Dobry den, mam problem z mim pc, Windows nebo neakej virak mi vzdy brutalne prehreje ntb a pokazi sa(odnituju sa spoje, samozrejme sa to da opravit).. Teraz som to uz 2 krat opravoval.. Viem ze sa mi neako do pocitaca nainstaloval sweetim vobec nwm ako(v procesoch je momentalne vypnuty)... Nwm co stym je... (Jo , kaspersky je vypnutej, ale ono to zacalo delat i kdyz sem ho mal jeste ok).. Kaspersky nenasiel ziaden vir od preinstalovania pc, takze vobec nwm co to robi.. Este co som zistil tak u firefoxu mi furt dava vsade https, nezobrazuju sa obrazky atd.. Dalej sa mi v dolnej lisne nezobrazuju ikony(http://prntscr.com/ff708)... Este sa mi furt vymazaju sessions a cookies (na vsetkych prehliadacoch, nikdy mi to nerobilo)
RSIT Log:
Logfile of random's system information tool 1.09 (written by random/random)
Run by GAMELASTER at 2012-09-12 19:32:02
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 8 GB (20%) free of 41 GB
Total RAM: 1789 MB (42% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:32:06, on 12. 9. 2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal
Running processes:
C:\Windows\PixArt\PAC207\Monitor.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
D:\Program Files (x86)\WebcamMax\wcmmon.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
C:\Users\GAMELASTER\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe
C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\3.0.0.0\LightShot.exe
C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
D:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
D:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
C:\Program Files (x86)\Winamp\winamp.exe
C:\Program Files (x86)\Altap Salamander\salamand.exe
C:\Program Files (x86)\WinSCP\WinSCP.exe
C:\Users\GAMELASTER\Downloads\putty.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe
C:\Program Files\trend micro\GAMELASTER.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2269050
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?barid={16D5DE0 ... 9BDAF7A561}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: uTorrentControl2 Toolbar - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files (x86)\uTorrentControl2\prxtbuTo0.dll
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
R3 - URLSearchHook: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVDV.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll
O2 - BHO: uTorrentControl2 - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files (x86)\uTorrentControl2\prxtbuTo0.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: DVDVideoSoftTB - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVDV.dll
O2 - BHO: Microsoft Web Test Recorder 10.0 Helper - {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} - D:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: uTorrentControl2 Toolbar - {687578b9-7132-4a7a-80e4-30ee31099e03} - C:\Program Files (x86)\uTorrentControl2\prxtbuTo0.dll
O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVDV.dll
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SweetIM] C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [Sweetpacks Communicator] C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [WebcamMaxAutoRun] "D:\Program Files (x86)\WebcamMax\wcmmon.exe" -a
O4 - HKCU\..\Run: [LightShot] C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\LightShot.exe Flags: uninsdeletevalue
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_3_300_271_Plugin.exe -update plugin
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = GAMELASTER\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: OpenOffice.org 3.3.lnk = D:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\GAMELASTER\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
O9 - Extra button: &Virtual Keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll
O9 - Extra button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Unknown owner - C:\Windows\system32\AEADISRV.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apache2.2 - Apache Software Foundation - D:\xampp\apache\bin\httpd.exe
O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: mysql - Unknown owner - D:\xampp\mysql\bin\mysqld.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Photon Socket Server: LoadBalancing - Unknown owner - C:\Users\GAMELASTER\Desktop\CspServer\deploy\bin_Win64\PhotonSocketServer.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11664 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\AUDIODG.EXE 0x250
C:\Windows\system32\svchost.exe -k LocalService
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\AEADISRV.EXE
"D:\xampp\apache\bin\httpd.exe" -k runservice
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe" -r
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS
D:\xampp\apache\bin\httpd.exe -d D:/xampp/apache
D:\xampp\mysql\bin\mysqld.exe --defaults-file=D:\xampp\mysql\bin\my.ini mysql
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k iissvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
"C:\Windows\PixArt\PAC207\Monitor.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
"C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe"
"D:\Program Files (x86)\WebcamMax\wcmmon.exe" -a
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe"
"C:\Users\GAMELASTER\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Winamp\winampa.exe"
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe"
"C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\3.0.0.0\LightShot.exe" Flags: uninsdeletevalue
"C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe"
"D:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" -quickstart
"D:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" "-quickstart" "-env:OOO_CWD=2D:\\Program Files (x86)\\OpenOffice.org 3\\program"
"C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Windows\System32\dinotify.exe" pnpui.dll,SimplifiedDINotification
"C:\Program Files (x86)\Winamp\winamp.exe"
"C:\Program Files (x86)\Altap Salamander\salamand.exe"
"taskhost.exe"
"C:\Program Files (x86)\WinSCP\WinSCP.exe"
"C:\Users\GAMELASTER\Downloads\putty.exe" -pw skrecok -load "WinSCP temporary session"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=5428.6cdde40.424511165 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll" E7CF176E110C211B -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" 5428 "\\.\pipe\gecko-crash-server-pipe.5428" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe" --proxy-stub-channel=Flash5748.6546F168.41 --host-broker-channel=Flash5748.6546F168.18467 --host-pid=5748 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe" --channel=1412.0025F1B0.1776909703 --proxy-stub-channel=Flash5748.6546F168.41 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll" --host-npapi-version=27 --type=renderer
taskhost.exe $(Arg0)
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe12_ Global\UsGthrCtrlFltPipeMssGthrPipe12 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
"C:\Users\GAMELASTER\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\update-S-1-5-21-852753470-29827940-2331899730-1000.job
C:\Windows\tasks\update-sys.job
=========Mozilla firefox=========
ProfilePath - C:\Users\GAMELASTER\AppData\Roaming\Mozilla\Firefox\Profiles\k33cm9pq.default
prefs.js - "browser.startup.homepage" - "http://google.sk"
prefs.js - "keyword.URL" - "http://search.conduit.com/ResultsExt.as ... ource=2&q="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.271 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.5.1]
"Description"=
"Path"=C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.271 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_271.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.7.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt
C:\Program Files (x86)\Mozilla Firefox\plugins\
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class
C:\Program Files (x86)\Mozilla Firefox\searchplugins\
amazondotcom.xml
bing.xml
eBay.xml
google.xml
twitter.xml
wikipedia.xml
yahoo.xml
C:\Users\GAMELASTER\AppData\Roaming\Mozilla\Firefox\Profiles\k33cm9pq.default\searchplugins\
conduit.xml
sweetim.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\x64\ievkbd.dll [2011-04-24 91536]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-09-01 537576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-09-01 193512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\x64\klwtbbho.dll [2011-04-24 292752]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}]
Hotspot Shield Class - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll [2011-04-24 86416]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{687578b9-7132-4a7a-80e4-30ee31099e03}]
uTorrentControl2 Toolbar - C:\Program Files (x86)\uTorrentControl2\prxtbuTo0.dll [2011-05-09 176936]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-07-05 453544]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]
DVDVideoSoftTB Toolbar - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVDV.dll [2011-05-09 176936]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{876d9f09-c6d6-4324-a2cc-04dd9a4de12f}]
Microsoft Web Test Recorder 10.0 Helper - D:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2012-07-26 74888]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-07-05 157616]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll [2011-04-24 229776]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetPacks Browser Helper - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2012-06-04 1310040]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{687578b9-7132-4a7a-80e4-30ee31099e03} - uTorrentControl2 Toolbar - C:\Program Files (x86)\uTorrentControl2\prxtbuTo0.dll [2011-05-09 176936]
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetPacks Toolbar for Internet Explorer - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2012-06-04 1310040]
{872b5b88-9db5-4310-bdd0-ac189557e5f5} - DVDVideoSoftTB Toolbar - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVDV.dll [2011-05-09 176936]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Monitor"=C:\Windows\PixArt\PAC207\Monitor.exe [2006-11-03 319488]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"SoundMAX"=C:\Program Files (x86)\Analog Devices\SoundMAX\soundmax.exe [2009-05-18 3866624]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2012-07-13 17418928]
"Sony PC Companion"=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2012-05-31 445624]
"DAEMON Tools Pro Agent"=C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [2012-04-26 3111744]
"WebcamMaxAutoRun"=D:\Program Files (x86)\WebcamMax\wcmmon.exe [2011-07-17 1038848]
"LightShot"=C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\LightShot.exe [2012-02-02 220160]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"=C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_3_300_271_Plugin.exe [2012-08-15 686792]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2012-06-28 74752]
"AVP"=C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe [2011-04-24 202296]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-08-04 98304]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"SoundMAXPnP"=C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [2009-05-18 1314816]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-02-20 59240]
"QuickTime Task"=D:\Program Files (x86)\QuickTime\QTTask.exe [2012-04-18 421888]
"SweetIM"=C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [2012-05-29 115032]
"Sweetpacks Communicator"=C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe [2012-02-26 295728]
C:\Users\GAMELASTER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\GAMELASTER\AppData\Roaming\Dropbox\bin\Dropbox.exe
OpenOffice.org 3.3.lnk - D:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\Windows\System32\klogon.dll [2011-04-24 234896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"vidc.x264"=D:\PROGRA~2\X264VF~1\X264VF~1.DLL
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "D:\Adoobe\Adobe Dreamweaver CS5\Dreamweaver.exe","%1"
======List of files/folders created in the last 3 months======
2012-09-09 22:08:15 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Pamela
2012-09-09 22:08:10 ----D---- C:\Program Files (x86)\Pamela RichMood Editor
2012-09-08 09:01:38 ----D---- C:\Program Files (x86)\DVDVideoSoftTB
2012-09-07 22:49:27 ----D---- C:\Users\GAMELASTER\AppData\Roaming\DVDVideoSoftIEHelpers
2012-09-07 22:48:13 ----D---- C:\Users\GAMELASTER\AppData\Roaming\DVDVideoSoft
2012-09-07 22:44:10 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Youtube to MP3 Converter
2012-09-07 21:45:33 ----D---- C:\Program Files (x86)\Skillbrains
2012-09-07 19:42:53 ----A---- C:\Windows\SYSWOW64\BASSMOD.dll
2012-09-07 17:31:42 ----A---- C:\Windows\SYSWOW64\ionenshi.dll
2012-09-05 19:04:39 ----D---- C:\ProgramData\Microsoft Visual Studio
2012-09-05 18:15:25 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2012-09-05 18:12:46 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2012-09-05 18:10:47 ----D---- C:\Program Files\Application Verifier
2012-09-05 18:10:47 ----D---- C:\Program Files (x86)\Application Verifier
2012-09-05 18:10:37 ----D---- C:\ProgramData\Windows App Certification Kit
2012-09-05 18:04:20 ----D---- C:\Program Files (x86)\Microsoft ASP.NET
2012-09-05 18:03:38 ----D---- C:\Program Files (x86)\Microsoft Web Tools
2012-09-05 18:02:59 ----D---- C:\Program Files\Microsoft
2012-09-05 18:02:11 ----D---- C:\Program Files\IIS Express
2012-09-05 18:02:11 ----D---- C:\Program Files (x86)\IIS Express
2012-09-05 18:00:45 ----D---- C:\Program Files (x86)\NuGet
2012-09-05 18:00:32 ----D---- C:\Program Files (x86)\Microsoft WCF Data Services
2012-09-05 18:00:22 ----D---- C:\Program Files\IIS
2012-09-05 18:00:21 ----D---- C:\Program Files (x86)\IIS
2012-09-05 17:57:35 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2012-09-05 17:56:34 ----D---- C:\Program Files (x86)\Windows Kits
2012-09-05 17:46:23 ----D---- C:\Program Files (x86)\Microsoft Help Viewer
2012-09-05 17:36:02 ----D---- C:\Windows\system32\1033
2012-09-05 17:35:49 ----D---- C:\Program Files\Microsoft Visual Studio 11.0
2012-09-05 17:19:14 ----SHD---- C:\Config.Msi
2012-09-05 17:04:53 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2012-09-05 17:04:51 ----D---- C:\ProgramData\Package Cache
2012-09-04 21:58:30 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2012-09-03 13:54:54 ----D---- C:\Users\GAMELASTER\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2012-09-03 08:14:25 ----D---- C:\Program Files\Microsoft SDKs
2012-09-03 08:13:51 ----D---- C:\Program Files\Business Objects
2012-09-03 08:11:18 ----A---- C:\Windows\ODBC.INI
2012-09-03 08:10:12 ----D---- C:\Program Files (x86)\Business Objects
2012-09-03 08:03:46 ----D---- C:\Windows\PCHEALTH
2012-09-03 08:03:24 ----D---- C:\Program Files\Microsoft SQL Server
