:18 3704 c:\windows\system32\wdi\ERCQueuedResolutions.dat
+ 2012-01-21 17:26 . 2012-02-03 07:32 9944 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2228829363-2496496693-1347899441-1001_UserData.bin
+ 2012-01-29 21:27 . 2011-10-13 10:36 4096 c:\windows\system32\IGFXDEVLib.dll
- 2009-12-14 09:52 . 2009-12-14 09:52 4096 c:\windows\system32\IGFXDEVLib.dll
+ 2009-10-22 12:35 . 2009-10-22 12:35 2694 c:\windows\system32\DriverStore\FileRepository\snp2uvc.inf_amd64_neutral_ec341c26c1ceaaa3\Uninstvga.bat
+ 2008-06-25 18:00 . 2008-06-25 18:00 1682 c:\windows\system32\DriverStore\FileRepository\snp2uvc.inf_amd64_neutral_ec341c26c1ceaaa3\Uninstuxga.bat
+ 2009-02-02 08:57 . 2009-02-02 08:57 2008 c:\windows\system32\DriverStore\FileRepository\snp2uvc.inf_amd64_neutral_ec341c26c1ceaaa3\Uninstsxga.bat
+ 2012-01-29 21:27 . 2011-10-13 10:36 4096 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\IGFXDEVLib.dll
- 2012-01-25 20:17 . 2012-01-25 20:17 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-02-03 07:28 . 2012-02-03 07:28 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-02-03 07:28 . 2012-02-03 07:28 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2012-01-25 20:17 . 2012-01-25 20:17 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2012-01-21 17:50 . 2012-01-21 17:50 8854 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\Uninstall_BlueSoleil_DA0C16B5026041ACAA4BA0D7EA548378.exe
+ 2012-01-31 19:22 . 2012-01-31 19:22 8854 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\Uninstall_BlueSoleil_DA0C16B5026041ACAA4BA0D7EA548378.exe
+ 2012-01-31 19:22 . 2012-01-31 19:22 3638 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\ARPPRODUCTICON.exe
- 2012-01-21 17:50 . 2012-01-21 17:50 3638 c:\windows\Installer\{B9A17C96-1348-45CB-BB0A-1BCB3A0F854E}\ARPPRODUCTICON.exe
+ 2009-09-14 18:05 . 2009-09-14 18:05 374064 c:\windows\SysWOW64\twnlib4.dll
+ 2012-01-29 19:45 . 2012-01-29 19:45 247968 c:\windows\SysWOW64\Macromed\Flash\FlashUtil11e_Plugin.exe
+ 2012-01-29 19:19 . 2012-01-29 19:19 247968 c:\windows\SysWOW64\Macromed\Flash\FlashUtil11e_ActiveX.exe
+ 2012-01-29 19:19 . 2012-01-29 19:19 335520 c:\windows\SysWOW64\Macromed\Flash\FlashUtil11e_ActiveX.dll
+ 2009-09-14 18:05 . 2009-09-14 18:05 808240 c:\windows\SysWOW64\imagxra7.dll
+ 2009-09-14 18:05 . 2009-09-14 18:05 263472 c:\windows\SysWOW64\imagxr7.dll
+ 2009-09-14 18:04 . 2009-09-14 18:04 497296 c:\windows\SysWOW64\imagxpr7.dll
+ 2012-01-29 21:27 . 2011-10-13 11:04 982240 c:\windows\SysWOW64\igkrng500.bin
+ 2012-01-29 21:27 . 2011-10-13 10:31 228864 c:\windows\SysWOW64\igfxdv32.dll
+ 2009-12-14 10:16 . 2011-10-13 10:58 571904 c:\windows\SysWOW64\igdumdx32.dll
+ 2012-01-29 21:27 . 2011-10-13 11:04 439308 c:\windows\SysWOW64\igcompkrng500.bin
- 2012-01-21 19:11 . 2012-01-25 20:17 262144 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2012-01-21 19:11 . 2012-02-03 07:29 262144 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2011-11-22 13:19 . 2011-11-22 13:19 279992 c:\windows\SysWOW64\Adobe\Shockwave 11\SymCCIS.dll
+ 2011-11-22 13:34 . 2011-11-22 13:34 114176 c:\windows\SysWOW64\Adobe\Shockwave 11\SwInit.exe
+ 2011-11-22 13:36 . 2011-11-22 13:36 434176 c:\windows\SysWOW64\Adobe\Shockwave 11\Proj.dll
+ 2011-11-22 13:35 . 2011-11-22 13:35 365056 c:\windows\SysWOW64\Adobe\Shockwave 11\Plugin.dll
+ 2011-11-22 13:23 . 2011-11-22 13:23 990208 c:\windows\SysWOW64\Adobe\Shockwave 11\iml32.dll
+ 2011-11-22 13:19 . 2011-11-22 13:19 929792 c:\windows\SysWOW64\Adobe\Shockwave 11\gi.dll
+ 2011-11-22 13:34 . 2011-11-22 13:34 542720 c:\windows\SysWOW64\Adobe\Shockwave 11\Control.dll
+ 2011-11-22 13:42 . 2011-11-22 13:42 113080 c:\windows\SysWOW64\Adobe\Director\SWDNLD.EXE
+ 2011-11-22 13:42 . 2011-11-22 13:42 279480 c:\windows\SysWOW64\Adobe\Director\SwDir.dll
+ 2011-11-22 13:36 . 2011-11-22 13:36 145920 c:\windows\SysWOW64\Adobe\Director\np32dsw.dll
+ 2012-01-22 21:16 . 2012-01-27 12:05 131810 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2009-08-03 19:55 . 2012-02-01 14:57 689726 c:\windows\system32\perfh015.dat
- 2009-08-03 19:55 . 2012-01-24 18:48 689726 c:\windows\system32\perfh015.dat
+ 2009-08-03 20:06 . 2012-02-01 14:57 632180 c:\windows\system32\perfh00E.dat
- 2009-08-03 20:06 . 2012-01-24 18:48 632180 c:\windows\system32\perfh00E.dat
+ 2009-07-14 02:36 . 2012-02-01 14:57 616008 c:\windows\system32\perfh009.dat
- 2009-07-14 02:36 . 2012-01-24 18:48 616008 c:\windows\system32\perfh009.dat
+ 2009-08-03 20:00 . 2012-02-01 14:57 631292 c:\windows\system32\perfh005.dat
- 2009-08-03 20:00 . 2012-01-24 18:48 631292 c:\windows\system32\perfh005.dat
- 2009-08-03 19:55 . 2012-01-24 18:48 134840 c:\windows\system32\perfc015.dat
+ 2009-08-03 19:55 . 2012-02-01 14:57 134840 c:\windows\system32\perfc015.dat
- 2009-08-03 20:06 . 2012-01-24 18:48 148310 c:\windows\system32\perfc00E.dat
+ 2009-08-03 20:06 . 2012-02-01 14:57 148310 c:\windows\system32\perfc00E.dat
- 2009-07-14 02:36 . 2012-01-24 18:48 106388 c:\windows\system32\perfc009.dat
+ 2009-07-14 02:36 . 2012-02-01 14:57 106388 c:\windows\system32\perfc009.dat
+ 2009-08-03 20:00 . 2012-02-01 14:57 121914 c:\windows\system32\perfc005.dat
- 2009-08-03 20:00 . 2012-01-24 18:48 121914 c:\windows\system32\perfc005.dat
+ 2012-01-29 19:45 . 2012-01-29 19:45 461984 c:\windows\system32\Macromed\Flash\FlashUtil64_11_1_102_Plugin.exe
+ 2012-01-31 23:21 . 2012-01-31 23:21 461984 c:\windows\system32\Macromed\Flash\FlashUtil64_11_1_102_ActiveX.exe
+ 2012-01-31 23:21 . 2012-01-31 23:21 376480 c:\windows\system32\Macromed\Flash\FlashUtil64_11_1_102_ActiveX.dll
+ 2012-01-29 21:27 . 2011-10-13 11:04 982240 c:\windows\system32\igkrng500.bin
+ 2012-01-29 21:27 . 2011-10-13 11:14 162584 c:\windows\system32\igfxtray.exe
+ 2012-01-29 21:27 . 2011-10-13 10:37 380416 c:\windows\system32\igfxTMM.dll
+ 2012-01-29 21:27 . 2011-10-13 11:14 510232 c:\windows\system32\igfxsrvc.exe
+ 2009-12-14 09:52 . 2011-10-13 10:36 830464 c:\windows\system32\igfxress.dll
+ 2011-02-11 17:46 . 2011-10-13 10:37 244224 c:\windows\system32\igfxpph.dll
+ 2012-01-29 21:27 . 2011-10-13 11:14 417560 c:\windows\system32\igfxpers.exe
+ 2012-01-29 21:27 . 2011-10-13 11:14 224024 c:\windows\system32\igfxext.exe
- 2009-12-14 09:52 . 2009-12-14 09:52 142336 c:\windows\system32\igfxdo.dll
+ 2012-01-29 21:27 . 2011-10-13 10:36 142336 c:\windows\system32\igfxdo.dll
+ 2009-12-14 09:52 . 2011-10-13 10:36 272896 c:\windows\system32\igfxdev.dll
+ 2012-01-29 21:27 . 2011-10-13 11:04 439308 c:\windows\system32\igcompkrng500.bin
+ 2012-01-29 21:27 . 2011-10-13 11:14 386840 c:\windows\system32\hkcmd.exe
+ 2009-12-14 09:52 . 2011-10-13 10:36 108544 c:\windows\system32\hccutils.dll
- 2009-12-14 09:52 . 2009-12-14 09:52 108544 c:\windows\system32\hccutils.dll
+ 2012-01-29 21:27 . 2011-10-13 10:36 119808 c:\windows\system32\gfxSrvc.dll
+ 2009-07-14 05:30 . 2012-02-01 16:21 143360 c:\windows\system32\DriverStore\infstrng.dat
- 2009-07-14 05:30 . 2012-01-25 20:21 143360 c:\windows\system32\DriverStore\infstrng.dat
+ 2009-07-14 05:30 . 2012-02-01 16:21 143360 c:\windows\system32\DriverStore\infstor.dat
- 2009-07-14 05:30 . 2012-01-22 16:52 143360 c:\windows\system32\DriverStore\infstor.dat
+ 2012-01-27 15:39 . 2010-12-14 15:34 550512 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\VIASysFx.dll
+ 2012-01-27 15:39 . 2010-12-14 15:34 993392 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\VIAPropPageExt.dll
+ 2012-01-27 15:39 . 2010-12-14 15:34 202864 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\ViaMicArrayAPO.dll
+ 2012-01-27 15:39 . 2010-12-14 15:34 116848 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\ViaKaraokePropPageExt.dll
+ 2012-01-27 15:39 . 2010-12-14 15:34 123504 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\ViaKaraokeApo.dll
+ 2012-01-27 15:35 . 2009-06-12 10:01 143360 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\slviq64.dll
+ 2012-01-27 15:39 . 2009-06-12 10:07 154112 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\slvipp64.dll
+ 2012-01-27 15:39 . 2009-06-12 09:59 259584 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\sluapo64.dll
+ 2012-01-27 15:39 . 2009-06-12 09:57 160256 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\sltshd64.dll
+ 2012-01-27 15:39 . 2009-06-12 10:00 416768 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\slprop64.dll
+ 2012-01-27 15:39 . 2009-06-12 10:04 188416 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\slmaxv64.dll
