ted jsem dokoncil scan ESET online a naslo mi to ... opencandy win32
vkladam log ...
Logfile of random's system information tool 1.08 (written by random/random)
Run by Milos at 2013-04-22 21:42:46
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 24 GB (43%) free of 57 GB
Total RAM: 4041 MB (57% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:42:51, on 22.4.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16476)
Boot mode: Normal
Running processes:
E:\Program Files (x86)\AI Suite II\DIGI+ VRM\VRMHelp.exe
E:\Program Files (x86)\AI Suite II\AsRoutineController.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
E:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe
C:\Windows\SysWOW64\jmdp\stij.exe
E:\Program Files (x86)\AI Suite II\EPU\EPUHelp.exe
E:\Program Files (x86)\AI Suite II\AI Suite II.exe
E:\Program Files (x86)\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
G:\Program Files (x86)\Mozilla Firefox\firefox.exe
G:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe
C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerApp.exe
C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe
C:\Program Files\trend micro\Milos.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://mystart.incredibar.com/mb201?a=6PQPZvDsB7&i=26
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {93a3111f-4f74-4ed8-895e-d9708497629e} - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Toolbar BHO - {312f84fb-8970-4fd3-bddb-7012eac4afc9} - C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zbar.dll
O2 - BHO: IB Updater Helper - {336D0C35-8A85-403a-B9D2-65C292C39087} - C:\Program Files\IB Updater\Extension32.dll
O2 - BHO: Incredibar.com Helper Object - {6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99} - C:\Program Files (x86)\Incredibar.com\incredibar\1.5.11.14\bh\incredibar.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Search Assistant BHO - {c547c6c2-561b-4169-a2a5-20ba771ca93b} - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Incredibar Toolbar - {F9639E4A-801B-4843-AEE3-03D9DA199E77} - C:\Program Files (x86)\Incredibar.com\incredibar\1.5.11.14\incredibarTlbr.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: VideoDownloadConverter - {48586425-6bb7-4f51-8dc6-38c88e3ebb58} - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ASUS AiChargerPlus Execute] C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "E:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "E:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Adobe_ID0ENQBO] C:\PROGRA~2\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
O4 - HKLM\..\Run: [VideoDownloadConverter Search Scope Monitor] "C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zsrchmn.exe" /m=2 /w /h
O4 - HKLM\..\Run: [VideoDownloadConverter_4z Browser Plugin Loader] C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zbrmon.exe
O4 - HKLM\..\Run: [StartCCC] "E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "E:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_Plugin.exe -update plugin
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://E:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Převést cíl vazby do Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Převést cíl vazby do existujícího PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Převést do Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Přidat do stávajícího PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - E:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) -
http://security.symantec.com/sscv6/Shar ... vSniff.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) -
http://security.symantec.com/sscv6/Shar ... /cabsa.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Version Cue CS4 - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - E:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
O23 - Service: DTSAudioService - DTS - C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - E:\Program Files (x86)\hamachi logMaIn\hamachi-2.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\Windows\system32\HPSIsvc.exe (file missing)