2012-09-03 08:03:12 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2012-09-03 08:02:51 ----D---- C:\Program Files\Microsoft Device Emulator
2012-09-03 08:02:51 ----D---- C:\Program Files (x86)\Microsoft Device Emulator
2012-09-03 08:01:36 ----D---- C:\Program Files (x86)\Windows Mobile 5.0 SDK R2
2012-09-03 08:00:55 ----D---- C:\Program Files (x86)\Microsoft Synchronization Services
2012-09-03 08:00:55 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2012-09-03 07:50:40 ----D---- C:\ProgramData\PreEmptive Solutions
2012-09-03 07:46:46 ----D---- C:\Program Files (x86)\Microsoft Office
2012-09-03 07:45:25 ----D---- C:\Windows\symbols
2012-09-03 07:44:56 ----D---- C:\Windows\SYSWOW64\1033
2012-09-03 07:42:41 ----D---- C:\Program Files (x86)\Microsoft SDKs
2012-09-03 07:42:41 ----D---- C:\Program Files (x86)\HTML Help Workshop
2012-09-03 07:42:41 ----D---- C:\Program Files (x86)\CE Remote Tools
2012-09-03 07:39:45 ----D---- C:\Program Files (x86)\Microsoft Web Designer Tools
2012-09-03 07:39:16 ----RHD---- C:\MSOCache
2012-09-03 07:37:10 ----D---- C:\ProgramData\Microsoft Help
2012-09-03 07:36:55 ----D---- C:\Program Files\Microsoft Visual Studio 9.0
2012-09-02 21:39:19 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Thinstall
2012-09-01 11:19:17 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Dropbox
2012-09-01 10:02:59 ----A---- C:\Windows\system32\javaws.exe
2012-09-01 10:02:33 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2012-09-01 10:02:33 ----A---- C:\Windows\system32\javaw.exe
2012-09-01 10:02:33 ----A---- C:\Windows\system32\java.exe
2012-08-27 20:44:45 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Audacity
2012-08-27 08:37:02 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Image-Line
2012-08-27 08:28:16 ----D---- C:\Program Files (x86)\ASIO4ALL v2
2012-08-27 08:28:10 ----D---- C:\Program Files (x86)\VstPlugins
2012-08-27 08:28:10 ----A---- C:\Windows\SYSWOW64\rewire.dll
2012-08-27 08:28:02 ----D---- C:\Program Files (x86)\Image-Line
2012-08-27 08:27:31 ----D---- C:\Program Files (x86)\Outsim
2012-08-26 21:18:32 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Unleashed Games
2012-08-26 10:18:00 ----D---- C:\zaloha
2012-08-25 18:52:43 ----D---- C:\Users\GAMELASTER\AppData\Roaming\GameMaker-Studio
2012-08-24 21:47:56 ----D---- C:\kubo
2012-08-23 11:23:04 ----D---- C:\Users\GAMELASTER\AppData\Roaming\MTE
2012-08-22 18:21:34 ----D---- C:\Users\GAMELASTER\AppData\Roaming\WebcamMax
2012-08-22 18:21:34 ----D---- C:\ProgramData\WebcamMax
2012-08-18 12:18:18 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2012-08-18 12:18:06 ----D---- C:\Users\GAMELASTER\AppData\Roaming\DAEMON Tools Pro
2012-08-18 12:18:01 ----D---- C:\Program Files (x86)\DAEMON Tools Pro
2012-08-18 12:12:28 ----D---- C:\ProgramData\DAEMON Tools Pro
2012-08-16 22:11:35 ----D---- C:\Users\GAMELASTER\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2012-08-16 22:07:52 ----A---- C:\Windows\SurCode.INI
2012-08-16 22:07:51 ----D---- C:\Users\GAMELASTER\AppData\Roaming\PACE Anti-Piracy
2012-08-16 22:07:51 ----D---- C:\ProgramData\PACE Anti-Piracy
2012-08-16 22:07:51 ----D---- C:\Program Files\Common Files\PACE Anti-Piracy
2012-08-16 20:36:47 ----A---- C:\Windows\SYSWOW64\ff_vfw.dll
2012-08-16 20:36:46 ----D---- C:\Program Files (x86)\ffdshow
2012-08-16 17:07:15 ----D---- C:\Windows\Sun
2012-08-16 16:21:03 ----D---- C:\Program Files (x86)\FreeTime
2012-08-16 11:42:26 ----D---- C:\ProgramData\SweetIM
2012-08-16 11:42:26 ----D---- C:\Program Files (x86)\SweetIM
2012-08-15 15:55:11 ----D---- C:\Users\GAMELASTER\AppData\Roaming\OpenOffice.org
2012-08-15 15:50:09 ----A---- C:\Windows\SYSWOW64\javaws.exe
2012-08-15 15:50:09 ----A---- C:\Windows\SYSWOW64\javaw.exe
2012-08-15 15:50:09 ----A---- C:\Windows\SYSWOW64\java.exe
2012-08-15 14:52:56 ----D---- C:\Users\GAMELASTER\AppData\Roaming\TeamViewer
2012-08-14 10:20:13 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Apple Computer
2012-08-13 15:51:26 ----D---- C:\ProgramData\Apple Computer
2012-08-13 15:49:40 ----D---- C:\ProgramData\Apple
2012-08-13 15:49:40 ----D---- C:\Program Files (x86)\Apple Software Update
2012-08-12 21:14:29 ----A---- C:\Windows\SYSWOW64\adidrm.dll
2012-08-12 21:14:26 ----A---- C:\Windows\SYSWOW64\SFFXComm.dll
2012-08-12 21:13:35 ----D---- C:\ProgramData\SonicFocus
2012-08-12 21:13:33 ----D---- C:\Program Files (x86)\Analog Devices
2012-08-12 21:12:32 ----D---- C:\Users\GAMELASTER\AppData\Roaming\InstallShield
2012-08-11 21:26:14 ----D---- C:\Users\GAMELASTER\AppData\Roaming\.GMSKF
2012-08-11 14:37:30 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2012-08-11 14:01:34 ----D---- C:\Program Files\Common Files\Adobe
2012-08-11 14:01:31 ----D---- C:\Program Files\Adobe
2012-08-11 14:00:03 ----D---- C:\Program Files (x86)\Adobe
2012-08-11 13:52:16 ----D---- C:\ProgramData\Adobe
2012-08-11 10:25:32 ----D---- C:\Windows\PixArt
2012-08-11 10:25:32 ----D---- C:\Program Files (x86)\Trust
2012-08-11 10:24:31 ----D---- C:\Windows\Downloaded Installations
2012-08-09 12:22:34 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Sml-f
2012-08-09 11:14:42 ----D---- C:\Windows\Minidump
2012-08-09 09:20:11 ----D---- C:\Users\GAMELASTER\AppData\Roaming\ATI
2012-08-09 09:20:11 ----D---- C:\ProgramData\ATI
2012-08-08 19:37:40 ----D---- C:\Program Files (x86)\ATI Technologies
2012-08-08 19:36:16 ----D---- C:\Program Files\ATI Technologies
2012-08-08 19:35:56 ----D---- C:\Program Files\ATI
2012-08-08 19:32:17 ----D---- C:\SwSetup
2012-08-08 17:29:07 ----D---- C:\Users\GAMELASTER\AppData\Roaming\MOBILedit
2012-08-07 21:59:19 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-08-07 21:59:19 ----D---- C:\ProgramData\Sony
2012-08-07 21:59:19 ----D---- C:\Program Files (x86)\Sony
2012-08-07 21:53:45 ----D---- C:\Program Files\DIFX
2012-08-07 21:33:03 ----D---- C:\Program Files (x86)\Sony Ericsson
2012-08-07 19:55:47 ----D---- C:\Program Files\Paint.NET
2012-08-07 18:57:35 ----D---- C:\Android
2012-08-06 17:38:41 ----D---- C:\ProgramData\Sun
2012-08-06 17:38:11 ----D---- C:\Program Files (x86)\Oracle
2012-08-06 17:37:32 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2012-08-06 17:37:32 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2012-08-06 17:37:07 ----D---- C:\Program Files (x86)\Java
2012-08-06 17:27:11 ----D---- C:\Program Files\Oracle
2012-08-06 17:25:21 ----A---- C:\Windows\system32\npDeployJava1.dll
2012-08-06 17:25:21 ----A---- C:\Windows\system32\deployJava1.dll
2012-08-06 17:23:12 ----D---- C:\Program Files\Java
2012-08-06 16:42:04 ----A---- C:\Windows\system32\drivers\klin.dat
2012-08-06 16:42:04 ----A---- C:\Windows\system32\drivers\klick.dat
2012-08-06 16:40:29 ----D---- C:\ProgramData\Kaspersky Lab
2012-08-06 16:40:29 ----D---- C:\Program Files (x86)\Kaspersky Lab
2012-08-06 16:40:12 ----A---- C:\Windows\system32\drivers\klif.sys
2012-08-06 15:25:41 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2012-08-06 15:24:53 ----A---- C:\Windows\system32\perfh01B.dat
2012-08-06 15:24:53 ----A---- C:\Windows\system32\perfc01B.dat
2012-08-06 15:24:26 ----D---- C:\Windows\SYSWOW64\BestPractices
2012-08-06 15:24:25 ----D---- C:\Windows\system32\BestPractices
2012-08-06 15:24:25 ----D---- C:\inetpub
2012-08-06 15:08:09 ----D---- C:\Program Files (x86)\Conduit
2012-08-06 15:08:06 ----D---- C:\Program Files (x86)\uTorrentControl2
2012-08-06 15:07:22 ----D---- C:\Program Files (x86)\uTorrent
2012-08-06 15:06:41 ----D---- C:\Users\GAMELASTER\AppData\Roaming\uTorrent
2012-08-06 14:50:52 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Unity
2012-08-06 14:07:35 ----D---- C:\Program Files (x86)\Resource Hacker
2012-08-06 14:01:05 ----D---- C:\Program Files (x86)\Cheat Engine 6.2
2012-08-06 10:52:18 ----D---- C:\Users\GAMELASTER\AppData\Roaming\TechSmith
2012-08-06 10:49:07 ----D---- C:\Program Files (x86)\QuickTime
2012-08-06 10:48:32 ----D---- C:\ProgramData\TechSmith
2012-08-06 10:48:32 ----D---- C:\Program Files (x86)\TechSmith
2012-08-06 10:38:34 ----D---- C:\Program Files (x86)\Microsoft.NET
2012-08-05 23:09:09 ----D---- C:\Program Files (x86)\Critical-Strike Portable
2012-08-05 23:01:03 ----D---- C:\Users\GAMELASTER\AppData\Roaming\WinRAR
2012-08-05 22:59:48 ----D---- C:\Program Files (x86)\WinRAR
2012-08-05 22:59:22 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Notepad++
2012-08-05 22:59:22 ----D---- C:\Program Files (x86)\Notepad++
2012-08-05 22:42:40 ----D---- C:\Program Files (x86)\WinSCP
2012-08-05 22:27:25 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Winamp
2012-08-05 22:23:55 ----D---- C:\Program Files (x86)\Altap Salamander
2012-08-05 22:16:17 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Skype
2012-08-05 22:16:08 ----RD---- C:\Program Files (x86)\Skype
2012-08-05 22:16:02 ----SHD---- C:\Windows\Installer
2012-08-05 22:16:01 ----D---- C:\ProgramData\Skype
2012-08-05 22:13:59 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2012-08-05 22:13:58 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2012-08-05 22:13:14 ----D---- C:\Program Files (x86)\Winamp
2012-08-05 22:05:23 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Macromedia
2012-08-05 22:05:23 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Adobe
2012-08-05 22:02:28 ----D---- C:\Windows\SYSWOW64\Macromed
2012-08-05 22:02:28 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2012-08-05 22:02:27 ----D---- C:\Windows\system32\Macromed
2012-08-05 22:00:03 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Mozilla
2012-08-05 21:59:56 ----D---- C:\ProgramData\Mozilla
2012-08-05 21:59:55 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2012-08-05 21:59:52 ----D---- C:\Program Files (x86)\Mozilla Firefox
2012-08-05 21:50:02 ----D---- C:\Windows\SYSWOW64\Wat
2012-08-05 21:50:02 ----D---- C:\Windows\system32\Wat
2012-08-05 21:26:28 ----D---- C:\Windows\Panther
2012-08-05 21:26:16 ----RASH---- C:\BOOTSECT.BAK
2012-08-05 21:26:13 ----SHD---- C:\Boot
2012-08-05 21:15:11 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Identities
2012-08-05 21:14:57 ----SD---- C:\Users\GAMELASTER\AppData\Roaming\Microsoft
2012-08-05 21:14:57 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Media Center Programs
2012-08-05 21:14:42 ----SHD---- C:\Recovery
2012-08-05 20:30:33 ----D---- C:\Windows\SoftwareDistribution
2012-08-05 20:28:17 ----D---- C:\Windows\Prefetch
2012-08-05 20:27:20 ----ASH---- C:\pagefile.sys
2012-08-05 20:27:19 ----ASH---- C:\hiberfil.sys
2012-08-05 20:27:18 ----SHD---- C:\System Volume Information
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\VSPerf110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vsjitdebugger.exe
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\VsGraphicsHelper.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\VSCover110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vcomp110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vcomp110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vccorlib110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vccorlib110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vcamp110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vcamp110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\msvcr110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\msvcr110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\msvcp110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\msvcp110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfcm110ud.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfcm110u.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfcm110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfcm110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110ud.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110u.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110rus.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110kor.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110jpn.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110ita.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110cht.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110chs.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110fra.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110esn.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110enu.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110deu.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\atl110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\VSPerf110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vsjitdebugger.exe
2012-07-26 15:22:10 ----A---- C:\Windows\system32\VSCover110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vcomp110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vcomp110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vccorlib110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vccorlib110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vcamp110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vcamp110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\msvcr110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\msvcr110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\msvcp110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\msvcp110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfcm110ud.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfcm110u.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfcm110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfcm110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110ud.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110u.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110rus.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110kor.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110jpn.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110ita.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110cht.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110chs.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110fra.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110esn.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110enu.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110deu.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\atl110.dll
2012-07-25 20:32:00 ----A---- C:\Windows\SYSWOW64\vrfcore.dll
2012-07-25 20:32:00 ----A---- C:\Windows\SYSWOW64\vfrdvcompat.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfprintpthelper.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfprint.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfnws.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfntlmless.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfnet.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfluapriv.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfcuzz.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfcompat.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfbasics.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\cuzzapi.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\appverif.exe