+ 2012-01-27 15:39 . 2009-06-12 10:04 193536 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\slInit64.dll
+ 2012-01-27 15:39 . 2009-06-12 10:01 140800 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\slh36064.dll
+ 2012-01-27 15:39 . 2009-06-12 10:01 117248 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\slgeq64.dll
+ 2012-01-27 15:39 . 2009-06-12 09:57 131584 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\slcsii64.dll
+ 2012-01-27 15:39 . 2009-06-12 09:58 169472 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\slcshp64.dll
+ 2012-01-27 15:39 . 2010-12-14 15:34 248944 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\Dts2APO.dll
+ 2009-06-05 17:15 . 2009-06-05 17:15 381504 c:\windows\system32\DriverStore\FileRepository\snp2uvc.inf_amd64_neutral_ec341c26c1ceaaa3\x64\vsnpvc64.dll
+ 2009-06-05 17:14 . 2009-06-05 17:14 311872 c:\windows\system32\DriverStore\FileRepository\snp2uvc.inf_amd64_neutral_ec341c26c1ceaaa3\vsnp2uvc.dll
+ 2012-01-29 21:28 . 2011-10-13 10:30 206336 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\iglhsip64.dll
+ 2012-01-29 21:28 . 2011-10-13 10:30 208896 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\iglhsip32.dll
+ 2012-01-29 21:28 . 2011-10-13 10:30 188416 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\iglhcp64.dll
+ 2012-01-29 21:28 . 2011-10-13 10:30 147456 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\iglhcp32.dll
+ 2012-01-29 21:28 . 2011-10-13 11:04 874048 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igkrng575.bin
+ 2012-01-29 21:27 . 2011-10-13 11:04 982240 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igkrng500.bin
+ 2012-01-29 21:27 . 2011-10-13 11:14 162584 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxtray.exe
+ 2012-01-29 21:27 . 2011-10-13 10:37 380416 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxTMM.dll
+ 2012-01-29 21:27 . 2011-10-13 11:14 510232 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxsrvc.exe
+ 2012-01-29 21:27 . 2011-10-13 10:36 830464 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxress.dll
+ 2012-01-29 21:27 . 2011-10-13 10:37 244224 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxpph.dll
+ 2012-01-29 21:27 . 2011-10-13 11:14 417560 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxpers.exe
+ 2012-01-29 21:27 . 2011-10-13 11:14 224024 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxext.exe
+ 2012-01-29 21:27 . 2011-10-13 10:31 228864 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxdv32.dll
+ 2012-01-29 21:27 . 2011-10-13 10:36 142336 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxdo.dll
+ 2012-01-29 21:27 . 2011-10-13 10:36 272896 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfxdev.dll
+ 2012-01-29 21:27 . 2011-10-13 11:04 104796 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igfcg575m.bin
+ 2012-01-29 21:27 . 2011-10-13 10:58 571904 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igdumdx32.dll
+ 2012-01-29 21:27 . 2011-10-13 11:04 127868 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igcompkrng575.bin
+ 2012-01-29 21:27 . 2011-10-13 11:04 439308 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igcompkrng500.bin
+ 2012-01-29 21:27 . 2011-10-13 11:14 386840 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\hkcmd.exe
+ 2012-01-29 21:27 . 2011-10-13 10:36 108544 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\hccutils.dll
+ 2012-01-29 21:27 . 2011-10-13 10:36 119808 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\gfxSrvc.dll
+ 2012-01-29 21:27 . 2011-10-13 11:14 152856 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\difx64.exe
+ 2012-02-01 16:21 . 2011-10-17 14:55 559384 c:\windows\system32\DriverStore\FileRepository\iaahci.inf_amd64_neutral_74f348dee3038044\iaStor.sys
+ 2012-01-27 15:18 . 2010-07-28 16:52 476928 c:\windows\system32\DriverStore\FileRepository\btmusb.inf_amd64_neutral_6cbec41ad052c134\Win64\btmusb.sys
+ 2012-01-27 15:18 . 2010-07-15 11:22 323848 c:\windows\system32\DriverStore\FileRepository\btmusb.inf_amd64_neutral_6cbec41ad052c134\Win64\btmcls.dll
+ 2012-01-29 21:27 . 2011-10-13 11:14 152856 c:\windows\system32\difx64.exe
- 2012-01-21 23:02 . 2012-01-22 17:24 453272 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2012-01-21 23:02 . 2012-01-29 23:03 453272 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2009-07-14 05:01 . 2012-02-03 07:21 389832 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2009-07-14 05:01 . 2012-01-25 20:15 389832 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2007-04-10 16:31 . 2007-04-10 16:31 930816 c:\windows\Installer\d2a0a0.msi
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{FCF00A6E-FB58-477A-ABE9-232907105521}\NeroCoverDesigner_EF89736D5D4B4006B5966729E642699E.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{FCF00A6E-FB58-477A-ABE9-232907105521}\ARPPRODUCTICON.exe
+ 2012-01-29 00:00 . 2012-01-29 00:00 587048 c:\windows\Installer\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}\ScStartSmartDeskto_3AF47A4E14DF4546B1449D27245505A0.exe
+ 2012-01-29 00:00 . 2012-01-29 00:00 587048 c:\windows\Installer\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}\NeroStartSmart.ex_2882597C6E684EBDA23F3CF2CA0CBC30.exe
+ 2012-01-29 00:00 . 2012-01-29 00:00 587048 c:\windows\Installer\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}\ARPPRODUCTICON.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 300328 c:\windows\Installer\{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}\ARPPRODUCTICON.exe
+ 2012-01-28 23:58 . 2012-01-28 23:58 587048 c:\windows\Installer\{F412B4AF-388C-4FF5-9B2F-33DB1C536953}\NeroInfoTool.ex_2882597C6E684EBDA23F3CF2CA0CBC30.exe
+ 2012-01-28 23:58 . 2012-01-28 23:58 587048 c:\windows\Installer\{F412B4AF-388C-4FF5-9B2F-33DB1C536953}\ARPPRODUCTICON.exe
+ 2012-01-28 23:58 . 2012-01-28 23:58 587048 c:\windows\Installer\{E337E787-CF61-4B7B-B84F-509202A54023}\NeroRescueAgent.ex_2882597C6E684EBDA23F3CF2CA0CBC30.exe
+ 2012-01-28 23:58 . 2012-01-28 23:58 587048 c:\windows\Installer\{E337E787-CF61-4B7B-B84F-509202A54023}\ARPPRODUCTICON.exe
+ 2012-01-28 23:59 . 2012-01-28 23:59 587048 c:\windows\Installer\{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}\ScSoundTraxStartMe_92F39C657A3840139A47B92C3EFBBBBB.exe
+ 2012-01-28 23:59 . 2012-01-28 23:59 587048 c:\windows\Installer\{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}\ARPPRODUCTICON.exe
+ 2012-01-28 23:56 . 2012-01-28 23:56 300328 c:\windows\Installer\{C3580AC4-C827-4332-B935-9A282ED5BB97}\ARPPRODUCTICON.exe
+ 2012-01-28 23:59 . 2012-01-28 23:59 587048 c:\windows\Installer\{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}\NewShortcut1_28CF345AD4354131AA47B77D4165D813.exe
+ 2012-01-28 23:59 . 2012-01-28 23:59 587048 c:\windows\Installer\{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}\NeroVision.ex_2882597C6E684EBDA23F3CF2CA0CBC30.exe
+ 2012-01-28 23:59 . 2012-01-28 23:59 587048 c:\windows\Installer\{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}\ARPPRODUCTICON.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{943CFD7D-5336-47AF-9418-E02473A5A517}\ARPPRODUCTICON.exe
+ 2012-01-28 23:58 . 2012-01-28 23:58 587048 c:\windows\Installer\{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}\ScRecodeStartMenu_563A75F05683422E8C558ED3B6DA617D.exe
+ 2012-01-28 23:58 . 2012-01-28 23:58 587048 c:\windows\Installer\{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}\ARPPRODUCTICON.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{7A5D731D-B4B3-490E-B339-75685712BAAB}\ScBurningROMStartM_FF88F478D1E748AC86035D457D563142.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{7A5D731D-B4B3-490E-B339-75685712BAAB}\ScBurningROMStartM_7533AE23D677474387D2A66427FA7052.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{7A5D731D-B4B3-490E-B339-75685712BAAB}\ARPPRODUCTICON.exe
+ 2012-01-28 23:58 . 2012-01-28 23:58 587048 c:\windows\Installer\{70550193-1C22-445C-8FA4-564E155DB1A7}\NeroExpress.exe_81A8FD91A6494AD5B4998149EAAC7E7C.exe
+ 2012-01-28 23:58 . 2012-01-28 23:58 587048 c:\windows\Installer\{70550193-1C22-445C-8FA4-564E155DB1A7}\ARPPRODUCTICON.exe
+ 2012-01-28 23:56 . 2012-01-28 23:56 587048 c:\windows\Installer\{6DFB899F-17A2-48F0-A533-ED8D6866CF38}\ScControlCenterSta_FC2653898C5047A6A872CAF6433C43A8.exe