O23 - Service: IBUpdaterService - Unknown owner - C:\Windows\system32\dmwu.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - E:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VideoDownloadConverterService (VideoDownloadConverter_4zService) - COMPANYVERS_NAME - C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zbarsvc.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13341 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"E:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe"
"C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe"
"C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe"
"taskhost.exe"
taskeng.exe {D95B938A-E9F7-434F-A4D9-CFB5146FB540}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"E:\Program Files (x86)\hamachi logMaIn\hamachi-2.exe" -s
C:\Windows\system32\HPSIsvc.exe
C:\Windows\system32\dmwu.exe
"C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe"
"E:\Program Files (x86)\AI Suite II\DIGI+ VRM\VRMHelp.exe"
"E:\Program Files (x86)\AI Suite II\AsRoutineController.exe" -open
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORDTSUPTBT
C:\Windows\system32\svchost.exe -k imgsvc
C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zbarsvc.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe"
HydraDM64.exe -h:65952 "Maximalizovat na celou plochu" "Maximalizovat k rohům okna" "Obnovit pracovní plochu"
"E:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe"
"C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
"E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
WLIDSvcM.exe 2680
"E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Windows\SysWOW64\jmdp\stij.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"E:\Program Files (x86)\AI Suite II\EPU\EPUHelp.exe" -Init
"E:\Program Files (x86)\AI Suite II\AI Suite II.exe" -hide
"E:\Program Files (x86)\AI Suite II\Sensor\AlertHelper\AlertHelper.exe" -hide
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"G:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"G:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3472.d0f8800.1459504980 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll" -greomni "G:\Program Files (x86)\Mozilla Firefox\omni.ja" -appdir "G:\Program Files (x86)\Mozilla Firefox" 5A5B5881A635720 3472 "\\.\pipe\gecko-crash-server-pipe.3472" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe" --proxy-stub-channel=Flash5000.6D581D90.12205 --host-broker-channel=Flash5000.6D581D90.26440 --host-pid=5000 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe" --channel=1064.0062F570.648970152 --proxy-stub-channel=Flash5000.6D581D90.12205 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll" --host-npapi-version=27 --type=renderer
"C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerApp.exe" lng=1029
"C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe" "/base-dir=C:\Program Files (x86)\ESET\ESET Online Scanner" /lang=1029 /as
\??\C:\Windows\system32\conhost.exe "14816248104508904871128673362-469857111-6832488841057018140-641926491-852972701
"G:\FFF\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}]
IB Updater - C:\Program Files\IB Updater\Extension64.dll [2012-10-23 215896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - E:\Program Files\Java\bin\ssv.dll [2012-11-17 537576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - E:\Program Files\Java\bin\jp2ssv.dll [2012-11-17 193512]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-12-18 66280]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{312f84fb-8970-4fd3-bddb-7012eac4afc9}]
Toolbar BHO - C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zbar.dll [2013-01-22 707728]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}]
IB Updater - C:\Program Files\IB Updater\Extension32.dll [2012-10-23 170840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}]
Incredibar.com Helper Object - C:\Program Files (x86)\Incredibar.com\incredibar\1.5.11.14\bh\incredibar.dll [2012-01-22 261632]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c547c6c2-561b-4169-a2a5-20ba771ca93b}]
Search Assistant BHO - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll [2013-01-22 62864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{F9639E4A-801B-4843-AEE3-03D9DA199E77} - Incredibar Toolbar - C:\Program Files (x86)\Incredibar.com\incredibar\1.5.11.14\incredibarTlbr.dll [2012-01-22 270336]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
{48586425-6bb7-4f51-8dc6-38c88e3ebb58} - VideoDownloadConverter - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll [2013-01-22 707728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-01-27 1281512]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2000-01-01 6548112]