2012-07-25 20:25:44 ----A---- C:\Windows\SYSWOW64\VSD3DRefDebug.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\dxgidebug.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\dxcpl.exe
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d3dref9.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d3d11sdklayers.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d3d11ref.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d3d11_1sdklayers.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d3d10sdklayers.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d3d10ref.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d2d1debug1.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vrfcore.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfrdvcompat.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfprintpthelper.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfprint.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfnws.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfntlmless.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfnet.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfluapriv.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfcuzz.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfcompat.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfbasics.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\cuzzapi.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\appverif.exe
2012-07-25 20:12:12 ----A---- C:\Windows\system32\microsoft.windows.softwarelogo.showdesktop.exe
2012-07-25 20:10:44 ----A---- C:\Windows\system32\VSD3DRefDebug.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\dxgidebug.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d3dref9.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d3d11sdklayers.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d3d11ref.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d3d11_1sdklayers.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d3d10sdklayers.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d3d10ref.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d2d1debug1.dll
2012-07-25 20:10:30 ----A---- C:\Windows\system32\dxcpl.exe
2012-07-24 22:11:54 ----A---- C:\Windows\system32\drivers\hssdrv6.sys
2012-07-24 22:11:52 ----A---- C:\Windows\system32\drivers\taphss.sys
2012-07-09 00:40:10 ----A---- C:\Windows\SYSWOW64\msvcr110_clr0400.dll
2012-07-09 00:40:10 ----A---- C:\Windows\SYSWOW64\msvcr100_clr0400.dll
2012-07-09 00:40:10 ----A---- C:\Windows\SYSWOW64\msvcp110_clr0400.dll
2012-07-09 00:40:10 ----A---- C:\Windows\SYSWOW64\aspnet_counters.dll
2012-07-08 23:24:30 ----A---- C:\Windows\system32\msvcr110_clr0400.dll
2012-07-08 23:24:30 ----A---- C:\Windows\system32\msvcr100_clr0400.dll
2012-07-08 23:24:30 ----A---- C:\Windows\system32\msvcp110_clr0400.dll
2012-07-08 23:24:30 ----A---- C:\Windows\system32\aspnet_counters.dll
======List of files/folders modified in the last 3 months======
2012-09-12 19:32:04 ----D---- C:\Windows\Temp
2012-09-12 19:32:04 ----D---- C:\Program Files\trend micro
2012-09-10 09:04:32 ----D---- C:\Windows\system32\config
2012-09-09 22:08:10 ----RD---- C:\Program Files (x86)
2012-09-07 22:49:10 ----RSD---- C:\Windows\assembly
2012-09-07 22:48:55 ----D---- C:\Program Files (x86)\Common Files
2012-09-07 21:45:37 ----D---- C:\Windows\Tasks
2012-09-07 21:45:37 ----D---- C:\Windows\system32\Tasks
2012-09-07 19:42:53 ----D---- C:\Windows\SysWOW64
2012-09-06 15:43:38 ----D---- C:\Windows\system32\catroot
2012-09-06 15:43:37 ----D---- C:\Windows\system32\DriverStore
2012-09-05 22:56:04 ----D---- C:\Windows\Microsoft.NET
2012-09-05 19:50:52 ----D---- C:\Windows
2012-09-05 19:04:39 ----HD---- C:\ProgramData
2012-09-05 18:16:26 ----ASD---- C:\ProgramData\Microsoft
2012-09-05 18:13:26 ----D---- C:\Windows\winsxs
2012-09-05 18:12:18 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-09-05 18:07:40 ----D---- C:\Program Files\MSBuild
2012-09-05 17:56:41 ----RSD---- C:\Windows\Fonts
2012-09-05 17:46:27 ----D---- C:\Program Files (x86)\MSBuild
2012-09-05 17:20:12 ----D---- C:\Windows\SYSWOW64\en-US
2012-09-05 17:20:12 ----D---- C:\Windows\system32\en-US
2012-09-03 08:04:29 ----D---- C:\Windows\Registration
2012-08-25 15:10:50 ----D---- C:\Windows\system32\catroot2
2012-08-22 18:20:44 ----D---- C:\Windows\system32\drivers
2012-08-19 15:34:05 ----D---- C:\Windows\rescache
2012-08-19 15:10:20 ----D---- C:\Windows\Logs
2012-08-16 22:07:52 ----AD---- C:\Program Files\Common Files\System
2012-08-16 22:07:51 ----D---- C:\Program Files\Common Files
2012-08-13 15:51:48 ----D---- C:\Program Files (x86)\Internet Explorer
2012-08-11 15:14:40 ----A---- C:\Windows\win.ini
2012-08-11 12:07:57 ----D---- C:\Windows\system32\sk-SK
2012-08-11 10:26:22 ----D---- C:\Windows\twain_32
2012-08-08 22:06:10 ----RD---- C:\Users
2012-08-07 20:30:11 ----D---- C:\Windows\system32\drivers\UMDF
2012-08-06 23:03:23 ----D---- C:\Windows\system32\wdi
2012-08-06 18:00:22 ----D---- C:\Windows\system32\LogFiles
2012-08-06 15:42:25 ----D---- C:\Windows\system32\oobe
2012-08-06 15:42:05 ----D---- C:\Windows\SYSWOW64\oobe
2012-08-06 15:24:26 ----D---- C:\Windows\SYSWOW64\migration
2012-08-06 15:24:26 ----D---- C:\Windows\SYSWOW64\inetsrv
2012-08-06 15:24:26 ----D---- C:\Windows\system32\migration
2012-08-06 15:24:25 ----D---- C:\Windows\system32\inetsrv
2012-08-05 21:50:12 ----A---- C:\Windows\SYSWOW64\slwga.dll
2012-08-05 21:50:12 ----A---- C:\Windows\system32\systemcpl.dll
2012-08-05 21:50:12 ----A---- C:\Windows\system32\slwga.dll
2012-08-05 21:50:11 ----A---- C:\Windows\SYSWOW64\user32.dll
2012-08-05 21:50:11 ----A---- C:\Windows\system32\user32.dll
2012-08-05 21:49:37 ----D---- C:\Windows\system32\restore
2012-08-05 21:15:07 ----SHD---- C:\$Recycle.Bin
2012-08-05 21:13:18 ----D---- C:\Windows\debug
2012-08-05 20:42:54 ----D---- C:\Windows\system32\CodeIntegrity
2012-08-05 20:31:11 ----D---- C:\Windows\system32\sysprep
2012-08-05 20:28:11 ----D---- C:\Windows\CSC
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-04 16440]
R0 KL1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2011-03-04 460888]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-08-18 283200]
R1 HssDRV6;Hotspot Shield Routing Driver 6; C:\Windows\system32\DRIVERS\hssdrv6.sys [2012-07-24 41704]
R1 kl2;kl2; C:\Windows\system32\DRIVERS\kl2.sys [2011-03-04 11864]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2012-08-06 615728]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2011-03-10 29488]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 WCMVCAM;WebcamMax, WDM Video Capture; C:\Windows\system32\DRIVERS\wcmvcam64.sys [2011-06-23 1071032]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\ADIHdAud.sys [2009-05-18 497152]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-04 6037504]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2009-06-10 1311232]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2009-11-02 22544]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2008-09-24 11104]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2008-09-24 23904]
S3 PAC207;Trust WB-1400T Webcam; C:\Windows\system32\DRIVERS\PFC027.SYS [2007-05-14 573952]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-21 20992]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960]
S3 taphss;Anchorfree HSS Adapter; C:\Windows\system32\DRIVERS\taphss.sys [2012-07-24 38632]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2010-11-21 34816]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 VSPerfDrv110;Performance Tools Driver 11.0; \??\D:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys [2012-07-13 70264]
S3 WinUsb;Sony Ericsson USB Device sa0101 Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AEADIFilters;Andrea ADI Filters Service; C:\Windows\system32\AEADISRV.EXE [2008-07-15 111616]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-04 203264]
R2 Apache2.2;Apache2.2; D:\xampp\apache\bin\httpd.exe [2011-09-10 18432]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 AVP;Kaspersky Anti-Virus Service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe [2011-04-24 202296]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2007-02-10 29178224]
R2 mysql;mysql; D:\xampp\mysql\bin\mysqld.exe [2011-09-09 8158720]
R2 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139680]
R2 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139680]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 129624]
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 Photon Socket Server: LoadBalancing;Photon Socket Server: LoadBalancing; C:\Users\GAMELASTER\Desktop\CspServer\deploy\bin_Win64\PhotonSocketServer.exe /service LoadBalancing []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-15 250056]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe [2012-07-25 139776]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-08 114144]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [2012-07-25 126976]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-08-05 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2005-10-14 45272]
S4 msvsmon90;Visual Studio 2008 Remote Debugger; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [2007-11-07 4466688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139680]
S4 SQLBrowser;SQL Server Browser; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2007-02-10 242544]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Virak pokazi pocitac
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119515
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Virak pokazi pocitac
Zdravím!
Bodejť by Kaspersky něco našel, když je vypnutý, že? Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
Bodejť by Kaspersky něco našel, když je vypnutý, že? Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\Program Files (x86)\uTorrentControl2
C:\Program Files (x86)\SweetIM
C:\Program Files (x86)\DVDVideoSoftTB
C:\Windows\tasks\update-S-1-5-21-852753470-29827940-2331899730-1000.job
C:\Windows\tasks\update-sys.job
C:\ProgramData\SweetIM
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{687578b9-7132-4a7a-80e4-30ee31099e03}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SweetIM"=-
"Sweetpacks Communicator"=-
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
GAMELASTER
- Návštěvník
- Příspěvky: 107
- Registrován: 13 led 2012 16:53
Re: Virak pokazi pocitac
//Rudy, gratuluju k spravcovi webu 
, kasperski momentalne nejde lebo mi expirovala licence, coskoro ju obnovim...
Log zo OTM:
All processes killed
========== FILES ==========
C:\Program Files (x86)\uTorrentControl2 folder moved successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\orange folder moved successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\green folder moved successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\blue folder moved successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources folder moved successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT folder moved successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\conf folder moved successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer folder moved successfully.
C:\Program Files (x86)\SweetIM\Toolbars folder moved successfully.
C:\Program Files (x86)\SweetIM\Messenger\resources\sqlite folder moved successfully.
C:\Program Files (x86)\SweetIM\Messenger\resources\images folder moved successfully.
C:\Program Files (x86)\SweetIM\Messenger\resources folder moved successfully.
C:\Program Files (x86)\SweetIM\Messenger folder moved successfully.
C:\Program Files (x86)\SweetIM\Communicator\resources\sqlite folder moved successfully.
C:\Program Files (x86)\SweetIM\Communicator\resources folder moved successfully.
C:\Program Files (x86)\SweetIM\Communicator\Microsoft.VC90.CRT folder moved successfully.
C:\Program Files (x86)\SweetIM\Communicator folder moved successfully.
C:\Program Files (x86)\SweetIM folder moved successfully.
C:\Program Files (x86)\DVDVideoSoftTB folder moved successfully.
C:\Windows\tasks\update-S-1-5-21-852753470-29827940-2331899730-1000.job moved successfully.
C:\Windows\tasks\update-sys.job moved successfully.
C:\ProgramData\SweetIM\Messenger\update folder moved successfully.
C:\ProgramData\SweetIM\Messenger\logs folder moved successfully.
C:\ProgramData\SweetIM\Messenger\data\packages\FailDialog folder moved successfully.
C:\ProgramData\SweetIM\Messenger\data\packages folder moved successfully.
C:\ProgramData\SweetIM\Messenger\data\contentdb folder moved successfully.
C:\ProgramData\SweetIM\Messenger\data\Bars\Default\400 folder moved successfully.
C:\ProgramData\SweetIM\Messenger\data\Bars\Default\200 folder moved successfully.
C:\ProgramData\SweetIM\Messenger\data\Bars\Default\100 folder moved successfully.
C:\ProgramData\SweetIM\Messenger\data\Bars\Default folder moved successfully.
C:\ProgramData\SweetIM\Messenger\data\Bars folder moved successfully.
C:\ProgramData\SweetIM\Messenger\data folder moved successfully.
C:\ProgramData\SweetIM\Messenger\conf\users folder moved successfully.
C:\ProgramData\SweetIM\Messenger\conf folder moved successfully.
C:\ProgramData\SweetIM\Messenger folder moved successfully.
C:\ProgramData\SweetIM\Communicator\Logs folder moved successfully.
C:\ProgramData\SweetIM\Communicator\conf folder moved successfully.
C:\ProgramData\SweetIM\Communicator folder moved successfully.
C:\ProgramData\SweetIM folder moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{687578b9-7132-4a7a-80e4-30ee31099e03}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{687578b9-7132-4a7a-80e4-30ee31099e03}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SweetIM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\Sweetpacks Communicator deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 41620 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: DefaultAppPool
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: GAMELASTER
->Temp folder emptied: 215474770 bytes
->Temporary Internet Files folder emptied: 44854773 bytes
->FireFox cache emptied: 115274300 bytes
->Flash cache emptied: 45156 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 5461392 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33731 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67803 bytes
RecycleBin emptied: 758046386 bytes
Total Files Cleaned = 1 087,00 mb
[EMPTYFLASH]
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: DefaultAppPool
User: GAMELASTER
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 09122012_194746
Files moved on Reboot...
C:\Users\GAMELASTER\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
Registry entries deleted on Reboot...