+ 2012-01-28 23:56 . 2012-01-28 23:56 587048 c:\windows\Installer\{6DFB899F-17A2-48F0-A533-ED8D6866CF38}\ARPPRODUCTICON.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{68AB6930-5BFF-4FF6-923B-516A91984FE6}\BackItUp._AB9F1F47710540918A47B78D2BED5DAD.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{68AB6930-5BFF-4FF6-923B-516A91984FE6}\BackItUp._6DE631547FD24BC5962A4E5F07A1BE20.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{68AB6930-5BFF-4FF6-923B-516A91984FE6}\ARPPRODUCTICON.exe
+ 2012-01-28 23:56 . 2012-01-28 23:56 300328 c:\windows\Installer\{63AA3EAB-23BB-48B2-9AD0-44F878075604}\ARPPRODUCTICON.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{34490F4E-48D0-492E-8249-B48BECF0537C}\NeroDiscSpeed.ex_2882597C6E684EBDA23F3CF2CA0CBC30.exe
+ 2012-01-28 23:57 . 2012-01-28 23:57 587048 c:\windows\Installer\{34490F4E-48D0-492E-8249-B48BECF0537C}\ARPPRODUCTICON.exe
+ 2012-01-28 23:56 . 2012-01-28 23:56 300328 c:\windows\Installer\{277C1559-4CF7-44FF-8D07-98AA9C13AABD}\ARPPRODUCTICON.exe
+ 2012-01-28 23:56 . 2012-01-28 23:56 300328 c:\windows\Installer\{237CCB62-8454-43E3-B158-3ACD0134852E}\ARPPRODUCTICON.exe
+ 2012-01-28 23:58 . 2012-01-28 23:58 587048 c:\windows\Installer\{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}\NeroMediaHub._63C8A7B0BBE5459F9AC436392B2FF50D.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 249232 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\sqlite.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 394136 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\pdfshell.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 183696 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\nppdf32.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 104344 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\AiodLite.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 937920 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\adobearm.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 102808 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\AcroRdIF.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 755088 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\AcroPDF.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 296344 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\acrobroker.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 205720 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\a3dutils.dll
+ 2010-04-20 04:38 . 2007-04-11 14:35 414632 c:\windows\difxapi.dll
- 2010-04-20 04:38 . 2007-04-11 07:34 414632 c:\windows\difxapi.dll
+ 2009-07-18 03:21 . 2012-01-29 19:45 8527008 c:\windows\SysWOW64\Macromed\Flash\NPSWF32.dll
+ 2009-09-14 18:05 . 2009-09-14 18:05 1762608 c:\windows\SysWOW64\imagx7.dll
+ 2009-12-14 10:21 . 2011-10-13 11:01 4967424 c:\windows\SysWOW64\igdumd32.dll
+ 2012-01-29 21:27 . 2011-10-13 10:55 4411392 c:\windows\SysWOW64\igd10umd32.dll
+ 2011-11-22 13:42 . 2011-11-22 13:42 1040824 c:\windows\SysWOW64\Adobe\Shockwave 11\SwHelper_1163633.exe
+ 2011-11-22 13:19 . 2011-11-22 13:19 2376368 c:\windows\SysWOW64\Adobe\Shockwave 11\gt.exe
+ 2011-11-22 13:24 . 2011-11-22 13:24 1742336 c:\windows\SysWOW64\Adobe\Shockwave 11\dirapi.dll
+ 2012-01-29 21:27 . 2011-10-13 11:05 6549504 c:\windows\system32\igdumd64.dll
+ 2011-02-11 18:07 . 2011-10-13 10:57 4722176 c:\windows\system32\igd10umd64.dll
+ 2012-01-29 21:27 . 2011-10-13 11:14 3157784 c:\windows\system32\GfxUI.exe
+ 2012-01-27 15:39 . 2010-12-14 15:34 1357424 c:\windows\system32\DriverStore\FileRepository\viahdb4.inf_amd64_neutral_b67db053dc9a0735\viahduaa.sys
+ 2009-06-05 17:15 . 2009-06-05 17:15 1806400 c:\windows\system32\DriverStore\FileRepository\snp2uvc.inf_amd64_neutral_ec341c26c1ceaaa3\x64\snp2uvc.sys
+ 2012-01-29 21:27 . 2011-10-13 11:05 6549504 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igdumd64.dll
+ 2012-01-29 21:27 . 2011-10-13 11:01 4967424 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igdumd32.dll
+ 2012-01-29 21:27 . 2011-10-13 10:57 4722176 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igd10umd64.dll
+ 2012-01-29 21:27 . 2011-10-13 10:55 4411392 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igd10umd32.dll
+ 2012-01-29 21:27 . 2011-10-13 11:14 3157784 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\GfxUI.exe
- 2009-07-14 04:45 . 2012-01-24 17:14 6056856 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
+ 2009-07-14 04:45 . 2012-02-03 07:32 6056856 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
+ 2012-01-21 22:46 . 2012-02-03 07:21 4139136 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2228829363-2496496693-1347899441-1001-12288.dat
+ 2011-06-06 20:43 . 2011-06-06 20:43 2328064 c:\windows\Installer\d2a098.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 2082816 c:\windows\Installer\97924.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 1616384 c:\windows\Installer\9791d.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 1616384 c:\windows\Installer\97915.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 1616896 c:\windows\Installer\9790d.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 1616384 c:\windows\Installer\97905.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 1616896 c:\windows\Installer\978fd.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 1616384 c:\windows\Installer\978f5.msi
+ 2012-01-28 23:51 . 2012-01-28 23:51 1616384 c:\windows\Installer\978ed.msi
+ 2012-01-28 23:51 . 2012-01-28 23:51 1616384 c:\windows\Installer\978e5.msi
+ 2012-01-28 23:51 . 2012-01-28 23:51 1616384 c:\windows\Installer\978dd.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 1616384 c:\windows\Installer\978d5.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 1616896 c:\windows\Installer\978cd.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 1616384 c:\windows\Installer\978c5.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 1616896 c:\windows\Installer\978bd.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 1616896 c:\windows\Installer\978b5.msi
+ 2012-01-28 23:54 . 2012-01-28 23:54 1616384 c:\windows\Installer\978ad.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 2910208 c:\windows\Installer\978a5.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 1940480 c:\windows\Installer\9789c.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 8159744 c:\windows\Installer\97894.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 3600384 c:\windows\Installer\9788c.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 2125312 c:\windows\Installer\9787c.msi
+ 2012-01-28 23:51 . 2012-01-28 23:51 3468800 c:\windows\Installer\97874.msi
+ 2012-01-28 23:51 . 2012-01-28 23:51 2124800 c:\windows\Installer\9786c.msi
+ 2012-01-28 23:51 . 2012-01-28 23:51 8760320 c:\windows\Installer\97864.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 2125312 c:\windows\Installer\9785c.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 2838528 c:\windows\Installer\97854.msi
+ 2012-01-28 23:54 . 2012-01-28 23:54 6398464 c:\windows\Installer\9784c.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 1531392 c:\windows\Installer\97844.msi
+ 2012-01-28 23:51 . 2012-01-28 23:51 1350656 c:\windows\Installer\97834.msi
+ 2012-01-28 23:51 . 2012-01-28 23:51 1335808 c:\windows\Installer\9782c.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 1233920 c:\windows\Installer\97824.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 1066496 c:\windows\Installer\9781c.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 2034176 c:\windows\Installer\9780c.msi
+ 2012-02-01 10:03 . 2012-02-01 10:03 7629312 c:\windows\Installer\5e44e.msi
+ 2008-04-16 07:00 . 2008-04-16 07:00 1815828 c:\windows\Installer\53ae2.msi
+ 2012-02-01 19:48 . 2012-02-01 19:48 2833408 c:\windows\Installer\26c2d9.msi
+ 2009-07-12 01:35 . 2009-07-12 01:35 2736640 c:\windows\Installer\166482.msi
+ 2011-06-06 11:55 . 2011-06-06 11:55 2215312 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\rt3d.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 1189004 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\JSByteCodeWin.bin
+ 2011-06-06 11:55 . 2011-06-06 11:55 6543768 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\authplay.dll
+ 2011-06-06 11:55 . 2011-06-06 11:55 1240992 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\AdobeCollabSync.exe
+ 2011-06-06 11:55 . 2011-06-06 11:55 1480600 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\AcroRd32.exe
+ 2012-01-29 21:27 . 2011-10-13 10:42 11405312 c:\windows\SysWOW64\ig4icd32.dll
+ 2012-01-29 19:45 . 2012-01-29 19:45 11336864 c:\windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll
+ 2012-01-29 21:27 . 2011-10-13 10:50 15546880 c:\windows\system32\ig4icd64.dll
+ 2012-01-29 21:27 . 2011-10-13 11:05 10629184 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\igdkmd64.sys
+ 2012-01-29 21:27 . 2011-10-13 10:50 15546880 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\ig4icd64.dll
+ 2012-01-29 21:27 . 2011-10-13 10:42 11405312 c:\windows\system32\DriverStore\FileRepository\igdlh64.inf_amd64_neutral_efb529aa74049486\ig4icd32.dll
+ 2012-01-29 21:27 . 2011-10-13 11:05 10629184 c:\windows\system32\drivers\igdkmd64.sys
+ 2012-01-28 23:50 . 2012-01-28 23:50 20566528 c:\windows\Installer\97884.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 11721216 c:\windows\Installer\9783c.msi
+ 2012-01-28 23:53 . 2012-01-28 23:53 10167808 c:\windows\Installer\97814.msi
+ 2012-01-28 23:50 . 2012-01-28 23:50 12591616 c:\windows\Installer\97805.msi
+ 2012-01-03 17:58 . 2012-01-03 17:58 15929344 c:\windows\Installer\2b62b.msp
+ 2011-06-06 11:55 . 2011-06-06 11:55 24731544 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA79201B744AA0100000010\10.1.0\AcroRd32.dll
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 00:08 143360 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2011-10-13 17351304]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"UpdateP2GoShortCut"="c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2010-12-22 2870896]
"HControlUser"="c:\program files (x86)\ASUS\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"ATKOSD2"="c:\program files (x86)\ASUS\ATKOSD2\ATKOSD2.exe" [2009-08-17 6859392]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Media\DMedia.exe" [2009-08-20 170624]
"AVG_TRAY"="c:\program files (x86)\AVG\AVG2012\avgtray.exe" [2012-01-24 2416480]
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\update\realsched.exe" [2012-01-21 296056]
"ExpressFiles"="c:\program files (x86)\ExpressFiles\ExpressFiles.exe" [2012-02-02 424568]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
BlueSoleil.lnk - c:\program files (x86)\IVT Corporation\BlueSoleil\gprs.exe [2008-3-19 43608]
FancyStart daemon.lnk - c:\windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe [2010-4-20 12862]
SRS Premium Sound.lnk - c:\windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe [2010-4-20 156952]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~2\AVG\AVG2012\avgrsa.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"Guard.Mail.ru.gui"="c:\program files (x86)\Guard-ICQ\GuardICQ.exe" /gui
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
"UpdateLBPShortCut"="c:\program files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "c:\program files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
"NBAgent"="c:\program files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
"ROC_roc_dec12"="c:\program files (x86)\AVG Secure Search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12
"MyWebSearch Email Plugin"=c:\progra~2\MYWEBS~1\bar\1.bin\mwsoemon.exe
"My Web Search Bar Search Scope Monitor"="c:\progra~2\MYWEBS~1\bar\1.bin\m3SrchMn.exe" /m=2 /w /h
.
R4 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S0 AVGIDSEH;AVGIDSEH;c:\windows\system32\DRIVERS\AVGIDSEH.Sys [x]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [x]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [x]
S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [x]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [x]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [x]
S2 ASMMAP64;ASMMAP64;c:\program files\ATKGFNEX\ASMMAP64.sys [2007-07-24 14904]
S2 avgfws;AVG Firewall;c:\program files (x86)\AVG\AVG2012\avgfws.exe [2011-11-23 2391832]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2012\AVGIDSAgent.exe [2011-10-12 4433248]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2012\avgwdsvc.exe [2011-08-02 192776]
S3 anvsnddrv;AnvSoft Virtual Sound Device;c:\windows\system32\drivers\anvsnddrv.sys [x]
S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\AVGIDSDriver.Sys [x]
S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\AVGIDSFilter.Sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-02-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-04-20 04:11]
.
2012-02-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-04-20 04:11]
.
2012-01-28 c:\windows\Tasks\Norton Security Scan for Martin.job
- c:\progra~2\NORTON~2\Engine\370~1.18\Nss.exe [2012-01-28 10:01]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-01 23:52 159744 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ASUS WebStorage"="c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe" [2009-12-24 1736704]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-10-13 162584]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-10-13 386840]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files (x86)\ICQ7.7\ICQ.exe
IE: {{bd707fe6-39f6-4bda-9265-86a76719bdc5} - c:\program files\Motorola\Bluetooth\btmiesend.htm
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\x22ecfqi.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - AVG Secure Search
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?AF=100789&babsrc=adbartrp&mntrId=0cdd3cc500000000000000158330973c&q=
FF - prefs.js: network.proxy.http - 58.58.180.122
FF - prefs.js: network.proxy.type - 1
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=100789
FF - user.js: extensions.BabylonToolbar_i.babExt - somoto
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.id - 0cdd3cc500000000000000158330973c
FF - user.js: extensions.BabylonToolbar_i.hardId - 0cdd3cc500000000000000158330973c
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15364
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1717:07
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - tb5
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
URLSearchHooks-{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - (no file)
URLSearchHooks-{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - (no file)
Toolbar-Locked - (no file)
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
WebBrowser-{A1E75A0E-4397-4BA8-BB50-E19FB66890F4} - (no file)
WebBrowser-{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
AddRemove-ASUS_Screensaver - c:\windows\system32\ASUS_Screensaver.scr
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-02-03 09:42:00
ComboFix-quarantined-files.txt 2012-02-03 08:41
ComboFix2.txt 2012-01-26 05:20
.
Před spuštěním: Volných bajtů: 367 924 740 096
Po spuštění: Volných bajtů: 367 651 463 168
.
- - End Of File - - 916FA31EE5D0DA946FF3B3FCDB9AC276
Windows 7 64bitový (6.1,sestavení 7601)Service Pack 1
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji: Cclener, MBAM
email:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji:
Cclener, MBAMemail:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
Re: Prosím o kontrolu - Paměť Ram na 53% v nečinosti PC
este preventivne
Presun ComboFix
na plochu (ak tam este nie je)
otvor si Poznamkovy blok - notepad
do neho zkopiruj skript z nasledujiceho okna:
uloz vytvoreny textovy soubor ako CFScript.txt na plochu
po ulozeni uchop vytvoreny skript lavym tlacitkom mysi a presun ho nad ikonu Combofixu, nad nim skript upust:
po aplikacii by mal vzniknut dalsi log, ten vloz sem
Presun ComboFix
na plochu (ak tam este nie je)
otvor si Poznamkovy blok - notepad
do neho zkopiruj skript z nasledujiceho okna:
Kód: Vybrat vše
Registry::
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"MyWebSearch Email Plugin"=-
"My Web Search Bar Search Scope Monitor"=-
Folder::
c:\progra~2\MYWEBS~1\bar
po ulozeni uchop vytvoreny skript lavym tlacitkom mysi a presun ho nad ikonu Combofixu, nad nim skript upust:
po aplikacii by mal vzniknut dalsi log, ten vloz sem
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
-
karlospatmat
- Vzorný návštěvník
- Příspěvky: 384
- Registrován: 28 led 2012 23:21
- Bydliště: Novosedly nad Nežárkou
- Kontaktovat uživatele:
Re: Prosím o kontrolu - Paměť Ram na 53% v nečinosti PC
ComboFix 12-02-02.02 - Martin 03.02.2012 10:21:32.3.2 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4061.1861 [GMT 1:00]
Spuštěný z: c:\users\Martin\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Martin\Desktop\CFScript.txt
AV: AVG Internet Security 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
FW: AVG Firewall *Disabled* {621CC794-9486-F902-D092-0484E8EA828B}
SP: AVG Internet Security 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-01-03 do 2012-02-03 )))))))))))))))))))))))))))))))
.
.
