prkladam:
Logfile of random's system information tool 1.09 (written by random/random)
Run by i at 2012-12-31 17:57:37
Microsoft Windows 7 Ultimate
System drive C: has 139 GB (67%) free of 209 GB
Total RAM: 2039 MB (46% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:57:54, on 31. 12. 2012
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe
C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\PROGRA~1\DUMETE~1\DUMeter.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wuauclt.exe
C:\DOWNLOAD\RSIT.exe
C:\Program Files\trend micro\i.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://search.certified-toolbar.com?si= ... bs=true&q=
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://search.conduit.com?SearchSource= ... =TB_IEOB20
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar =
http://search.certified-toolbar.com?si= ... bs=true&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://search.certified-toolbar.com?si= ... e&tid=3231
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL =
http://search.certified-toolbar.com?si= ... bs=true&q=
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL =
http://search.certified-toolbar.com?si= ... bs=true&q=
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Ashampoo US Toolbar - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - C:\Program Files\Ashampoo_US\prxtbAsha.dll
O2 - BHO: Ashampoo US - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - C:\Program Files\Ashampoo_US\prxtbAsha.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {D0F4A166-B8D4-48b8-9D63-80849FE137CB} - (no file)
O3 - Toolbar: Ashampoo US Toolbar - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - C:\Program Files\Ashampoo_US\prxtbAsha.dll
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKCU\..\Run: [DU Meter] "C:\Program Files\DU Meter\DUMeter.exe" /autostart
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O8 - Extra context menu item: Free YouTube Download - C:\Users\i\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - (no file)
O20 - AppInit_DLLs: c:\PROGRA~2\BROWSE~1\25976~1.107\{C16C1~1\mngr.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Browser Manager - Unknown owner - C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: DU Meter Service (DUMeterSvc) - Hagel Technologies Ltd. - C:\Program Files\DU Meter\DUMeterSvc.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe
--
End of file - 7896 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
=========Mozilla firefox=========
ProfilePath - C:\Users\i\AppData\Roaming\Mozilla\Firefox\Profiles\6f8fua1a.default
prefs.js - "browser.search.useDBForOrder" - false
prefs.js - "browser.startup.homepage" - "
https://isearch.avg.com/?cid={B74643F6- ... &v=&sap=hp"
prefs.js - "keyword.URL" - "
http://search.certified-toolbar.com?si= ... bs=true&q="
"{C3949AC2-4B17-43ee-B4F1-D26B9D42404D}"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
"{ACAA314B-EEBA-48e4-AD47-84E31C44796C}"=C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.135 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37]
"Description"=
"Path"=C:\Windows\system32\npdeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=15.0.5.109]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files\real\realplayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=15.0.5.109]
"Description"=RealJukebox Netscape Plugin
"Path"=c:\program files\real\realplayer\Netscape6\nprjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.5.109]
"Description"=RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.5.109]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpplugin;version=15.0.5.109]
"Description"=RealPlayer Download Plugin
"Path"=c:\program files\real\realplayer\Netscape6\nprpplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
C:\Program Files\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
Web Search.xml
wikipedia-sk.xml
yahoo.xml
zoznam-sk.xml
C:\Users\i\AppData\Roaming\Mozilla\Firefox\Profiles\6f8fua1a.default\extensions\
{124d001a-bdcb-472f-aa59-bbe7e4bc3204}
C:\Users\i\AppData\Roaming\Mozilla\Firefox\Profiles\6f8fua1a.default\searchplugins\
Web Search.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{124d001a-bdcb-472f-aa59-bbe7e4bc3204}]