HJT:
Logfile of random's system information tool 1.09 (written by random/random)
Run by GAMELASTER at 2012-09-12 19:57:38
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 9 GB (23%) free of 41 GB
Total RAM: 1789 MB (29% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:57:42, on 12. 9. 2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal
Running processes:
C:\Windows\PixArt\PAC207\Monitor.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
D:\Program Files (x86)\WebcamMax\wcmmon.exe
C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe
C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\3.0.0.0\LightShot.exe
C:\Users\GAMELASTER\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
D:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
D:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe
C:\Program Files (x86)\Altap Salamander\salamand.exe
C:\Program Files (x86)\Winamp\winamp.exe
C:\Program Files\trend micro\GAMELASTER.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2269050
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?barid={16D5DE0 ... 9BDAF7A561}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {687578b9-7132-4a7a-80e4-30ee31099e03} - (no file)
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (file missing)
R3 - URLSearchHook: (no name) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: Microsoft Web Test Recorder 10.0 Helper - {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} - D:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [WebcamMaxAutoRun] "D:\Program Files (x86)\WebcamMax\wcmmon.exe" -a
O4 - HKCU\..\Run: [LightShot] C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\LightShot.exe Flags: uninsdeletevalue
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = GAMELASTER\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: OpenOffice.org 3.3.lnk = D:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\GAMELASTER\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
O9 - Extra button: &Virtual Keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll
O9 - Extra button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Unknown owner - C:\Windows\system32\AEADISRV.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apache2.2 - Apache Software Foundation - D:\xampp\apache\bin\httpd.exe
O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: mysql - Unknown owner - D:\xampp\mysql\bin\mysqld.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Photon Socket Server: LoadBalancing - Unknown owner - C:\Users\GAMELASTER\Desktop\CspServer\deploy\bin_Win64\PhotonSocketServer.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10256 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\AUDIODG.EXE 0x250
C:\Windows\system32\svchost.exe -k LocalService
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\AEADISRV.EXE
"D:\xampp\apache\bin\httpd.exe" -k runservice
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe" -r
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS
D:\xampp\mysql\bin\mysqld.exe --defaults-file=D:\xampp\mysql\bin\my.ini mysql
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
D:\xampp\apache\bin\httpd.exe -d D:/xampp/apache
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k iissvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\PixArt\PAC207\Monitor.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
"D:\Program Files (x86)\WebcamMax\wcmmon.exe" -a
"C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe"
"C:\Program Files (x86)\Winamp\winampa.exe"
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe"
"C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\3.0.0.0\LightShot.exe" Flags: uninsdeletevalue
"C:\Users\GAMELASTER\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe"
"D:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" -quickstart
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe"
"D:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" "-quickstart" "-env:OOO_CWD=2D:\\Program Files (x86)\\OpenOffice.org 3\\program"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=4496.703bf20.599081664 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll" E7CF176E110C211B -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" 4496 "\\.\pipe\gecko-crash-server-pipe.4496" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe" --proxy-stub-channel=Flash1760.6DD8F168.41 --host-broker-channel=Flash1760.6DD8F168.18467 --host-pid=1760 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe" --channel=3236.003FF90C.683827011 --proxy-stub-channel=Flash1760.6DD8F168.41 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll" --host-npapi-version=27 --type=renderer
C:\Windows\system32\wbem\wmiprvse.exe
wmiadap.exe /F /T /R
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Altap Salamander\salamand.exe"
"C:\Program Files (x86)\Winamp\winamp.exe"
"C:\Users\GAMELASTER\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
=========Mozilla firefox=========
ProfilePath - C:\Users\GAMELASTER\AppData\Roaming\Mozilla\Firefox\Profiles\k33cm9pq.default
prefs.js - "browser.startup.homepage" - "http://google.sk"
prefs.js - "keyword.URL" - "http://search.conduit.com/ResultsExt.as ... ource=2&q="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.271 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.5.1]
"Description"=
"Path"=C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.271 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_271.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.7.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt
C:\Program Files (x86)\Mozilla Firefox\plugins\
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class
C:\Program Files (x86)\Mozilla Firefox\searchplugins\
amazondotcom.xml
bing.xml
eBay.xml
google.xml
twitter.xml
wikipedia.xml
yahoo.xml
C:\Users\GAMELASTER\AppData\Roaming\Mozilla\Firefox\Profiles\k33cm9pq.default\searchplugins\
conduit.xml
sweetim.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\x64\ievkbd.dll [2011-04-24 91536]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-09-01 537576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-09-01 193512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\x64\klwtbbho.dll [2011-04-24 292752]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}]
Hotspot Shield Class - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll [2011-04-24 86416]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-07-05 453544]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{876d9f09-c6d6-4324-a2cc-04dd9a4de12f}]
Microsoft Web Test Recorder 10.0 Helper - D:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2012-07-26 74888]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-07-05 157616]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll [2011-04-24 229776]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Monitor"=C:\Windows\PixArt\PAC207\Monitor.exe [2006-11-03 319488]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"SoundMAX"=C:\Program Files (x86)\Analog Devices\SoundMAX\soundmax.exe [2009-05-18 3866624]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2012-07-13 17418928]
"Sony PC Companion"=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2012-05-31 445624]
"DAEMON Tools Pro Agent"=C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [2012-04-26 3111744]
"WebcamMaxAutoRun"=D:\Program Files (x86)\WebcamMax\wcmmon.exe [2011-07-17 1038848]
"LightShot"=C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\LightShot.exe [2012-02-02 220160]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2012-06-28 74752]
"AVP"=C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe [2011-04-24 202296]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-08-04 98304]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"SoundMAXPnP"=C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [2009-05-18 1314816]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-02-20 59240]
"QuickTime Task"=D:\Program Files (x86)\QuickTime\QTTask.exe [2012-04-18 421888]
C:\Users\GAMELASTER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\GAMELASTER\AppData\Roaming\Dropbox\bin\Dropbox.exe
OpenOffice.org 3.3.lnk - D:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\Windows\System32\klogon.dll [2011-04-24 234896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"vidc.x264"=D:\PROGRA~2\X264VF~1\X264VF~1.DLL
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "D:\Adoobe\Adobe Dreamweaver CS5\Dreamweaver.exe","%1"
======List of files/folders created in the last 3 months======
2012-09-12 19:47:46 ----D---- C:\_OTM
2012-09-09 22:08:15 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Pamela
2012-09-09 22:08:10 ----D---- C:\Program Files (x86)\Pamela RichMood Editor
2012-09-07 22:49:27 ----D---- C:\Users\GAMELASTER\AppData\Roaming\DVDVideoSoftIEHelpers
2012-09-07 22:48:13 ----D---- C:\Users\GAMELASTER\AppData\Roaming\DVDVideoSoft
2012-09-07 22:44:10 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Youtube to MP3 Converter
2012-09-07 21:45:33 ----D---- C:\Program Files (x86)\Skillbrains
2012-09-07 19:42:53 ----A---- C:\Windows\SYSWOW64\BASSMOD.dll
2012-09-07 17:31:42 ----A---- C:\Windows\SYSWOW64\ionenshi.dll
2012-09-05 19:04:39 ----D---- C:\ProgramData\Microsoft Visual Studio
2012-09-05 18:15:25 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2012-09-05 18:12:46 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2012-09-05 18:10:47 ----D---- C:\Program Files\Application Verifier
2012-09-05 18:10:47 ----D---- C:\Program Files (x86)\Application Verifier
2012-09-05 18:10:37 ----D---- C:\ProgramData\Windows App Certification Kit
2012-09-05 18:04:20 ----D---- C:\Program Files (x86)\Microsoft ASP.NET
2012-09-05 18:03:38 ----D---- C:\Program Files (x86)\Microsoft Web Tools
2012-09-05 18:02:59 ----D---- C:\Program Files\Microsoft
2012-09-05 18:02:11 ----D---- C:\Program Files\IIS Express
2012-09-05 18:02:11 ----D---- C:\Program Files (x86)\IIS Express
2012-09-05 18:00:45 ----D---- C:\Program Files (x86)\NuGet
2012-09-05 18:00:32 ----D---- C:\Program Files (x86)\Microsoft WCF Data Services
2012-09-05 18:00:22 ----D---- C:\Program Files\IIS
2012-09-05 18:00:21 ----D---- C:\Program Files (x86)\IIS
2012-09-05 17:57:35 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2012-09-05 17:56:34 ----D---- C:\Program Files (x86)\Windows Kits
2012-09-05 17:46:23 ----D---- C:\Program Files (x86)\Microsoft Help Viewer
2012-09-05 17:36:02 ----D---- C:\Windows\system32\1033
2012-09-05 17:35:49 ----D---- C:\Program Files\Microsoft Visual Studio 11.0
2012-09-05 17:19:14 ----SHD---- C:\Config.Msi
2012-09-05 17:04:53 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2012-09-05 17:04:51 ----D---- C:\ProgramData\Package Cache
2012-09-04 21:58:30 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2012-09-03 13:54:54 ----D---- C:\Users\GAMELASTER\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2012-09-03 08:14:25 ----D---- C:\Program Files\Microsoft SDKs
2012-09-03 08:13:51 ----D---- C:\Program Files\Business Objects
2012-09-03 08:11:18 ----A---- C:\Windows\ODBC.INI
2012-09-03 08:10:12 ----D---- C:\Program Files (x86)\Business Objects
2012-09-03 08:03:46 ----D---- C:\Windows\PCHEALTH
2012-09-03 08:03:24 ----D---- C:\Program Files\Microsoft SQL Server
2012-09-03 08:03:12 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2012-09-03 08:02:51 ----D---- C:\Program Files\Microsoft Device Emulator
2012-09-03 08:02:51 ----D---- C:\Program Files (x86)\Microsoft Device Emulator
2012-09-03 08:01:36 ----D---- C:\Program Files (x86)\Windows Mobile 5.0 SDK R2
2012-09-03 08:00:55 ----D---- C:\Program Files (x86)\Microsoft Synchronization Services
2012-09-03 08:00:55 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2012-09-03 07:50:40 ----D---- C:\ProgramData\PreEmptive Solutions
2012-09-03 07:46:46 ----D---- C:\Program Files (x86)\Microsoft Office
2012-09-03 07:45:25 ----D---- C:\Windows\symbols
2012-09-03 07:44:56 ----D---- C:\Windows\SYSWOW64\1033
2012-09-03 07:42:41 ----D---- C:\Program Files (x86)\Microsoft SDKs
2012-09-03 07:42:41 ----D---- C:\Program Files (x86)\HTML Help Workshop
2012-09-03 07:42:41 ----D---- C:\Program Files (x86)\CE Remote Tools
2012-09-03 07:39:45 ----D---- C:\Program Files (x86)\Microsoft Web Designer Tools
2012-09-03 07:39:16 ----RHD---- C:\MSOCache
2012-09-03 07:37:10 ----D---- C:\ProgramData\Microsoft Help
2012-09-03 07:36:55 ----D---- C:\Program Files\Microsoft Visual Studio 9.0
2012-09-02 21:39:19 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Thinstall
2012-09-01 11:19:17 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Dropbox
2012-09-01 10:02:59 ----A---- C:\Windows\system32\javaws.exe
2012-09-01 10:02:33 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2012-09-01 10:02:33 ----A---- C:\Windows\system32\javaw.exe
2012-09-01 10:02:33 ----A---- C:\Windows\system32\java.exe
2012-08-27 20:44:45 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Audacity
2012-08-27 08:37:02 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Image-Line
2012-08-27 08:28:16 ----D---- C:\Program Files (x86)\ASIO4ALL v2
2012-08-27 08:28:10 ----D---- C:\Program Files (x86)\VstPlugins
2012-08-27 08:28:10 ----A---- C:\Windows\SYSWOW64\rewire.dll
2012-08-27 08:28:02 ----D---- C:\Program Files (x86)\Image-Line
2012-08-27 08:27:31 ----D---- C:\Program Files (x86)\Outsim
2012-08-26 21:18:32 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Unleashed Games
2012-08-26 10:18:00 ----D---- C:\zaloha
2012-08-25 18:52:43 ----D---- C:\Users\GAMELASTER\AppData\Roaming\GameMaker-Studio
2012-08-24 21:47:56 ----D---- C:\kubo
2012-08-23 11:23:04 ----D---- C:\Users\GAMELASTER\AppData\Roaming\MTE
2012-08-22 18:21:34 ----D---- C:\Users\GAMELASTER\AppData\Roaming\WebcamMax
2012-08-22 18:21:34 ----D---- C:\ProgramData\WebcamMax
2012-08-18 12:18:18 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2012-08-18 12:18:06 ----D---- C:\Users\GAMELASTER\AppData\Roaming\DAEMON Tools Pro
2012-08-18 12:18:01 ----D---- C:\Program Files (x86)\DAEMON Tools Pro
2012-08-18 12:12:28 ----D---- C:\ProgramData\DAEMON Tools Pro
2012-08-16 22:11:35 ----D---- C:\Users\GAMELASTER\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2012-08-16 22:07:52 ----A---- C:\Windows\SurCode.INI
2012-08-16 22:07:51 ----D---- C:\Users\GAMELASTER\AppData\Roaming\PACE Anti-Piracy
2012-08-16 22:07:51 ----D---- C:\ProgramData\PACE Anti-Piracy
2012-08-16 22:07:51 ----D---- C:\Program Files\Common Files\PACE Anti-Piracy
2012-08-16 20:36:47 ----A---- C:\Windows\SYSWOW64\ff_vfw.dll
2012-08-16 20:36:46 ----D---- C:\Program Files (x86)\ffdshow
2012-08-16 17:07:15 ----D---- C:\Windows\Sun
2012-08-16 16:21:03 ----D---- C:\Program Files (x86)\FreeTime
2012-08-15 15:55:11 ----D---- C:\Users\GAMELASTER\AppData\Roaming\OpenOffice.org
2012-08-15 15:50:09 ----A---- C:\Windows\SYSWOW64\javaws.exe
2012-08-15 15:50:09 ----A---- C:\Windows\SYSWOW64\javaw.exe
2012-08-15 15:50:09 ----A---- C:\Windows\SYSWOW64\java.exe
2012-08-15 14:52:56 ----D---- C:\Users\GAMELASTER\AppData\Roaming\TeamViewer
2012-08-14 10:20:13 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Apple Computer
2012-08-13 15:51:26 ----D---- C:\ProgramData\Apple Computer
2012-08-13 15:49:40 ----D---- C:\ProgramData\Apple
2012-08-13 15:49:40 ----D---- C:\Program Files (x86)\Apple Software Update
2012-08-12 21:14:29 ----A---- C:\Windows\SYSWOW64\adidrm.dll
2012-08-12 21:14:26 ----A---- C:\Windows\SYSWOW64\SFFXComm.dll
2012-08-12 21:13:35 ----D---- C:\ProgramData\SonicFocus
2012-08-12 21:13:33 ----D---- C:\Program Files (x86)\Analog Devices
2012-08-12 21:12:32 ----D---- C:\Users\GAMELASTER\AppData\Roaming\InstallShield
2012-08-11 21:26:14 ----D---- C:\Users\GAMELASTER\AppData\Roaming\.GMSKF
2012-08-11 14:37:30 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2012-08-11 14:01:34 ----D---- C:\Program Files\Common Files\Adobe
2012-08-11 14:01:31 ----D---- C:\Program Files\Adobe
2012-08-11 14:00:03 ----D---- C:\Program Files (x86)\Adobe
2012-08-11 13:52:16 ----D---- C:\ProgramData\Adobe
2012-08-11 10:25:32 ----D---- C:\Windows\PixArt
2012-08-11 10:25:32 ----D---- C:\Program Files (x86)\Trust
2012-08-11 10:24:31 ----D---- C:\Windows\Downloaded Installations
2012-08-09 12:22:34 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Sml-f
2012-08-09 11:14:42 ----D---- C:\Windows\Minidump
2012-08-09 09:20:11 ----D---- C:\Users\GAMELASTER\AppData\Roaming\ATI
2012-08-09 09:20:11 ----D---- C:\ProgramData\ATI
2012-08-08 19:37:40 ----D---- C:\Program Files (x86)\ATI Technologies
2012-08-08 19:36:16 ----D---- C:\Program Files\ATI Technologies
2012-08-08 19:35:56 ----D---- C:\Program Files\ATI
2012-08-08 19:32:17 ----D---- C:\SwSetup
2012-08-08 17:29:07 ----D---- C:\Users\GAMELASTER\AppData\Roaming\MOBILedit
2012-08-07 21:59:19 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-08-07 21:59:19 ----D---- C:\ProgramData\Sony
2012-08-07 21:59:19 ----D---- C:\Program Files (x86)\Sony
2012-08-07 21:53:45 ----D---- C:\Program Files\DIFX
2012-08-07 21:33:03 ----D---- C:\Program Files (x86)\Sony Ericsson
2012-08-07 19:55:47 ----D---- C:\Program Files\Paint.NET
2012-08-07 18:57:35 ----D---- C:\Android
2012-08-06 17:38:41 ----D---- C:\ProgramData\Sun
2012-08-06 17:38:11 ----D---- C:\Program Files (x86)\Oracle
2012-08-06 17:37:32 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2012-08-06 17:37:32 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2012-08-06 17:37:07 ----D---- C:\Program Files (x86)\Java
2012-08-06 17:27:11 ----D---- C:\Program Files\Oracle
2012-08-06 17:25:21 ----A---- C:\Windows\system32\npDeployJava1.dll
2012-08-06 17:25:21 ----A---- C:\Windows\system32\deployJava1.dll
2012-08-06 17:23:12 ----D---- C:\Program Files\Java
2012-08-06 16:42:04 ----A---- C:\Windows\system32\drivers\klin.dat
2012-08-06 16:42:04 ----A---- C:\Windows\system32\drivers\klick.dat
2012-08-06 16:40:29 ----D---- C:\ProgramData\Kaspersky Lab
2012-08-06 16:40:29 ----D---- C:\Program Files (x86)\Kaspersky Lab
2012-08-06 16:40:12 ----A---- C:\Windows\system32\drivers\klif.sys
2012-08-06 15:25:41 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2012-08-06 15:24:53 ----A---- C:\Windows\system32\perfh01B.dat
2012-08-06 15:24:53 ----A---- C:\Windows\system32\perfc01B.dat