2012-02-03 09:35 . 2012-02-03 09:35 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-02-03 09:35 . 2012-02-03 09:35 -------- d-----w- c:\users\Administrator\AppData\Local\temp
2012-02-02 20:05 . 2012-02-02 20:05 -------- d-----w- c:\program files (x86)\Nokia
2012-02-02 20:05 . 2012-02-02 20:05 -------- d-----w- c:\program files\DIFX
2012-02-02 20:04 . 2012-02-03 07:27 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
2012-02-02 20:04 . 2012-02-02 20:04 -------- d-----w- c:\programdata\Installations
2012-02-02 16:42 . 2012-02-02 16:42 -------- d-----w- C:\$AVG
2012-02-02 16:32 . 2010-12-20 17:09 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2012-02-02 16:32 . 2012-02-02 16:32 -------- d-----w- c:\programdata\Malwarebytes
2012-02-02 16:32 . 2012-02-02 16:32 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-02-02 16:32 . 2010-12-20 17:08 24152 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-02-01 16:21 . 2011-10-17 14:55 559384 ----a-w- c:\windows\system32\drivers\iaStor.sys
2012-02-01 10:54 . 2012-02-01 10:54 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-02-01 10:54 . 2012-02-01 10:54 484176 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-01-31 19:21 . 2007-06-24 20:56 37384 ----a-w- c:\windows\system32\drivers\BlueletSCOAudio.sys
2012-01-31 19:21 . 2007-06-24 20:56 37896 ----a-w- c:\windows\system32\drivers\blueletaudio.sys
2012-01-31 19:21 . 2007-03-05 19:47 25360 ----a-w- c:\windows\system32\drivers\BtNetDrv.sys
2012-01-31 19:21 . 2007-03-05 19:44 23184 ----a-w- c:\windows\system32\drivers\VHIDMini.sys
2012-01-31 19:21 . 2007-03-05 19:42 49680 ----a-w- c:\windows\system32\drivers\BTHidMgr.sys
2012-01-31 19:21 . 2007-03-05 19:41 24976 ----a-w- c:\windows\system32\drivers\VBTEnum.sys
2012-01-31 19:21 . 2007-03-05 19:39 63248 ----a-w- c:\windows\system32\drivers\VcommMgr.sys
2012-01-31 19:21 . 2007-03-05 19:38 47120 ----a-w- c:\windows\system32\drivers\VComm.sys
2012-01-31 19:21 . 2006-10-09 14:29 32832 ----a-w- c:\windows\system32\drivers\BTNetFilter.sys
2012-01-31 19:21 . 2012-02-03 07:26 -------- d-----w- c:\program files (x86)\IVT Corporation
2012-01-31 09:32 . 2012-01-31 09:32 -------- d-----w- c:\program files (x86)\JAM Software
2012-01-30 18:04 . 2012-02-02 23:42 -------- d-----w- c:\windows\system32\appmgmt
2012-01-30 13:10 . 2012-02-02 19:58 -------- d-----w- c:\program files (x86)\ExpressFiles
2012-01-29 22:11 . 2012-01-29 22:11 -------- d-----w- c:\program files (x86)\Nová složka
2012-01-29 22:04 . 2012-01-30 18:27 -------- d-----w- c:\program files (x86)\Innovative Solutions
2012-01-29 21:40 . 2012-01-29 21:40 -------- d-----w- c:\programdata\Innovative Solutions
2012-01-29 21:28 . 2011-10-13 11:10 90112 ----a-w- c:\windows\system32\igfxCoIn_v2555.dll
2012-01-29 21:28 . 2011-10-13 10:30 208896 ----a-w- c:\windows\SysWow64\iglhsip32.dll
2012-01-29 21:28 . 2011-10-13 10:30 206336 ----a-w- c:\windows\system32\iglhsip64.dll
2012-01-29 21:28 . 2011-10-13 10:30 188416 ----a-w- c:\windows\system32\iglhcp64.dll
2012-01-29 21:28 . 2011-10-13 10:30 147456 ----a-w- c:\windows\SysWow64\iglhcp32.dll
2012-01-29 21:23 . 2007-06-24 20:56 47368 ----a-w- c:\windows\system32\drivers\btcusb.sys
2012-01-29 21:23 . 2007-06-24 20:56 16392 ----a-w- c:\windows\system32\btinstall.dll
2012-01-29 19:44 . 2012-01-29 19:44 -------- d-----w- c:\windows\system32\Macromed
2012-01-29 19:19 . 2012-01-29 19:45 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-01-29 18:28 . 2012-01-29 18:28 -------- d-----w- c:\programdata\ASUS
2012-01-29 10:21 . 2012-01-29 10:22 -------- d-----w- C:\MyBootCD
2012-01-28 23:56 . 2012-01-28 23:57 -------- d-----w- c:\program files (x86)\Common Files\Nero
2012-01-28 23:56 . 2012-01-29 00:01 -------- d-----w- c:\program files (x86)\Nero
2012-01-28 23:24 . 2012-01-28 23:24 -------- d-----w- c:\programdata\ashampoo
2012-01-28 23:24 . 2012-01-28 23:37 -------- d-----w- c:\program files (x86)\Ashampoo
2012-01-28 23:17 . 2012-01-30 18:30 -------- d-----w- c:\program files (x86)\CrystalDiskInfo
2012-01-28 22:39 . 2012-02-02 17:54 -------- d-----w- C:\rsit
2012-01-28 22:39 . 2012-02-02 17:53 -------- d-----w- c:\program files\trend micro
2012-01-28 22:16 . 2012-01-28 22:16 -------- d-----w- c:\program files (x86)\Common Files\Symantec Shared
2012-01-28 17:26 . 2012-01-28 17:26 21712 ----a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS
2012-01-28 17:23 . 2012-01-28 17:32 -------- d-----w- c:\program files (x86)\HWiNFO32
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\programdata\Symantec
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\windows\system32\drivers\NSSx64
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\program files (x86)\Norton Security Scan
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\programdata\Norton
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\program files (x86)\NortonInstaller
2012-01-27 20:46 . 2012-01-30 18:30 -------- d-----w- c:\programdata\McAfee Security Scan
2012-01-27 20:46 . 2012-01-27 20:46 -------- d-----w- c:\programdata\McAfee
2012-01-27 20:46 . 2012-01-27 20:46 -------- d-----w- c:\program files (x86)\McAfee Security Scan
2012-01-27 20:46 . 2012-01-27 20:46 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2012-01-27 20:43 . 2012-01-27 20:43 -------- d-----w- c:\windows\SysWow64\Adobe
2012-01-27 16:20 . 2012-01-27 16:20 -------- d-----w- C:\NVIDIA
2012-01-27 15:39 . 2010-12-14 15:34 550512 ----a-w- c:\windows\system32\VIASysFx.dll
2012-01-27 15:39 . 2010-12-14 15:34 993392 ----a-w- c:\windows\system32\VIAPropPageExt.dll
2012-01-27 15:39 . 2010-12-14 15:34 86640 ----a-w- c:\windows\system32\ViaMicArrayPropPageExt.dll
2012-01-27 15:39 . 2010-12-14 15:34 202864 ----a-w- c:\windows\system32\ViaMicArrayAPO.dll
2012-01-27 15:39 . 2010-12-14 15:34 27760 ----a-w- c:\windows\system32\ViakaraokeSrv.exe
2012-01-27 15:39 . 2010-12-14 15:34 1357424 ----a-w- c:\windows\system32\drivers\viahduaa.sys
2012-01-27 15:39 . 2010-12-14 15:34 123504 ----a-w- c:\windows\system32\ViaKaraokeApo.dll
2012-01-27 15:39 . 2010-12-14 15:34 91760 ----a-w- c:\windows\system32\Dts2PropPageExt.dll
2012-01-27 15:39 . 2010-12-14 15:34 116848 ----a-w- c:\windows\system32\ViaKaraokePropPageExt.dll
2012-01-27 15:39 . 2010-12-14 15:34 248944 ----a-w- c:\windows\system32\Dts2APO.dll
2012-01-27 15:39 . 2011-09-21 09:25 21992 ----a-w- c:\windows\system32\drivers\cpuz135_x64.sys
2012-01-27 15:39 . 2012-01-27 15:39 -------- d-----w- c:\program files\CPUID
2012-01-27 15:36 . 2012-01-27 15:37 -------- d-----w- c:\program files (x86)\audio
2012-01-27 15:21 . 2012-01-27 15:21 -------- d-----w- c:\windows\SysWow64\Atheros_L1e
2012-01-27 15:19 . 2012-01-30 18:30 -------- d-----w- c:\programdata\FLEXnet
2012-01-27 15:19 . 2010-06-30 11:02 52736 ----a-w- c:\windows\system32\drivers\btmcom.sys
2012-01-27 15:18 . 2012-01-30 18:30 -------- d-----w- c:\program files\Motorola
2012-01-27 15:18 . 2010-07-28 16:52 476928 ----a-w- c:\windows\system32\drivers\btmusb.sys
2012-01-27 15:18 . 2010-07-15 11:22 323848 ----a-w- c:\windows\system32\btmcls.dll
2012-01-27 15:18 . 2012-01-30 18:30 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2012-01-27 15:18 . 2012-01-30 18:30 -------- d-----w- c:\program files (x86)\Common Files\Macrovision Shared
2012-01-27 15:08 . 2012-01-27 15:08 -------- d-----w- c:\program files (x86)\Driver-Soft
2012-01-25 20:31 . 2012-01-25 20:31 -------- d-----w- c:\program files (x86)\ESET
2012-01-25 16:07 . 2012-01-25 16:07 243 ----a-w- C:\user.js
2012-01-25 16:07 . 2012-01-25 16:07 -------- d-----w- c:\programdata\Babylon
2012-01-25 16:07 . 2012-01-25 16:07 -------- d-----w- c:\program files\Logon Screen
2012-01-22 20:25 . 2009-09-04 16:29 235344 ----a-w- c:\windows\SysWow64\d3dx11_42.dll
2012-01-22 20:24 . 2008-07-10 10:00 3851784 ----a-w- c:\windows\SysWow64\D3DX9_39.dll
2012-01-22 20:19 . 2011-11-02 22:08 509952 ----a-w- c:\windows\system32\ntshrui.dll
2012-01-22 20:19 . 2011-11-02 21:09 442880 ----a-w- c:\windows\SysWow64\ntshrui.dll
2012-01-22 20:18 . 2012-01-22 20:21 -------- d--h--w- c:\windows\msdownld.tmp
2012-01-22 13:31 . 2012-01-22 13:31 -------- d-----w- c:\program files (x86)\FastStone Image Viewer
2012-01-22 13:23 . 2012-01-22 13:23 -------- d-----w- c:\program files (x86)\Lamer
2012-01-22 13:14 . 2011-11-28 13:51 33872 ----a-w- c:\windows\system32\drivers\anvsnddrv.sys
2012-01-22 13:14 . 2011-11-28 13:51 235520 ----a-w- c:\windows\SysWow64\xvidvfw.dll