Ashampoo US Toolbar - C:\Program Files\Ashampoo_US\prxtbAsha.dll [2011-05-09 176936]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2012-07-07 426736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2012-10-25 329712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17 3855520]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-10-25 59376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D0F4A166-B8D4-48b8-9D63-80849FE137CB}
{124d001a-bdcb-472f-aa59-bbe7e4bc3204} - Ashampoo US Toolbar - C:\Program Files\Ashampoo_US\prxtbAsha.dll [2011-05-09 176936]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2011-09-22 3080264]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-09-17 254896]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-01-18 1033512]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2009-09-23 141848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2009-09-23 173592]
"Persistence"=C:\Windows\system32\igfxpers.exe [2009-09-23 150552]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DU Meter"=C:\Program Files\DU Meter\DUMeter.exe [2012-12-31 3810784]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2012-11-09 17877168]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1173504]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeBridge]
C:\Program Files\Adobe\Adobe Bridge CS5\Bridge.exe [2010-03-09 11989960]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager]
C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe [2007-09-20 202024]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nokia.PCSync]
C:\Program Files\Nokia\Nokia PC Suite 7\PCSync2.exe [2008-06-17 1249280]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2008-06-18 1122816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QlbCtrl.exe]
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2008-02-26 177456]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-01-18 1033512]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
c:\program files\real\realplayer\Update\realsched.exe [2012-07-07 296096]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate]
C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE [2012-12-04 773728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\PROGRA~2\BROWSE~1\25976~1.107\{C16C1~1\mngr.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-09-23 218112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.divxa32"=msaud32_divx.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2012-12-31 17:57:38 ----D---- C:\Program Files\trend micro
2012-12-31 17:57:37 ----D---- C:\rsit
2012-12-31 13:50:52 ----D---- C:\ProgramData\Spybot - Search & Destroy
2012-12-31 13:50:52 ----D---- C:\Program Files\Spybot - Search & Destroy
2012-12-31 13:32:28 ----A---- C:\Windows\system32\atmlib.dll
2012-12-31 13:32:28 ----A---- C:\Windows\system32\atmfd.dll
2012-12-31 13:29:46 ----A---- C:\Windows\system32\msv1_0.dll
2012-12-31 13:03:08 ----A---- C:\Windows\system32\wmi.dll
2012-12-31 13:03:08 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2012-12-31 13:03:07 ----A---- C:\Windows\system32\imagehlp.dll
2012-12-31 12:59:54 ----A---- C:\Windows\system32\wininet.dll
2012-12-31 12:59:54 ----A---- C:\Windows\system32\urlmon.dll
2012-12-31 12:59:54 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2012-12-31 12:59:54 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2012-12-31 12:59:54 ----A---- C:\Windows\system32\msrating.dll
2012-12-31 12:59:54 ----A---- C:\Windows\system32\msls31.dll
2012-12-31 12:59:54 ----A---- C:\Windows\system32\mshtmler.dll
2012-12-31 12:59:54 ----A---- C:\Windows\system32\msfeedssync.exe
2012-12-31 12:59:54 ----A---- C:\Windows\system32\msfeedsbs.dll
2012-12-31 12:59:54 ----A---- C:\Windows\system32\jsproxy.dll
2012-12-31 12:59:54 ----A---- C:\Windows\system32\ieui.dll
2012-12-31 12:59:54 ----A---- C:\Windows\system32\iesysprep.dll
2012-12-31 12:59:54 ----A---- C:\Windows\system32\iertutil.dll
2012-12-31 12:59:54 ----A---- C:\Windows\system32\ieframe.dll
2012-12-31 12:59:54 ----A---- C:\Windows\system32\ieakeng.dll
2012-12-31 12:59:54 ----A---- C:\Windows\system32\IEAdvpack.dll
2012-12-31 12:59:53 ----A---- C:\Windows\system32\wextract.exe
2012-12-31 12:59:53 ----A---- C:\Windows\system32\webcheck.dll
2012-12-31 12:59:53 ----A---- C:\Windows\system32\vbscript.dll