2012-08-06 15:24:26 ----D---- C:\Windows\SYSWOW64\BestPractices
2012-08-06 15:24:25 ----D---- C:\Windows\system32\BestPractices
2012-08-06 15:24:25 ----D---- C:\inetpub
2012-08-06 15:08:09 ----D---- C:\Program Files (x86)\Conduit
2012-08-06 15:07:22 ----D---- C:\Program Files (x86)\uTorrent
2012-08-06 15:06:41 ----D---- C:\Users\GAMELASTER\AppData\Roaming\uTorrent
2012-08-06 14:50:52 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Unity
2012-08-06 14:07:35 ----D---- C:\Program Files (x86)\Resource Hacker
2012-08-06 14:01:05 ----D---- C:\Program Files (x86)\Cheat Engine 6.2
2012-08-06 10:52:18 ----D---- C:\Users\GAMELASTER\AppData\Roaming\TechSmith
2012-08-06 10:49:07 ----D---- C:\Program Files (x86)\QuickTime
2012-08-06 10:48:32 ----D---- C:\ProgramData\TechSmith
2012-08-06 10:48:32 ----D---- C:\Program Files (x86)\TechSmith
2012-08-06 10:38:34 ----D---- C:\Program Files (x86)\Microsoft.NET
2012-08-05 23:09:09 ----D---- C:\Program Files (x86)\Critical-Strike Portable
2012-08-05 23:01:03 ----D---- C:\Users\GAMELASTER\AppData\Roaming\WinRAR
2012-08-05 22:59:48 ----D---- C:\Program Files (x86)\WinRAR
2012-08-05 22:59:22 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Notepad++
2012-08-05 22:59:22 ----D---- C:\Program Files (x86)\Notepad++
2012-08-05 22:42:40 ----D---- C:\Program Files (x86)\WinSCP
2012-08-05 22:27:25 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Winamp
2012-08-05 22:23:55 ----D---- C:\Program Files (x86)\Altap Salamander
2012-08-05 22:16:17 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Skype
2012-08-05 22:16:08 ----RD---- C:\Program Files (x86)\Skype
2012-08-05 22:16:02 ----SHD---- C:\Windows\Installer
2012-08-05 22:16:01 ----D---- C:\ProgramData\Skype
2012-08-05 22:13:59 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2012-08-05 22:13:58 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2012-08-05 22:13:14 ----D---- C:\Program Files (x86)\Winamp
2012-08-05 22:05:23 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Macromedia
2012-08-05 22:05:23 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Adobe
2012-08-05 22:02:28 ----D---- C:\Windows\SYSWOW64\Macromed
2012-08-05 22:02:28 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2012-08-05 22:02:27 ----D---- C:\Windows\system32\Macromed
2012-08-05 22:00:03 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Mozilla
2012-08-05 21:59:56 ----D---- C:\ProgramData\Mozilla
2012-08-05 21:59:55 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2012-08-05 21:59:52 ----D---- C:\Program Files (x86)\Mozilla Firefox
2012-08-05 21:50:02 ----D---- C:\Windows\SYSWOW64\Wat
2012-08-05 21:50:02 ----D---- C:\Windows\system32\Wat
2012-08-05 21:26:28 ----D---- C:\Windows\Panther
2012-08-05 21:26:16 ----RASH---- C:\BOOTSECT.BAK
2012-08-05 21:26:13 ----SHD---- C:\Boot
2012-08-05 21:15:11 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Identities
2012-08-05 21:14:57 ----SD---- C:\Users\GAMELASTER\AppData\Roaming\Microsoft
2012-08-05 21:14:57 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Media Center Programs
2012-08-05 21:14:42 ----SHD---- C:\Recovery
2012-08-05 20:30:33 ----D---- C:\Windows\SoftwareDistribution
2012-08-05 20:28:17 ----D---- C:\Windows\Prefetch
2012-08-05 20:27:20 ----ASH---- C:\pagefile.sys
2012-08-05 20:27:19 ----ASH---- C:\hiberfil.sys
2012-08-05 20:27:18 ----SHD---- C:\System Volume Information
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\VSPerf110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vsjitdebugger.exe
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\VsGraphicsHelper.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\VSCover110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vcomp110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vcomp110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vccorlib110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vccorlib110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vcamp110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vcamp110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\msvcr110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\msvcr110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\msvcp110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\msvcp110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfcm110ud.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfcm110u.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfcm110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfcm110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110ud.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110u.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110rus.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110kor.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110jpn.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110ita.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110cht.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110chs.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110fra.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110esn.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110enu.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110deu.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\atl110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\VSPerf110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vsjitdebugger.exe
2012-07-26 15:22:10 ----A---- C:\Windows\system32\VSCover110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vcomp110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vcomp110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vccorlib110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vccorlib110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vcamp110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vcamp110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\msvcr110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\msvcr110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\msvcp110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\msvcp110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfcm110ud.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfcm110u.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfcm110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfcm110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110ud.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110u.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110rus.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110kor.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110jpn.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110ita.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110cht.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110chs.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110fra.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110esn.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110enu.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110deu.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\atl110.dll
2012-07-25 20:32:00 ----A---- C:\Windows\SYSWOW64\vrfcore.dll
2012-07-25 20:32:00 ----A---- C:\Windows\SYSWOW64\vfrdvcompat.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfprintpthelper.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfprint.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfnws.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfntlmless.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfnet.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfluapriv.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfcuzz.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfcompat.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfbasics.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\cuzzapi.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\appverif.exe
2012-07-25 20:25:44 ----A---- C:\Windows\SYSWOW64\VSD3DRefDebug.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\dxgidebug.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\dxcpl.exe
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d3dref9.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d3d11sdklayers.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d3d11ref.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d3d11_1sdklayers.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d3d10sdklayers.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d3d10ref.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d2d1debug1.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vrfcore.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfrdvcompat.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfprintpthelper.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfprint.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfnws.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfntlmless.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfnet.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfluapriv.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfcuzz.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfcompat.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfbasics.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\cuzzapi.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\appverif.exe
2012-07-25 20:12:12 ----A---- C:\Windows\system32\microsoft.windows.softwarelogo.showdesktop.exe
2012-07-25 20:10:44 ----A---- C:\Windows\system32\VSD3DRefDebug.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\dxgidebug.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d3dref9.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d3d11sdklayers.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d3d11ref.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d3d11_1sdklayers.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d3d10sdklayers.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d3d10ref.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d2d1debug1.dll
2012-07-25 20:10:30 ----A---- C:\Windows\system32\dxcpl.exe
2012-07-24 22:11:54 ----A---- C:\Windows\system32\drivers\hssdrv6.sys
2012-07-24 22:11:52 ----A---- C:\Windows\system32\drivers\taphss.sys
2012-07-09 00:40:10 ----A---- C:\Windows\SYSWOW64\msvcr110_clr0400.dll
2012-07-09 00:40:10 ----A---- C:\Windows\SYSWOW64\msvcr100_clr0400.dll
2012-07-09 00:40:10 ----A---- C:\Windows\SYSWOW64\msvcp110_clr0400.dll
2012-07-09 00:40:10 ----A---- C:\Windows\SYSWOW64\aspnet_counters.dll
2012-07-08 23:24:30 ----A---- C:\Windows\system32\msvcr110_clr0400.dll
2012-07-08 23:24:30 ----A---- C:\Windows\system32\msvcr100_clr0400.dll
2012-07-08 23:24:30 ----A---- C:\Windows\system32\msvcp110_clr0400.dll
2012-07-08 23:24:30 ----A---- C:\Windows\system32\aspnet_counters.dll
======List of files/folders modified in the last 3 months======
2012-09-12 19:57:40 ----D---- C:\Windows\Temp
2012-09-12 19:57:40 ----D---- C:\Program Files\trend micro
2012-09-12 19:57:21 ----D---- C:\Windows\System32
2012-09-12 19:57:21 ----D---- C:\Windows\inf
2012-09-12 19:57:21 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-09-12 19:47:52 ----HD---- C:\ProgramData
2012-09-12 19:47:51 ----RD---- C:\Program Files (x86)
2012-09-12 19:47:51 ----D---- C:\Windows\Tasks
2012-09-10 09:04:32 ----D---- C:\Windows\system32\config
2012-09-07 22:49:10 ----RSD---- C:\Windows\assembly
2012-09-07 22:48:55 ----D---- C:\Program Files (x86)\Common Files
2012-09-07 21:45:37 ----D---- C:\Windows\system32\Tasks
2012-09-07 19:42:53 ----D---- C:\Windows\SysWOW64
2012-09-06 15:43:38 ----D---- C:\Windows\system32\catroot
2012-09-06 15:43:37 ----D---- C:\Windows\system32\DriverStore
2012-09-05 22:56:04 ----D---- C:\Windows\Microsoft.NET
2012-09-05 19:50:52 ----D---- C:\Windows
2012-09-05 18:16:26 ----ASD---- C:\ProgramData\Microsoft
2012-09-05 18:13:26 ----D---- C:\Windows\winsxs
2012-09-05 18:12:18 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-09-05 18:07:40 ----D---- C:\Program Files\MSBuild
2012-09-05 17:56:41 ----RSD---- C:\Windows\Fonts
2012-09-05 17:46:27 ----D---- C:\Program Files (x86)\MSBuild
2012-09-05 17:20:12 ----D---- C:\Windows\SYSWOW64\en-US
2012-09-05 17:20:12 ----D---- C:\Windows\system32\en-US
2012-09-03 08:04:29 ----D---- C:\Windows\Registration
2012-08-25 15:10:50 ----D---- C:\Windows\system32\catroot2
2012-08-22 18:20:44 ----D---- C:\Windows\system32\drivers
2012-08-19 15:34:05 ----D---- C:\Windows\rescache
2012-08-19 15:10:20 ----D---- C:\Windows\Logs
2012-08-16 22:07:52 ----AD---- C:\Program Files\Common Files\System
2012-08-16 22:07:51 ----D---- C:\Program Files\Common Files
2012-08-13 15:51:48 ----D---- C:\Program Files (x86)\Internet Explorer
2012-08-11 15:14:40 ----A---- C:\Windows\win.ini
2012-08-11 12:07:57 ----D---- C:\Windows\system32\sk-SK
2012-08-11 10:26:22 ----D---- C:\Windows\twain_32
2012-08-08 22:06:10 ----RD---- C:\Users
2012-08-07 20:30:11 ----D---- C:\Windows\system32\drivers\UMDF
2012-08-06 23:03:23 ----D---- C:\Windows\system32\wdi
2012-08-06 18:00:22 ----D---- C:\Windows\system32\LogFiles
2012-08-06 15:42:25 ----D---- C:\Windows\system32\oobe
2012-08-06 15:42:05 ----D---- C:\Windows\SYSWOW64\oobe
2012-08-06 15:24:26 ----D---- C:\Windows\SYSWOW64\migration
2012-08-06 15:24:26 ----D---- C:\Windows\SYSWOW64\inetsrv
2012-08-06 15:24:26 ----D---- C:\Windows\system32\migration
2012-08-06 15:24:25 ----D---- C:\Windows\system32\inetsrv
2012-08-05 21:50:12 ----A---- C:\Windows\SYSWOW64\slwga.dll
2012-08-05 21:50:12 ----A---- C:\Windows\system32\systemcpl.dll
2012-08-05 21:50:12 ----A---- C:\Windows\system32\slwga.dll
2012-08-05 21:50:11 ----A---- C:\Windows\SYSWOW64\user32.dll
2012-08-05 21:50:11 ----A---- C:\Windows\system32\user32.dll
2012-08-05 21:49:37 ----D---- C:\Windows\system32\restore
2012-08-05 21:15:07 ----SHD---- C:\$Recycle.Bin
2012-08-05 21:13:18 ----D---- C:\Windows\debug
2012-08-05 20:42:54 ----D---- C:\Windows\system32\CodeIntegrity
2012-08-05 20:31:11 ----D---- C:\Windows\system32\sysprep
2012-08-05 20:28:11 ----D---- C:\Windows\CSC
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-04 16440]
R0 KL1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2011-03-04 460888]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-08-18 283200]
R1 HssDRV6;Hotspot Shield Routing Driver 6; C:\Windows\system32\DRIVERS\hssdrv6.sys [2012-07-24 41704]
R1 kl2;kl2; C:\Windows\system32\DRIVERS\kl2.sys [2011-03-04 11864]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2012-08-06 615728]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2011-03-10 29488]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 WCMVCAM;WebcamMax, WDM Video Capture; C:\Windows\system32\DRIVERS\wcmvcam64.sys [2011-06-23 1071032]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\ADIHdAud.sys [2009-05-18 497152]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-04 6037504]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2009-06-10 1311232]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2009-11-02 22544]
R3 PAC207;Trust WB-1400T Webcam; C:\Windows\system32\DRIVERS\PFC027.SYS [2007-05-14 573952]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2008-09-24 11104]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2008-09-24 23904]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-21 20992]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960]
S3 taphss;Anchorfree HSS Adapter; C:\Windows\system32\DRIVERS\taphss.sys [2012-07-24 38632]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2010-11-21 34816]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 VSPerfDrv110;Performance Tools Driver 11.0; \??\D:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys [2012-07-13 70264]
S3 WinUsb;Sony Ericsson USB Device sa0101 Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AEADIFilters;Andrea ADI Filters Service; C:\Windows\system32\AEADISRV.EXE [2008-07-15 111616]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-04 203264]
R2 Apache2.2;Apache2.2; D:\xampp\apache\bin\httpd.exe [2011-09-10 18432]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 AVP;Kaspersky Anti-Virus Service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe [2011-04-24 202296]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2007-02-10 29178224]
R2 mysql;mysql; D:\xampp\mysql\bin\mysqld.exe [2011-09-09 8158720]
R2 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139680]
R2 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139680]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 129624]
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 Photon Socket Server: LoadBalancing;Photon Socket Server: LoadBalancing; C:\Users\GAMELASTER\Desktop\CspServer\deploy\bin_Win64\PhotonSocketServer.exe /service LoadBalancing []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-15 250056]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe [2012-07-25 139776]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-08 114144]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [2012-07-25 126976]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-08-05 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2005-10-14 45272]
S4 msvsmon90;Visual Studio 2008 Remote Debugger; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [2007-11-07 4466688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139680]
S4 SQLBrowser;SQL Server Browser; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2007-02-10 242544]
-----------------EOF-----------------
, kasperski momentalne nejde lebo mi expirovala licence, coskoro ju obnovim...Log zo OTM:
All processes killed
========== FILES ==========
C:\Program Files (x86)\uTorrentControl2 folder moved successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\orange folder moved successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\green folder moved successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\blue folder moved successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources folder moved successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT folder moved successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\conf folder moved successfully.
