skype vir

Zpráva

vojtak · #1 Příspěvek od **vojtak** » 22 lis 2010 09:17

Dobrý den,

posílám log, při každém restartu se samočinně spustí skype a rozesílá nějaké zprávy. Problém trvá i po odinstalovani a opetovné instalaci. Nyní mám skype odinstalovaný. Díky

Logfile of random's system information tool 1.08 (written by random/random)
Run by Hanka at 2010-11-22 09:15:03
Microsoft Windows 7 Ultimate
System drive C: has 321 GB (91%) free of 354 GB
Total RAM: 3581 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:15:08, on 22.11.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16671)
Boot mode: Normal

Running processes:
C:\Windows\vsnp2std.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Windows\nvsvc32.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files\trend micro\Hanka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://googleure.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: PandoraTV Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [CHotkey] mHotkey.exe
O4 - HKLM\..\Run: [NVIDIA driver monitor] c:\windows\nvsvc32.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [NVIDIA driver monitor] c:\windows\nvsvc32.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 6780 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Windows\vsnp2std.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-22f0a89c-d32f-4bcc-8027-63d274b3136b -SystemEventPortName:HostProcess-bf7ba5e1-e28e-48b5-811c-80e175b03949 -IoCancelEventPortName:HostProcess-93c7b38e-3977-40f2-9ff1-b3cc600ab136 -NonStateChangingEventPortName:HostProcess-3614c491-a917-4bd2-86d1-d2b4aa6f77cc -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d1b9babc-af58-42ec-b050-90e8468f8fe3
"C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe"
C:\Windows\nvsvc32.exe
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3576.9b2fda0.2023575444 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll" 3576 plugin \\.\pipe\gecko-crash-server-pipe.3576
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 504 508 516 65536 512
taskhost.exe $(Arg0)
C:\Windows\system32\msiexec.exe /V
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
taskeng.exe {6B898F05-6629-4A0A-A16B-8EB83EF3DFBA}
"C:\totalcmd\TOTALCMD.EXE"
"C:\Users\Hanka\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
PandoraTV Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-09-28 1400712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440} - PandoraTV Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-09-28 1400712]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-04-06 10144288]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-03-19 2692008]
"pdfFactory Pro Dispatcher v3"=C:\Windows\system32\spool\DRIVERS\x64\2\fppdis3a.exe /source=HKLM []
"snp2std"=C:\Windows\vsnp2std.exe [2006-09-15 675840]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"NVIDIA driver monitor"=c:\windows\nvsvc32.exe [2010-11-21 58880]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-04-06 102400]
"NUSB3MON"=C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2009-11-20 106496]
"ArcSoft Connection Service"=C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2009-02-06 170496]
"amd_dc_opt"=C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"CHotkey"=mHotkey.exe []
"NVIDIA driver monitor"=c:\windows\nvsvc32.exe [2010-11-21 58880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Users\Hanka\Downloads\IMAGE53892731.JPG-www.facebook.exe"="c:\windows\nvsvc32.exe:*:Enabled:NVIDIA driver monitor"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 months======