2012-12-31 12:59:53 ----A---- C:\Windows\system32\url.dll
2012-12-31 12:59:53 ----A---- C:\Windows\system32\mshtmled.dll
2012-12-31 12:59:53 ----A---- C:\Windows\system32\msfeeds.dll
2012-12-31 12:59:53 ----A---- C:\Windows\system32\licmgr10.dll
2012-12-31 12:59:53 ----A---- C:\Windows\system32\inseng.dll
2012-12-31 12:59:53 ----A---- C:\Windows\system32\iexpress.exe
2012-12-31 12:59:53 ----A---- C:\Windows\system32\iesetup.dll
2012-12-31 12:59:53 ----A---- C:\Windows\system32\iernonce.dll
2012-12-31 12:59:53 ----A---- C:\Windows\system32\iedkcs32.dll
2012-12-31 12:59:53 ----A---- C:\Windows\system32\ieapfltr.dll
2012-12-31 12:59:53 ----A---- C:\Windows\system32\ieapfltr.dat
2012-12-31 12:59:53 ----A---- C:\Windows\system32\ie4uinit.exe
2012-12-31 12:59:53 ----A---- C:\Windows\system32\icardie.dll
2012-12-31 12:59:53 ----A---- C:\Windows\system32\dxtrans.dll
2012-12-31 12:59:53 ----A---- C:\Windows\system32\dxtmsft.dll
2012-12-31 12:59:52 ----A---- C:\Windows\system32\pngfilt.dll
2012-12-31 12:59:52 ----A---- C:\Windows\system32\occache.dll
2012-12-31 12:59:52 ----A---- C:\Windows\system32\mshtml.dll
2012-12-31 12:59:52 ----A---- C:\Windows\system32\mshta.exe
2012-12-31 12:59:52 ----A---- C:\Windows\system32\jscript9.dll
2012-12-31 12:59:52 ----A---- C:\Windows\system32\jscript.dll
2012-12-31 12:59:52 ----A---- C:\Windows\system32\imgutil.dll
2012-12-31 12:59:52 ----A---- C:\Windows\system32\ieUnatt.exe
2012-12-31 12:59:52 ----A---- C:\Windows\system32\iepeers.dll
2012-12-31 12:59:52 ----A---- C:\Windows\system32\ieakui.dll
2012-12-31 12:59:52 ----A---- C:\Windows\system32\ieaksie.dll
2012-12-31 12:59:52 ----A---- C:\Windows\system32\admparse.dll
2012-12-31 12:59:00 ----A---- C:\Windows\system32\XpsRasterService.dll
2012-12-31 12:59:00 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2012-12-31 12:59:00 ----A---- C:\Windows\system32\WMVDECOD.DLL
2012-12-31 12:59:00 ----A---- C:\Windows\system32\FntCache.dll
2012-12-31 12:58:59 ----A---- C:\Windows\system32\ExplorerFrame.dll
2012-12-31 12:58:59 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2012-12-31 12:58:59 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2012-12-31 12:58:59 ----A---- C:\Windows\system32\cdd.dll
2012-12-31 12:58:58 ----A---- C:\Windows\system32\XpsPrint.dll
2012-12-31 12:58:58 ----A---- C:\Windows\system32\mfreadwrite.dll
2012-12-31 12:58:58 ----A---- C:\Windows\system32\mf.dll
2012-12-31 12:57:43 ----A---- C:\Windows\system32\browserchoice.exe
2012-12-31 12:55:43 ----D---- C:\Windows\system32\x64
2012-12-31 12:55:43 ----A---- C:\Windows\system32\igxpun.exe
2012-12-31 12:52:08 ----D---- C:\Program Files\MSXML 4.0
2012-12-31 12:48:20 ----A---- C:\Windows\system32\MRT.exe
2012-12-31 12:47:29 ----A---- C:\Windows\system32\oleaut32.dll
2012-12-31 12:47:29 ----A---- C:\Windows\system32\oleacc.dll
2012-12-31 12:47:24 ----A---- C:\Windows\system32\msxml6.dll
2012-12-31 12:47:23 ----A---- C:\Windows\system32\msxml3.dll
2012-12-31 12:47:13 ----A---- C:\Windows\system32\cryptsvc.dll
2012-12-31 12:47:13 ----A---- C:\Windows\system32\crypt32.dll
2012-12-31 12:47:12 ----A---- C:\Windows\system32\cryptnet.dll
2012-12-31 12:46:52 ----A---- C:\Windows\system32\win32k.sys
2012-12-31 12:46:51 ----A---- C:\Windows\system32\dnsapi.dll
2012-12-31 12:46:50 ----A---- C:\Windows\system32\dnsrslvr.dll
2012-12-31 12:46:50 ----A---- C:\Windows\system32\dnscacheugc.exe
2012-12-31 12:46:49 ----A---- C:\Windows\system32\drivers\dfsc.sys
2012-12-31 12:46:05 ----A---- C:\Windows\system32\CertEnroll.dll
2012-12-31 12:46:04 ----A---- C:\Windows\system32\winload.exe
2012-12-31 12:46:03 ----A---- C:\Windows\system32\winresume.exe
2012-12-31 12:46:00 ----A---- C:\Windows\system32\mfc40u.dll
2012-12-31 12:46:00 ----A---- C:\Windows\system32\mfc40.dll
2012-12-31 12:45:56 ----A---- C:\Windows\system32\shell32.dll
2012-12-31 12:45:52 ----A---- C:\Windows\system32\ntdll.dll
2012-12-31 12:45:38 ----A---- C:\Windows\system32\odbc32.dll
2012-12-31 12:45:33 ----A---- C:\Windows\system32\drivers\tcpip.sys
2012-12-31 12:45:25 ----A---- C:\Windows\system32\ntkrnlpa.exe
2012-12-31 12:45:24 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-12-31 12:45:19 ----A---- C:\Windows\system32\webio.dll
2012-12-31 12:45:19 ----A---- C:\Windows\system32\lsasrv.dll