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer folder moved successfully.
C:\Program Files (x86)\SweetIM\Toolbars folder moved successfully.
C:\Program Files (x86)\SweetIM\Messenger\resources\sqlite folder moved successfully.
C:\Program Files (x86)\SweetIM\Messenger\resources\images folder moved successfully.
C:\Program Files (x86)\SweetIM\Messenger\resources folder moved successfully.
C:\Program Files (x86)\SweetIM\Messenger folder moved successfully.
C:\Program Files (x86)\SweetIM\Communicator\resources\sqlite folder moved successfully.
C:\Program Files (x86)\SweetIM\Communicator\resources folder moved successfully.
C:\Program Files (x86)\SweetIM\Communicator\Microsoft.VC90.CRT folder moved successfully.
C:\Program Files (x86)\SweetIM\Communicator folder moved successfully.
C:\Program Files (x86)\SweetIM folder moved successfully.
C:\Program Files (x86)\DVDVideoSoftTB folder moved successfully.
C:\Windows\tasks\update-S-1-5-21-852753470-29827940-2331899730-1000.job moved successfully.
C:\Windows\tasks\update-sys.job moved successfully.
C:\ProgramData\SweetIM\Messenger\update folder moved successfully.
C:\ProgramData\SweetIM\Messenger\logs folder moved successfully.
C:\ProgramData\SweetIM\Messenger\data\packages\FailDialog folder moved successfully.
C:\ProgramData\SweetIM\Messenger\data\packages folder moved successfully.
C:\ProgramData\SweetIM\Messenger\data\contentdb folder moved successfully.
C:\ProgramData\SweetIM\Messenger\data\Bars\Default\400 folder moved successfully.
C:\ProgramData\SweetIM\Messenger\data\Bars\Default\200 folder moved successfully.
C:\ProgramData\SweetIM\Messenger\data\Bars\Default\100 folder moved successfully.
C:\ProgramData\SweetIM\Messenger\data\Bars\Default folder moved successfully.
C:\ProgramData\SweetIM\Messenger\data\Bars folder moved successfully.
C:\ProgramData\SweetIM\Messenger\data folder moved successfully.
C:\ProgramData\SweetIM\Messenger\conf\users folder moved successfully.
C:\ProgramData\SweetIM\Messenger\conf folder moved successfully.
C:\ProgramData\SweetIM\Messenger folder moved successfully.
C:\ProgramData\SweetIM\Communicator\Logs folder moved successfully.
C:\ProgramData\SweetIM\Communicator\conf folder moved successfully.
C:\ProgramData\SweetIM\Communicator folder moved successfully.
C:\ProgramData\SweetIM folder moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{687578b9-7132-4a7a-80e4-30ee31099e03}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{687578b9-7132-4a7a-80e4-30ee31099e03}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SweetIM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\Sweetpacks Communicator deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 41620 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: DefaultAppPool
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: GAMELASTER
->Temp folder emptied: 215474770 bytes
->Temporary Internet Files folder emptied: 44854773 bytes
->FireFox cache emptied: 115274300 bytes
->Flash cache emptied: 45156 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 5461392 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33731 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67803 bytes
RecycleBin emptied: 758046386 bytes
Total Files Cleaned = 1 087,00 mb
[EMPTYFLASH]
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: DefaultAppPool
User: GAMELASTER
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
OTM by OldTimer - Version 3.1.21.0 log created on 09122012_194746
Files moved on Reboot...
C:\Users\GAMELASTER\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
Registry entries deleted on Reboot...
HJT:
Logfile of random's system information tool 1.09 (written by random/random)
Run by GAMELASTER at 2012-09-12 19:57:38
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 9 GB (23%) free of 41 GB
Total RAM: 1789 MB (29% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:57:42, on 12. 9. 2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal
Running processes:
C:\Windows\PixArt\PAC207\Monitor.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
D:\Program Files (x86)\WebcamMax\wcmmon.exe
C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
C:\Program Files (x86)\Winamp\winampa.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe
C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\3.0.0.0\LightShot.exe
C:\Users\GAMELASTER\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
D:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
D:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe
C:\Program Files (x86)\Altap Salamander\salamand.exe
C:\Program Files (x86)\Winamp\winamp.exe
C:\Program Files\trend micro\GAMELASTER.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2269050
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?barid={16D5DE0 ... 9BDAF7A561}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {687578b9-7132-4a7a-80e4-30ee31099e03} - (no file)
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (file missing)
R3 - URLSearchHook: (no name) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: Microsoft Web Test Recorder 10.0 Helper - {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} - D:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files (x86)\Winamp\winampa.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [WebcamMaxAutoRun] "D:\Program Files (x86)\WebcamMax\wcmmon.exe" -a
O4 - HKCU\..\Run: [LightShot] C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\LightShot.exe Flags: uninsdeletevalue
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = GAMELASTER\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: OpenOffice.org 3.3.lnk = D:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\GAMELASTER\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
O9 - Extra button: &Virtual Keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll
O9 - Extra button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Unknown owner - C:\Windows\system32\AEADISRV.EXE (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apache2.2 - Apache Software Foundation - D:\xampp\apache\bin\httpd.exe
O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: mysql - Unknown owner - D:\xampp\mysql\bin\mysqld.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Photon Socket Server: LoadBalancing - Unknown owner - C:\Users\GAMELASTER\Desktop\CspServer\deploy\bin_Win64\PhotonSocketServer.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 10256 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\AUDIODG.EXE 0x250
C:\Windows\system32\svchost.exe -k LocalService
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\AEADISRV.EXE
"D:\xampp\apache\bin\httpd.exe" -k runservice
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe" -r
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS
D:\xampp\mysql\bin\mysqld.exe --defaults-file=D:\xampp\mysql\bin\my.ini mysql
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
D:\xampp\apache\bin\httpd.exe -d D:/xampp/apache
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k iissvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\PixArt\PAC207\Monitor.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
"D:\Program Files (x86)\WebcamMax\wcmmon.exe" -a
"C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe"
"C:\Program Files (x86)\Winamp\winampa.exe"
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe"
"C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\3.0.0.0\LightShot.exe" Flags: uninsdeletevalue
"C:\Users\GAMELASTER\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe"
"D:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" -quickstart
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe"
"D:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" "-quickstart" "-env:OOO_CWD=2D:\\Program Files (x86)\\OpenOffice.org 3\\program"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=4496.703bf20.599081664 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll" E7CF176E110C211B -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" 4496 "\\.\pipe\gecko-crash-server-pipe.4496" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe" --proxy-stub-channel=Flash1760.6DD8F168.41 --host-broker-channel=Flash1760.6DD8F168.18467 --host-pid=1760 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe" --channel=3236.003FF90C.683827011 --proxy-stub-channel=Flash1760.6DD8F168.41 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll" --host-npapi-version=27 --type=renderer
C:\Windows\system32\wbem\wmiprvse.exe
wmiadap.exe /F /T /R
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Altap Salamander\salamand.exe"
"C:\Program Files (x86)\Winamp\winamp.exe"
"C:\Users\GAMELASTER\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
=========Mozilla firefox=========
ProfilePath - C:\Users\GAMELASTER\AppData\Roaming\Mozilla\Firefox\Profiles\k33cm9pq.default
prefs.js - "browser.startup.homepage" - "http://google.sk"
prefs.js - "keyword.URL" - "http://search.conduit.com/ResultsExt.as ... ource=2&q="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.271 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.5.1]
"Description"=
"Path"=C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.271 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_271.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.7.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nsIQTScriptablePlugin.xpt
C:\Program Files (x86)\Mozilla Firefox\plugins\
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class
C:\Program Files (x86)\Mozilla Firefox\searchplugins\
amazondotcom.xml
bing.xml
eBay.xml
google.xml
twitter.xml
wikipedia.xml
yahoo.xml
C:\Users\GAMELASTER\AppData\Roaming\Mozilla\Firefox\Profiles\k33cm9pq.default\searchplugins\
conduit.xml
sweetim.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\x64\ievkbd.dll [2011-04-24 91536]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-09-01 537576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-09-01 193512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\x64\klwtbbho.dll [2011-04-24 292752]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}]
Hotspot Shield Class - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll [2011-04-24 86416]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-07-05 453544]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{876d9f09-c6d6-4324-a2cc-04dd9a4de12f}]
Microsoft Web Test Recorder 10.0 Helper - D:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2012-07-26 74888]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-07-05 157616]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll [2011-04-24 229776]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Monitor"=C:\Windows\PixArt\PAC207\Monitor.exe [2006-11-03 319488]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"SoundMAX"=C:\Program Files (x86)\Analog Devices\SoundMAX\soundmax.exe [2009-05-18 3866624]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2012-07-13 17418928]
"Sony PC Companion"=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2012-05-31 445624]
"DAEMON Tools Pro Agent"=C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [2012-04-26 3111744]
"WebcamMaxAutoRun"=D:\Program Files (x86)\WebcamMax\wcmmon.exe [2011-07-17 1038848]
"LightShot"=C:\Users\GAMELASTER\AppData\Local\Skillbrains\lightshot\LightShot.exe [2012-02-02 220160]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"WinampAgent"=C:\Program Files (x86)\Winamp\winampa.exe [2012-06-28 74752]
"AVP"=C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe [2011-04-24 202296]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-08-04 98304]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"SoundMAXPnP"=C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [2009-05-18 1314816]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-02-20 59240]
"QuickTime Task"=D:\Program Files (x86)\QuickTime\QTTask.exe [2012-04-18 421888]
C:\Users\GAMELASTER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\GAMELASTER\AppData\Roaming\Dropbox\bin\Dropbox.exe
OpenOffice.org 3.3.lnk - D:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\Windows\System32\klogon.dll [2011-04-24 234896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\Windows\SysWOW64\tsc2_codec64.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"vidc.x264"=D:\PROGRA~2\X264VF~1\X264VF~1.DLL
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "D:\Adoobe\Adobe Dreamweaver CS5\Dreamweaver.exe","%1"
======List of files/folders created in the last 3 months======
2012-09-12 19:47:46 ----D---- C:\_OTM
2012-09-09 22:08:15 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Pamela
2012-09-09 22:08:10 ----D---- C:\Program Files (x86)\Pamela RichMood Editor
2012-09-07 22:49:27 ----D---- C:\Users\GAMELASTER\AppData\Roaming\DVDVideoSoftIEHelpers
2012-09-07 22:48:13 ----D---- C:\Users\GAMELASTER\AppData\Roaming\DVDVideoSoft
2012-09-07 22:44:10 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Youtube to MP3 Converter
2012-09-07 21:45:33 ----D---- C:\Program Files (x86)\Skillbrains
2012-09-07 19:42:53 ----A---- C:\Windows\SYSWOW64\BASSMOD.dll
2012-09-07 17:31:42 ----A---- C:\Windows\SYSWOW64\ionenshi.dll
2012-09-05 19:04:39 ----D---- C:\ProgramData\Microsoft Visual Studio
2012-09-05 18:15:25 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2012-09-05 18:12:46 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2012-09-05 18:10:47 ----D---- C:\Program Files\Application Verifier
2012-09-05 18:10:47 ----D---- C:\Program Files (x86)\Application Verifier
2012-09-05 18:10:37 ----D---- C:\ProgramData\Windows App Certification Kit
2012-09-05 18:04:20 ----D---- C:\Program Files (x86)\Microsoft ASP.NET
2012-09-05 18:03:38 ----D---- C:\Program Files (x86)\Microsoft Web Tools
2012-09-05 18:02:59 ----D---- C:\Program Files\Microsoft
2012-09-05 18:02:11 ----D---- C:\Program Files\IIS Express
2012-09-05 18:02:11 ----D---- C:\Program Files (x86)\IIS Express