2010-11-22 09:15:03 ----D---- C:\rsit
2010-11-22 09:15:03 ----D---- C:\Program Files\trend micro
2010-11-21 13:33:59 ----RSH---- C:\Windows\nvsvc32.exe
2010-11-20 22:05:59 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2010-11-20 16:22:12 ----D---- C:\Users\Hanka\AppData\Roaming\skypePM
2010-11-20 15:43:03 ----D---- C:\Program Files (x86)\Ask.com
2010-11-20 15:42:50 ----D---- C:\Program Files (x86)\The KMPlayer
2010-11-20 15:35:26 ----D---- C:\Users\Hanka\AppData\Roaming\Skype
2010-11-20 15:35:25 ----D---- C:\ProgramData\Skype
2010-11-20 15:32:10 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2010-11-20 15:32:10 ----A---- C:\Windows\SYSWOW64\msvcp71.dll
2010-11-20 15:32:10 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2010-11-20 15:32:08 ----D---- C:\Windows\Album
2010-11-20 15:32:07 ----D---- C:\Program Files (x86)\KYE
2010-11-20 15:32:06 ----A---- C:\Windows\vsnp2std.exe
2010-11-20 15:32:06 ----A---- C:\Windows\tsnp2std.exe
2010-11-20 15:32:06 ----A---- C:\Windows\SYSWOW64\drivers\snp2sxp.sys
2010-11-20 15:32:06 ----A---- C:\Windows\SYSWOW64\drivers\sncamd.sys
2010-11-20 15:32:06 ----A---- C:\Windows\system32\vsnp2std.dll
2010-11-20 15:32:06 ----A---- C:\Windows\system32\drivers\snp2sxp.sys
2010-11-20 15:32:06 ----A---- C:\Windows\system32\drivers\sncamd.sys
2010-11-20 15:32:06 ----A---- C:\Windows\system32\csnp2std.dll
2010-11-20 15:32:06 ----A---- C:\Windows\snp2std.ini
2010-11-20 15:32:05 ----A---- C:\Windows\SYSWOW64\vsnp2std.dll
2010-11-20 15:32:05 ----A---- C:\Windows\SYSWOW64\rsnp2std.dll
2010-11-20 15:19:41 ----A---- C:\Windows\system32\MON7012k.DLL
2010-11-20 15:02:50 ----D---- C:\Users\Hanka\AppData\Roaming\Mozilla
2010-11-20 15:02:47 ----D---- C:\Program Files (x86)\Mozilla Firefox
2010-11-12 15:53:44 ----D---- C:\Program Files (x86)\The Adventure Company
2010-11-12 15:52:58 ----D---- C:\Users\Hanka\AppData\Roaming\Leadertech
2010-11-12 15:50:42 ----A---- C:\Windows\SYSWOW64\CmdLineExt_x64.dll
2010-11-12 15:45:59 ----N---- C:\Windows\system32\fppr3-x64.dll
2010-11-12 15:45:59 ----N---- C:\Windows\system32\fppmon3.dll
2010-11-12 12:29:55 ----D---- C:\ProgramData\FLEXnet
2010-11-12 12:17:04 ----D---- C:\Program Files\Common Files\Macrovision Shared
2010-11-12 12:15:27 ----D---- C:\Program Files\Common Files\Autodesk Shared
2010-11-12 12:15:27 ----D---- C:\Program Files\Autodesk
2010-11-12 12:10:46 ----D---- C:\Users\Hanka\AppData\Roaming\Autodesk
2010-11-12 12:10:46 ----D---- C:\ProgramData\Autodesk
2010-11-08 00:37:03 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2010-11-08 00:36:08 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2010-11-08 00:36:08 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2010-11-08 00:36:08 ----A---- C:\Windows\system32\XAudio2_7.dll
2010-11-08 00:36:08 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2010-11-08 00:36:07 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2010-11-08 00:36:07 ----A---- C:\Windows\system32\xactengine3_7.dll
2010-11-08 00:36:07 ----A---- C:\Windows\system32\d3dcsx_43.dll
2010-11-08 00:36:07 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2010-11-08 00:36:06 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2010-11-08 00:36:06 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2010-11-08 00:36:06 ----A---- C:\Windows\system32\XAudio2_6.dll
2010-11-08 00:36:06 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2010-11-08 00:36:06 ----A---- C:\Windows\system32\D3DX9_43.dll
2010-11-08 00:36:06 ----A---- C:\Windows\system32\d3dx11_43.dll
2010-11-08 00:36:06 ----A---- C:\Windows\system32\d3dx10_43.dll
2010-11-08 00:36:05 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2010-11-08 00:36:05 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2010-11-08 00:36:05 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2010-11-08 00:36:05 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2010-11-08 00:36:05 ----A---- C:\Windows\system32\XAudio2_5.dll
2010-11-08 00:36:05 ----A---- C:\Windows\system32\xactengine3_6.dll
2010-11-08 00:36:05 ----A---- C:\Windows\system32\xactengine3_5.dll
2010-11-08 00:36:05 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2010-11-08 00:36:05 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2010-11-08 00:36:04 ----A---- C:\Windows\system32\d3dcsx_42.dll
2010-11-08 00:36:02 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2010-11-08 00:36:02 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2010-11-08 00:36:01 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2010-11-08 00:36:01 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2010-11-08 00:36:01 ----A---- C:\Windows\system32\d3dx10_40.dll
2010-11-08 00:36:01 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2010-11-08 00:36:00 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2010-11-08 00:36:00 ----A---- C:\Windows\system32\D3DX9_40.dll
2010-11-08 00:26:09 ----D---- C:\Program Files (x86)\Microsoft Works
2010-11-08 00:25:54 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2010-11-08 00:25:46 ----D---- C:\Windows\PCHEALTH
2010-11-08 00:24:26 ----D---- C:\Program Files\Microsoft Office
2010-11-08 00:23:48 ----D---- C:\Program Files (x86)\Microsoft Office
2010-11-08 00:23:33 ----RHD---- C:\MSOCache
2010-11-08 00:13:25 ----D---- C:\Users\Hanka\AppData\Roaming\InstallShield
2010-11-07 23:57:09 ----D---- C:\Windows\system32\appmgmt
2010-11-07 23:56:04 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2010-11-07 23:56:04 ----A---- C:\Windows\system32\msv1_0.dll
2010-11-07 23:41:11 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2010-11-07 23:40:07 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2010-11-07 23:40:07 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2010-11-07 23:40:07 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2010-11-07 23:40:07 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2010-11-07 23:40:07 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2010-11-07 23:40:07 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-11-07 23:40:07 ----A---- C:\Windows\system32\PresentationHost.exe
2010-11-07 23:40:07 ----A---- C:\Windows\system32\netfxperf.dll
2010-11-07 23:40:07 ----A---- C:\Windows\system32\mscoree.dll
2010-11-07 23:40:07 ----A---- C:\Windows\system32\dfshim.dll
2010-11-07 23:39:50 ----A---- C:\Windows\system32\browserchoice.exe
2010-11-07 23:34:57 ----A---- C:\Windows\system32\MRT.exe
2010-11-07 23:34:43 ----A---- C:\Windows\system32\drivers\ks.sys
2010-11-07 23:34:21 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2010-11-07 23:34:21 ----A---- C:\Windows\system32\psisdecd.dll
2010-11-07 23:34:21 ----A---- C:\Windows\system32\msdri.dll
2010-11-07 23:34:21 ----A---- C:\Windows\system32\CPFilters.dll
2010-11-07 23:34:20 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2010-11-07 23:34:20 ----A---- C:\Windows\system32\shell32.dll
2010-11-07 23:34:18 ----A---- C:\Windows\SYSWOW64\shell32.dll
2010-11-07 23:34:16 ----A---- C:\Windows\SYSWOW64\schannel.dll
2010-11-07 23:34:16 ----A---- C:\Windows\SYSWOW64\explorer.exe
2010-11-07 23:34:16 ----A---- C:\Windows\system32\winlogon.exe
2010-11-07 23:34:16 ----A---- C:\Windows\system32\schannel.dll
2010-11-07 23:34:16 ----A---- C:\Windows\explorer.exe
2010-11-07 23:34:15 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2010-11-07 23:34:15 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2010-11-07 23:34:15 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2010-11-07 23:34:15 ----A---- C:\Windows\SYSWOW64\secproc.dll
2010-11-07 23:34:15 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2010-11-07 23:34:15 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2010-11-07 23:34:15 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2010-11-07 23:34:15 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2010-11-07 23:34:15 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-11-07 23:34:15 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-11-07 23:34:15 ----A---- C:\Windows\system32\secproc_isv.dll
2010-11-07 23:34:15 ----A---- C:\Windows\system32\secproc.dll
2010-11-07 23:34:15 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-11-07 23:34:15 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-11-07 23:34:15 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-11-07 23:34:15 ----A---- C:\Windows\system32\RMActivate.exe
2010-11-07 23:34:14 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2010-11-07 23:34:14 ----A---- C:\Windows\system32\rtutils.dll
2010-11-07 23:34:10 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2010-11-07 23:34:10 ----A---- C:\Windows\system32\CertEnroll.dll
2010-11-07 23:34:08 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2010-11-07 23:34:08 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2010-11-07 23:34:08 ----A---- C:\Windows\system32\t2embed.dll
2010-11-07 23:34:08 ----A---- C:\Windows\system32\oleaut32.dll
2010-11-07 23:34:07 ----A---- C:\Windows\SYSWOW64\wow32.dll
2010-11-07 23:34:07 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2010-11-07 23:34:07 ----A---- C:\Windows\SYSWOW64\user.exe
2010-11-07 23:34:07 ----A---- C:\Windows\SYSWOW64\setup16.exe
2010-11-07 23:34:07 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2010-11-07 23:34:07 ----A---- C:\Windows\SYSWOW64\instnm.exe
2010-11-07 23:34:07 ----A---- C:\Windows\system32\wow64.dll
2010-11-07 23:34:07 ----A---- C:\Windows\system32\vbscript.dll
2010-11-07 23:34:06 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-11-07 23:34:05 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2010-11-07 23:34:04 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2010-11-07 23:33:59 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2010-11-07 23:33:59 ----A---- C:\Windows\system32\inetcomm.dll
2010-11-07 23:33:58 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2010-11-07 23:33:58 ----A---- C:\Windows\system32\ntdll.dll
2010-11-07 23:33:58 ----A---- C:\Windows\system32\drivers\tcpip.sys
2010-11-07 23:33:57 ----A---- C:\Windows\system32\ole32.dll
2010-11-07 23:33:56 ----A---- C:\Windows\SYSWOW64\ole32.dll
2010-11-07 23:33:56 ----A---- C:\Windows\SYSWOW64\cabview.dll
2010-11-07 23:33:56 ----A---- C:\Windows\system32\cabview.dll
2010-11-07 23:33:55 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2010-11-07 23:33:55 ----A---- C:\Windows\system32\comctl32.dll
2010-11-07 23:33:55 ----A---- C:\Windows\system32\asycfilt.dll
2010-11-07 23:33:54 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2010-11-07 23:33:53 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2010-11-07 23:33:53 ----A---- C:\Windows\system32\StructuredQuery.dll
2010-11-07 23:33:52 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2010-11-07 23:33:52 ----A---- C:\Windows\system32\wintrust.dll
2010-11-07 23:32:44 ----A---- C:\Windows\SYSWOW64\jscript.dll
2010-11-07 23:32:44 ----A---- C:\Windows\system32\msxml3.dll
2010-11-07 23:32:44 ----A---- C:\Windows\system32\jscript.dll
2010-11-07 23:32:43 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2010-11-07 23:32:42 ----A---- C:\Windows\SYSWOW64\tzres.dll
2010-11-07 23:32:42 ----A---- C:\Windows\system32\tzres.dll
2010-11-07 23:32:40 ----A---- C:\Windows\system32\drivers\fvevol.sys
2010-11-07 23:32:27 ----A---- C:\Windows\SYSWOW64\mfc40u.dll
2010-11-07 23:32:27 ----A---- C:\Windows\SYSWOW64\mfc40.dll
2010-11-07 23:31:59 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2010-11-07 23:31:59 ----A---- C:\Windows\SYSWOW64\secur32.dll
2010-11-07 23:31:59 ----A---- C:\Windows\system32\lsasrv.dll
2010-11-07 23:31:59 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2010-11-07 23:31:57 ----A---- C:\Windows\system32\mshtml.dll
2010-11-07 23:31:57 ----A---- C:\Windows\system32\ieframe.dll
2010-11-07 23:31:56 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2010-11-07 23:31:53 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2010-11-07 23:31:53 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2010-11-07 23:31:53 ----A---- C:\Windows\system32\mstime.dll
2010-11-07 23:31:53 ----A---- C:\Windows\system32\iertutil.dll
2010-11-07 23:31:52 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2010-11-07 23:31:52 ----A---- C:\Windows\SYSWOW64\mstime.dll
2010-11-07 23:31:52 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2010-11-07 23:31:52 ----A---- C:\Windows\system32\wininet.dll
2010-11-07 23:31:52 ----A---- C:\Windows\system32\urlmon.dll
2010-11-07 23:31:52 ----A---- C:\Windows\system32\msfeeds.dll
2010-11-07 23:31:51 ----A---- C:\Windows\SYSWOW64\wininet.dll
2010-11-07 23:31:51 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2010-11-07 23:31:51 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2010-11-07 23:31:51 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2010-11-07 23:31:51 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2010-11-07 23:31:51 ----A---- C:\Windows\system32\mshtmled.dll
2010-11-07 23:31:51 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-11-07 23:31:51 ----A---- C:\Windows\system32\licmgr10.dll
2010-11-07 23:31:51 ----A---- C:\Windows\system32\iepeers.dll
2010-11-07 23:31:51 ----A---- C:\Windows\system32\iedkcs32.dll
2010-11-07 23:31:50 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2010-11-07 23:31:50 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2010-11-07 23:31:50 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2010-11-07 23:31:50 ----A---- C:\Windows\SYSWOW64\ieui.dll
2010-11-07 23:31:50 ----A---- C:\Windows\system32\msfeedssync.exe
2010-11-07 23:31:50 ----A---- C:\Windows\system32\jsproxy.dll
2010-11-07 23:31:50 ----A---- C:\Windows\system32\ieui.dll
2010-11-07 23:31:49 ----A---- C:\Windows\SYSWOW64\sscore.dll
2010-11-07 23:31:49 ----A---- C:\Windows\system32\srvsvc.dll
2010-11-07 23:31:49 ----A---- C:\Windows\system32\drivers\srvnet.sys
2010-11-07 23:31:49 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-11-07 23:31:49 ----A---- C:\Windows\system32\drivers\srv.sys
2010-11-07 23:31:48 ----A---- C:\Windows\system32\wmp.dll
2010-11-07 23:31:46 ----A---- C:\Windows\SYSWOW64\wmp.dll
2010-11-07 23:31:45 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2010-11-07 23:31:45 ----A---- C:\Windows\system32\wmploc.DLL
2010-11-07 23:31:44 ----A---- C:\Windows\SYSWOW64\tsbyuv.dll
2010-11-07 23:31:44 ----A---- C:\Windows\SYSWOW64\quartz.dll
2010-11-07 23:31:44 ----A---- C:\Windows\SYSWOW64\msyuv.dll
2010-11-07 23:31:44 ----A---- C:\Windows\SYSWOW64\msvidc32.dll
2010-11-07 23:31:44 ----A---- C:\Windows\SYSWOW64\msrle32.dll
2010-11-07 23:31:44 ----A---- C:\Windows\SYSWOW64\mciavi32.dll
2010-11-07 23:31:44 ----A---- C:\Windows\SYSWOW64\iyuv_32.dll
2010-11-07 23:31:44 ----A---- C:\Windows\SYSWOW64\avifil32.dll
2010-11-07 23:31:44 ----A---- C:\Windows\system32\tsbyuv.dll
2010-11-07 23:31:44 ----A---- C:\Windows\system32\quartz.dll
2010-11-07 23:31:44 ----A---- C:\Windows\system32\msyuv.dll
2010-11-07 23:31:44 ----A---- C:\Windows\system32\msvidc32.dll
2010-11-07 23:31:44 ----A---- C:\Windows\system32\msrle32.dll
2010-11-07 23:31:44 ----A---- C:\Windows\system32\iyuv_32.dll
2010-11-07 23:31:44 ----A---- C:\Windows\system32\atmfd.dll
2010-11-07 23:31:43 ----A---- C:\Windows\SYSWOW64\iccvid.dll
2010-11-07 23:31:43 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2010-11-07 23:31:43 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2010-11-07 23:31:43 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2010-11-07 23:31:43 ----A---- C:\Windows\system32\fontsub.dll
2010-11-07 23:31:43 ----A---- C:\Windows\system32\atmlib.dll
2010-11-07 23:31:42 ----A---- C:\Windows\SYSWOW64\msasn1.dll
2010-11-07 23:31:42 ----A---- C:\Windows\system32\win32k.sys
2010-11-07 23:31:42 ----A---- C:\Windows\system32\msasn1.dll
2010-11-07 23:31:41 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2010-11-07 23:31:41 ----A---- C:\Windows\system32\cdd.dll
2010-11-07 23:31:40 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2010-11-07 23:31:40 ----A---- C:\Windows\system32\wmpmde.dll
2010-11-07 23:31:40 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2010-11-07 23:31:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2010-11-07 23:31:40 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2010-11-07 23:31:39 ----A---- C:\Windows\system32\spoolsv.exe
2010-11-07 23:31:39 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2010-11-07 23:30:17 ----D---- C:\Users\Hanka\AppData\Roaming\Media Player Classic
2010-11-07 23:29:04 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2010-11-07 23:29:04 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2010-11-07 23:29:04 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2010-11-07 23:29:04 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2010-11-07 23:29:04 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2010-11-07 23:29:03 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2010-11-07 23:29:03 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2010-11-07 23:29:03 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2010-11-07 23:29:03 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2010-11-07 23:29:03 ----A---- C:\Windows\system32\d3dx11_42.dll