2012-12-31 12:45:17 ----A---- C:\Windows\system32\sspisrv.dll
2012-12-31 12:45:17 ----A---- C:\Windows\system32\sspicli.dll
2012-12-31 12:45:17 ----A---- C:\Windows\system32\secur32.dll
2012-12-31 12:45:17 ----A---- C:\Windows\system32\lsass.exe
2012-12-31 12:45:16 ----A---- C:\Windows\system32\spoolsv.exe
2012-12-31 12:45:14 ----A---- C:\Windows\system32\winlogon.exe
2012-12-31 12:45:14 ----A---- C:\Windows\explorer.exe
2012-12-31 12:45:13 ----A---- C:\Windows\system32\kerberos.dll
2012-12-31 12:45:11 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2012-12-31 12:45:10 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2012-12-31 12:45:10 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2012-12-31 12:45:08 ----A---- C:\Windows\system32\comctl32.dll
2012-12-31 12:45:06 ----A---- C:\Windows\system32\mstscax.dll
2012-12-31 12:45:05 ----A---- C:\Windows\system32\mstsc.exe
2012-12-31 12:44:57 ----A---- C:\Windows\system32\asycfilt.dll
2012-12-31 12:44:55 ----A---- C:\Windows\system32\inetcomm.dll
2012-12-31 12:44:53 ----A---- C:\Windows\system32\umpnpmgr.dll
2012-12-31 12:44:47 ----A---- C:\Windows\system32\odbcjt32.dll
2012-12-31 12:44:47 ----A---- C:\Windows\system32\odbccr32.dll
2012-12-31 12:44:47 ----A---- C:\Windows\system32\odbccp32.dll
2012-12-31 12:44:46 ----A---- C:\Windows\system32\odbctrac.dll
2012-12-31 12:44:46 ----A---- C:\Windows\system32\odbccu32.dll
2012-12-31 12:44:44 ----A---- C:\Windows\system32\msasn1.dll
2012-12-31 12:44:43 ----A---- C:\Windows\system32\dpnet.dll
2012-12-31 12:44:41 ----A---- C:\Windows\system32\t2embed.dll
2012-12-31 12:44:37 ----A---- C:\Windows\system32\ir32_32.dll
2012-12-31 12:44:37 ----A---- C:\Windows\system32\iccvid.dll
2012-12-31 12:44:35 ----A---- C:\Windows\system32\d3d10warp.dll
2012-12-31 12:44:35 ----A---- C:\Windows\system32\d2d1.dll
2012-12-31 12:44:34 ----A---- C:\Windows\system32\DWrite.dll
2012-12-31 12:44:34 ----A---- C:\Windows\system32\d3d10_1core.dll
2012-12-31 12:44:34 ----A---- C:\Windows\system32\d3d10_1.dll
2012-12-31 12:44:19 ----A---- C:\Windows\system32\rtutils.dll
2012-12-31 12:44:00 ----A---- C:\Windows\system32\KernelBase.dll
2012-12-31 12:43:59 ----A---- C:\Windows\system32\winsrv.dll
2012-12-31 12:43:59 ----A---- C:\Windows\system32\kernel32.dll
2012-12-31 12:43:59 ----A---- C:\Windows\system32\conhost.exe
2012-12-31 12:43:58 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-12-31 12:43:54 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-12-31 12:43:54 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-12-31 12:43:54 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2012-12-31 12:43:54 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-12-31 12:43:54 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2012-12-31 12:43:54 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-12-31 12:43:54 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-12-31 12:43:54 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-12-31 12:43:54 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2012-12-31 12:43:53 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-12-31 12:43:53 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2012-12-31 12:43:53 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2012-12-31 12:43:53 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2012-12-31 12:43:53 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2012-12-31 12:43:53 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2012-12-31 12:43:53 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2012-12-31 12:43:53 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2012-12-31 12:43:52 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-12-31 12:43:52 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-12-31 12:43:52 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-12-31 12:43:52 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-12-31 12:43:52 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2012-12-31 12:43:52 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-12-31 12:43:52 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2012-12-31 12:43:52 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2012-12-31 12:43:52 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2012-12-31 12:43:52 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2012-12-31 12:43:24 ----A---- C:\Windows\system32\wmicmiplugin.dll