2012-09-05 18:00:45 ----D---- C:\Program Files (x86)\NuGet
2012-09-05 18:00:32 ----D---- C:\Program Files (x86)\Microsoft WCF Data Services
2012-09-05 18:00:22 ----D---- C:\Program Files\IIS
2012-09-05 18:00:21 ----D---- C:\Program Files (x86)\IIS
2012-09-05 17:57:35 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2012-09-05 17:56:34 ----D---- C:\Program Files (x86)\Windows Kits
2012-09-05 17:46:23 ----D---- C:\Program Files (x86)\Microsoft Help Viewer
2012-09-05 17:36:02 ----D---- C:\Windows\system32\1033
2012-09-05 17:35:49 ----D---- C:\Program Files\Microsoft Visual Studio 11.0
2012-09-05 17:19:14 ----SHD---- C:\Config.Msi
2012-09-05 17:04:53 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2012-09-05 17:04:51 ----D---- C:\ProgramData\Package Cache
2012-09-04 21:58:30 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2012-09-03 13:54:54 ----D---- C:\Users\GAMELASTER\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2012-09-03 08:14:25 ----D---- C:\Program Files\Microsoft SDKs
2012-09-03 08:13:51 ----D---- C:\Program Files\Business Objects
2012-09-03 08:11:18 ----A---- C:\Windows\ODBC.INI
2012-09-03 08:10:12 ----D---- C:\Program Files (x86)\Business Objects
2012-09-03 08:03:46 ----D---- C:\Windows\PCHEALTH
2012-09-03 08:03:24 ----D---- C:\Program Files\Microsoft SQL Server
2012-09-03 08:03:12 ----D---- C:\Program Files (x86)\Microsoft SQL Server
2012-09-03 08:02:51 ----D---- C:\Program Files\Microsoft Device Emulator
2012-09-03 08:02:51 ----D---- C:\Program Files (x86)\Microsoft Device Emulator
2012-09-03 08:01:36 ----D---- C:\Program Files (x86)\Windows Mobile 5.0 SDK R2
2012-09-03 08:00:55 ----D---- C:\Program Files (x86)\Microsoft Synchronization Services
2012-09-03 08:00:55 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2012-09-03 07:50:40 ----D---- C:\ProgramData\PreEmptive Solutions
2012-09-03 07:46:46 ----D---- C:\Program Files (x86)\Microsoft Office
2012-09-03 07:45:25 ----D---- C:\Windows\symbols
2012-09-03 07:44:56 ----D---- C:\Windows\SYSWOW64\1033
2012-09-03 07:42:41 ----D---- C:\Program Files (x86)\Microsoft SDKs
2012-09-03 07:42:41 ----D---- C:\Program Files (x86)\HTML Help Workshop
2012-09-03 07:42:41 ----D---- C:\Program Files (x86)\CE Remote Tools
2012-09-03 07:39:45 ----D---- C:\Program Files (x86)\Microsoft Web Designer Tools
2012-09-03 07:39:16 ----RHD---- C:\MSOCache
2012-09-03 07:37:10 ----D---- C:\ProgramData\Microsoft Help
2012-09-03 07:36:55 ----D---- C:\Program Files\Microsoft Visual Studio 9.0
2012-09-02 21:39:19 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Thinstall
2012-09-01 11:19:17 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Dropbox
2012-09-01 10:02:59 ----A---- C:\Windows\system32\javaws.exe
2012-09-01 10:02:33 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2012-09-01 10:02:33 ----A---- C:\Windows\system32\javaw.exe
2012-09-01 10:02:33 ----A---- C:\Windows\system32\java.exe
2012-08-27 20:44:45 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Audacity
2012-08-27 08:37:02 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Image-Line
2012-08-27 08:28:16 ----D---- C:\Program Files (x86)\ASIO4ALL v2
2012-08-27 08:28:10 ----D---- C:\Program Files (x86)\VstPlugins
2012-08-27 08:28:10 ----A---- C:\Windows\SYSWOW64\rewire.dll
2012-08-27 08:28:02 ----D---- C:\Program Files (x86)\Image-Line
2012-08-27 08:27:31 ----D---- C:\Program Files (x86)\Outsim
2012-08-26 21:18:32 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Unleashed Games
2012-08-26 10:18:00 ----D---- C:\zaloha
2012-08-25 18:52:43 ----D---- C:\Users\GAMELASTER\AppData\Roaming\GameMaker-Studio
2012-08-24 21:47:56 ----D---- C:\kubo
2012-08-23 11:23:04 ----D---- C:\Users\GAMELASTER\AppData\Roaming\MTE
2012-08-22 18:21:34 ----D---- C:\Users\GAMELASTER\AppData\Roaming\WebcamMax
2012-08-22 18:21:34 ----D---- C:\ProgramData\WebcamMax
2012-08-18 12:18:18 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2012-08-18 12:18:06 ----D---- C:\Users\GAMELASTER\AppData\Roaming\DAEMON Tools Pro
2012-08-18 12:18:01 ----D---- C:\Program Files (x86)\DAEMON Tools Pro
2012-08-18 12:12:28 ----D---- C:\ProgramData\DAEMON Tools Pro
2012-08-16 22:11:35 ----D---- C:\Users\GAMELASTER\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2012-08-16 22:07:52 ----A---- C:\Windows\SurCode.INI
2012-08-16 22:07:51 ----D---- C:\Users\GAMELASTER\AppData\Roaming\PACE Anti-Piracy
2012-08-16 22:07:51 ----D---- C:\ProgramData\PACE Anti-Piracy
2012-08-16 22:07:51 ----D---- C:\Program Files\Common Files\PACE Anti-Piracy
2012-08-16 20:36:47 ----A---- C:\Windows\SYSWOW64\ff_vfw.dll
2012-08-16 20:36:46 ----D---- C:\Program Files (x86)\ffdshow
2012-08-16 17:07:15 ----D---- C:\Windows\Sun
2012-08-16 16:21:03 ----D---- C:\Program Files (x86)\FreeTime
2012-08-15 15:55:11 ----D---- C:\Users\GAMELASTER\AppData\Roaming\OpenOffice.org
2012-08-15 15:50:09 ----A---- C:\Windows\SYSWOW64\javaws.exe
2012-08-15 15:50:09 ----A---- C:\Windows\SYSWOW64\javaw.exe
2012-08-15 15:50:09 ----A---- C:\Windows\SYSWOW64\java.exe
2012-08-15 14:52:56 ----D---- C:\Users\GAMELASTER\AppData\Roaming\TeamViewer
2012-08-14 10:20:13 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Apple Computer
2012-08-13 15:51:26 ----D---- C:\ProgramData\Apple Computer
2012-08-13 15:49:40 ----D---- C:\ProgramData\Apple
2012-08-13 15:49:40 ----D---- C:\Program Files (x86)\Apple Software Update
2012-08-12 21:14:29 ----A---- C:\Windows\SYSWOW64\adidrm.dll
2012-08-12 21:14:26 ----A---- C:\Windows\SYSWOW64\SFFXComm.dll
2012-08-12 21:13:35 ----D---- C:\ProgramData\SonicFocus
2012-08-12 21:13:33 ----D---- C:\Program Files (x86)\Analog Devices
2012-08-12 21:12:32 ----D---- C:\Users\GAMELASTER\AppData\Roaming\InstallShield
2012-08-11 21:26:14 ----D---- C:\Users\GAMELASTER\AppData\Roaming\.GMSKF
2012-08-11 14:37:30 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2012-08-11 14:01:34 ----D---- C:\Program Files\Common Files\Adobe
2012-08-11 14:01:31 ----D---- C:\Program Files\Adobe
2012-08-11 14:00:03 ----D---- C:\Program Files (x86)\Adobe
2012-08-11 13:52:16 ----D---- C:\ProgramData\Adobe
2012-08-11 10:25:32 ----D---- C:\Windows\PixArt
2012-08-11 10:25:32 ----D---- C:\Program Files (x86)\Trust
2012-08-11 10:24:31 ----D---- C:\Windows\Downloaded Installations
2012-08-09 12:22:34 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Sml-f
2012-08-09 11:14:42 ----D---- C:\Windows\Minidump
2012-08-09 09:20:11 ----D---- C:\Users\GAMELASTER\AppData\Roaming\ATI
2012-08-09 09:20:11 ----D---- C:\ProgramData\ATI
2012-08-08 19:37:40 ----D---- C:\Program Files (x86)\ATI Technologies
2012-08-08 19:36:16 ----D---- C:\Program Files\ATI Technologies
2012-08-08 19:35:56 ----D---- C:\Program Files\ATI
2012-08-08 19:32:17 ----D---- C:\SwSetup
2012-08-08 17:29:07 ----D---- C:\Users\GAMELASTER\AppData\Roaming\MOBILedit
2012-08-07 21:59:19 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-08-07 21:59:19 ----D---- C:\ProgramData\Sony
2012-08-07 21:59:19 ----D---- C:\Program Files (x86)\Sony
2012-08-07 21:53:45 ----D---- C:\Program Files\DIFX
2012-08-07 21:33:03 ----D---- C:\Program Files (x86)\Sony Ericsson
2012-08-07 19:55:47 ----D---- C:\Program Files\Paint.NET
2012-08-07 18:57:35 ----D---- C:\Android
2012-08-06 17:38:41 ----D---- C:\ProgramData\Sun
2012-08-06 17:38:11 ----D---- C:\Program Files (x86)\Oracle
2012-08-06 17:37:32 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2012-08-06 17:37:32 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2012-08-06 17:37:07 ----D---- C:\Program Files (x86)\Java
2012-08-06 17:27:11 ----D---- C:\Program Files\Oracle
2012-08-06 17:25:21 ----A---- C:\Windows\system32\npDeployJava1.dll
2012-08-06 17:25:21 ----A---- C:\Windows\system32\deployJava1.dll
2012-08-06 17:23:12 ----D---- C:\Program Files\Java
2012-08-06 16:42:04 ----A---- C:\Windows\system32\drivers\klin.dat
2012-08-06 16:42:04 ----A---- C:\Windows\system32\drivers\klick.dat
2012-08-06 16:40:29 ----D---- C:\ProgramData\Kaspersky Lab
2012-08-06 16:40:29 ----D---- C:\Program Files (x86)\Kaspersky Lab
2012-08-06 16:40:12 ----A---- C:\Windows\system32\drivers\klif.sys
2012-08-06 15:25:41 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2012-08-06 15:24:53 ----A---- C:\Windows\system32\perfh01B.dat
2012-08-06 15:24:53 ----A---- C:\Windows\system32\perfc01B.dat
2012-08-06 15:24:26 ----D---- C:\Windows\SYSWOW64\BestPractices
2012-08-06 15:24:25 ----D---- C:\Windows\system32\BestPractices
2012-08-06 15:24:25 ----D---- C:\inetpub
2012-08-06 15:08:09 ----D---- C:\Program Files (x86)\Conduit
2012-08-06 15:07:22 ----D---- C:\Program Files (x86)\uTorrent
2012-08-06 15:06:41 ----D---- C:\Users\GAMELASTER\AppData\Roaming\uTorrent
2012-08-06 14:50:52 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Unity
2012-08-06 14:07:35 ----D---- C:\Program Files (x86)\Resource Hacker
2012-08-06 14:01:05 ----D---- C:\Program Files (x86)\Cheat Engine 6.2
2012-08-06 10:52:18 ----D---- C:\Users\GAMELASTER\AppData\Roaming\TechSmith
2012-08-06 10:49:07 ----D---- C:\Program Files (x86)\QuickTime
2012-08-06 10:48:32 ----D---- C:\ProgramData\TechSmith
2012-08-06 10:48:32 ----D---- C:\Program Files (x86)\TechSmith
2012-08-06 10:38:34 ----D---- C:\Program Files (x86)\Microsoft.NET
2012-08-05 23:09:09 ----D---- C:\Program Files (x86)\Critical-Strike Portable
2012-08-05 23:01:03 ----D---- C:\Users\GAMELASTER\AppData\Roaming\WinRAR
2012-08-05 22:59:48 ----D---- C:\Program Files (x86)\WinRAR
2012-08-05 22:59:22 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Notepad++
2012-08-05 22:59:22 ----D---- C:\Program Files (x86)\Notepad++
2012-08-05 22:42:40 ----D---- C:\Program Files (x86)\WinSCP
2012-08-05 22:27:25 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Winamp
2012-08-05 22:23:55 ----D---- C:\Program Files (x86)\Altap Salamander
2012-08-05 22:16:17 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Skype
2012-08-05 22:16:08 ----RD---- C:\Program Files (x86)\Skype
2012-08-05 22:16:02 ----SHD---- C:\Windows\Installer
2012-08-05 22:16:01 ----D---- C:\ProgramData\Skype
2012-08-05 22:13:59 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2012-08-05 22:13:58 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2012-08-05 22:13:14 ----D---- C:\Program Files (x86)\Winamp
2012-08-05 22:05:23 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Macromedia
2012-08-05 22:05:23 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Adobe
2012-08-05 22:02:28 ----D---- C:\Windows\SYSWOW64\Macromed
2012-08-05 22:02:28 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2012-08-05 22:02:27 ----D---- C:\Windows\system32\Macromed
2012-08-05 22:00:03 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Mozilla
2012-08-05 21:59:56 ----D---- C:\ProgramData\Mozilla
2012-08-05 21:59:55 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2012-08-05 21:59:52 ----D---- C:\Program Files (x86)\Mozilla Firefox
2012-08-05 21:50:02 ----D---- C:\Windows\SYSWOW64\Wat
2012-08-05 21:50:02 ----D---- C:\Windows\system32\Wat
2012-08-05 21:26:28 ----D---- C:\Windows\Panther
2012-08-05 21:26:16 ----RASH---- C:\BOOTSECT.BAK
2012-08-05 21:26:13 ----SHD---- C:\Boot
2012-08-05 21:15:11 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Identities
2012-08-05 21:14:57 ----SD---- C:\Users\GAMELASTER\AppData\Roaming\Microsoft
2012-08-05 21:14:57 ----D---- C:\Users\GAMELASTER\AppData\Roaming\Media Center Programs
2012-08-05 21:14:42 ----SHD---- C:\Recovery
2012-08-05 20:30:33 ----D---- C:\Windows\SoftwareDistribution
2012-08-05 20:28:17 ----D---- C:\Windows\Prefetch
2012-08-05 20:27:20 ----ASH---- C:\pagefile.sys
2012-08-05 20:27:19 ----ASH---- C:\hiberfil.sys
2012-08-05 20:27:18 ----SHD---- C:\System Volume Information
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\VSPerf110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vsjitdebugger.exe
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\VsGraphicsHelper.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\VSCover110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vcomp110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vcomp110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vccorlib110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vccorlib110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vcamp110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\vcamp110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\msvcr110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\msvcr110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\msvcp110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\msvcp110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfcm110ud.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfcm110u.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfcm110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfcm110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110ud.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110u.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110rus.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110kor.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110jpn.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110ita.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110cht.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110chs.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110fra.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110esn.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110enu.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110deu.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110d.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\mfc110.dll
2012-07-26 19:08:06 ----A---- C:\Windows\SYSWOW64\atl110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\VSPerf110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vsjitdebugger.exe