2010-11-07 23:29:03 ----A---- C:\Windows\system32\d3dx10_42.dll
2010-11-07 23:29:02 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2010-11-07 23:29:02 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2010-11-07 23:29:02 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2010-11-07 23:29:02 ----A---- C:\Windows\system32\D3DX9_42.dll
2010-11-07 23:29:02 ----A---- C:\Windows\system32\d3dx10_41.dll
2010-11-07 23:29:02 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2010-11-07 23:29:01 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2010-11-07 23:29:01 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2010-11-07 23:29:01 ----A---- C:\Windows\system32\XAudio2_4.dll
2010-11-07 23:29:01 ----A---- C:\Windows\system32\D3DX9_41.dll
2010-11-07 23:29:00 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2010-11-07 23:29:00 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2010-11-07 23:29:00 ----A---- C:\Windows\system32\xactengine3_4.dll
2010-11-07 23:29:00 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2010-11-07 23:28:59 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2010-11-07 23:28:59 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2010-11-07 23:28:59 ----A---- C:\Windows\system32\XAudio2_3.dll
2010-11-07 23:28:59 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2010-11-07 23:28:58 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2010-11-07 23:28:58 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2010-11-07 23:28:58 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2010-11-07 23:28:58 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2010-11-07 23:28:58 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2010-11-07 23:28:58 ----A---- C:\Windows\system32\XAudio2_2.dll
2010-11-07 23:28:58 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2010-11-07 23:28:58 ----A---- C:\Windows\system32\xactengine3_3.dll
2010-11-07 23:28:58 ----A---- C:\Windows\system32\xactengine3_2.dll
2010-11-07 23:28:58 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2010-11-07 23:28:57 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2010-11-07 23:28:57 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2010-11-07 23:28:57 ----A---- C:\Windows\system32\d3dx10_39.dll
2010-11-07 23:28:57 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2010-11-07 23:28:56 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2010-11-07 23:28:56 ----A---- C:\Windows\system32\D3DX9_39.dll
2010-11-07 23:28:55 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2010-11-07 23:28:55 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2010-11-07 23:28:55 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2010-11-07 23:28:55 ----A---- C:\Windows\system32\XAudio2_1.dll
2010-11-07 23:28:55 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2010-11-07 23:28:55 ----A---- C:\Windows\system32\xactengine3_1.dll
2010-11-07 23:28:54 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2010-11-07 23:28:54 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2010-11-07 23:28:54 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2010-11-07 23:28:54 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2010-11-07 23:28:54 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2010-11-07 23:28:54 ----A---- C:\Windows\system32\D3DX9_38.dll
2010-11-07 23:28:54 ----A---- C:\Windows\system32\d3dx10_38.dll
2010-11-07 23:28:54 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2010-11-07 23:28:53 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2010-11-07 23:28:53 ----A---- C:\Windows\system32\XAudio2_0.dll
2010-11-07 23:28:52 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2010-11-07 23:28:52 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2010-11-07 23:28:52 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2010-11-07 23:28:52 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2010-11-07 23:28:52 ----A---- C:\Windows\system32\xactengine3_0.dll
2010-11-07 23:28:52 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2010-11-07 23:28:52 ----A---- C:\Windows\system32\d3dx10_37.dll
2010-11-07 23:28:52 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2010-11-07 23:28:51 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2010-11-07 23:28:51 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2010-11-07 23:28:51 ----A---- C:\Windows\system32\xactengine2_10.dll
2010-11-07 23:28:51 ----A---- C:\Windows\system32\D3DX9_37.dll
2010-11-07 23:28:49 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2010-11-07 23:28:49 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2010-11-07 23:28:49 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2010-11-07 23:28:49 ----A---- C:\Windows\system32\d3dx9_36.dll
2010-11-07 23:28:49 ----A---- C:\Windows\system32\d3dx10_36.dll
2010-11-07 23:28:49 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2010-11-07 23:28:48 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2010-11-07 23:28:48 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2010-11-07 23:28:48 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2010-11-07 23:28:48 ----A---- C:\Windows\system32\xactengine2_9.dll
2010-11-07 23:28:48 ----A---- C:\Windows\system32\d3dx10_35.dll
2010-11-07 23:28:48 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2010-11-07 23:28:47 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2010-11-07 23:28:47 ----A---- C:\Windows\system32\d3dx9_35.dll
2010-11-07 23:28:46 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2010-11-07 23:28:46 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2010-11-07 23:28:46 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2010-11-07 23:28:46 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2010-11-07 23:28:46 ----A---- C:\Windows\system32\xactengine2_8.dll
2010-11-07 23:28:46 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2010-11-07 23:28:46 ----A---- C:\Windows\system32\d3dx10_34.dll
2010-11-07 23:28:46 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2010-11-07 23:28:45 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2010-11-07 23:28:45 ----A---- C:\Windows\system32\d3dx9_34.dll
2010-11-07 23:28:44 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2010-11-07 23:28:44 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2010-11-07 23:28:44 ----A---- C:\Windows\system32\xinput1_3.dll
2010-11-07 23:28:44 ----A---- C:\Windows\system32\xactengine2_7.dll
2010-11-07 23:28:43 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2010-11-07 23:28:43 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2010-11-07 23:28:43 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2010-11-07 23:28:43 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2010-11-07 23:28:43 ----A---- C:\Windows\system32\xactengine2_6.dll
2010-11-07 23:28:43 ----A---- C:\Windows\system32\d3dx9_33.dll
2010-11-07 23:28:43 ----A---- C:\Windows\system32\d3dx10_33.dll
2010-11-07 23:28:43 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2010-11-07 23:28:42 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2010-11-07 23:28:42 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2010-11-07 23:28:42 ----A---- C:\Windows\system32\xactengine2_5.dll
2010-11-07 23:28:42 ----A---- C:\Windows\system32\d3dx10.dll
2010-11-07 23:28:41 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2010-11-07 23:28:41 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2010-11-07 23:28:41 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2010-11-07 23:28:41 ----A---- C:\Windows\system32\xactengine2_4.dll
2010-11-07 23:28:41 ----A---- C:\Windows\system32\x3daudio1_1.dll
2010-11-07 23:28:41 ----A---- C:\Windows\system32\d3dx9_32.dll
2010-11-07 23:28:40 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2010-11-07 23:28:40 ----A---- C:\Windows\system32\d3dx9_31.dll
2010-11-07 23:28:39 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2010-11-07 23:28:39 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2010-11-07 23:28:39 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2010-11-07 23:28:39 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2010-11-07 23:28:39 ----A---- C:\Windows\system32\xinput1_2.dll
2010-11-07 23:28:39 ----A---- C:\Windows\system32\xinput1_1.dll
2010-11-07 23:28:39 ----A---- C:\Windows\system32\xactengine2_3.dll
2010-11-07 23:28:39 ----A---- C:\Windows\system32\xactengine2_2.dll
2010-11-07 23:28:37 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2010-11-07 23:28:37 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2010-11-07 23:28:37 ----A---- C:\Windows\system32\xactengine2_1.dll
2010-11-07 23:28:37 ----A---- C:\Windows\system32\d3dx9_30.dll
2010-11-07 23:28:35 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2010-11-07 23:28:35 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2010-11-07 23:28:35 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2010-11-07 23:28:35 ----A---- C:\Windows\system32\xactengine2_0.dll
2010-11-07 23:28:35 ----A---- C:\Windows\system32\x3daudio1_0.dll
2010-11-07 23:28:35 ----A---- C:\Windows\system32\d3dx9_29.dll
2010-11-07 23:28:34 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2010-11-07 23:28:34 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2010-11-07 23:28:34 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2010-11-07 23:28:34 ----A---- C:\Windows\system32\d3dx9_28.dll
2010-11-07 23:28:34 ----A---- C:\Windows\system32\d3dx9_27.dll
2010-11-07 23:28:34 ----A---- C:\Windows\system32\d3dx9_26.dll
2010-11-07 23:28:33 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2010-11-07 23:28:33 ----A---- C:\Windows\system32\d3dx9_25.dll
2010-11-07 23:28:32 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2010-11-07 23:28:32 ----A---- C:\Windows\system32\d3dx9_24.dll
2010-11-07 23:23:30 ----D---- C:\Windows\SYSWOW64\directx
2010-11-07 23:22:48 ----D---- C:\Program Files\Media Player Classic - Home Cinema
2010-11-07 17:01:49 ----D---- C:\Users\Hanka\AppData\Roaming\ArcSoft
2010-11-07 17:01:45 ----D---- C:\ProgramData\ArcSoft
2010-11-07 17:01:43 ----A---- C:\Windows\SYSWOW64\unicows.dll
2010-11-07 17:01:10 ----D---- C:\Windows\SYSWOW64\WinFast
2010-11-07 17:00:17 ----D---- C:\Users\Hanka\AppData\Roaming\Macromedia
2010-11-07 17:00:17 ----D---- C:\Users\Hanka\AppData\Roaming\Adobe
2010-11-07 17:00:15 ----D---- C:\Windows\SYSWOW64\Macromed
2010-11-07 16:58:19 ----HD---- C:\Windows\AxInstSV
2010-11-05 12:21:46 ----D---- C:\Users\Hanka\AppData\Roaming\GHISLER
2010-11-05 12:21:46 ----D---- C:\totalcmd
2010-11-05 12:21:46 ----A---- C:\Windows\UC.PIF
2010-11-05 12:21:46 ----A---- C:\Windows\RAR.PIF
2010-11-05 12:21:46 ----A---- C:\Windows\PKZIP.PIF
2010-11-05 12:21:46 ----A---- C:\Windows\PKUNZIP.PIF
2010-11-05 12:21:46 ----A---- C:\Windows\NOCLOSE.PIF
2010-11-05 12:21:46 ----A---- C:\Windows\LHA.PIF
2010-11-05 12:21:46 ----A---- C:\Windows\ARJ.PIF
2010-11-05 12:19:04 ----D---- C:\Program Files\WinRAR
2010-11-05 12:16:18 ----D---- C:\ProgramData\ESET
2010-11-05 12:16:18 ----D---- C:\Program Files\ESET
2010-11-05 12:01:08 ----A---- C:\Windows\GVTDrv64.sys
2010-11-05 12:00:48 ----A---- C:\Windows\gdrv.sys
2010-11-05 11:55:04 ----D---- C:\ProgramData\InstallShield
2010-11-05 11:55:03 ----A---- C:\Windows\system32\drivers\AppleCharger.sys
2010-11-05 11:55:03 ----A---- C:\Windows\system32\AppleChargerSrv.exe
2010-11-05 11:54:45 ----D---- C:\Program Files (x86)\NEC Electronics
2010-11-05 11:54:25 ----D---- C:\Program Files\DIFX
2010-11-05 11:54:21 ----DC---- C:\Windows\system32\DRVSTORE
2010-11-05 11:54:21 ----D---- C:\Program Files (x86)\AMD
2010-11-05 11:54:21 ----A---- C:\Windows\system32\drivers\usbfilter.sys
2010-11-05 11:54:15 ----A---- C:\Windows\system32\drivers\amdxata.sys
2010-11-05 11:54:15 ----A---- C:\Windows\system32\drivers\amdsata.sys
2010-11-05 11:54:13 ----A---- C:\Windows\system32\drivers\AtiPcie.sys
2010-11-05 11:53:27 ----A---- C:\Windows\system32\RTNUninst64.dll
2010-11-05 11:53:27 ----A---- C:\Windows\system32\RtNicProp64.dll
2010-11-05 11:53:27 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2010-11-05 11:52:41 ----D---- C:\Users\Hanka\AppData\Roaming\ATI
2010-11-05 11:52:41 ----D---- C:\ProgramData\ATI
2010-11-05 11:51:29 ----D---- C:\Windows\SYSWOW64\RTCOM
2010-11-05 11:51:29 ----D---- C:\Program Files\Realtek
2010-11-05 11:51:20 ----A---- C:\Windows\system32\RtkHDM64.dll
2010-11-05 11:51:20 ----A---- C:\Windows\system32\RTEEP64H.dll
2010-11-05 11:51:20 ----A---- C:\Windows\system32\RTEEL64H.dll
2010-11-05 11:51:20 ----A---- C:\Windows\system32\RTEEG64H.dll
2010-11-05 11:51:20 ----A---- C:\Windows\system32\RTEED64H.dll
2010-11-05 11:51:20 ----A---- C:\Windows\system32\drivers\RtHDMIVX.sys
2010-11-05 11:51:19 ----A---- C:\Windows\system32\RHDMEx64.dll
2010-11-05 11:51:19 ----A---- C:\Windows\system32\RHCoInst64.dll
2010-11-05 11:51:19 ----A---- C:\Windows\system32\RH3DHT64.dll
2010-11-05 11:51:19 ----A---- C:\Windows\system32\RH3DAA64.dll
2010-11-05 11:51:17 ----A---- C:\Windows\system32\WavesGUILib.dll
2010-11-05 11:51:17 ----A---- C:\Windows\system32\SRSWOW64.dll
2010-11-05 11:51:17 ----A---- C:\Windows\system32\SRSTSX64.dll
2010-11-05 11:51:17 ----A---- C:\Windows\system32\SRSTSH64.dll
2010-11-05 11:51:17 ----A---- C:\Windows\system32\SRSHP64.dll
2010-11-05 11:51:16 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2010-11-05 11:51:16 ----A---- C:\Windows\system32\RtkCfg64.dll
2010-11-05 11:51:16 ----A---- C:\Windows\system32\RtkApi64.dll
2010-11-05 11:51:15 ----A---- C:\Windows\system32\RtPgEx64.dll
2010-11-05 11:51:15 ----A---- C:\Windows\system32\RtkAPO64.dll
2010-11-05 11:51:15 ----A---- C:\Windows\system32\RTEEP64A.dll
2010-11-05 11:51:15 ----A---- C:\Windows\system32\RTEEL64A.dll
2010-11-05 11:51:15 ----A---- C:\Windows\system32\RTEEG64A.dll
2010-11-05 11:51:15 ----A---- C:\Windows\system32\RTEED64A.dll
2010-11-05 11:51:15 ----A---- C:\Windows\system32\RTCOM64.dll
2010-11-05 11:51:15 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2010-11-05 11:51:14 ----A---- C:\Windows\system32\RP3DHT64.dll
2010-11-05 11:51:14 ----A---- C:\Windows\system32\RP3DAA64.dll
2010-11-05 11:51:14 ----A---- C:\Windows\system32\RCoInst64.dll
2010-11-05 11:51:13 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2010-11-05 11:51:13 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2010-11-05 11:51:12 ----A---- C:\Windows\system32\FMAPO64.dll
2010-11-05 11:51:12 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2010-11-05 11:51:10 ----HD---- C:\Program Files (x86)\Temp
2010-11-05 11:51:10 ----D---- C:\Program Files (x86)\Realtek
2010-11-05 11:51:10 ----A---- C:\Windows\system32\AERTAR64.dll
2010-11-05 11:51:10 ----A---- C:\Windows\system32\AERTAC64.dll
2010-11-05 11:51:09 ----R---- C:\Windows\RtlExUpd.dll
2010-11-05 11:51:04 ----D---- C:\Program Files (x86)\ATI
2010-11-05 11:51:03 ----D---- C:\Program Files\Common Files\ATI Technologies
2010-11-05 11:50:35 ----A---- C:\Windows\system32\coinst.dll
2010-11-05 11:50:35 ----A---- C:\Windows\system32\ATIDEMGX.dll
2010-11-05 11:50:27 ----D---- C:\Program Files\ATI
2010-11-05 11:50:25 ----D---- C:\Program Files (x86)\ATI Technologies
2010-11-05 11:49:01 ----SHD---- C:\Windows\Installer
2010-11-05 11:48:44 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2010-11-05 11:48:44 ----D---- C:\Program Files (x86)\Gigabyte
2010-11-05 11:47:59 ----A---- C:\Windows\GSetup.ini
2010-11-05 10:08:59 ----D---- C:\Windows\SoftwareDistribution
2010-11-05 10:07:04 ----D---- C:\Users\Hanka\AppData\Roaming\Identities
2010-11-05 10:06:55 ----SD---- C:\Users\Hanka\AppData\Roaming\Microsoft
2010-11-05 10:06:55 ----D---- C:\Users\Hanka\AppData\Roaming\Media Center Programs
2010-11-05 10:06:00 ----SHD---- C:\Recovery
2010-11-05 10:06:00 ----SHD---- C:\ProgramData\Šablony
2010-11-05 10:06:00 ----SHD---- C:\ProgramData\Plocha
2010-11-05 10:06:00 ----SHD---- C:\ProgramData\Oblíbené položky
2010-11-05 10:06:00 ----SHD---- C:\ProgramData\Nabídka Start
2010-11-05 10:06:00 ----SHD---- C:\ProgramData\Dokumenty
2010-11-05 10:06:00 ----SHD---- C:\ProgramData\Data aplikací
2010-11-05 10:01:36 ----D---- C:\Windows\Prefetch
2010-11-05 10:01:26 ----ASH---- C:\pagefile.sys
2010-11-05 10:01:25 ----SHD---- C:\System Volume Information
2010-11-05 10:01:25 ----ASH---- C:\hiberfil.sys
2010-11-05 10:00:48 ----D---- C:\Windows\Panther
2010-11-05 06:09:52 ----D---- C:\Program Files (x86)\Microsoft.NET
2010-11-05 06:08:16 ----D---- C:\ProgramData\Microsoft Help
2010-11-05 06:05:04 ----A---- C:\Windows\system32\drivers\sptd.sys
2010-11-05 06:04:51 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2010-11-05 06:04:40 ----D---- C:\Users\Hanka\AppData\Roaming\DAEMON Tools Lite
2010-11-05 06:04:38 ----D---- C:\ProgramData\DAEMON Tools Lite
2010-11-05 06:00:40 ----D---- C:\Users\Hanka\AppData\Roaming\WinRAR
2010-11-05 05:46:11 ----N---- C:\Windows\system32\MpSigStub.exe