2012-12-31 12:43:24 ----A---- C:\Windows\system32\taskschd.dll
2012-12-31 12:43:24 ----A---- C:\Windows\system32\schedsvc.dll
2012-12-31 12:43:23 ----A---- C:\Windows\system32\taskeng.exe
2012-12-31 12:43:23 ----A---- C:\Windows\system32\taskcomp.dll
2012-12-31 12:43:23 ----A---- C:\Windows\system32\schtasks.exe
2012-12-31 12:43:21 ----A---- C:\Windows\system32\CPFilters.dll
2012-12-31 12:43:20 ----A---- C:\Windows\system32\sbe.dll
2012-12-31 12:43:18 ----A---- C:\Windows\system32\quartz.dll
2012-12-31 12:43:16 ----A---- C:\Windows\system32\qdvd.dll
2012-12-31 12:43:13 ----A---- C:\Windows\system32\psisdecd.dll
2012-12-31 12:43:11 ----A---- C:\Windows\system32\fontsub.dll
2012-12-31 12:43:09 ----A---- C:\Windows\system32\apphelp.dll
2012-12-31 12:43:05 ----A---- C:\Windows\system32\schannel.dll
2012-12-31 12:43:04 ----A---- C:\Windows\system32\ncrypt.dll
2012-12-31 12:43:04 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-12-31 12:43:04 ----A---- C:\Windows\system32\drivers\cng.sys
2012-12-31 12:43:03 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-12-31 12:43:00 ----A---- C:\Windows\system32\EncDec.dll
2012-12-31 12:42:57 ----A---- C:\Windows\system32\rdpcore.dll
2012-12-31 12:42:57 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2012-12-31 12:42:51 ----A---- C:\Windows\system32\wmp.dll
2012-12-31 12:42:49 ----A---- C:\Windows\system32\wmploc.DLL
2012-12-31 12:42:33 ----A---- C:\Windows\system32\drivers\srv.sys
2012-12-31 12:42:32 ----A---- C:\Windows\system32\drivers\srv2.sys
2012-12-31 12:42:31 ----A---- C:\Windows\system32\drivers\srvnet.sys
2012-12-31 12:42:29 ----A---- C:\Windows\system32\msvcrt.dll
2012-12-31 12:42:26 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-12-31 12:42:24 ----A---- C:\Windows\system32\netapi32.dll
2012-12-31 12:42:24 ----A---- C:\Windows\system32\browser.dll
2012-12-31 12:42:23 ----A---- C:\Windows\system32\browcli.dll
2012-12-31 12:42:22 ----A---- C:\Windows\system32\srvsvc.dll
2012-12-31 12:42:17 ----A---- C:\Windows\system32\drivers\afd.sys
2012-12-31 12:42:15 ----A---- C:\Windows\system32\wintrust.dll
2012-12-31 12:42:09 ----A---- C:\Windows\system32\ole32.dll
2012-12-31 12:42:08 ----A---- C:\Windows\system32\synceng.dll
2012-12-31 12:42:07 ----A---- C:\Windows\system32\csrsrv.dll
2012-12-31 12:42:05 ----A---- C:\Windows\system32\rdrmemptylst.exe
2012-12-31 12:42:04 ----A---- C:\Windows\system32\rdpwsx.dll
2012-12-31 12:42:04 ----A---- C:\Windows\system32\rdpcorekmts.dll
2012-12-31 12:42:00 ----A---- C:\Windows\system32\consent.exe
2012-12-31 12:41:57 ----A---- C:\Windows\system32\localspl.dll
2012-12-31 12:41:56 ----A---- C:\Windows\system32\wmpmde.dll
2012-12-31 12:41:54 ----A---- C:\Windows\system32\FXSCOVER.exe
2012-12-31 12:41:53 ----A---- C:\Windows\system32\packager.dll
2012-12-31 12:41:52 ----A---- C:\Windows\system32\mciavi32.dll
2012-12-31 12:41:51 ----A---- C:\Windows\system32\tsbyuv.dll
2012-12-31 12:41:51 ----A---- C:\Windows\system32\msyuv.dll
2012-12-31 12:41:51 ----A---- C:\Windows\system32\msvidc32.dll
2012-12-31 12:41:51 ----A---- C:\Windows\system32\msrle32.dll
2012-12-31 12:41:51 ----A---- C:\Windows\system32\iyuv_32.dll
2012-12-31 12:41:51 ----A---- C:\Windows\system32\avifil32.dll
2012-12-31 12:41:50 ----A---- C:\Windows\system32\drivers\volsnap.sys
2012-12-31 12:41:45 ----A---- C:\Windows\system32\drivers\bowser.sys
2012-12-31 12:41:43 ----A---- C:\Windows\system32\drivers\partmgr.sys
2012-12-31 12:37:35 ----A---- C:\Windows\system32\tzres.dll
2012-12-31 12:36:41 ----A---- C:\Windows\system32\StructuredQuery.dll
2012-12-31 12:36:39 ----A---- C:\Windows\system32\mfc42.dll
2012-12-31 12:36:38 ----A---- C:\Windows\system32\mfc42u.dll
2012-12-31 12:36:34 ----A---- C:\Windows\system32\poqexec.exe
2012-12-31 12:36:33 ----A---- C:\Windows\system32\cabview.dll
2012-12-31 12:12:28 ----SHD---- C:\$RECYCLE.BIN
2012-12-31 12:12:25 ----D---- C:\Windows\temp
2012-12-31 12:12:23 ----A---- C:\ComboFix.txt
2012-12-31 11:58:41 ----A---- C:\Windows\zip.exe
2012-12-31 11:58:41 ----A---- C:\Windows\SWSC.exe
2012-12-31 11:58:41 ----A---- C:\Windows\SWREG.exe
2012-12-31 11:58:41 ----A---- C:\Windows\sed.exe
2012-12-31 11:58:41 ----A---- C:\Windows\PEV.exe