"RtHDVBg_DTS"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2000-01-01 1212560]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=E:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-04-11 3672384]
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2010-08-25 393216]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"FlashPlayerUpdate"=C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_Plugin.exe [2013-03-13 706776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [2006-12-23 143360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
E:\Program Files (x86)\hamachi logMaIn\hamachi-2-ui.exe [2012-12-10 2254768]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
E:\Program Files (x86)\Steam\steam.exe [2013-03-15 1632680]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2000-01-01 43608]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
"ASUS AiChargerPlus Execute"=C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [2010-11-08 465536]
"AdobeCS4ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"Adobe Acrobat Speed Launcher"=E:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [2008-06-12 37232]
""= []
"Acrobat Assistant 8.0"=E:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2008-06-11 640376]
"Adobe_ID0ENQBO"=C:\PROGRA~2\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE [2008-08-15 378224]
"VideoDownloadConverter Search Scope Monitor"=C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zsrchmn.exe [2013-01-22 42536]
"VideoDownloadConverter_4z Browser Plugin Loader"=C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zbrmon.exe [2013-01-22 30096]
"StartCCC"=E:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-12-19 642808]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2013-04-22 21:42:46 ----D---- C:\rsit
2013-04-22 21:42:46 ----D---- C:\Program Files\trend micro
2013-04-22 20:38:42 ----D---- C:\Program Files (x86)\ESET
2013-04-21 18:00:00 ----A---- C:\Windows\system32\RtNicProp64.dll
2013-04-21 18:00:00 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2013-04-21 17:54:27 ----A---- C:\Windows\system32\drivers\jraid.sys
2013-04-21 17:51:51 ----D---- C:\Windows\SYSWOW64\RTCOM
2013-04-21 17:51:28 ----A---- C:\Windows\system32\WavesGUILib.dll
2013-04-21 17:51:27 ----A---- C:\Windows\system32\tosade.dll
2013-04-21 17:51:27 ----A---- C:\Windows\system32\tepeqapo64.dll
2013-04-21 17:51:27 ----A---- C:\Windows\system32\tadefxapo264.dll
2013-04-21 17:51:27 ----A---- C:\Windows\system32\tadefxapo.dll
2013-04-21 17:51:27 ----A---- C:\Windows\system32\SRSWOW64.dll
2013-04-21 17:51:27 ----A---- C:\Windows\system32\SRSTSX64.dll
2013-04-21 17:51:27 ----A---- C:\Windows\system32\SRSTSH64.dll
2013-04-21 17:51:27 ----A---- C:\Windows\system32\SRSHP64.dll
2013-04-21 17:51:25 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2013-04-21 17:51:25 ----A---- C:\Windows\system32\SFSS_APO.dll
2013-04-21 17:51:25 ----A---- C:\Windows\system32\SFNHK64.dll
2013-04-21 17:51:25 ----A---- C:\Windows\system32\SFCOM64.dll
2013-04-21 17:51:25 ----A---- C:\Windows\system32\SFAPO64.dll
2013-04-21 17:51:25 ----A---- C:\Windows\system32\RtPgEx64.dll
2013-04-21 17:51:25 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2013-04-21 17:51:24 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2013-04-21 17:51:24 ----A---- C:\Windows\system32\RtkCfg64.dll
2013-04-21 17:51:24 ----A---- C:\Windows\system32\RtkAPO64.dll
2013-04-21 17:51:24 ----A---- C:\Windows\system32\RtkApi64.dll
2013-04-21 17:51:24 ----A---- C:\Windows\system32\RTEEP64A.dll
2013-04-21 17:51:24 ----A---- C:\Windows\system32\RTEEL64A.dll
2013-04-21 17:51:24 ----A---- C:\Windows\system32\RTEEG64A.dll
2013-04-21 17:51:24 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2013-04-21 17:51:23 ----A---- C:\Windows\system32\RTEED64A.dll
2013-04-21 17:51:23 ----A---- C:\Windows\system32\RTCOM64.dll
2013-04-21 17:51:23 ----A---- C:\Windows\system32\RP3DHT64.dll
2013-04-21 17:51:23 ----A---- C:\Windows\system32\RP3DAA64.dll
2013-04-21 17:51:23 ----A---- C:\Windows\system32\RCoInstII64.dll
2013-04-21 17:51:22 ----A---- C:\Windows\system32\R4EEP64A.dll
2013-04-21 17:51:22 ----A---- C:\Windows\system32\R4EEL64A.dll
2013-04-21 17:51:22 ----A---- C:\Windows\system32\R4EEG64A.dll