======List of files/folders modified in the last 1 months======

2010-11-22 09:15:04 ----D---- C:\Windows\Temp
2010-11-22 09:15:03 ----RD---- C:\Program Files
2010-11-22 09:14:36 ----RD---- C:\Program Files (x86)
2010-11-22 09:14:36 ----D---- C:\Windows\system32\Tasks
2010-11-22 09:14:36 ----D---- C:\Program Files (x86)\Common Files
2010-11-22 09:08:33 ----D---- C:\Windows\System32
2010-11-22 09:08:33 ----D---- C:\Windows\inf
2010-11-22 09:08:33 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-11-21 23:42:29 ----D---- C:\Windows\system32\config
2010-11-21 13:33:59 ----D---- C:\Windows
2010-11-21 08:47:48 ----D---- C:\Windows\system32\catroot2
2010-11-20 22:06:00 ----D---- C:\Windows\SysWOW64
2010-11-20 15:49:36 ----D---- C:\Windows\system32\drivers
2010-11-20 15:35:25 ----HD---- C:\ProgramData
2010-11-20 15:32:17 ----D---- C:\Windows\system32\catroot
2010-11-20 15:32:16 ----D---- C:\Windows\system32\DriverStore
2010-11-20 15:32:10 ----A---- C:\Windows\win.ini
2010-11-20 15:32:06 ----D---- C:\Windows\twain_32
2010-11-20 15:32:06 ----D---- C:\Windows\SYSWOW64\drivers
2010-11-12 12:21:46 ----D---- C:\Windows\Downloaded Program Files
2010-11-12 12:17:52 ----RSD---- C:\Windows\assembly
2010-11-12 12:17:52 ----D---- C:\Windows\Microsoft.NET
2010-11-12 12:17:04 ----D---- C:\Program Files\Common Files
2010-11-12 12:16:31 ----RSD---- C:\Windows\Fonts
2010-11-12 12:14:28 ----D---- C:\Windows\winsxs
2010-11-12 11:58:34 ----D---- C:\Windows\rescache
2010-11-12 11:58:05 ----D---- C:\Windows\system32\wdi
2010-11-08 00:26:56 ----SD---- C:\ProgramData\Microsoft
2010-11-08 00:25:16 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-11-08 00:24:16 ----D---- C:\Windows\ShellNew
2010-11-08 00:10:51 ----D---- C:\Program Files (x86)\MSBuild
2010-11-08 00:09:35 ----D---- C:\Program Files\Common Files\System
2010-11-07 23:59:02 ----D---- C:\Windows\ehome
2010-11-07 23:59:02 ----D---- C:\Program Files\Windows Mail
2010-11-07 23:59:02 ----D---- C:\Program Files (x86)\Windows Mail
2010-11-07 23:48:32 ----D---- C:\Windows\AppPatch
2010-11-07 23:48:31 ----D---- C:\Windows\SYSWOW64\cs-CZ
2010-11-07 23:48:31 ----D---- C:\Windows\system32\cs-CZ
2010-11-07 23:48:30 ----D---- C:\Windows\SYSWOW64\migration
2010-11-07 23:48:30 ----D---- C:\Program Files\Internet Explorer
2010-11-07 23:48:30 ----D---- C:\Program Files (x86)\Internet Explorer
2010-11-07 23:48:29 ----D---- C:\Windows\system32\migration
2010-11-07 23:48:29 ----D---- C:\Program Files\Windows Media Player
2010-11-07 23:48:29 ----D---- C:\Program Files (x86)\Windows Media Player
2010-11-07 23:43:09 ----D---- C:\Windows\SYSWOW64\en-US
2010-11-07 23:43:09 ----D---- C:\Windows\system32\en-US
2010-11-07 23:34:58 ----D---- C:\Windows\debug
2010-11-07 23:28:10 ----D---- C:\Windows\Logs
2010-11-05 10:31:28 ----D---- C:\Windows\system32\restore
2010-11-05 10:16:44 ----D---- C:\Windows\system32\CodeIntegrity
2010-11-05 10:07:03 ----SHD---- C:\$Recycle.Bin
2010-11-05 10:06:54 ----RD---- C:\Users
2010-11-05 10:06:00 ----D---- C:\Program Files\Windows NT
2010-11-05 10:04:08 ----D---- C:\Windows\system32\sysprep
2010-11-05 10:02:50 ----D---- C:\Windows\system32\drivers\UMDF
2010-11-05 10:01:49 ----D---- C:\Windows\CSC
2010-11-05 10:00:25 ----D---- C:\Windows\Setup

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 16440]
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-11-05 834544]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2009-03-19 134024]
R2 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys [2009-03-19 142776]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2009-03-19 121152]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-04-07 6659072]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-04-07 195584]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-04-06 2337440]
R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2009-11-20 75776]
R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2009-11-20 177152]
R3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2010-01-27 231328]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-03-22 347680]
R3 SNP2STD;USB2.0 PC Camera (SNP2STD); C:\Windows\system32\DRIVERS\snp2sxp.sys [2007-03-30 12333568]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-12-22 38456]
S3 aoyuvmos;aoyuvmos; C:\Windows\system32\drivers\aoyuvmos.sys []
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2010-11-08 25640]
S3 GVTDrv64;GVTDrv64; \??\C:\Windows\GVTDrv64.sys [2010-11-07 30528]
S3 mod7700;WinFast based TV tuner device; C:\Windows\system32\DRIVERS\mod7700.sys []
S3 MODRC;WinFast TV Dongle With Infrared Receiver; C:\Windows\system32\DRIVERS\modrc.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2009-02-06 109056]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-04-07 202752]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2009-03-19 731840]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-03-19 23296]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2010-11-12 1436424]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]

-----------------EOF-----------------

#2 Příspěvek od **vyosek** » 22 lis 2010 09:46

Zdravim a pekny den preji

Poprosim i o druhy log z RSIT s nazvem info.txt, je ulozen v c:\rsit

vojtak · #3 Příspěvek od **vojtak** » 22 lis 2010 09:51

udělal jsem pro jistotu ještě jeden log, nejsem si jistý, jestli jsem první spouštěl jako správce...posílám i info

Logfile of random's system information tool 1.08 (written by random/random)
Run by Hanka at 2010-11-22 09:49:37
Microsoft Windows 7 Ultimate
System drive C: has 321 GB (91%) free of 354 GB
Total RAM: 3581 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:49:40, on 22.11.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16671)
Boot mode: Normal

Running processes:
C:\Windows\vsnp2std.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Windows\nvsvc32.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\totalcmd\TOTALCMD.EXE
C:\Program Files\trend micro\Hanka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://googleure.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: PandoraTV Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [CHotkey] mHotkey.exe
O4 - HKLM\..\Run: [NVIDIA driver monitor] c:\windows\nvsvc32.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [NVIDIA driver monitor] c:\windows\nvsvc32.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 6780 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe"
"C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
"C:\Windows\vsnp2std.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-22f0a89c-d32f-4bcc-8027-63d274b3136b -SystemEventPortName:HostProcess-bf7ba5e1-e28e-48b5-811c-80e175b03949 -IoCancelEventPortName:HostProcess-93c7b38e-3977-40f2-9ff1-b3cc600ab136 -NonStateChangingEventPortName:HostProcess-3614c491-a917-4bd2-86d1-d2b4aa6f77cc -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:d1b9babc-af58-42ec-b050-90e8468f8fe3
"C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe"
C:\Windows\nvsvc32.exe
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=3576.9b2fda0.2023575444 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll" 3576 plugin \\.\pipe\gecko-crash-server-pipe.3576
"C:\totalcmd\TOTALCMD.EXE"
C:\Windows\SysWOW64\DllHost.exe /Processid:{B366DEBE-645B-43A5-B865-DDD82C345492}
"C:\Users\Hanka\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
PandoraTV Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-09-28 1400712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440} - PandoraTV Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-09-28 1400712]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-04-06 10144288]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-03-19 2692008]
"pdfFactory Pro Dispatcher v3"=C:\Windows\system32\spool\DRIVERS\x64\2\fppdis3a.exe /source=HKLM []
"snp2std"=C:\Windows\vsnp2std.exe [2006-09-15 675840]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"NVIDIA driver monitor"=c:\windows\nvsvc32.exe [2010-11-21 58880]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-04-06 102400]
"NUSB3MON"=C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2009-11-20 106496]
"ArcSoft Connection Service"=C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2009-02-06 170496]
"amd_dc_opt"=C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"CHotkey"=mHotkey.exe []
"NVIDIA driver monitor"=c:\windows\nvsvc32.exe [2010-11-21 58880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Users\Hanka\Downloads\IMAGE53892731.JPG-www.facebook.exe"="c:\windows\nvsvc32.exe:*:Enabled:NVIDIA driver monitor"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\Windows\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 months======