2012-12-31 11:58:41 ----A---- C:\Windows\NIRCMD.exe
2012-12-31 11:58:41 ----A---- C:\Windows\MBR.exe
2012-12-31 11:58:41 ----A---- C:\Windows\grep.exe
2012-12-31 11:58:08 ----D---- C:\Qoobox
2012-12-31 11:57:50 ----D---- C:\Windows\erdnt
2012-12-31 10:56:41 ----A---- C:\Windows\ntbtlog.txt
2012-12-31 10:41:59 ----D---- C:\ProgramData\Hagel Technologies
2012-12-27 12:11:15 ----D---- C:\Users\i\AppData\Roaming\WinTools
2012-12-26 12:47:30 ----A---- C:\Windows\system32\wups2.dll
2012-12-26 12:47:30 ----A---- C:\Windows\system32\wuauclt.exe
2012-12-26 12:47:29 ----A---- C:\Windows\system32\wucltux.dll
2012-12-26 12:47:29 ----A---- C:\Windows\system32\wuaueng.dll
2012-12-26 12:47:02 ----A---- C:\Windows\system32\wups.dll
2012-12-26 12:47:02 ----A---- C:\Windows\system32\wudriver.dll
2012-12-26 12:47:02 ----A---- C:\Windows\system32\wuapi.dll
2012-12-26 12:46:51 ----A---- C:\Windows\system32\wuwebv.dll
2012-12-26 12:46:51 ----A---- C:\Windows\system32\wuapp.exe
2012-12-26 12:42:00 ----N---- C:\bootsqm.dat
2012-12-26 12:03:50 ----A---- C:\Windows\system32\TURegOpt.exe
2012-12-26 12:03:49 ----A---- C:\Windows\system32\authuitu.dll
2012-12-26 12:02:27 ----D---- C:\Users\i\AppData\Roaming\TuneUp Software
2012-12-26 12:02:08 ----D---- C:\Program Files\TuneUp Utilities 2013
2012-12-26 12:01:25 ----D---- C:\ProgramData\TuneUp Software
2012-12-26 12:01:02 ----SHD---- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2012-12-25 11:43:46 ----D---- C:\Program Files\Common Files\Wondershare
2012-12-25 11:42:59 ----D---- C:\Program Files\Wondershare
2012-12-25 10:48:21 ----A---- C:\Windows\Launcher.exe
2012-12-25 10:48:11 ----A---- C:\SetSearchAndHomepageInBrowserLog.txt
2012-12-25 10:40:12 ----D---- C:\Program Files\Red Sky
2012-12-24 13:32:12 ----D---- C:\Program Files\Nero
2012-12-22 17:20:36 ----D---- C:\Users\i\AppData\Roaming\vlc
2012-12-22 17:19:28 ----D---- C:\Program Files\VideoLAN
2012-12-22 17:07:52 ----HD---- C:\ProgramData\Common Files
2012-12-22 17:07:40 ----D---- C:\Users\i\AppData\Roaming\GRETECH
2012-12-22 17:07:33 ----D---- C:\Program Files\GRETECH
2012-12-22 16:06:30 ----D---- C:\Users\i\AppData\Roaming\DVDVideoSoftIEHelpers
2012-12-22 16:06:00 ----D---- C:\Users\i\AppData\Roaming\DVDVideoSoft
2012-12-22 16:06:00 ----D---- C:\Program Files\Common Files\DVDVideoSoft
2012-12-22 16:05:59 ----D---- C:\Program Files\DVDVideoSoft
2012-12-22 15:21:13 ----D---- C:\Program Files\FDRLab
2012-12-21 15:40:08 ----D---- C:\Program Files\Your Uninstaller! 7
2012-12-21 15:11:10 ----D---- C:\Users\i\AppData\Roaming\Godlike
2012-12-21 15:10:21 ----D---- C:\Program Files\WinTools Software
2012-12-21 14:58:01 ----D---- C:\Users\i\AppData\Roaming\URSoft
2012-12-21 14:58:00 ----AD---- C:\ProgramData\TEMP
2012-12-21 12:11:01 ----D---- C:\ProgramData\LightScribe
2012-12-21 12:01:37 ----D---- C:\Program Files\Common Files\LightScribe
2012-12-21 12:01:25 ----A---- C:\Windows\system32\d3dx11_43.dll
2012-12-21 12:00:59 ----A---- C:\Windows\system32\d3dx10_43.dll
2012-12-21 12:00:37 ----A---- C:\Windows\system32\D3DX9_43.dll
2012-12-21 12:00:13 ----A---- C:\Windows\system32\d3dcsx_43.dll
2012-12-21 11:59:49 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2012-12-21 10:46:05 ----RA---- C:\Windows\LgUninst.exe
2012-12-21 10:46:04 ----D---- C:\Program Files\Lingea
2012-12-21 10:44:29 ----D---- C:\Program Files\Lex2002
2012-12-20 17:45:10 ----D---- C:\Windows\system32\appmgmt
2012-12-20 15:05:33 ----D---- C:\Users\i\AppData\Roaming\Nero
2012-12-20 14:57:42 ----D---- C:\ProgramData\Nero
2012-12-20 14:57:42 ----D---- C:\Program Files\Common Files\Nero
2012-12-20 14:53:38 ----A---- C:\Windows\system32\d3dx9_30.dll
2012-12-20 14:53:36 ----A---- C:\Windows\system32\d3dx9_28.dll
2012-12-20 14:17:39 ----D---- C:\Users\i\AppData\Roaming\Ashampoo
2012-12-20 14:17:30 ----D---- C:\Program Files\Conduit
2012-12-20 14:17:25 ----D---- C:\Program Files\Ashampoo_US
2012-12-20 14:17:08 ----D---- C:\ProgramData\ashampoo
2012-12-20 14:17:01 ----D---- C:\Program Files\Ashampoo
2012-12-20 12:50:16 ----D---- C:\Program Files\Microsoft Silverlight
2012-12-20 12:49:47 ----D---- C:\ProgramData\Canneverbe Limited
2012-12-20 12:49:46 ----D---- C:\Users\i\AppData\Roaming\Canneverbe Limited