2012-01-22 13:14 . 2011-11-28 13:51 632832 ----a-w- c:\windows\SysWow64\xvidcore.dll
2012-01-22 13:14 . 2011-11-28 13:51 143872 ----a-w- c:\windows\SysWow64\xvid.ax
2012-01-22 13:11 . 2012-01-22 13:27 -------- d-----w- c:\program files (x86)\AnvSoft
2012-01-22 13:09 . 2012-01-22 13:09 -------- d-----w- c:\program files (x86)\Conduit
2012-01-22 13:09 . 2012-01-22 13:09 -------- d-----w- c:\program files (x86)\uTorrent
2012-01-22 12:55 . 2012-01-22 12:55 -------- d-----w- c:\windows\system32\SPReview
2012-01-22 11:55 . 2012-01-22 11:55 -------- d-----w- c:\windows\system32\EventProviders
2012-01-22 11:52 . 2010-11-20 13:27 2086912 ----a-w- c:\windows\system32\ole32.dll
2012-01-22 11:51 . 2010-11-20 13:27 1246720 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tipskins.dll
2012-01-22 11:50 . 2010-11-20 13:27 1808384 ----a-w- c:\windows\system32\pnidui.dll
2012-01-22 11:49 . 2010-11-20 13:27 244224 ----a-w- c:\windows\system32\spp.dll
2012-01-22 11:48 . 2010-11-20 13:24 442368 ----a-w- c:\windows\system32\winspool.drv
2012-01-22 11:47 . 2010-11-20 13:28 166784 ----a-w- c:\windows\system32\basecsp.dll
2012-01-22 11:46 . 2010-11-20 13:27 172544 ----a-w- c:\windows\system32\twext.dll
2012-01-22 11:45 . 2010-11-20 13:27 37376 ----a-w- c:\windows\system32\shimgvw.dll
2012-01-22 11:44 . 2010-11-20 13:33 6656 ----a-w- c:\windows\system32\drivers\cs-CZ\rdvgkmd.sys.mui
2012-01-22 11:44 . 2010-11-20 13:25 4096 ----a-w- c:\windows\system32\drivers\cs-CZ\tsusbhub.sys.mui
2012-01-22 11:44 . 2010-11-20 13:32 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\rdpwd.sys.mui
2012-01-22 11:44 . 2010-11-20 13:26 3584 ----a-w- c:\windows\system32\drivers\cs-CZ\tsusbflt.sys.mui
2012-01-22 11:44 . 2010-11-20 13:32 4608 ----a-w- c:\windows\system32\drivers\cs-CZ\kbdclass.sys.mui
2012-01-22 11:44 . 2010-11-20 13:31 3072 ----a-w- c:\windows\system32\drivers\cs-CZ\GAGP30KX.SYS.mui
2012-01-22 11:44 . 2010-11-20 13:43 3584 ----a-w- c:\windows\system32\drivers\pl-PL\tsusbflt.sys.mui
2012-01-22 11:44 . 2010-11-20 13:41 6656 ----a-w- c:\windows\system32\drivers\pl-PL\rdvgkmd.sys.mui
2012-01-22 11:44 . 2010-11-20 13:38 4608 ----a-w- c:\windows\system32\drivers\pl-PL\tsusbhub.sys.mui
2012-01-22 11:44 . 2010-11-20 13:45 2560 ----a-w- c:\windows\system32\drivers\pl-PL\rdpwd.sys.mui
2012-01-22 11:44 . 2010-11-20 13:41 3072 ----a-w- c:\windows\system32\drivers\pl-PL\NV_AGP.SYS.mui
2012-01-22 11:44 . 2010-11-20 13:38 7680 ----a-w- c:\windows\system32\drivers\pl-PL\luafv.sys.mui
2012-01-22 11:43 . 2010-11-20 13:34 6656 ----a-w- c:\windows\system32\drivers\hu-HU\rdvgkmd.sys.mui
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-22 14:03 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2012-01-22 14:03 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2012-01-21 19:30 . 2012-01-21 19:30 203776 ----a-w- c:\windows\SysWow64\webcheck.dll
2012-01-21 19:30 . 2012-01-21 19:30 249344 ----a-w- c:\windows\system32\webcheck.dll
2011-12-06 14:55 . 2010-04-20 04:30 53248 ----a-w- c:\windows\SysWow64\CSVer.dll
2009-04-08 17:31 . 2009-04-08 17:31 106496 ----a-w- c:\program files (x86)\Common Files\CPInstallAction.dll
2008-08-12 04:45 . 2008-08-12 04:45 155648 ----a-w- c:\program files (x86)\Common Files\MSIactionall.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 00:08 143360 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2011-10-13 17351304]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"UpdateP2GoShortCut"="c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2010-12-22 2870896]
"HControlUser"="c:\program files (x86)\ASUS\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"ATKOSD2"="c:\program files (x86)\ASUS\ATKOSD2\ATKOSD2.exe" [2009-08-17 6859392]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Media\DMedia.exe" [2009-08-20 170624]
"AVG_TRAY"="c:\program files (x86)\AVG\AVG2012\avgtray.exe" [2012-01-24 2416480]
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\update\realsched.exe" [2012-01-21 296056]
"ExpressFiles"="c:\program files (x86)\ExpressFiles\ExpressFiles.exe" [2012-02-02 424568]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
BlueSoleil.lnk - c:\program files (x86)\IVT Corporation\BlueSoleil\gprs.exe [2008-3-19 43608]
FancyStart daemon.lnk - c:\windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe [2010-4-20 12862]
SRS Premium Sound.lnk - c:\windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe [2010-4-20 156952]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~2\AVG\AVG2012\avgrsa.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"Guard.Mail.ru.gui"="c:\program files (x86)\Guard-ICQ\GuardICQ.exe" /gui
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
"UpdateLBPShortCut"="c:\program files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "c:\program files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
"NBAgent"="c:\program files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
"ROC_roc_dec12"="c:\program files (x86)\AVG Secure Search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12
.
R4 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S0 AVGIDSEH;AVGIDSEH;c:\windows\system32\DRIVERS\AVGIDSEH.Sys [x]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [x]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [x]
S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [x]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [x]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [x]
S2 ASMMAP64;ASMMAP64;c:\program files\ATKGFNEX\ASMMAP64.sys [2007-07-24 14904]
S2 avgfws;AVG Firewall;c:\program files (x86)\AVG\AVG2012\avgfws.exe [2011-11-23 2391832]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2012\AVGIDSAgent.exe [2011-10-12 4433248]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2012\avgwdsvc.exe [2011-08-02 192776]
S3 anvsnddrv;AnvSoft Virtual Sound Device;c:\windows\system32\drivers\anvsnddrv.sys [x]
S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\AVGIDSDriver.Sys [x]
S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\AVGIDSFilter.Sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-02-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-04-20 04:11]
.
2012-02-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-04-20 04:11]
.
2012-01-28 c:\windows\Tasks\Norton Security Scan for Martin.job
- c:\progra~2\NORTON~2\Engine\370~1.18\Nss.exe [2012-01-28 10:01]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-01 23:52 159744 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ASUS WebStorage"="c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe" [2009-12-24 1736704]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-10-13 162584]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-10-13 386840]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files (x86)\ICQ7.7\ICQ.exe
IE: {{bd707fe6-39f6-4bda-9265-86a76719bdc5} - c:\program files\Motorola\Bluetooth\btmiesend.htm
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\x22ecfqi.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - AVG Secure Search
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?AF=100789&babsrc=adbartrp&mntrId=0cdd3cc500000000000000158330973c&q=
FF - prefs.js: network.proxy.http - 58.58.180.122
FF - prefs.js: network.proxy.type - 1
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=100789
FF - user.js: extensions.BabylonToolbar_i.babExt - somoto
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.id - 0cdd3cc500000000000000158330973c
FF - user.js: extensions.BabylonToolbar_i.hardId - 0cdd3cc500000000000000158330973c
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15364
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1717:07
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - tb5
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-02-03 10:41:23
ComboFix-quarantined-files.txt 2012-02-03 09:41
ComboFix2.txt 2012-02-03 08:42
ComboFix3.txt 2012-01-26 05:20
.
Před spuštěním: Volných bajtů: 367 679 614 976
Po spuštění: Volných bajtů: 367 386 558 464
.
- - End Of File - - 3020FA2413CBC97F72501D80276DDD5B
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4061.1861 [GMT 1:00]
Spuštěný z: c:\users\Martin\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Martin\Desktop\CFScript.txt
AV: AVG Internet Security 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
FW: AVG Firewall *Disabled* {621CC794-9486-F902-D092-0484E8EA828B}
SP: AVG Internet Security 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-01-03 do 2012-02-03 )))))))))))))))))))))))))))))))
.
.