2010-11-22 09:15:03 ----D---- C:\rsit
2010-11-22 09:15:03 ----D---- C:\Program Files\trend micro
2010-11-21 13:33:59 ----RSH---- C:\Windows\nvsvc32.exe
2010-11-20 22:05:59 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2010-11-20 16:22:12 ----D---- C:\Users\Hanka\AppData\Roaming\skypePM
2010-11-20 15:43:03 ----D---- C:\Program Files (x86)\Ask.com
2010-11-20 15:42:50 ----D---- C:\Program Files (x86)\The KMPlayer
2010-11-20 15:35:26 ----D---- C:\Users\Hanka\AppData\Roaming\Skype
2010-11-20 15:35:25 ----D---- C:\ProgramData\Skype
2010-11-20 15:32:10 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2010-11-20 15:32:10 ----A---- C:\Windows\SYSWOW64\msvcp71.dll
2010-11-20 15:32:10 ----A---- C:\Windows\SYSWOW64\mfc71.dll
2010-11-20 15:32:08 ----D---- C:\Windows\Album
2010-11-20 15:32:07 ----D---- C:\Program Files (x86)\KYE
2010-11-20 15:32:06 ----A---- C:\Windows\vsnp2std.exe
2010-11-20 15:32:06 ----A---- C:\Windows\tsnp2std.exe
2010-11-20 15:32:06 ----A---- C:\Windows\SYSWOW64\drivers\snp2sxp.sys
2010-11-20 15:32:06 ----A---- C:\Windows\SYSWOW64\drivers\sncamd.sys
2010-11-20 15:32:06 ----A---- C:\Windows\system32\vsnp2std.dll
2010-11-20 15:32:06 ----A---- C:\Windows\system32\drivers\snp2sxp.sys
2010-11-20 15:32:06 ----A---- C:\Windows\system32\drivers\sncamd.sys
2010-11-20 15:32:06 ----A---- C:\Windows\system32\csnp2std.dll
2010-11-20 15:32:06 ----A---- C:\Windows\snp2std.ini
2010-11-20 15:32:05 ----A---- C:\Windows\SYSWOW64\vsnp2std.dll
2010-11-20 15:32:05 ----A---- C:\Windows\SYSWOW64\rsnp2std.dll
2010-11-20 15:19:41 ----A---- C:\Windows\system32\MON7012k.DLL
2010-11-20 15:02:50 ----D---- C:\Users\Hanka\AppData\Roaming\Mozilla
2010-11-20 15:02:47 ----D---- C:\Program Files (x86)\Mozilla Firefox
2010-11-12 15:53:44 ----D---- C:\Program Files (x86)\The Adventure Company
2010-11-12 15:52:58 ----D---- C:\Users\Hanka\AppData\Roaming\Leadertech
2010-11-12 15:50:42 ----A---- C:\Windows\SYSWOW64\CmdLineExt_x64.dll
2010-11-12 15:45:59 ----N---- C:\Windows\system32\fppr3-x64.dll
2010-11-12 15:45:59 ----N---- C:\Windows\system32\fppmon3.dll
2010-11-12 12:29:55 ----D---- C:\ProgramData\FLEXnet
2010-11-12 12:17:04 ----D---- C:\Program Files\Common Files\Macrovision Shared
2010-11-12 12:15:27 ----D---- C:\Program Files\Common Files\Autodesk Shared
2010-11-12 12:15:27 ----D---- C:\Program Files\Autodesk
2010-11-12 12:10:46 ----D---- C:\Users\Hanka\AppData\Roaming\Autodesk
2010-11-12 12:10:46 ----D---- C:\ProgramData\Autodesk
2010-11-08 00:37:03 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2010-11-08 00:36:08 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2010-11-08 00:36:08 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2010-11-08 00:36:08 ----A---- C:\Windows\system32\XAudio2_7.dll
2010-11-08 00:36:08 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2010-11-08 00:36:07 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2010-11-08 00:36:07 ----A---- C:\Windows\system32\xactengine3_7.dll
2010-11-08 00:36:07 ----A---- C:\Windows\system32\d3dcsx_43.dll
2010-11-08 00:36:07 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2010-11-08 00:36:06 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2010-11-08 00:36:06 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2010-11-08 00:36:06 ----A---- C:\Windows\system32\XAudio2_6.dll
2010-11-08 00:36:06 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2010-11-08 00:36:06 ----A---- C:\Windows\system32\D3DX9_43.dll
2010-11-08 00:36:06 ----A---- C:\Windows\system32\d3dx11_43.dll
2010-11-08 00:36:06 ----A---- C:\Windows\system32\d3dx10_43.dll
2010-11-08 00:36:05 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2010-11-08 00:36:05 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2010-11-08 00:36:05 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2010-11-08 00:36:05 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2010-11-08 00:36:05 ----A---- C:\Windows\system32\XAudio2_5.dll
2010-11-08 00:36:05 ----A---- C:\Windows\system32\xactengine3_6.dll
2010-11-08 00:36:05 ----A---- C:\Windows\system32\xactengine3_5.dll
2010-11-08 00:36:05 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2010-11-08 00:36:05 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2010-11-08 00:36:04 ----A---- C:\Windows\system32\d3dcsx_42.dll
2010-11-08 00:36:02 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2010-11-08 00:36:02 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2010-11-08 00:36:01 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2010-11-08 00:36:01 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2010-11-08 00:36:01 ----A---- C:\Windows\system32\d3dx10_40.dll
2010-11-08 00:36:01 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2010-11-08 00:36:00 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2010-11-08 00:36:00 ----A---- C:\Windows\system32\D3DX9_40.dll
2010-11-08 00:26:09 ----D---- C:\Program Files (x86)\Microsoft Works
2010-11-08 00:25:54 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2010-11-08 00:25:46 ----D---- C:\Windows\PCHEALTH
2010-11-08 00:24:26 ----D---- C:\Program Files\Microsoft Office
2010-11-08 00:23:48 ----D---- C:\Program Files (x86)\Microsoft Office
2010-11-08 00:23:33 ----RHD---- C:\MSOCache
2010-11-08 00:13:25 ----D---- C:\Users\Hanka\AppData\Roaming\InstallShield
2010-11-07 23:57:09 ----D---- C:\Windows\system32\appmgmt
2010-11-07 23:56:04 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2010-11-07 23:56:04 ----A---- C:\Windows\system32\msv1_0.dll
2010-11-07 23:41:11 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2010-11-07 23:40:07 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2010-11-07 23:40:07 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2010-11-07 23:40:07 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2010-11-07 23:40:07 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2010-11-07 23:40:07 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2010-11-07 23:40:07 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-11-07 23:40:07 ----A---- C:\Windows\system32\PresentationHost.exe
2010-11-07 23:40:07 ----A---- C:\Windows\system32\netfxperf.dll
2010-11-07 23:40:07 ----A---- C:\Windows\system32\mscoree.dll
2010-11-07 23:40:07 ----A---- C:\Windows\system32\dfshim.dll
2010-11-07 23:39:50 ----A---- C:\Windows\system32\browserchoice.exe
2010-11-07 23:34:57 ----A---- C:\Windows\system32\MRT.exe
2010-11-07 23:34:43 ----A---- C:\Windows\system32\drivers\ks.sys
2010-11-07 23:34:21 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2010-11-07 23:34:21 ----A---- C:\Windows\system32\psisdecd.dll
2010-11-07 23:34:21 ----A---- C:\Windows\system32\msdri.dll
2010-11-07 23:34:21 ----A---- C:\Windows\system32\CPFilters.dll
2010-11-07 23:34:20 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2010-11-07 23:34:20 ----A---- C:\Windows\system32\shell32.dll
2010-11-07 23:34:18 ----A---- C:\Windows\SYSWOW64\shell32.dll
2010-11-07 23:34:16 ----A---- C:\Windows\SYSWOW64\schannel.dll
2010-11-07 23:34:16 ----A---- C:\Windows\SYSWOW64\explorer.exe
2010-11-07 23:34:16 ----A---- C:\Windows\system32\winlogon.exe
2010-11-07 23:34:16 ----A---- C:\Windows\system32\schannel.dll
2010-11-07 23:34:16 ----A---- C:\Windows\explorer.exe
2010-11-07 23:34:15 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2010-11-07 23:34:15 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2010-11-07 23:34:15 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2010-11-07 23:34:15 ----A---- C:\Windows\SYSWOW64\secproc.dll
2010-11-07 23:34:15 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2010-11-07 23:34:15 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2010-11-07 23:34:15 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2010-11-07 23:34:15 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2010-11-07 23:34:15 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-11-07 23:34:15 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-11-07 23:34:15 ----A---- C:\Windows\system32\secproc_isv.dll
2010-11-07 23:34:15 ----A---- C:\Windows\system32\secproc.dll
2010-11-07 23:34:15 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-11-07 23:34:15 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-11-07 23:34:15 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-11-07 23:34:15 ----A---- C:\Windows\system32\RMActivate.exe
2010-11-07 23:34:14 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2010-11-07 23:34:14 ----A---- C:\Windows\system32\rtutils.dll
2010-11-07 23:34:10 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2010-11-07 23:34:10 ----A---- C:\Windows\system32\CertEnroll.dll
2010-11-07 23:34:08 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2010-11-07 23:34:08 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2010-11-07 23:34:08 ----A---- C:\Windows\system32\t2embed.dll
2010-11-07 23:34:08 ----A---- C:\Windows\system32\oleaut32.dll
2010-11-07 23:34:07 ----A---- C:\Windows\SYSWOW64\wow32.dll
2010-11-07 23:34:07 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2010-11-07 23:34:07 ----A---- C:\Windows\SYSWOW64\user.exe
2010-11-07 23:34:07 ----A---- C:\Windows\SYSWOW64\setup16.exe
2010-11-07 23:34:07 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2010-11-07 23:34:07 ----A---- C:\Windows\SYSWOW64\instnm.exe
2010-11-07 23:34:07 ----A---- C:\Windows\system32\wow64.dll
2010-11-07 23:34:07 ----A---- C:\Windows\system32\vbscript.dll
2010-11-07 23:34:06 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-11-07 23:34:05 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2010-11-07 23:34:04 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2010-11-07 23:33:59 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2010-11-07 23:33:59 ----A---- C:\Windows\system32\inetcomm.dll
2010-11-07 23:33:58 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2010-11-07 23:33:58 ----A---- C:\Windows\system32\ntdll.dll
2010-11-07 23:33:58 ----A---- C:\Windows\system32\drivers\tcpip.sys
2010-11-07 23:33:57 ----A---- C:\Windows\system32\ole32.dll
2010-11-07 23:33:56 ----A---- C:\Windows\SYSWOW64\ole32.dll
2010-11-07 23:33:56 ----A---- C:\Windows\SYSWOW64\cabview.dll
2010-11-07 23:33:56 ----A---- C:\Windows\system32\cabview.dll
2010-11-07 23:33:55 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2010-11-07 23:33:55 ----A---- C:\Windows\system32\comctl32.dll
2010-11-07 23:33:55 ----A---- C:\Windows\system32\asycfilt.dll
2010-11-07 23:33:54 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2010-11-07 23:33:53 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2010-11-07 23:33:53 ----A---- C:\Windows\system32\StructuredQuery.dll
2010-11-07 23:33:52 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2010-11-07 23:33:52 ----A---- C:\Windows\system32\wintrust.dll
2010-11-07 23:32:44 ----A---- C:\Windows\SYSWOW64\jscript.dll
2010-11-07 23:32:44 ----A---- C:\Windows\system32\msxml3.dll
2010-11-07 23:32:44 ----A---- C:\Windows\system32\jscript.dll
2010-11-07 23:32:43 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2010-11-07 23:32:42 ----A---- C:\Windows\SYSWOW64\tzres.dll
2010-11-07 23:32:42 ----A---- C:\Windows\system32\tzres.dll
2010-11-07 23:32:40 ----A---- C:\Windows\system32\drivers\fvevol.sys
2010-11-07 23:32:27 ----A---- C:\Windows\SYSWOW64\mfc40u.dll
2010-11-07 23:32:27 ----A---- C:\Windows\SYSWOW64\mfc40.dll
2010-11-07 23:31:59 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2010-11-07 23:31:59 ----A---- C:\Windows\SYSWOW64\secur32.dll
2010-11-07 23:31:59 ----A---- C:\Windows\system32\lsasrv.dll
2010-11-07 23:31:59 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2010-11-07 23:31:57 ----A---- C:\Windows\system32\mshtml.dll
2010-11-07 23:31:57 ----A---- C:\Windows\system32\ieframe.dll
2010-11-07 23:31:56 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2010-11-07 23:31:53 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2010-11-07 23:31:53 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2010-11-07 23:31:53 ----A---- C:\Windows\system32\mstime.dll
2010-11-07 23:31:53 ----A---- C:\Windows\system32\iertutil.dll
2010-11-07 23:31:52 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2010-11-07 23:31:52 ----A---- C:\Windows\SYSWOW64\mstime.dll
2010-11-07 23:31:52 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2010-11-07 23:31:52 ----A---- C:\Windows\system32\wininet.dll
2010-11-07 23:31:52 ----A---- C:\Windows\system32\urlmon.dll
2010-11-07 23:31:52 ----A---- C:\Windows\system32\msfeeds.dll
2010-11-07 23:31:51 ----A---- C:\Windows\SYSWOW64\wininet.dll
2010-11-07 23:31:51 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2010-11-07 23:31:51 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2010-11-07 23:31:51 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2010-11-07 23:31:51 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2010-11-07 23:31:51 ----A---- C:\Windows\system32\mshtmled.dll
2010-11-07 23:31:51 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-11-07 23:31:51 ----A---- C:\Windows\system32\licmgr10.dll
2010-11-07 23:31:51 ----A---- C:\Windows\system32\iepeers.dll
2010-11-07 23:31:51 ----A---- C:\Windows\system32\iedkcs32.dll
2010-11-07 23:31:50 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2010-11-07 23:31:50 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2010-11-07 23:31:50 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2010-11-07 23:31:50 ----A---- C:\Windows\SYSWOW64\ieui.dll
2010-11-07 23:31:50 ----A---- C:\Windows\system32\msfeedssync.exe
2010-11-07 23:31:50 ----A---- C:\Windows\system32\jsproxy.dll
2010-11-07 23:31:50 ----A---- C:\Windows\system32\ieui.dll
2010-11-07 23:31:49 ----A---- C:\Windows\SYSWOW64\sscore.dll
2010-11-07 23:31:49 ----A---- C:\Windows\system32\srvsvc.dll
2010-11-07 23:31:49 ----A---- C:\Windows\system32\drivers\srvnet.sys
2010-11-07 23:31:49 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-11-07 23:31:49 ----A---- C:\Windows\system32\drivers\srv.sys
2010-11-07 23:31:48 ----A---- C:\Windows\system32\wmp.dll
2010-11-07 23:31:46 ----A---- C:\Windows\SYSWOW64\wmp.dll
2010-11-07 23:31:45 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2010-11-07 23:31:45 ----A---- C:\Windows\system32\wmploc.DLL
2010-11-07 23:31:44 ----A---- C:\Windows\SYSWOW64\tsbyuv.dll
2010-11-07 23:31:44 ----A---- C:\Windows\SYSWOW64\quartz.dll
2010-11-07 23:31:44 ----A---- C:\Windows\SYSWOW64\msyuv.dll
2010-11-07 23:31:44 ----A---- C:\Windows\SYSWOW64\msvidc32.dll
2010-11-07 23:31:44 ----A---- C:\Windows\SYSWOW64\msrle32.dll
2010-11-07 23:31:44 ----A---- C:\Windows\SYSWOW64\mciavi32.dll
2010-11-07 23:31:44 ----A---- C:\Windows\SYSWOW64\iyuv_32.dll
2010-11-07 23:31:44 ----A---- C:\Windows\SYSWOW64\avifil32.dll
2010-11-07 23:31:44 ----A---- C:\Windows\system32\tsbyuv.dll
2010-11-07 23:31:44 ----A---- C:\Windows\system32\quartz.dll
2010-11-07 23:31:44 ----A---- C:\Windows\system32\msyuv.dll
2010-11-07 23:31:44 ----A---- C:\Windows\system32\msvidc32.dll
2010-11-07 23:31:44 ----A---- C:\Windows\system32\msrle32.dll
2010-11-07 23:31:44 ----A---- C:\Windows\system32\iyuv_32.dll
2010-11-07 23:31:44 ----A---- C:\Windows\system32\atmfd.dll
2010-11-07 23:31:43 ----A---- C:\Windows\SYSWOW64\iccvid.dll
2010-11-07 23:31:43 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2010-11-07 23:31:43 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2010-11-07 23:31:43 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2010-11-07 23:31:43 ----A---- C:\Windows\system32\fontsub.dll
2010-11-07 23:31:43 ----A---- C:\Windows\system32\atmlib.dll
2010-11-07 23:31:42 ----A---- C:\Windows\SYSWOW64\msasn1.dll
2010-11-07 23:31:42 ----A---- C:\Windows\system32\win32k.sys
2010-11-07 23:31:42 ----A---- C:\Windows\system32\msasn1.dll
2010-11-07 23:31:41 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2010-11-07 23:31:41 ----A---- C:\Windows\system32\cdd.dll
2010-11-07 23:31:40 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2010-11-07 23:31:40 ----A---- C:\Windows\system32\wmpmde.dll
2010-11-07 23:31:40 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2010-11-07 23:31:40 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2010-11-07 23:31:40 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2010-11-07 23:31:39 ----A---- C:\Windows\system32\spoolsv.exe
2010-11-07 23:31:39 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2010-11-07 23:30:17 ----D---- C:\Users\Hanka\AppData\Roaming\Media Player Classic
2010-11-07 23:29:04 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2010-11-07 23:29:04 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2010-11-07 23:29:04 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2010-11-07 23:29:04 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2010-11-07 23:29:04 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2010-11-07 23:29:03 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2010-11-07 23:29:03 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2010-11-07 23:29:03 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2010-11-07 23:29:03 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2010-11-07 23:29:03 ----A---- C:\Windows\system32\d3dx11_42.dll