2012-07-26 15:22:10 ----A---- C:\Windows\system32\VSCover110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vcomp110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vcomp110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vccorlib110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vccorlib110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vcamp110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\vcamp110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\msvcr110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\msvcr110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\msvcp110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\msvcp110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfcm110ud.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfcm110u.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfcm110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfcm110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110ud.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110u.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110rus.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110kor.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110jpn.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110ita.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110cht.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110chs.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110fra.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110esn.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110enu.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110deu.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110d.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\mfc110.dll
2012-07-26 15:22:10 ----A---- C:\Windows\system32\atl110.dll
2012-07-25 20:32:00 ----A---- C:\Windows\SYSWOW64\vrfcore.dll
2012-07-25 20:32:00 ----A---- C:\Windows\SYSWOW64\vfrdvcompat.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfprintpthelper.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfprint.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfnws.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfntlmless.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfnet.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfluapriv.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfcuzz.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfcompat.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\vfbasics.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\cuzzapi.dll
2012-07-25 20:31:56 ----A---- C:\Windows\SYSWOW64\appverif.exe
2012-07-25 20:25:44 ----A---- C:\Windows\SYSWOW64\VSD3DRefDebug.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\dxgidebug.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\dxcpl.exe
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d3dref9.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d3d11sdklayers.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d3d11ref.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d3d11_1sdklayers.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d3d10sdklayers.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d3d10ref.dll
2012-07-25 20:25:28 ----A---- C:\Windows\SYSWOW64\d2d1debug1.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vrfcore.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfrdvcompat.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfprintpthelper.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfprint.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfnws.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfntlmless.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfnet.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfluapriv.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfcuzz.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfcompat.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\vfbasics.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\cuzzapi.dll
2012-07-25 20:16:00 ----A---- C:\Windows\system32\appverif.exe
2012-07-25 20:12:12 ----A---- C:\Windows\system32\microsoft.windows.softwarelogo.showdesktop.exe
2012-07-25 20:10:44 ----A---- C:\Windows\system32\VSD3DRefDebug.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\dxgidebug.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d3dref9.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d3d11sdklayers.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d3d11ref.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d3d11_1sdklayers.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d3d10sdklayers.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d3d10ref.dll
2012-07-25 20:10:32 ----A---- C:\Windows\system32\d2d1debug1.dll
2012-07-25 20:10:30 ----A---- C:\Windows\system32\dxcpl.exe
2012-07-24 22:11:54 ----A---- C:\Windows\system32\drivers\hssdrv6.sys
2012-07-24 22:11:52 ----A---- C:\Windows\system32\drivers\taphss.sys
2012-07-09 00:40:10 ----A---- C:\Windows\SYSWOW64\msvcr110_clr0400.dll
2012-07-09 00:40:10 ----A---- C:\Windows\SYSWOW64\msvcr100_clr0400.dll
2012-07-09 00:40:10 ----A---- C:\Windows\SYSWOW64\msvcp110_clr0400.dll
2012-07-09 00:40:10 ----A---- C:\Windows\SYSWOW64\aspnet_counters.dll
2012-07-08 23:24:30 ----A---- C:\Windows\system32\msvcr110_clr0400.dll
2012-07-08 23:24:30 ----A---- C:\Windows\system32\msvcr100_clr0400.dll
2012-07-08 23:24:30 ----A---- C:\Windows\system32\msvcp110_clr0400.dll
2012-07-08 23:24:30 ----A---- C:\Windows\system32\aspnet_counters.dll
======List of files/folders modified in the last 3 months======
2012-09-12 19:57:40 ----D---- C:\Windows\Temp
2012-09-12 19:57:40 ----D---- C:\Program Files\trend micro
2012-09-12 19:57:21 ----D---- C:\Windows\System32
2012-09-12 19:57:21 ----D---- C:\Windows\inf
2012-09-12 19:57:21 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-09-12 19:47:52 ----HD---- C:\ProgramData
2012-09-12 19:47:51 ----RD---- C:\Program Files (x86)
2012-09-12 19:47:51 ----D---- C:\Windows\Tasks
2012-09-10 09:04:32 ----D---- C:\Windows\system32\config
2012-09-07 22:49:10 ----RSD---- C:\Windows\assembly
2012-09-07 22:48:55 ----D---- C:\Program Files (x86)\Common Files
2012-09-07 21:45:37 ----D---- C:\Windows\system32\Tasks
2012-09-07 19:42:53 ----D---- C:\Windows\SysWOW64
2012-09-06 15:43:38 ----D---- C:\Windows\system32\catroot
2012-09-06 15:43:37 ----D---- C:\Windows\system32\DriverStore
2012-09-05 22:56:04 ----D---- C:\Windows\Microsoft.NET
2012-09-05 19:50:52 ----D---- C:\Windows
2012-09-05 18:16:26 ----ASD---- C:\ProgramData\Microsoft
2012-09-05 18:13:26 ----D---- C:\Windows\winsxs
2012-09-05 18:12:18 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-09-05 18:07:40 ----D---- C:\Program Files\MSBuild
2012-09-05 17:56:41 ----RSD---- C:\Windows\Fonts
2012-09-05 17:46:27 ----D---- C:\Program Files (x86)\MSBuild
2012-09-05 17:20:12 ----D---- C:\Windows\SYSWOW64\en-US
2012-09-05 17:20:12 ----D---- C:\Windows\system32\en-US
2012-09-03 08:04:29 ----D---- C:\Windows\Registration
2012-08-25 15:10:50 ----D---- C:\Windows\system32\catroot2
2012-08-22 18:20:44 ----D---- C:\Windows\system32\drivers
2012-08-19 15:34:05 ----D---- C:\Windows\rescache
2012-08-19 15:10:20 ----D---- C:\Windows\Logs
2012-08-16 22:07:52 ----AD---- C:\Program Files\Common Files\System
2012-08-16 22:07:51 ----D---- C:\Program Files\Common Files
2012-08-13 15:51:48 ----D---- C:\Program Files (x86)\Internet Explorer
2012-08-11 15:14:40 ----A---- C:\Windows\win.ini
2012-08-11 12:07:57 ----D---- C:\Windows\system32\sk-SK
2012-08-11 10:26:22 ----D---- C:\Windows\twain_32
2012-08-08 22:06:10 ----RD---- C:\Users
2012-08-07 20:30:11 ----D---- C:\Windows\system32\drivers\UMDF
2012-08-06 23:03:23 ----D---- C:\Windows\system32\wdi
2012-08-06 18:00:22 ----D---- C:\Windows\system32\LogFiles
2012-08-06 15:42:25 ----D---- C:\Windows\system32\oobe
2012-08-06 15:42:05 ----D---- C:\Windows\SYSWOW64\oobe
2012-08-06 15:24:26 ----D---- C:\Windows\SYSWOW64\migration
2012-08-06 15:24:26 ----D---- C:\Windows\SYSWOW64\inetsrv
2012-08-06 15:24:26 ----D---- C:\Windows\system32\migration
2012-08-06 15:24:25 ----D---- C:\Windows\system32\inetsrv
2012-08-05 21:50:12 ----A---- C:\Windows\SYSWOW64\slwga.dll
2012-08-05 21:50:12 ----A---- C:\Windows\system32\systemcpl.dll
2012-08-05 21:50:12 ----A---- C:\Windows\system32\slwga.dll
2012-08-05 21:50:11 ----A---- C:\Windows\SYSWOW64\user32.dll
2012-08-05 21:50:11 ----A---- C:\Windows\system32\user32.dll
2012-08-05 21:49:37 ----D---- C:\Windows\system32\restore
2012-08-05 21:15:07 ----SHD---- C:\$Recycle.Bin
2012-08-05 21:13:18 ----D---- C:\Windows\debug
2012-08-05 20:42:54 ----D---- C:\Windows\system32\CodeIntegrity
2012-08-05 20:31:11 ----D---- C:\Windows\system32\sysprep
2012-08-05 20:28:11 ----D---- C:\Windows\CSC
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-04 16440]
R0 KL1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2011-03-04 460888]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-08-18 283200]
R1 HssDRV6;Hotspot Shield Routing Driver 6; C:\Windows\system32\DRIVERS\hssdrv6.sys [2012-07-24 41704]
R1 kl2;kl2; C:\Windows\system32\DRIVERS\kl2.sys [2011-03-04 11864]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2012-08-06 615728]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2011-03-10 29488]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 WCMVCAM;WebcamMax, WDM Video Capture; C:\Windows\system32\DRIVERS\wcmvcam64.sys [2011-06-23 1071032]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\ADIHdAud.sys [2009-05-18 497152]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-04 6037504]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys [2009-06-10 1311232]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2009-11-02 22544]
R3 PAC207;Trust WB-1400T Webcam; C:\Windows\system32\DRIVERS\PFC027.SYS [2007-05-14 573952]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 ggflt;SEMC USB Flash Driver Filter; C:\Windows\system32\DRIVERS\ggflt.sys [2008-09-24 11104]
S3 ggsemc;SEMC USB Flash Driver; C:\Windows\system32\DRIVERS\ggsemc.sys [2008-09-24 23904]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-21 20992]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960]
S3 taphss;Anchorfree HSS Adapter; C:\Windows\system32\DRIVERS\taphss.sys [2012-07-24 38632]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2010-11-21 34816]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 VSPerfDrv110;Performance Tools Driver 11.0; \??\D:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys [2012-07-13 70264]
S3 WinUsb;Sony Ericsson USB Device sa0101 Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AEADIFilters;Andrea ADI Filters Service; C:\Windows\system32\AEADISRV.EXE [2008-07-15 111616]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-04 203264]
R2 Apache2.2;Apache2.2; D:\xampp\apache\bin\httpd.exe [2011-09-10 18432]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 AVP;Kaspersky Anti-Virus Service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe [2011-04-24 202296]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 MSSQL$SQLEXPRESS;SQL Server (SQLEXPRESS); C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2007-02-10 29178224]
R2 mysql;mysql; D:\xampp\mysql\bin\mysqld.exe [2011-09-09 8158720]
R2 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139680]
R2 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139680]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 129624]
R2 W3SVC;@%windir%\system32\inetsrv\iisres.dll,-30003; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 WAS;@%windir%\system32\inetsrv\iisres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 Photon Socket Server: LoadBalancing;Photon Socket Server: LoadBalancing; C:\Users\GAMELASTER\Desktop\CspServer\deploy\bin_Win64\PhotonSocketServer.exe /service LoadBalancing []
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-15 250056]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 fussvc;Windows App Certification Kit Fast User Switching Utility Service; C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe [2012-07-25 139776]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-08 114144]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-01-18 155320]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 Te.Service;Te.Service; C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [2012-07-25 126976]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-08-05 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2005-10-14 45272]
S4 msvsmon90;Visual Studio 2008 Remote Debugger; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe [2007-11-07 4466688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139680]
S4 SQLBrowser;SQL Server Browser; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2007-02-10 242544]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119515
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Virak pokazi pocitac
Dvouklikem na soubor: C:\Program Files\trend micro\GAMELASTER.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo večtverečcích zaškrtněte:
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp<. OTM po sobě uklidí. Nakonec restartujte PC.R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2269050
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?barid={16D5DE0 ... 9BDAF7A561}
R3 - URLSearchHook: (no name) - {687578b9-7132-4a7a-80e4-30ee31099e03} - (no file)
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (file missing)
R3 - URLSearchHook: (no name) - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - (no file)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
GAMELASTER
- Návštěvník
- Příspěvky: 107
- Registrován: 13 led 2012 16:53
Re: Virak pokazi pocitac
Dekuji, vsechno mi ted jde jak pomasle... Este jednou diky
//Este raz gratuluju k site adminovi
//Este raz gratuluju k site adminovi
-
Rudy
- Site Admin
- Příspěvky: 119515
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Virak pokazi pocitac
Nemáte zač a já děkuji za gratulaci! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?