2013-04-21 17:51:22 ----A---- C:\Windows\system32\R4EED64A.dll
2013-04-21 17:51:22 ----A---- C:\Windows\system32\R4EEA64A.dll
2013-04-21 17:51:22 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2013-04-21 17:51:22 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2013-04-21 17:51:22 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2013-04-21 17:51:21 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2013-04-21 17:51:21 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2013-04-21 17:51:21 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2013-04-21 17:51:21 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2013-04-21 17:51:21 ----A---- C:\Windows\system32\KAAPORT64.dll
2013-04-21 17:51:18 ----A---- C:\Windows\system32\FMAPO64.dll
2013-04-21 17:51:18 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2013-04-21 17:51:18 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2013-04-21 17:51:18 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2013-04-21 17:51:18 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2013-04-21 17:51:18 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2013-04-21 17:51:18 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2013-04-21 17:51:18 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2013-04-21 17:51:18 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2013-04-21 17:51:18 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2013-04-21 17:51:17 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2013-04-21 17:51:17 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2013-04-21 17:51:17 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2013-04-21 17:51:17 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2013-04-21 17:51:17 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2013-04-21 17:51:17 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2013-04-21 17:51:17 ----A---- C:\Windows\system32\AERTAR64.dll
2013-04-21 17:51:17 ----A---- C:\Windows\system32\AERTAC64.dll
2013-04-21 17:46:45 ----D---- C:\Program Files (x86)\SlimDrivers
2013-04-21 17:39:31 ----A---- C:\Windows\system32\drivers\usbfilter.sys
2013-04-21 17:34:11 ----A---- C:\Windows\AsTaskSched.dll
2013-04-21 17:34:06 ----A---- C:\Windows\system32\drivers\volsnap.sys
2013-04-21 17:07:04 ----A---- C:\Windows\system32\drivers\amd_xata.sys
2013-04-21 17:07:04 ----A---- C:\Windows\system32\drivers\amd_sata.sys
2013-04-21 16:29:51 ----D---- C:\ProgramData\ATI
2013-04-21 16:29:49 ----D---- C:\Program Files (x86)\AMD AVT
2013-04-21 16:29:46 ----D---- C:\Program Files (x86)\AMD APP
2013-04-21 16:27:26 ----D---- C:\AMD
2013-04-14 21:55:34 ----D---- C:\Users\Milos\AppData\Roaming\UltraVNC
2013-04-14 21:55:04 ----D---- C:\Program Files\UltraVNC
2013-04-10 07:33:11 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-04-10 07:33:11 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-04-10 07:33:11 ----A---- C:\Windows\system32\mshtmled.dll
2013-04-10 07:33:10 ----A---- C:\Windows\SYSWOW64\url.dll
2013-04-10 07:33:10 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-04-10 07:33:10 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-04-10 07:33:10 ----A---- C:\Windows\system32\url.dll
2013-04-10 07:33:10 ----A---- C:\Windows\system32\ieUnatt.exe
2013-04-10 07:33:10 ----A---- C:\Windows\system32\ieui.dll
2013-04-10 07:33:09 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-04-10 07:33:09 ----A---- C:\Windows\system32\urlmon.dll
2013-04-10 07:33:09 ----A---- C:\Windows\system32\msfeeds.dll
2013-04-10 07:33:09 ----A---- C:\Windows\system32\jscript9.dll
2013-04-10 07:33:08 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-04-10 07:33:08 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-04-10 07:33:08 ----A---- C:\Windows\system32\wininet.dll
2013-04-10 07:33:08 ----A---- C:\Windows\system32\jsproxy.dll
2013-04-10 07:33:07 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-04-10 07:33:07 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-04-10 07:33:07 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-04-10 07:33:07 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-04-10 07:33:07 ----A---- C:\Windows\system32\vbscript.dll
2013-04-10 07:33:07 ----A---- C:\Windows\system32\jscript.dll
2013-04-10 07:33:07 ----A---- C:\Windows\system32\iertutil.dll