2012-12-20 12:49:36 ----D---- C:\Users\i\AppData\Roaming\OpenCandy
2012-12-20 12:49:36 ----D---- C:\Program Files\CDBurnerXP
2012-12-12 12:44:47 ----D---- C:\Users\i\AppData\Roaming\Nikon
2012-12-12 12:42:56 ----H---- C:\ProgramData\PKP_DLbx.DAT
2012-12-12 12:42:56 ----D---- C:\ProgramData\Ultima_T15
2012-12-12 12:42:56 ----D---- C:\ProgramData\EnterNHelp
2012-12-10 16:01:29 ----HDC---- C:\ProgramData\{529BBEB3-0369-420C-BD9C-37553D289203}
2012-12-10 16:01:19 ----D---- C:\Program Files\Topaz Labs
2012-12-10 16:01:19 ----D---- C:\Program Files\Common Files\Topaz Labs
2012-12-09 11:41:52 ----D---- C:\ProgramData\Mozilla
2012-12-09 11:41:51 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-12-08 14:58:48 ----D---- C:\Program Files\Nikon
2012-12-08 14:58:47 ----D---- C:\Program Files\Common Files\Nikon
2012-12-08 14:58:00 ----D---- C:\Program Files\Common Files\InstallShield
2012-12-08 13:24:27 ----D---- C:\ProgramData\Phase One
2012-12-08 13:13:18 ----D---- C:\Program Files\Phase One
2012-12-08 13:08:07 ----D---- C:\Program Files\Microsoft.NET
2012-12-03 17:28:07 ----D---- C:\Program Files\Zoner
2012-12-03 17:18:48 ----D---- C:\Program Files\uTorrent
2012-12-03 17:16:52 ----D---- C:\Users\i\AppData\Roaming\uTorrent
2012-12-03 12:15:07 ----D---- C:\ProgramData\Browser Manager
2012-12-03 11:29:58 ----D---- C:\Program Files\Common Files\Java
2012-12-03 11:29:46 ----A---- C:\Windows\system32\javaws.exe
2012-12-03 11:29:46 ----A---- C:\Windows\system32\javaw.exe
2012-12-03 11:29:46 ----A---- C:\Windows\system32\java.exe
2012-12-01 13:55:34 ----D---- C:\Program Files\Synaptics
2012-12-01 13:43:17 ----A---- C:\Windows\system32\drivers\CPQBttn.sys
2012-12-01 13:43:11 ----A---- C:\Windows\system32\drivers\wdfcoinstaller01005.dll
2012-12-01 13:43:11 ----A---- C:\Windows\system32\drivers\HpqKbFiltr.sys
2012-12-01 13:43:11 ----A---- C:\Windows\system32\BttnCmns_64.dll
2012-12-01 13:43:07 ----A---- C:\Windows\system32\BttnCmns.dll
2012-12-01 13:43:07 ----A---- C:\Windows\system32\BttnCmn.dll
2012-12-01 13:43:05 ----HD---- C:\Program Files\InstallShield Installation Information
2012-12-01 13:43:05 ----D---- C:\Program Files\Hewlett-Packard
2012-12-01 13:42:29 ----D---- C:\Users\i\AppData\Roaming\InstallShield
2012-12-01 11:28:01 ----D---- C:\Program Files\Common Files\Skype
======List of files/folders modified in the last 1 month======
2012-12-31 17:57:50 ----RSD---- C:\Windows\assembly
2012-12-31 17:57:38 ----RD---- C:\Program Files
2012-12-31 17:57:14 ----D---- C:\DOWNLOAD
2012-12-31 17:55:22 ----D---- C:\Users\i\AppData\Roaming\Skype
2012-12-31 17:53:01 ----D---- C:\Windows\Microsoft.NET
2012-12-31 17:53:01 ----D---- C:\Windows
2012-12-31 17:52:52 ----D---- C:\Windows\winsxs
2012-12-31 17:52:32 ----D---- C:\Windows\Panther
2012-12-31 17:52:11 ----D---- C:\Windows\system32\Tasks
2012-12-31 17:52:00 ----D---- C:\Windows\system32\config
2012-12-31 17:51:10 ----D---- C:\Windows\System32
2012-12-31 14:56:46 ----D---- C:\Windows\system32\catroot
2012-12-31 14:55:47 ----D---- C:\Windows\system32\drivers
2012-12-31 14:55:46 ----D---- C:\Windows\system32\sk-SK
2012-12-31 14:55:46 ----D---- C:\Windows\system32\en-US
2012-12-31 14:55:46 ----D---- C:\Windows\system32\cs-CZ
2012-12-31 14:55:44 ----D---- C:\Program Files\Windows Mail
2012-12-31 14:55:44 ----D---- C:\Program Files\Common Files\System
2012-12-31 14:55:43 ----D---- C:\Windows\ehome
2012-12-31 14:55:40 ----D---- C:\Program Files\Windows Journal
2012-12-31 14:55:39 ----D---- C:\Windows\system32\Boot
2012-12-31 14:55:38 ----D---- C:\Program Files\Windows Media Player
2012-12-31 14:55:35 ----D---- C:\Program Files\Internet Explorer
2012-12-31 14:55:32 ----D---- C:\Windows\system32\migration
2012-12-31 14:55:32 ----D---- C:\Windows\PolicyDefinitions
2012-12-31 14:55:25 ----D---- C:\Windows\inf
2012-12-31 14:54:58 ----D---- C:\Windows\system32\DriverStore
2012-12-31 13:50:52 ----D---- C:\ProgramData
2012-12-31 13:47:22 ----D---- C:\Windows\Prefetch
2012-12-31 13:03:22 ----D---- C:\Windows\system32\catroot2
2012-12-31 13:03:05 ----D---- C:\Windows\Logs
2012-12-31 12:52:28 ----SHD---- C:\Windows\Installer
2012-12-31 12:48:26 ----D---- C:\Windows\debug
2012-12-31 12:48:14 ----SHD---- C:\System Volume Information
2012-12-31 12:23:18 ----D---- C:\Windows\system32\wdi