2010-11-07 23:29:03 ----A---- C:\Windows\system32\d3dx10_42.dll
2010-11-07 23:29:02 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2010-11-07 23:29:02 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2010-11-07 23:29:02 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2010-11-07 23:29:02 ----A---- C:\Windows\system32\D3DX9_42.dll
2010-11-07 23:29:02 ----A---- C:\Windows\system32\d3dx10_41.dll
2010-11-07 23:29:02 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2010-11-07 23:29:01 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2010-11-07 23:29:01 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2010-11-07 23:29:01 ----A---- C:\Windows\system32\XAudio2_4.dll
2010-11-07 23:29:01 ----A---- C:\Windows\system32\D3DX9_41.dll
2010-11-07 23:29:00 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2010-11-07 23:29:00 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2010-11-07 23:29:00 ----A---- C:\Windows\system32\xactengine3_4.dll
2010-11-07 23:29:00 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2010-11-07 23:28:59 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2010-11-07 23:28:59 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2010-11-07 23:28:59 ----A---- C:\Windows\system32\XAudio2_3.dll
2010-11-07 23:28:59 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2010-11-07 23:28:58 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2010-11-07 23:28:58 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2010-11-07 23:28:58 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2010-11-07 23:28:58 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2010-11-07 23:28:58 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2010-11-07 23:28:58 ----A---- C:\Windows\system32\XAudio2_2.dll
2010-11-07 23:28:58 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2010-11-07 23:28:58 ----A---- C:\Windows\system32\xactengine3_3.dll
2010-11-07 23:28:58 ----A---- C:\Windows\system32\xactengine3_2.dll
2010-11-07 23:28:58 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2010-11-07 23:28:57 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2010-11-07 23:28:57 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2010-11-07 23:28:57 ----A---- C:\Windows\system32\d3dx10_39.dll
2010-11-07 23:28:57 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2010-11-07 23:28:56 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2010-11-07 23:28:56 ----A---- C:\Windows\system32\D3DX9_39.dll
2010-11-07 23:28:55 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2010-11-07 23:28:55 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2010-11-07 23:28:55 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2010-11-07 23:28:55 ----A---- C:\Windows\system32\XAudio2_1.dll
2010-11-07 23:28:55 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2010-11-07 23:28:55 ----A---- C:\Windows\system32\xactengine3_1.dll
2010-11-07 23:28:54 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2010-11-07 23:28:54 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2010-11-07 23:28:54 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2010-11-07 23:28:54 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2010-11-07 23:28:54 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2010-11-07 23:28:54 ----A---- C:\Windows\system32\D3DX9_38.dll
2010-11-07 23:28:54 ----A---- C:\Windows\system32\d3dx10_38.dll
2010-11-07 23:28:54 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2010-11-07 23:28:53 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2010-11-07 23:28:53 ----A---- C:\Windows\system32\XAudio2_0.dll
2010-11-07 23:28:52 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2010-11-07 23:28:52 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2010-11-07 23:28:52 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2010-11-07 23:28:52 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2010-11-07 23:28:52 ----A---- C:\Windows\system32\xactengine3_0.dll
2010-11-07 23:28:52 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2010-11-07 23:28:52 ----A---- C:\Windows\system32\d3dx10_37.dll
2010-11-07 23:28:52 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2010-11-07 23:28:51 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2010-11-07 23:28:51 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2010-11-07 23:28:51 ----A---- C:\Windows\system32\xactengine2_10.dll
2010-11-07 23:28:51 ----A---- C:\Windows\system32\D3DX9_37.dll
2010-11-07 23:28:49 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2010-11-07 23:28:49 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2010-11-07 23:28:49 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2010-11-07 23:28:49 ----A---- C:\Windows\system32\d3dx9_36.dll
2010-11-07 23:28:49 ----A---- C:\Windows\system32\d3dx10_36.dll
2010-11-07 23:28:49 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2010-11-07 23:28:48 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2010-11-07 23:28:48 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2010-11-07 23:28:48 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2010-11-07 23:28:48 ----A---- C:\Windows\system32\xactengine2_9.dll
2010-11-07 23:28:48 ----A---- C:\Windows\system32\d3dx10_35.dll
2010-11-07 23:28:48 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2010-11-07 23:28:47 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2010-11-07 23:28:47 ----A---- C:\Windows\system32\d3dx9_35.dll
2010-11-07 23:28:46 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2010-11-07 23:28:46 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2010-11-07 23:28:46 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2010-11-07 23:28:46 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2010-11-07 23:28:46 ----A---- C:\Windows\system32\xactengine2_8.dll
2010-11-07 23:28:46 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2010-11-07 23:28:46 ----A---- C:\Windows\system32\d3dx10_34.dll
2010-11-07 23:28:46 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2010-11-07 23:28:45 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2010-11-07 23:28:45 ----A---- C:\Windows\system32\d3dx9_34.dll
2010-11-07 23:28:44 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2010-11-07 23:28:44 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2010-11-07 23:28:44 ----A---- C:\Windows\system32\xinput1_3.dll
2010-11-07 23:28:44 ----A---- C:\Windows\system32\xactengine2_7.dll
2010-11-07 23:28:43 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2010-11-07 23:28:43 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2010-11-07 23:28:43 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2010-11-07 23:28:43 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2010-11-07 23:28:43 ----A---- C:\Windows\system32\xactengine2_6.dll
2010-11-07 23:28:43 ----A---- C:\Windows\system32\d3dx9_33.dll
2010-11-07 23:28:43 ----A---- C:\Windows\system32\d3dx10_33.dll
2010-11-07 23:28:43 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2010-11-07 23:28:42 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2010-11-07 23:28:42 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2010-11-07 23:28:42 ----A---- C:\Windows\system32\xactengine2_5.dll
2010-11-07 23:28:42 ----A---- C:\Windows\system32\d3dx10.dll
2010-11-07 23:28:41 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2010-11-07 23:28:41 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2010-11-07 23:28:41 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2010-11-07 23:28:41 ----A---- C:\Windows\system32\xactengine2_4.dll
2010-11-07 23:28:41 ----A---- C:\Windows\system32\x3daudio1_1.dll
2010-11-07 23:28:41 ----A---- C:\Windows\system32\d3dx9_32.dll
2010-11-07 23:28:40 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2010-11-07 23:28:40 ----A---- C:\Windows\system32\d3dx9_31.dll
2010-11-07 23:28:39 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2010-11-07 23:28:39 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2010-11-07 23:28:39 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2010-11-07 23:28:39 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2010-11-07 23:28:39 ----A---- C:\Windows\system32\xinput1_2.dll
2010-11-07 23:28:39 ----A---- C:\Windows\system32\xinput1_1.dll
2010-11-07 23:28:39 ----A---- C:\Windows\system32\xactengine2_3.dll
2010-11-07 23:28:39 ----A---- C:\Windows\system32\xactengine2_2.dll
2010-11-07 23:28:37 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2010-11-07 23:28:37 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2010-11-07 23:28:37 ----A---- C:\Windows\system32\xactengine2_1.dll
2010-11-07 23:28:37 ----A---- C:\Windows\system32\d3dx9_30.dll
2010-11-07 23:28:35 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2010-11-07 23:28:35 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2010-11-07 23:28:35 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2010-11-07 23:28:35 ----A---- C:\Windows\system32\xactengine2_0.dll
2010-11-07 23:28:35 ----A---- C:\Windows\system32\x3daudio1_0.dll
2010-11-07 23:28:35 ----A---- C:\Windows\system32\d3dx9_29.dll
2010-11-07 23:28:34 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2010-11-07 23:28:34 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2010-11-07 23:28:34 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2010-11-07 23:28:34 ----A---- C:\Windows\system32\d3dx9_28.dll
2010-11-07 23:28:34 ----A---- C:\Windows\system32\d3dx9_27.dll
2010-11-07 23:28:34 ----A---- C:\Windows\system32\d3dx9_26.dll
2010-11-07 23:28:33 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2010-11-07 23:28:33 ----A---- C:\Windows\system32\d3dx9_25.dll
2010-11-07 23:28:32 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2010-11-07 23:28:32 ----A---- C:\Windows\system32\d3dx9_24.dll
2010-11-07 23:23:30 ----D---- C:\Windows\SYSWOW64\directx
2010-11-07 23:22:48 ----D---- C:\Program Files\Media Player Classic - Home Cinema
2010-11-07 17:01:49 ----D---- C:\Users\Hanka\AppData\Roaming\ArcSoft
2010-11-07 17:01:45 ----D---- C:\ProgramData\ArcSoft
2010-11-07 17:01:43 ----A---- C:\Windows\SYSWOW64\unicows.dll
2010-11-07 17:01:10 ----D---- C:\Windows\SYSWOW64\WinFast
2010-11-07 17:00:17 ----D---- C:\Users\Hanka\AppData\Roaming\Macromedia
2010-11-07 17:00:17 ----D---- C:\Users\Hanka\AppData\Roaming\Adobe
2010-11-07 17:00:15 ----D---- C:\Windows\SYSWOW64\Macromed
2010-11-07 16:58:19 ----HD---- C:\Windows\AxInstSV
2010-11-05 12:21:46 ----D---- C:\Users\Hanka\AppData\Roaming\GHISLER
2010-11-05 12:21:46 ----D---- C:\totalcmd
2010-11-05 12:21:46 ----A---- C:\Windows\UC.PIF
2010-11-05 12:21:46 ----A---- C:\Windows\RAR.PIF
2010-11-05 12:21:46 ----A---- C:\Windows\PKZIP.PIF
2010-11-05 12:21:46 ----A---- C:\Windows\PKUNZIP.PIF
2010-11-05 12:21:46 ----A---- C:\Windows\NOCLOSE.PIF
2010-11-05 12:21:46 ----A---- C:\Windows\LHA.PIF
2010-11-05 12:21:46 ----A---- C:\Windows\ARJ.PIF
2010-11-05 12:19:04 ----D---- C:\Program Files\WinRAR
2010-11-05 12:16:18 ----D---- C:\ProgramData\ESET
2010-11-05 12:16:18 ----D---- C:\Program Files\ESET
2010-11-05 12:01:08 ----A---- C:\Windows\GVTDrv64.sys
2010-11-05 12:00:48 ----A---- C:\Windows\gdrv.sys
2010-11-05 11:55:04 ----D---- C:\ProgramData\InstallShield
2010-11-05 11:55:03 ----A---- C:\Windows\system32\drivers\AppleCharger.sys
2010-11-05 11:55:03 ----A---- C:\Windows\system32\AppleChargerSrv.exe
2010-11-05 11:54:45 ----D---- C:\Program Files (x86)\NEC Electronics
2010-11-05 11:54:25 ----D---- C:\Program Files\DIFX
2010-11-05 11:54:21 ----DC---- C:\Windows\system32\DRVSTORE
2010-11-05 11:54:21 ----D---- C:\Program Files (x86)\AMD
2010-11-05 11:54:21 ----A---- C:\Windows\system32\drivers\usbfilter.sys
2010-11-05 11:54:15 ----A---- C:\Windows\system32\drivers\amdxata.sys
2010-11-05 11:54:15 ----A---- C:\Windows\system32\drivers\amdsata.sys
2010-11-05 11:54:13 ----A---- C:\Windows\system32\drivers\AtiPcie.sys
2010-11-05 11:53:27 ----A---- C:\Windows\system32\RTNUninst64.dll
2010-11-05 11:53:27 ----A---- C:\Windows\system32\RtNicProp64.dll
2010-11-05 11:53:27 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2010-11-05 11:52:41 ----D---- C:\Users\Hanka\AppData\Roaming\ATI
2010-11-05 11:52:41 ----D---- C:\ProgramData\ATI
2010-11-05 11:51:29 ----D---- C:\Windows\SYSWOW64\RTCOM
2010-11-05 11:51:29 ----D---- C:\Program Files\Realtek
2010-11-05 11:51:20 ----A---- C:\Windows\system32\RtkHDM64.dll
2010-11-05 11:51:20 ----A---- C:\Windows\system32\RTEEP64H.dll
2010-11-05 11:51:20 ----A---- C:\Windows\system32\RTEEL64H.dll
2010-11-05 11:51:20 ----A---- C:\Windows\system32\RTEEG64H.dll
2010-11-05 11:51:20 ----A---- C:\Windows\system32\RTEED64H.dll
2010-11-05 11:51:20 ----A---- C:\Windows\system32\drivers\RtHDMIVX.sys
2010-11-05 11:51:19 ----A---- C:\Windows\system32\RHDMEx64.dll
2010-11-05 11:51:19 ----A---- C:\Windows\system32\RHCoInst64.dll
2010-11-05 11:51:19 ----A---- C:\Windows\system32\RH3DHT64.dll
2010-11-05 11:51:19 ----A---- C:\Windows\system32\RH3DAA64.dll
2010-11-05 11:51:17 ----A---- C:\Windows\system32\WavesGUILib.dll
2010-11-05 11:51:17 ----A---- C:\Windows\system32\SRSWOW64.dll
2010-11-05 11:51:17 ----A---- C:\Windows\system32\SRSTSX64.dll
2010-11-05 11:51:17 ----A---- C:\Windows\system32\SRSTSH64.dll
2010-11-05 11:51:17 ----A---- C:\Windows\system32\SRSHP64.dll
2010-11-05 11:51:16 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2010-11-05 11:51:16 ----A---- C:\Windows\system32\RtkCfg64.dll
2010-11-05 11:51:16 ----A---- C:\Windows\system32\RtkApi64.dll
2010-11-05 11:51:15 ----A---- C:\Windows\system32\RtPgEx64.dll
2010-11-05 11:51:15 ----A---- C:\Windows\system32\RtkAPO64.dll
2010-11-05 11:51:15 ----A---- C:\Windows\system32\RTEEP64A.dll
2010-11-05 11:51:15 ----A---- C:\Windows\system32\RTEEL64A.dll
2010-11-05 11:51:15 ----A---- C:\Windows\system32\RTEEG64A.dll
2010-11-05 11:51:15 ----A---- C:\Windows\system32\RTEED64A.dll
2010-11-05 11:51:15 ----A---- C:\Windows\system32\RTCOM64.dll
2010-11-05 11:51:15 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2010-11-05 11:51:14 ----A---- C:\Windows\system32\RP3DHT64.dll
2010-11-05 11:51:14 ----A---- C:\Windows\system32\RP3DAA64.dll
2010-11-05 11:51:14 ----A---- C:\Windows\system32\RCoInst64.dll
2010-11-05 11:51:13 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2010-11-05 11:51:13 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2010-11-05 11:51:12 ----A---- C:\Windows\system32\FMAPO64.dll
2010-11-05 11:51:12 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2010-11-05 11:51:11 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2010-11-05 11:51:10 ----HD---- C:\Program Files (x86)\Temp
2010-11-05 11:51:10 ----D---- C:\Program Files (x86)\Realtek
2010-11-05 11:51:10 ----A---- C:\Windows\system32\AERTAR64.dll
2010-11-05 11:51:10 ----A---- C:\Windows\system32\AERTAC64.dll
2010-11-05 11:51:09 ----R---- C:\Windows\RtlExUpd.dll
2010-11-05 11:51:04 ----D---- C:\Program Files (x86)\ATI
2010-11-05 11:51:03 ----D---- C:\Program Files\Common Files\ATI Technologies
2010-11-05 11:50:35 ----A---- C:\Windows\system32\coinst.dll
2010-11-05 11:50:35 ----A---- C:\Windows\system32\ATIDEMGX.dll
2010-11-05 11:50:27 ----D---- C:\Program Files\ATI
2010-11-05 11:50:25 ----D---- C:\Program Files (x86)\ATI Technologies
2010-11-05 11:49:01 ----SHD---- C:\Windows\Installer
2010-11-05 11:48:44 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2010-11-05 11:48:44 ----D---- C:\Program Files (x86)\Gigabyte
2010-11-05 11:47:59 ----A---- C:\Windows\GSetup.ini
2010-11-05 10:08:59 ----D---- C:\Windows\SoftwareDistribution
2010-11-05 10:07:04 ----D---- C:\Users\Hanka\AppData\Roaming\Identities
2010-11-05 10:06:55 ----SD---- C:\Users\Hanka\AppData\Roaming\Microsoft
2010-11-05 10:06:55 ----D---- C:\Users\Hanka\AppData\Roaming\Media Center Programs
2010-11-05 10:06:00 ----SHD---- C:\Recovery
2010-11-05 10:06:00 ----SHD---- C:\ProgramData\Šablony
2010-11-05 10:06:00 ----SHD---- C:\ProgramData\Plocha
2010-11-05 10:06:00 ----SHD---- C:\ProgramData\Oblíbené položky
2010-11-05 10:06:00 ----SHD---- C:\ProgramData\Nabídka Start
2010-11-05 10:06:00 ----SHD---- C:\ProgramData\Dokumenty
2010-11-05 10:06:00 ----SHD---- C:\ProgramData\Data aplikací
2010-11-05 10:01:36 ----D---- C:\Windows\Prefetch
2010-11-05 10:01:26 ----ASH---- C:\pagefile.sys
2010-11-05 10:01:25 ----SHD---- C:\System Volume Information
2010-11-05 10:01:25 ----ASH---- C:\hiberfil.sys
2010-11-05 10:00:48 ----D---- C:\Windows\Panther
2010-11-05 06:09:52 ----D---- C:\Program Files (x86)\Microsoft.NET
2010-11-05 06:08:16 ----D---- C:\ProgramData\Microsoft Help
2010-11-05 06:05:04 ----A---- C:\Windows\system32\drivers\sptd.sys
2010-11-05 06:04:51 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2010-11-05 06:04:40 ----D---- C:\Users\Hanka\AppData\Roaming\DAEMON Tools Lite
2010-11-05 06:04:38 ----D---- C:\ProgramData\DAEMON Tools Lite
2010-11-05 06:00:40 ----D---- C:\Users\Hanka\AppData\Roaming\WinRAR
2010-11-05 05:46:11 ----N---- C:\Windows\system32\MpSigStub.exe