2013-04-10 07:33:05 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-04-10 07:33:05 ----A---- C:\Windows\system32\mshtml.dll
2013-04-10 07:33:04 ----A---- C:\Windows\system32\ieframe.dll
2013-04-10 07:33:03 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-04-10 07:20:17 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-04-10 07:20:17 ----A---- C:\Windows\system32\mstscax.dll
2013-04-10 07:20:16 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-04-10 07:20:16 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-04-10 07:20:16 ----A---- C:\Windows\system32\tsgqec.dll
2013-04-10 07:20:16 ----A---- C:\Windows\system32\aaclient.dll
2013-04-10 07:20:14 ----A---- C:\Windows\system32\win32k.sys
2013-04-10 07:20:14 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-04-10 07:20:13 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-04-10 07:20:13 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-04-10 07:20:12 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-04-10 07:20:12 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-04-10 07:20:12 ----A---- C:\Windows\system32\smss.exe
2013-04-10 07:20:11 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2013-04-10 07:20:11 ----A---- C:\Windows\system32\csrsrv.dll
2013-04-05 17:17:52 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-03-27 00:27:05 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-03-24 15:50:58 ----A---- C:\Windows\system32\HPSIsvc.exe
2013-03-24 15:50:46 ----A---- C:\Windows\system32\HP1100SM.EXE
2013-03-24 15:50:46 ----A---- C:\Windows\system32\HP1100LM.DLL
2013-03-24 15:50:06 ----A---- C:\Windows\system32\mvhlewsi.DLL
2013-03-24 15:50:04 ----D---- C:\Program Files\HP
2013-03-24 15:50:01 ----A---- C:\Windows\system32\HP1100SMs.dll
2013-03-24 14:10:58 ----D---- C:\ProgramData\TERA
======List of files/folders modified in the last 1 months======
2013-04-22 21:42:46 ----RD---- C:\Program Files
2013-04-22 21:41:31 ----D---- C:\Windows\Temp
2013-04-22 20:38:42 ----RD---- C:\Program Files (x86)
2013-04-22 20:10:43 ----D---- C:\Windows\system32\config
2013-04-22 19:53:59 ----D---- C:\Windows\inf
2013-04-22 16:55:41 ----D---- C:\Windows\System32
2013-04-22 16:55:41 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-04-22 16:51:30 ----D---- C:\Windows
2013-04-21 18:05:30 ----D---- C:\Windows\system32\drivers
2013-04-21 18:04:32 ----D---- C:\Windows\SoftwareDistribution
2013-04-21 18:03:57 ----D---- C:\Windows\debug
2013-04-21 18:02:56 ----D---- C:\Windows\Tasks
2013-04-21 18:02:56 ----D---- C:\Windows\system32\Tasks
2013-04-21 18:00:25 ----D---- C:\Windows\system32\DriverStore
2013-04-21 18:00:25 ----D---- C:\Windows\system32\catroot
2013-04-21 18:00:00 ----D---- C:\Program Files (x86)\Realtek
2013-04-21 17:59:55 ----SHD---- C:\System Volume Information
2013-04-21 17:54:46 ----D---- C:\Windows\SysWOW64
2013-04-21 17:54:46 ----D---- C:\Windows\RaidTool
2013-04-21 17:52:07 ----HD---- C:\Program Files (x86)\Temp
2013-04-21 17:51:49 ----D---- C:\Windows\system32\catroot2
2013-04-21 17:51:16 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-04-21 17:46:45 ----SHD---- C:\Windows\Installer
2013-04-21 17:40:49 ----D---- C:\Windows\winsxs
2013-04-21 17:39:31 ----DC---- C:\Windows\system32\DRVSTORE
2013-04-21 17:35:44 ----A---- C:\Windows\Language_trs.ini
2013-04-21 16:29:51 ----HD---- C:\ProgramData
2013-04-21 16:29:49 ----D---- C:\ProgramData\AMD
2013-04-21 16:29:11 ----SHD---- C:\$Recycle.Bin
2013-04-20 18:43:26 ----A---- C:\Windows\PE_Rom.dll
2013-04-16 06:54:53 ----D---- C:\Windows\SYSWOW64\WNLT
2013-04-15 07:35:03 ----D---- C:\Windows\SYSWOW64\jmdp
2013-04-15 07:35:03 ----D---- C:\Windows\SYSWOW64\ARFC
2013-04-10 18:28:45 ----D---- C:\Windows\SYSWOW64\migration
2013-04-10 18:28:45 ----D---- C:\Windows\system32\migration
2013-04-10 18:28:45 ----D---- C:\Program Files\Internet Explorer
2013-04-10 18:28:45 ----D---- C:\Program Files (x86)\Internet Explorer
2013-04-10 07:33:57 ----A---- C:\Windows\system32\MRT.exe
2013-04-07 10:54:58 ----A---- C:\Windows\system32\dmwu.exe
2013-04-07 10:53:48 ----A---- C:\Windows\system32\ImHttpComm.dll
2013-04-05 17:23:00 ----D---- C:\Users\Milos\AppData\Roaming\Skype
2013-04-02 12:34:28 ----N---- C:\Windows\system32\MpSigStub.exe
2013-03-26 23:41:41 ----D---- C:\Users\Milos\AppData\Roaming\DAEMON Tools Lite
2013-03-26 23:41:40 ----D---- C:\Windows\Logs