2012-02-03 09:35 . 2012-02-03 09:35 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-02-03 09:35 . 2012-02-03 09:35 -------- d-----w- c:\users\Administrator\AppData\Local\temp
2012-02-02 20:05 . 2012-02-02 20:05 -------- d-----w- c:\program files (x86)\Nokia
2012-02-02 20:05 . 2012-02-02 20:05 -------- d-----w- c:\program files\DIFX
2012-02-02 20:04 . 2012-02-03 07:27 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
2012-02-02 20:04 . 2012-02-02 20:04 -------- d-----w- c:\programdata\Installations
2012-02-02 16:42 . 2012-02-02 16:42 -------- d-----w- C:\$AVG
2012-02-02 16:32 . 2010-12-20 17:09 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2012-02-02 16:32 . 2012-02-02 16:32 -------- d-----w- c:\programdata\Malwarebytes
2012-02-02 16:32 . 2012-02-02 16:32 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-02-02 16:32 . 2010-12-20 17:08 24152 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-02-01 16:21 . 2011-10-17 14:55 559384 ----a-w- c:\windows\system32\drivers\iaStor.sys
2012-02-01 10:54 . 2012-02-01 10:54 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-02-01 10:54 . 2012-02-01 10:54 484176 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-01-31 19:21 . 2007-06-24 20:56 37384 ----a-w- c:\windows\system32\drivers\BlueletSCOAudio.sys
2012-01-31 19:21 . 2007-06-24 20:56 37896 ----a-w- c:\windows\system32\drivers\blueletaudio.sys
2012-01-31 19:21 . 2007-03-05 19:47 25360 ----a-w- c:\windows\system32\drivers\BtNetDrv.sys
2012-01-31 19:21 . 2007-03-05 19:44 23184 ----a-w- c:\windows\system32\drivers\VHIDMini.sys
2012-01-31 19:21 . 2007-03-05 19:42 49680 ----a-w- c:\windows\system32\drivers\BTHidMgr.sys
2012-01-31 19:21 . 2007-03-05 19:41 24976 ----a-w- c:\windows\system32\drivers\VBTEnum.sys
2012-01-31 19:21 . 2007-03-05 19:39 63248 ----a-w- c:\windows\system32\drivers\VcommMgr.sys
2012-01-31 19:21 . 2007-03-05 19:38 47120 ----a-w- c:\windows\system32\drivers\VComm.sys
2012-01-31 19:21 . 2006-10-09 14:29 32832 ----a-w- c:\windows\system32\drivers\BTNetFilter.sys
2012-01-31 19:21 . 2012-02-03 07:26 -------- d-----w- c:\program files (x86)\IVT Corporation
2012-01-31 09:32 . 2012-01-31 09:32 -------- d-----w- c:\program files (x86)\JAM Software
2012-01-30 18:04 . 2012-02-02 23:42 -------- d-----w- c:\windows\system32\appmgmt
2012-01-30 13:10 . 2012-02-02 19:58 -------- d-----w- c:\program files (x86)\ExpressFiles
2012-01-29 22:11 . 2012-01-29 22:11 -------- d-----w- c:\program files (x86)\Nová složka
2012-01-29 22:04 . 2012-01-30 18:27 -------- d-----w- c:\program files (x86)\Innovative Solutions
2012-01-29 21:40 . 2012-01-29 21:40 -------- d-----w- c:\programdata\Innovative Solutions
2012-01-29 21:28 . 2011-10-13 11:10 90112 ----a-w- c:\windows\system32\igfxCoIn_v2555.dll
2012-01-29 21:28 . 2011-10-13 10:30 208896 ----a-w- c:\windows\SysWow64\iglhsip32.dll
2012-01-29 21:28 . 2011-10-13 10:30 206336 ----a-w- c:\windows\system32\iglhsip64.dll
2012-01-29 21:28 . 2011-10-13 10:30 188416 ----a-w- c:\windows\system32\iglhcp64.dll
2012-01-29 21:28 . 2011-10-13 10:30 147456 ----a-w- c:\windows\SysWow64\iglhcp32.dll
2012-01-29 21:23 . 2007-06-24 20:56 47368 ----a-w- c:\windows\system32\drivers\btcusb.sys
2012-01-29 21:23 . 2007-06-24 20:56 16392 ----a-w- c:\windows\system32\btinstall.dll
2012-01-29 19:44 . 2012-01-29 19:44 -------- d-----w- c:\windows\system32\Macromed
2012-01-29 19:19 . 2012-01-29 19:45 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-01-29 18:28 . 2012-01-29 18:28 -------- d-----w- c:\programdata\ASUS
2012-01-29 10:21 . 2012-01-29 10:22 -------- d-----w- C:\MyBootCD
2012-01-28 23:56 . 2012-01-28 23:57 -------- d-----w- c:\program files (x86)\Common Files\Nero
2012-01-28 23:56 . 2012-01-29 00:01 -------- d-----w- c:\program files (x86)\Nero
2012-01-28 23:24 . 2012-01-28 23:24 -------- d-----w- c:\programdata\ashampoo
2012-01-28 23:24 . 2012-01-28 23:37 -------- d-----w- c:\program files (x86)\Ashampoo
2012-01-28 23:17 . 2012-01-30 18:30 -------- d-----w- c:\program files (x86)\CrystalDiskInfo
2012-01-28 22:39 . 2012-02-02 17:54 -------- d-----w- C:\rsit
2012-01-28 22:39 . 2012-02-02 17:53 -------- d-----w- c:\program files\trend micro
2012-01-28 22:16 . 2012-01-28 22:16 -------- d-----w- c:\program files (x86)\Common Files\Symantec Shared
2012-01-28 17:26 . 2012-01-28 17:26 21712 ----a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS
2012-01-28 17:23 . 2012-01-28 17:32 -------- d-----w- c:\program files (x86)\HWiNFO32
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\programdata\Symantec
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\windows\system32\drivers\NSSx64
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\program files (x86)\Norton Security Scan
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\programdata\Norton
2012-01-28 07:56 . 2012-01-28 07:56 -------- d-----w- c:\program files (x86)\NortonInstaller
2012-01-27 20:46 . 2012-01-30 18:30 -------- d-----w- c:\programdata\McAfee Security Scan
2012-01-27 20:46 . 2012-01-27 20:46 -------- d-----w- c:\programdata\McAfee
2012-01-27 20:46 . 2012-01-27 20:46 -------- d-----w- c:\program files (x86)\McAfee Security Scan
2012-01-27 20:46 . 2012-01-27 20:46 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2012-01-27 20:43 . 2012-01-27 20:43 -------- d-----w- c:\windows\SysWow64\Adobe
2012-01-27 16:20 . 2012-01-27 16:20 -------- d-----w- C:\NVIDIA
2012-01-27 15:39 . 2010-12-14 15:34 550512 ----a-w- c:\windows\system32\VIASysFx.dll
2012-01-27 15:39 . 2010-12-14 15:34 993392 ----a-w- c:\windows\system32\VIAPropPageExt.dll
2012-01-27 15:39 . 2010-12-14 15:34 86640 ----a-w- c:\windows\system32\ViaMicArrayPropPageExt.dll
2012-01-27 15:39 . 2010-12-14 15:34 202864 ----a-w- c:\windows\system32\ViaMicArrayAPO.dll
2012-01-27 15:39 . 2010-12-14 15:34 27760 ----a-w- c:\windows\system32\ViakaraokeSrv.exe
2012-01-27 15:39 . 2010-12-14 15:34 1357424 ----a-w- c:\windows\system32\drivers\viahduaa.sys
2012-01-27 15:39 . 2010-12-14 15:34 123504 ----a-w- c:\windows\system32\ViaKaraokeApo.dll
2012-01-27 15:39 . 2010-12-14 15:34 91760 ----a-w- c:\windows\system32\Dts2PropPageExt.dll
2012-01-27 15:39 . 2010-12-14 15:34 116848 ----a-w- c:\windows\system32\ViaKaraokePropPageExt.dll
2012-01-27 15:39 . 2010-12-14 15:34 248944 ----a-w- c:\windows\system32\Dts2APO.dll
2012-01-27 15:39 . 2011-09-21 09:25 21992 ----a-w- c:\windows\system32\drivers\cpuz135_x64.sys
2012-01-27 15:39 . 2012-01-27 15:39 -------- d-----w- c:\program files\CPUID
2012-01-27 15:36 . 2012-01-27 15:37 -------- d-----w- c:\program files (x86)\audio
2012-01-27 15:21 . 2012-01-27 15:21 -------- d-----w- c:\windows\SysWow64\Atheros_L1e
2012-01-27 15:19 . 2012-01-30 18:30 -------- d-----w- c:\programdata\FLEXnet
2012-01-27 15:19 . 2010-06-30 11:02 52736 ----a-w- c:\windows\system32\drivers\btmcom.sys
2012-01-27 15:18 . 2012-01-30 18:30 -------- d-----w- c:\program files\Motorola
2012-01-27 15:18 . 2010-07-28 16:52 476928 ----a-w- c:\windows\system32\drivers\btmusb.sys
2012-01-27 15:18 . 2010-07-15 11:22 323848 ----a-w- c:\windows\system32\btmcls.dll
2012-01-27 15:18 . 2012-01-30 18:30 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2012-01-27 15:18 . 2012-01-30 18:30 -------- d-----w- c:\program files (x86)\Common Files\Macrovision Shared
2012-01-27 15:08 . 2012-01-27 15:08 -------- d-----w- c:\program files (x86)\Driver-Soft
2012-01-25 20:31 . 2012-01-25 20:31 -------- d-----w- c:\program files (x86)\ESET
2012-01-25 16:07 . 2012-01-25 16:07 243 ----a-w- C:\user.js
2012-01-25 16:07 . 2012-01-25 16:07 -------- d-----w- c:\programdata\Babylon
2012-01-25 16:07 . 2012-01-25 16:07 -------- d-----w- c:\program files\Logon Screen
2012-01-22 20:25 . 2009-09-04 16:29 235344 ----a-w- c:\windows\SysWow64\d3dx11_42.dll
2012-01-22 20:24 . 2008-07-10 10:00 3851784 ----a-w- c:\windows\SysWow64\D3DX9_39.dll
2012-01-22 20:19 . 2011-11-02 22:08 509952 ----a-w- c:\windows\system32\ntshrui.dll
2012-01-22 20:19 . 2011-11-02 21:09 442880 ----a-w- c:\windows\SysWow64\ntshrui.dll
2012-01-22 20:18 . 2012-01-22 20:21 -------- d--h--w- c:\windows\msdownld.tmp
2012-01-22 13:31 . 2012-01-22 13:31 -------- d-----w- c:\program files (x86)\FastStone Image Viewer
2012-01-22 13:23 . 2012-01-22 13:23 -------- d-----w- c:\program files (x86)\Lamer
2012-01-22 13:14 . 2011-11-28 13:51 33872 ----a-w- c:\windows\system32\drivers\anvsnddrv.sys
2012-01-22 13:14 . 2011-11-28 13:51 235520 ----a-w- c:\windows\SysWow64\xvidvfw.dll
2012-01-22 13:14 . 2011-11-28 13:51 632832 ----a-w- c:\windows\SysWow64\xvidcore.dll
2012-01-22 13:14 . 2011-11-28 13:51 143872 ----a-w- c:\windows\SysWow64\xvid.ax