======List of files/folders modified in the last 1 months======

2010-11-22 09:49:38 ----D---- C:\Windows\Temp
2010-11-22 09:15:03 ----RD---- C:\Program Files
2010-11-22 09:14:38 ----D---- C:\Windows\system32\Tasks
2010-11-22 09:14:36 ----RD---- C:\Program Files (x86)
2010-11-22 09:14:36 ----D---- C:\Program Files (x86)\Common Files
2010-11-22 09:08:33 ----D---- C:\Windows\System32
2010-11-22 09:08:33 ----D---- C:\Windows\inf
2010-11-22 09:08:33 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-11-21 23:42:29 ----D---- C:\Windows\system32\config
2010-11-21 13:33:59 ----D---- C:\Windows
2010-11-21 08:47:48 ----D---- C:\Windows\system32\catroot2
2010-11-20 22:06:00 ----D---- C:\Windows\SysWOW64
2010-11-20 15:49:36 ----D---- C:\Windows\system32\drivers
2010-11-20 15:35:25 ----HD---- C:\ProgramData
2010-11-20 15:32:17 ----D---- C:\Windows\system32\catroot
2010-11-20 15:32:16 ----D---- C:\Windows\system32\DriverStore
2010-11-20 15:32:10 ----A---- C:\Windows\win.ini
2010-11-20 15:32:06 ----D---- C:\Windows\twain_32
2010-11-20 15:32:06 ----D---- C:\Windows\SYSWOW64\drivers
2010-11-12 12:21:46 ----D---- C:\Windows\Downloaded Program Files
2010-11-12 12:17:52 ----RSD---- C:\Windows\assembly
2010-11-12 12:17:52 ----D---- C:\Windows\Microsoft.NET
2010-11-12 12:17:04 ----D---- C:\Program Files\Common Files
2010-11-12 12:16:31 ----RSD---- C:\Windows\Fonts
2010-11-12 12:14:28 ----D---- C:\Windows\winsxs
2010-11-12 11:58:34 ----D---- C:\Windows\rescache
2010-11-12 11:58:05 ----D---- C:\Windows\system32\wdi
2010-11-08 00:26:56 ----SD---- C:\ProgramData\Microsoft
2010-11-08 00:25:16 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-11-08 00:24:16 ----D---- C:\Windows\ShellNew
2010-11-08 00:10:51 ----D---- C:\Program Files (x86)\MSBuild
2010-11-08 00:09:35 ----D---- C:\Program Files\Common Files\System
2010-11-07 23:59:02 ----D---- C:\Windows\ehome
2010-11-07 23:59:02 ----D---- C:\Program Files\Windows Mail
2010-11-07 23:59:02 ----D---- C:\Program Files (x86)\Windows Mail
2010-11-07 23:48:32 ----D---- C:\Windows\AppPatch
2010-11-07 23:48:31 ----D---- C:\Windows\SYSWOW64\cs-CZ
2010-11-07 23:48:31 ----D---- C:\Windows\system32\cs-CZ
2010-11-07 23:48:30 ----D---- C:\Windows\SYSWOW64\migration
2010-11-07 23:48:30 ----D---- C:\Program Files\Internet Explorer
2010-11-07 23:48:30 ----D---- C:\Program Files (x86)\Internet Explorer
2010-11-07 23:48:29 ----D---- C:\Windows\system32\migration
2010-11-07 23:48:29 ----D---- C:\Program Files\Windows Media Player
2010-11-07 23:48:29 ----D---- C:\Program Files (x86)\Windows Media Player
2010-11-07 23:43:09 ----D---- C:\Windows\SYSWOW64\en-US
2010-11-07 23:43:09 ----D---- C:\Windows\system32\en-US
2010-11-07 23:34:58 ----D---- C:\Windows\debug
2010-11-07 23:28:10 ----D---- C:\Windows\Logs
2010-11-05 10:31:28 ----D---- C:\Windows\system32\restore
2010-11-05 10:16:44 ----D---- C:\Windows\system32\CodeIntegrity
2010-11-05 10:07:03 ----SHD---- C:\$Recycle.Bin
2010-11-05 10:06:54 ----RD---- C:\Users
2010-11-05 10:06:00 ----D---- C:\Program Files\Windows NT
2010-11-05 10:04:08 ----D---- C:\Windows\system32\sysprep
2010-11-05 10:02:50 ----D---- C:\Windows\system32\drivers\UMDF
2010-11-05 10:01:49 ----D---- C:\Windows\CSC
2010-11-05 10:00:25 ----D---- C:\Windows\Setup

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-05-05 16440]
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-11-05 834544]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2009-03-19 134024]
R2 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys [2009-03-19 142776]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2009-03-19 121152]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-04-07 6659072]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-04-07 195584]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-04-06 2337440]
R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2009-11-20 75776]
R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2009-11-20 177152]
R3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2010-01-27 231328]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-03-22 347680]
R3 SNP2STD;USB2.0 PC Camera (SNP2STD); C:\Windows\system32\DRIVERS\snp2sxp.sys [2007-03-30 12333568]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2009-12-22 38456]
S3 aoyuvmos;aoyuvmos; C:\Windows\system32\drivers\aoyuvmos.sys []
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2010-11-08 25640]
S3 GVTDrv64;GVTDrv64; \??\C:\Windows\GVTDrv64.sys [2010-11-07 30528]
S3 mod7700;WinFast based TV tuner device; C:\Windows\system32\DRIVERS\mod7700.sys []
S3 MODRC;WinFast TV Dongle With Infrared Receiver; C:\Windows\system32\DRIVERS\modrc.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2009-02-06 109056]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-04-07 202752]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2009-03-19 731840]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-03-19 23296]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2010-11-12 1436424]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]

-----------------EOF-----------------

vojtak · #4 Příspěvek od **vojtak** » 22 lis 2010 09:51

info.txt

info.txt logfile of random's system information tool 1.08 2010-11-22 09:15:09

======Uninstall list======

-->MsiExec /X{F9835182-794B-4F24-902A-E2CA9D43380F}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-0015-0405-0000-0000000FF1CE} /uninstall {1FC5BC34-0301-40D2-9432-05BA220277B8}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-0016-0405-0000-0000000FF1CE} /uninstall {1FC5BC34-0301-40D2-9432-05BA220277B8}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-0018-0405-0000-0000000FF1CE} /uninstall {1FC5BC34-0301-40D2-9432-05BA220277B8}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-0019-0405-0000-0000000FF1CE} /uninstall {1FC5BC34-0301-40D2-9432-05BA220277B8}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-001A-0405-0000-0000000FF1CE} /uninstall {1FC5BC34-0301-40D2-9432-05BA220277B8}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-001B-0405-0000-0000000FF1CE} /uninstall {1FC5BC34-0301-40D2-9432-05BA220277B8}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0405-0000-0000000FF1CE} /uninstall {294B4278-CF7B-40B9-86A1-2D3FF0C2C524}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {A0516415-ED61-419A-981D-93596DA74165}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-001F-041B-0000-0000000FF1CE} /uninstall {10EC59E5-9BCE-4884-BB1A-E28627220232}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-002A-0000-1000-0000000FF1CE} /uninstall {E64BA721-2310-4B55-BE5A-2925F9706192}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-002A-0405-1000-0000000FF1CE} /uninstall {E12F9D31-4025-4BC6-B1B2-AB262C5580B0}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-0044-0405-0000-0000000FF1CE} /uninstall {1FC5BC34-0301-40D2-9432-05BA220277B8}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-006E-0405-0000-0000000FF1CE} /uninstall {E12F9D31-4025-4BC6-B1B2-AB262C5580B0}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-00A1-0405-0000-0000000FF1CE} /uninstall {1FC5BC34-0301-40D2-9432-05BA220277B8}
2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-00BA-0405-0000-0000000FF1CE} /uninstall {1FC5BC34-0301-40D2-9432-05BA220277B8}
Adobe Flash Player 10 ActiveX-->C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10l_ActiveX.exe -maintain activex
Adobe Flash Player 10 Plugin-->C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10l_Plugin.exe -maintain plugin
AMD Drag and Drop Transcoding-->MsiExec.exe /X{E6456858-8C0C-35CE-96B8-AFFCD205C9FC}
AMD USB Filter Driver-->MsiExec.exe /X{987B04C4-B5AC-4AD6-A7E9-8D681085B850}
Ask Toolbar-->MsiExec.exe /X{86D4B82A-ABED-442A-BE86-96357B70F4FE}
ATI Catalyst Install Manager-->msiexec /q/x{576A97E3-1A79-6215-49DE-AA358AF47420} REBOOT=ReallySuppress
AutoCAD 2011 - česky-->C:\Program Files\Autodesk\AutoCAD 2011\Setup\Setup.exe /P {5783F2D7-9001-0405-0102-0060B0CE6BBA} /M ACAD /language cs-CZ
AutoCAD 2011 - česky-->C:\Program Files\Autodesk\AutoCAD 2011\Setup\Setup.exe /P {5783F2D7-9001-0405-0102-0060B0CE6BBA} /M ACAD /language cs-CZ
Autodesk Material Library 2011 Base Image library-->MsiExec.exe /I{CD1E078C-A6B9-47DA-B035-6365C85C7832}
Autodesk Material Library 2011-->MsiExec.exe /I{9DEABCB6-B759-4D52-92F8-51B34A2B4D40}
Catalyst Control Center - Branding-->MsiExec.exe /I{8D7133DE-27D2-47E5-B248-4180278D32AA}
Dual-Core Optimizer-->MsiExec.exe /X{9FD6F1A8-5550-46AF-8509-271DF0E768B5}
FARO LS 1.1.406.58-->MsiExec.exe /I{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}
Look 1321-->C:\Program Files (x86)\InstallShield Installation Information\{0D0AF0A0-C463-4AB2-8936-25BA41469B04}\setup.exe -runfromtemp -l0x0005 -removeonly -u
Media Player Classic - Home Cinema v1.4.2714.0 x64-->"C:\Program Files\Media Player Classic - Home Cinema\unins000.exe"
Microsoft .NET Framework 4 Client Profile CSY Language Pack-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\ClientLP\Setup.exe /repair /x86 /x64 /lcid 1029 /parameterfolder ClientLP
Microsoft .NET Framework 4 Client Profile CSY Language Pack-->MsiExec.exe /X{790E02A1-145A-3843-8C13-A4F41C9B48B7}
Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /x64 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
Microsoft Office Access MUI (Czech) 2007-->MsiExec.exe /X{90120000-0015-0405-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (Czech) 2007-->MsiExec.exe /X{90120000-0016-0405-0000-0000000FF1CE}
Microsoft Office Groove MUI (Czech) 2007-->MsiExec.exe /X{90120000-00BA-0405-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Czech) 2007-->MsiExec.exe /X{90120000-0044-0405-0000-0000000FF1CE}
Microsoft Office Office 64-bit Components 2007-->MsiExec.exe /X{90120000-002A-0000-1000-0000000FF1CE}
Microsoft Office OneNote MUI (Czech) 2007-->MsiExec.exe /X{90120000-00A1-0405-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Czech) 2007-->MsiExec.exe /X{90120000-001A-0405-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Czech) 2007-->MsiExec.exe /X{90120000-0018-0405-0000-0000000FF1CE}
Microsoft Office Proof (Czech) 2007-->MsiExec.exe /X{90120000-001F-0405-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Slovak) 2007-->MsiExec.exe /X{90120000-001F-041B-0000-0000000FF1CE}
Microsoft Office Proofing (Czech) 2007-->MsiExec.exe /X{90120000-002C-0405-0000-0000000FF1CE}
Microsoft Office Publisher MUI (Czech) 2007-->MsiExec.exe /X{90120000-0019-0405-0000-0000000FF1CE}
Microsoft Office Shared 64-bit MUI (Czech) 2007-->MsiExec.exe /X{90120000-002A-0405-1000-0000000FF1CE}
Microsoft Office Shared MUI (Czech) 2007-->MsiExec.exe /X{90120000-006E-0405-0000-0000000FF1CE}
Microsoft Office Word MUI (Czech) 2007-->MsiExec.exe /X{90120000-001B-0405-0000-0000000FF1CE}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148-->MsiExec.exe /X{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Mozilla Firefox (3.6.12)-->C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
NEC Electronics USB 3.0 Host Controller Driver-->"C:\Program Files (x86)\InstallShield Installation Information\{D7BF9739-8A68-4335-BBEE-37752AD9E86B}\SETUP.EXE" -runfromtemp -l0x0405 -removeonly
NEC Electronics USB 3.0 Host Controller Driver-->MsiExec.exe /I{D7BF9739-8A68-4335-BBEE-37752AD9E86B}
NVIDIA PhysX-->MsiExec.exe /X{F9835182-794B-4F24-902A-E2CA9D43380F}
pdfFactory Pro-->C:\Windows\system32\spool\DRIVERS\x64\2\fppinst3.exe /uninstall
Realtek Ethernet Controller Driver For Windows 7-->C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\Setup.Exe -runfromtemp -removeonly
Realtek HDMI Audio Driver for ATI-->C:\Program Files\Realtek\Audio\HDA\RtkUpd64.exe -k -m -nrg2709
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\SETUP.EXE" -removeonly
Return to Mysterious Island-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{1473CBD6-E5A8-4014-8964-C1DEA6DDD0D4}\setup.exe" -l0x9 -removeonly
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {FD8D7C9A-E56A-3E7B-BA6D-FE68F13296E3} /parameterfolder Client
The KMPlayer (remove only)-->"C:\Program Files (x86)\The KMPlayer\uninstall.exe"
The Lord of the Rings FREE Trial -->MsiExec.exe /X{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}
Total Commander (Remove or Repair)-->c:\totalcmd\tcuninst.exe
USB Multimedia Keyboard Driver-->C:\Program Files (x86)\InstallShield Installation Information\{08DA21BF-9912-409E-B802-943C6DC2DA81}\setup.exe -runfromtemp -l0x0009 -removeonly
WinRAR-->C:\Program Files\WinRAR\uninstall.exe