2013-03-24 14:05:32 ----D---- C:\ProgramData\Skype
2013-03-24 14:05:30 ----D---- C:\Program Files (x86)\Common Files
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AiChargerPlus;ASUS Charger Plus Driver; C:\Windows\system32\DRIVERS\AiChargerPlus.sys [2010-11-08 14464]
R0 amd_sata;amd_sata; C:\Windows\system32\DRIVERS\amd_sata.sys [2012-02-29 82560]
R0 amd_xata;amd_xata; C:\Windows\system32\DRIVERS\amd_xata.sys [2012-02-29 42624]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2000-01-01 120920]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-01-20 230320]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2010-08-24 13440]
R1 AsUpIO;AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [2010-08-03 14464]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-04-21 283200]
R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-06-27 88632]
R2 AODDriver4.2;AODDriver4.2; \??\E:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2012-04-16 88480]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2012-04-16 46400]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-01-20 130008]
R3 Alpham1;Ideazon Merc USB Human Interface Device; C:\Windows\system32\DRIVERS\Alpham164.sys [2007-07-23 52992]
R3 Alpham2;Ideazon Merc MM USB Human Interface Device; C:\Windows\system32\DRIVERS\Alpham264.sys [2007-03-20 21760]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-12-19 11278336]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-12-19 552960]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-02-24 126952]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-02-24 389608]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-11-06 96256]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2000-01-01 4065296]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2000-01-01 553576]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2011-12-14 56448]
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 grmnusb;Garmin USB Driver; C:\Windows\system32\drivers\grmnusb.sys [2009-05-08 20520]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S3 WSDPrintDevice;Podpora tisku WSD prostřednictvím funkce UMB; C:\Windows\system32\DRIVERS\WSDPrint.sys [2009-07-14 23040]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-12-19 240640]
R2 AMD FUEL Service;AMD FUEL Service; E:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-12-19 361984]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe [2010-11-03 918144]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [2010-12-02 915584]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [2010-10-21 586880]
R2 DTSAudioService;DTSAudioService; C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe [2000-01-01 210024]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; E:\Program Files (x86)\hamachi logMaIn\hamachi-2.exe [2012-12-10 2465712]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2012-08-31 126880]
R2 IBUpdaterService;IBUpdaterService; C:\Windows\system32\dmwu.exe [2013-04-07 1455408]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [2006-12-14 61440]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-01-27 22056]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-09-30 66872]
R2 PSI_SVC_2;Protexis Licensing V2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2010-03-10 189728]
R2 VideoDownloadConverter_4zService;VideoDownloadConverterService; C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zbarsvc.exe [2013-01-22 42504]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-01-27 379360]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 SkypeUpdate;Skype Updater; E:\Program Files (x86)\Skype\Updater\Updater.exe [2013-01-08 161536]
S3 Adobe Version Cue CS4;Adobe Version Cue CS4; C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [2008-08-15 284016]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-03-13 253656]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-11-24 1038088]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2012-11-24 655624]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-03-07 115608]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2006-12-23 262144]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-03-15 543656]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-03-29 1255736]
-----------------EOF-----------------