2012-12-31 12:20:40 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-12-31 12:10:01 ----A---- C:\Windows\system.ini
2012-12-31 12:09:53 ----D---- C:\Windows\system32\drivers\etc
2012-12-31 12:04:58 ----D---- C:\Windows\AppPatch
2012-12-31 12:04:54 ----D---- C:\Program Files\Common Files
2012-12-31 10:57:28 ----D---- C:\Program Files\DU Meter
2012-12-30 17:24:31 ----A---- C:\Users\i\AppData\Roaming\PLGComp.ini
2012-12-30 16:44:21 ----D---- C:\Windows\Tasks
2012-12-25 13:10:36 ----D---- C:\Users\i\AppData\Roaming\vso
2012-12-25 10:39:34 ----AD---- C:\BB
2012-12-21 15:36:49 ----D---- C:\Program Files\Mozilla Firefox
2012-12-20 16:50:36 ----AD---- C:\AAA
2012-12-20 16:19:40 ----AD---- C:\AA
2012-12-20 14:57:41 ----D---- C:\Windows\Cursors
2012-12-20 13:48:17 ----SD---- C:\Users\i\AppData\Roaming\Microsoft
2012-12-20 12:50:53 ----SD---- C:\ProgramData\Microsoft
2012-12-15 14:17:27 ----D---- C:\Users\i\AppData\Roaming\Adobe
2012-12-15 12:43:18 ----D---- C:\ProgramData\Adobe
2012-12-15 12:43:18 ----D---- C:\Program Files\Common Files\Adobe
2012-12-15 12:41:12 ----D---- C:\Program Files\Adobe
2012-12-13 22:22:20 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2012-12-12 13:12:21 ----AD---- C:\DOWNLOADS
2012-12-08 15:04:01 ----D---- C:\Users\i\AppData\Roaming\Zoner
2012-12-08 14:57:57 ----D---- C:\Program Files\Common Files\microsoft shared
2012-12-08 13:07:09 ----D---- C:\Windows\SoftwareDistribution
2012-12-08 12:46:27 ----D---- C:\Program Files\Focus Magic
2012-12-03 11:29:33 ----D---- C:\Program Files\Java
2012-12-01 13:22:25 ----D---- C:\LiberKey
2012-12-01 11:28:07 ----D---- C:\ProgramData\Skype
2012-12-01 11:28:02 ----RD---- C:\Program Files\Skype
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2011-08-04 50624]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2011-08-04 118104]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2011-08-04 33656]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2011-08-09 163424]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2011-08-04 147480]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-07-16 35088]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2009-07-13 1035776]
R3 BCM43XX;Broadcom 802.11 – ovladač síťového adaptéru; C:\Windows\system32\DRIVERS\bcmwl6.sys [2009-07-13 1131008]
R3 DUMeterDrv;Hagel Technologies DU Meter traffic accounting driver; \??\C:\Program Files\DU Meter\DUMETR32.SYS [2012-10-29 19504]
R3 e1express;Intel(R) PRO/1000 – ovladač PCI Express síťového připojení; C:\Windows\system32\DRIVERS\e1e6032.sys [2009-07-13 211456]
R3 HBtnKey;HBtnKey; C:\Windows\system32\DRIVERS\cpqbttn.sys [2006-06-28 9472]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-18 16768]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-09-23 4808192]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2008-01-18 196784]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx86.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 catchme;catchme; \??\C:\Users\i\AppData\Local\Temp\catchme.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 SliceDisk5;SliceDisk5; \??\C:\Program Files\LiberKey\Apps\PartitionFindandMount\App\PartitionFindandMount\slicedisk.sys [2011-02-25 26192]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Browser Manager;Browser Manager; C:\ProgramData\Browser Manager\2.5.976.107\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.exe [2012-12-05 2403352]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DUMeterSvc;DU Meter Service; C:\Program Files\DU Meter\DUMeterSvc.exe [2012-12-31 2053088]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2011-09-22 974944]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2011-03-04 73728]
R2 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2012-07-13 769432]
R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [2012-09-19 1699168]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-11-09 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-13 250808]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-02-07 193840]
S3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2008-01-25 148832]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-12-20 115168]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-05-30 572416]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