======System event log======

Computer Name: 37L4247E29-32
Event Code: 7036
Message: Stav služby Cryptographic Services byl změněn na: stopped
Record Number: 5
Source Name: Service Control Manager
Time Written: 20090714051424.262212-000
Event Type: Informace
User:

Computer Name: 37L4247E29-32
Event Code: 7036
Message: Stav služby Windows Modules Installer byl změněn na: stopped
Record Number: 4
Source Name: Service Control Manager
Time Written: 20090714051424.168612-000
Event Type: Informace
User:

Computer Name: 37L4247E29-32
Event Code: 7036
Message: Stav služby Software Protection byl změněn na: stopped
Record Number: 3
Source Name: Service Control Manager
Time Written: 20090714051424.059412-000
Event Type: Informace
User:

Computer Name: 37L4247E29-32
Event Code: 7036
Message: Stav služby Windows Event Log byl změněn na: stopped
Record Number: 2
Source Name: Service Control Manager
Time Written: 20090714051424.012612-000
Event Type: Informace
User:

Computer Name: 37L4247E29-32
Event Code: 7036
Message: Stav služby Volume Shadow Copy byl změněn na: stopped
Record Number: 1
Source Name: Service Control Manager
Time Written: 20090714051423.934612-000
Event Type: Informace
User:

=====Application event log=====

Computer Name: 37L4247E29-32
Event Code: 1001
Message: Chybný blok , typ 0
Název události: PnPGenericDriverFound
Reakce: Není k dispozici
ID souboru CAB: 0

Podpis problému:
P1: x64
P2: PCI\VEN_1002&DEV_9715&SUBSYS_D0001458&REV_00
P3:
P4:
P5:
P6:
P7:
P8:
P9:
P10:

Připojené soubory:

Tyto soubory mohou být k dispozici zde:
C:\ProgramData\Microsoft\Windows\WER\ReportQueue\NonCritical_x64_92c21c2ff837f28cfc0dc2c5f5fc65aa8c65e2_cab_073214d7

Symbol analýzy:
Opětovné hledání řešení: 0
ID hlášení: 899391f9-e8bb-11df-81ca-8adb7f1588c2
Stav hlášení: 6
Record Number: 5
Source Name: Windows Error Reporting
Time Written: 20101105090321.000000-000
Event Type: Informace
User:

Computer Name: 37L4247E29-32
Event Code: 5617
Message: Windows Management Instrumentation Service subsystems initialized successfully
Record Number: 4
Source Name: Microsoft-Windows-WMI
Time Written: 20101105090153.000000-000
Event Type: Informace
User:

Computer Name: 37L4247E29-32
Event Code: 5615
Message: Windows Management Instrumentation Service started sucessfully
Record Number: 3
Source Name: Microsoft-Windows-WMI
Time Written: 20101105090152.000000-000
Event Type: Informace
User:

Computer Name: 37L4247E29-32
Event Code: 4625
Message: Subsystém EventSystem zabraňuje vytváření duplicitních záznamů v protokolu událostí po dobu 86400 sekund. Tuto dobu lze změnit pomocí hodnoty REG_DWORD s názvem SuppressDuplicateDuration v následujícím klíči registru: HKLM\Software\Microsoft\EventSystem\EventLog.
Record Number: 2
Source Name: Microsoft-Windows-EventSystem
Time Written: 20101105090150.000000-000
Event Type: Informace
User:

Computer Name: 37L4247E29-32
Event Code: 1531
Message: Služba Profil uživatele byla úspěšně spuštěna.

Record Number: 1
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20101105090150.086476-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

=====Security event log=====

Computer Name: 37L4247E29-32
Event Code: 4735
Message: Byla změněna zabezpečená místní skupina.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: 37L4247E29-32$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin

Změněné atributy:
Název účtu SAM: -
Historie identifikátoru zabezpečení: -

Další informace:
Oprávnění: -
Record Number: 5
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101105090137.434853-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247E29-32
Event Code: 4731
Message: Byla vytvořena zabezpečená místní skupina.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: 37L4247E29-32$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Nová skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin

Atributy:
Název účtu SAM: Backup Operators
Historie identifikátoru zabezpečení: -

Další informace:
Oprávnění: -
Record Number: 4
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101105090137.434853-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247E29-32
Event Code: 4902
Message: Tabulka zásad auditu pro jednotlivé uživatele byla vytvořena.

Počet prvků: 0
ID zásady: 0x32ae3
Record Number: 3
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101105090137.138453-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247E29-32
Event Code: 4624
Message: Účet byl úspěšně přihlášen.

Předmět:
ID zabezpečení: S-1-0-0
Název účtu: -
Doména účtu: -
ID přihlášení: 0x0

Typ přihlášení: 0

Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3e7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Informace o procesu:
ID procesu: 0x4
Název procesu:

Informace o síti:
Název pracovní stanice: -
Adresa zdrojové sítě -
Zdrojový port: -

Podrobné informace o ověření:
Proces přihlášení: -
Balíček ověření: -
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0

Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.

Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.

Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).

Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.

Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.

Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 2
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101105090136.218051-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247E29-32
Event Code: 4608
Message: Spouští se systém Windows.

Tato událost je zaznamenána při spuštění procesu LSASS.EXE a inicializaci kontrolního podsystému.
Record Number: 1
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101105090136.124451-000
Event Type: Úspěšný audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Common Files\ArcSoft\Bin;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=2
"PROCESSOR_LEVEL"=16
"PROCESSOR_IDENTIFIER"=AMD64 Family 16 Model 4 Stepping 3, AuthenticAMD
"PROCESSOR_REVISION"=0403

-----------------EOF-----------------

#5 Příspěvek od **vyosek** » 22 lis 2010 09:56

Stahnete OTM (viz muj podpis)

Pokud pouzivate Win Vista ci W7, kliknete na OTM pravym a dejte Run As Administrator ci Spustit jako spravce
Do leveho okna Paste Instructions for Items to be Moved (pod zlutou caru) vlozte obsah, ktery mate nize

Kód: Vybrat vše

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"=-
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"pdfFactory Pro Dispatcher v3"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=-
"NVIDIA driver monitor"=-
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"CHotkey"=-
"NVIDIA driver monitor"=-
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Users\Hanka\Downloads\IMAGE53892731.JPG-www.facebook.exe"=-
[HKCU\Software\Microsoft\Internet Explorer\Main]
"Start Page"="www.google.com"

:files
C:\Users\Hanka\Downloads\IMAGE53892731.JPG-www.facebook.exe
c:\windows\nvsvc32.exe
C:\Program Files (x86)\Ask.com
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp /s

:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]

Kliknete na cervene tlacitko MoveIt!
Budete vyzvani na restart, dejte Yes, log pote najdete C:\_OTM\MovedFiles, obsah sem vlozte

vojtak · #6 Příspěvek od **vojtak** » 22 lis 2010 10:02

All processes killed
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\pdfFactory Pro Dispatcher v3 not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\NVIDIA driver monitor deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\CHotkey deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\NVIDIA driver monitor deleted successfully.
Registry value HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\\C:\Users\Hanka\Downloads\IMAGE53892731.JPG-www.facebook.exe deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\Main\\"Start Page"|"www.google.com" /E : value set successfully!
========== FILES ==========
C:\Users\Hanka\Downloads\IMAGE53892731.JPG-www.facebook.exe moved successfully.
c:\windows\nvsvc32.exe moved successfully.
C:\Program Files (x86)\Ask.com folder moved successfully.
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5CBF.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8A44.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9E41.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE291.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\ZAPE56E.tmp folder moved successfully.
C:\Windows\Temp\DMI4ECA.tmp moved successfully.
C:\Windows\Temp\HTTAC08.tmp moved successfully.
C:\Windows\Temp\HTTD257.tmp moved successfully.
C:\Windows\Temp\HTTF16F.tmp moved successfully.
C:\Windows\Temp\TS_43D.tmp moved successfully.
C:\Windows\Temp\TS_DDC1.tmp moved successfully.
C:\Windows\Temp\TS_E216.tmp moved successfully.
C:\Windows\Temp\TS_E439.tmp moved successfully.
C:\Windows\Temp\TS_EA52.tmp moved successfully.
C:\Windows\Temp\TS_EC85.tmp moved successfully.
C:\Windows\Temp\TS_EE88.tmp moved successfully.
C:\Windows\Temp\TS_F000.tmp moved successfully.
C:\Windows\Temp\TS_FE62.tmp moved successfully.
C:\Windows\Temp\UDD8F85.tmp moved successfully.
C:\Windows\Temp\UDDC447.tmp moved successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Hanka
->Temp folder emptied: 186492708 bytes
->Temporary Internet Files folder emptied: 31286423 bytes
->FireFox cache emptied: 60079786 bytes
->Flash cache emptied: 10247 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 4866453 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50507 bytes
RecycleBin emptied: 2533 bytes

Total Files Cleaned = 270,00 mb

Restore point Set: OTM Restore Point

OTM by OldTimer - Version 3.1.17.2 log created on 11222010_095851

Files moved on Reboot...
C:\Users\Hanka\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

Registry entries deleted on Reboot...

vojtak · #7 Příspěvek od **vojtak** » 22 lis 2010 10:16

už je to čisté?

#8 Příspěvek od **cernohous13** » 22 lis 2010 10:25

vojtak píše:už je to čisté?

Příteli, tvůj rádce to dělá jen ve chvíli,kdy má čas - vyčkej v klidu na jeho reakci.

Teď se třeba zabývá zbytečnostmi jako přednáška nebo cvíčka a pod.

#9 Příspěvek od **vyosek** » 22 lis 2010 10:37

Dekuji kolegovi za vysvetleni

OTM pomazalo co jsem zadal, ale Vy musite posoudit jak se chova PC, ci si stale samo povida pres skype...

vojtak · #10 Příspěvek od **vojtak** » 22 lis 2010 10:45

snad v poradku, díky

#11 Příspěvek od **vyosek** » 22 lis 2010 10:47

Tak jeste uklidime, kdyby byly problemy, tak se ozvete

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner (viz muj podpis)
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za 14 dni

A melo by to byt vse

VIRY.CZ

skype vir

skype vir

Re: skype vir

Re: skype vir

Re: skype vir

Re: skype vir

Re: skype vir

Re: skype vir

Re: skype vir

Re: skype vir

Re: skype vir

Re: skype vir