2012-01-22 13:11 . 2012-01-22 13:27 -------- d-----w- c:\program files (x86)\AnvSoft
2012-01-22 13:09 . 2012-01-22 13:09 -------- d-----w- c:\program files (x86)\Conduit
2012-01-22 13:09 . 2012-01-22 13:09 -------- d-----w- c:\program files (x86)\uTorrent
2012-01-22 12:55 . 2012-01-22 12:55 -------- d-----w- c:\windows\system32\SPReview
2012-01-22 11:55 . 2012-01-22 11:55 -------- d-----w- c:\windows\system32\EventProviders
2012-01-22 11:52 . 2010-11-20 13:27 2086912 ----a-w- c:\windows\system32\ole32.dll
2012-01-22 11:51 . 2010-11-20 13:27 1246720 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tipskins.dll
2012-01-22 11:50 . 2010-11-20 13:27 1808384 ----a-w- c:\windows\system32\pnidui.dll
2012-01-22 11:49 . 2010-11-20 13:27 244224 ----a-w- c:\windows\system32\spp.dll
2012-01-22 11:48 . 2010-11-20 13:24 442368 ----a-w- c:\windows\system32\winspool.drv
2012-01-22 11:47 . 2010-11-20 13:28 166784 ----a-w- c:\windows\system32\basecsp.dll
2012-01-22 11:46 . 2010-11-20 13:27 172544 ----a-w- c:\windows\system32\twext.dll
2012-01-22 11:45 . 2010-11-20 13:27 37376 ----a-w- c:\windows\system32\shimgvw.dll
2012-01-22 11:44 . 2010-11-20 13:33 6656 ----a-w- c:\windows\system32\drivers\cs-CZ\rdvgkmd.sys.mui
2012-01-22 11:44 . 2010-11-20 13:25 4096 ----a-w- c:\windows\system32\drivers\cs-CZ\tsusbhub.sys.mui
2012-01-22 11:44 . 2010-11-20 13:32 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\rdpwd.sys.mui
2012-01-22 11:44 . 2010-11-20 13:26 3584 ----a-w- c:\windows\system32\drivers\cs-CZ\tsusbflt.sys.mui
2012-01-22 11:44 . 2010-11-20 13:32 4608 ----a-w- c:\windows\system32\drivers\cs-CZ\kbdclass.sys.mui
2012-01-22 11:44 . 2010-11-20 13:31 3072 ----a-w- c:\windows\system32\drivers\cs-CZ\GAGP30KX.SYS.mui
2012-01-22 11:44 . 2010-11-20 13:43 3584 ----a-w- c:\windows\system32\drivers\pl-PL\tsusbflt.sys.mui
2012-01-22 11:44 . 2010-11-20 13:41 6656 ----a-w- c:\windows\system32\drivers\pl-PL\rdvgkmd.sys.mui
2012-01-22 11:44 . 2010-11-20 13:38 4608 ----a-w- c:\windows\system32\drivers\pl-PL\tsusbhub.sys.mui
2012-01-22 11:44 . 2010-11-20 13:45 2560 ----a-w- c:\windows\system32\drivers\pl-PL\rdpwd.sys.mui
2012-01-22 11:44 . 2010-11-20 13:41 3072 ----a-w- c:\windows\system32\drivers\pl-PL\NV_AGP.SYS.mui
2012-01-22 11:44 . 2010-11-20 13:38 7680 ----a-w- c:\windows\system32\drivers\pl-PL\luafv.sys.mui
2012-01-22 11:43 . 2010-11-20 13:34 6656 ----a-w- c:\windows\system32\drivers\hu-HU\rdvgkmd.sys.mui
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-22 14:03 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2012-01-22 14:03 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2012-01-21 19:30 . 2012-01-21 19:30 203776 ----a-w- c:\windows\SysWow64\webcheck.dll
2012-01-21 19:30 . 2012-01-21 19:30 249344 ----a-w- c:\windows\system32\webcheck.dll
2011-12-06 14:55 . 2010-04-20 04:30 53248 ----a-w- c:\windows\SysWow64\CSVer.dll
2009-04-08 17:31 . 2009-04-08 17:31 106496 ----a-w- c:\program files (x86)\Common Files\CPInstallAction.dll
2008-08-12 04:45 . 2008-08-12 04:45 155648 ----a-w- c:\program files (x86)\Common Files\MSIactionall.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 00:08 143360 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2011-10-13 17351304]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"UpdateP2GoShortCut"="c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2010-12-22 2870896]
"HControlUser"="c:\program files (x86)\ASUS\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"ATKOSD2"="c:\program files (x86)\ASUS\ATKOSD2\ATKOSD2.exe" [2009-08-17 6859392]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Media\DMedia.exe" [2009-08-20 170624]
"AVG_TRAY"="c:\program files (x86)\AVG\AVG2012\avgtray.exe" [2012-01-24 2416480]
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\update\realsched.exe" [2012-01-21 296056]
"ExpressFiles"="c:\program files (x86)\ExpressFiles\ExpressFiles.exe" [2012-02-02 424568]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
BlueSoleil.lnk - c:\program files (x86)\IVT Corporation\BlueSoleil\gprs.exe [2008-3-19 43608]
FancyStart daemon.lnk - c:\windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe [2010-4-20 12862]
SRS Premium Sound.lnk - c:\windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe [2010-4-20 156952]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~2\AVG\AVG2012\avgrsa.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\update\realsched.exe" -osboot
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"Guard.Mail.ru.gui"="c:\program files (x86)\Guard-ICQ\GuardICQ.exe" /gui
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
"UpdateLBPShortCut"="c:\program files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "c:\program files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
"NBAgent"="c:\program files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
"ROC_roc_dec12"="c:\program files (x86)\AVG Secure Search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12
.
R4 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S0 AVGIDSEH;AVGIDSEH;c:\windows\system32\DRIVERS\AVGIDSEH.Sys [x]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [x]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [x]
S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [x]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [x]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [x]
S2 ASMMAP64;ASMMAP64;c:\program files\ATKGFNEX\ASMMAP64.sys [2007-07-24 14904]
S2 avgfws;AVG Firewall;c:\program files (x86)\AVG\AVG2012\avgfws.exe [2011-11-23 2391832]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2012\AVGIDSAgent.exe [2011-10-12 4433248]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2012\avgwdsvc.exe [2011-08-02 192776]
S3 anvsnddrv;AnvSoft Virtual Sound Device;c:\windows\system32\drivers\anvsnddrv.sys [x]
S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\AVGIDSDriver.Sys [x]
S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\AVGIDSFilter.Sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-02-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-04-20 04:11]
.
2012-02-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-04-20 04:11]
.
2012-01-28 c:\windows\Tasks\Norton Security Scan for Martin.job
- c:\progra~2\NORTON~2\Engine\370~1.18\Nss.exe [2012-01-28 10:01]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-01 23:52 159744 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ASUS WebStorage"="c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe" [2009-12-24 1736704]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-10-13 162584]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-10-13 386840]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files (x86)\ICQ7.7\ICQ.exe
IE: {{bd707fe6-39f6-4bda-9265-86a76719bdc5} - c:\program files\Motorola\Bluetooth\btmiesend.htm
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\x22ecfqi.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - AVG Secure Search
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?AF=100789&babsrc=adbartrp&mntrId=0cdd3cc500000000000000158330973c&q=
FF - prefs.js: network.proxy.http - 58.58.180.122
FF - prefs.js: network.proxy.type - 1
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=100789
FF - user.js: extensions.BabylonToolbar_i.babExt - somoto
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.id - 0cdd3cc500000000000000158330973c
FF - user.js: extensions.BabylonToolbar_i.hardId - 0cdd3cc500000000000000158330973c
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15364
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1717:07
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - tb5
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-02-03 10:41:23
ComboFix-quarantined-files.txt 2012-02-03 09:41
ComboFix2.txt 2012-02-03 08:42
ComboFix3.txt 2012-01-26 05:20
.
Před spuštěním: Volných bajtů: 367 679 614 976
Po spuštění: Volných bajtů: 367 386 558 464
.
- - End Of File - - 3020FA2413CBC97F72501D80276DDD5B
Windows 7 64bitový (6.1,sestavení 7601)Service Pack 1
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji: Cclener, MBAM
email:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
Procesor: Celeron Dual-Core CPU T3100 @1.9Ghz 1.90
Paměť ram:4GB. HDD 500GB
Avast free ,
Dokud žiješ, uč se! Nečekej, že moudrost s sebou přinese stáří.
Na průšvihy mám talent od přírody
Doporučuji:
Cclener, MBAMemail:karlospatmat@seznam.cz
--------------------------------------------------------------------------------------
Dobrá nálada nevyřeší všechny tvoje problémy, ale nasere tolik lidí, že stojí za to si jí udržet.
Přispějete na provoz fóra?