Pro bledulku

[lenkavlkova]

ahoj

[Reklama]

[bledulka]

Ahoj, jdeme na to.Takže mi ještě napiš, jak jsou na tom ostatní pc, máš zavirované všechny?
V tomto pc máš nějaká důležitá data? Jak je ted na tom, nějaké problémy?


-----------------
Připoj všechny USB, pamět. karty a podobně

Stáhni OTL
http://oldtimer.geekstogo.com/OTL.exe
-do spodního okénka vlož tento skript:

Kód: Vybrat vše

netsvcs
drivers32
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
c:\windows\*.* /U
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
ndis.sys
winlogon.exe
explorer.exe
userinit.exe
lsass.exe
svchost.exe
smss.exe
hal.dll
ws2_32.dll
/md5stop
%systemroot%\*. /mp /s
CREATERESTOREPOINT
%systemroot%\system32\*.dll /lockedfiles
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c


-dej fajfku do čtverečku u řádku Pro všechny uživatele
-nech ostatní položky jak je nastaveno na screenu
- potvrď tlačítko Prohledat.
-provede se sken, log OTL.Txt sem vlož






Vlož všechny USB klíče do pc
Stáhni na plochu http://riffman.ic.cz/files/UsbFix.exe[/b][/url]
- Před stažením vypni rezidentní štít antiviru, má na Usbfix falešnou detekci
-spusť
-klikni na volbu deletion , potvrď enter
- po skenu sem vlož log , pokud na Vás nevyskočí, najdi ho C:\UsbFix.txt

[lenkavlkova]

Logfile of random's system information tool 1.08 (written by random/random)
Run by Notebook at 2011-02-18 16:14:45
Microsoft Windows 7 Professional
System drive C: has 58 GB (58%) free of 100 GB
Total RAM: 3949 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:14:47, on 18.2.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16722)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\ASUS\Net4Switch\Net4Switch.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe
C:\Program Files (x86)\Common Files\Nokia\NoA\nokiaaserver.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\ICQ7.4\ICQ.exe
C:\Program Files (x86)\Opera\Opera.exe
C:\Program Files\trend micro\Notebook.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = my.daemon-search.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: Lišta Centrum.cz Toolbar - {D5D47440-0750-463D-BAEF-A47D02414806} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
O3 - Toolbar: Nero Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [MobileConnect] %programfiles%\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe /silent
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\/\KiesTrayAgent.exe
O4 - HKCU\..\Run: [NokiaOviSuite2] C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray
O4 - HKCU\..\Run: [ICQ] "C:\Program Files (x86)\ICQ7.4\ICQ.exe" silent loginmode=4
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: FancyStart daemon.lnk = ?
O4 - Global Startup: SRS Premium Sound.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: centrumcztoolbar - {61A97628-7C82-4315-957A-C74C2CDD85DF} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Device Error Recovery Service (dgdersvc) - Devguru Co., Ltd. - C:\Windows\system32\dgdersvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: Vodafone Mobile Connect Service (VMCService) - Vodafone - C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11461 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
atieclxx
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\system32\dgdersvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe"
taskeng.exe {3F5AAF9E-F909-468F-A0C2-5F308A5A39CE}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe"
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Program Files (x86)\ASUS\Net4Switch\Net4Switch.exe"
"C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe"
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\SysWOW64\ACEngSvr.exe" -Embedding
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe" -tray
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
"C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe"
"C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe"
"C:\Windows\AsScrPro.exe"
C:\Windows\system32\wbem\wmiprvse.exe
ATKOSD.exe
WDC.exe
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe" /f=srs_premium_sound_nopreset.zip
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe" /silent
"C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe" /watchfiles startup
"C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Common Files\Nokia\NoA\nokiaaserver.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Windows\system32\wuauclt.exe"
{1BC14E17-4EC5-4073-A49A-01AB33B5D2B2}
{2AA2D76B-DE40-4664-8B1E-F23D641E298D}
{CE88D097-0C3A-44DD-B536-7F73C86264FD}
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=4880.7887780.555383130 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll" 4880 plugin \\.\pipe\gecko-crash-server-pipe.4880
"C:\Program Files (x86)\ICQ7.4\ICQ.exe"
"C:\Program Files (x86)\Opera\Opera.exe" http://images.malwareremoval.com/random/RSITx64.exe
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-b64416a1-cbf8-43a4-b871-fd0eeb62f2f8 -SystemEventPortName:HostProcess-e4bac955-5488-4cc5-89f4-50a2198f80f2 -IoCancelEventPortName:HostProcess-c29be92f-55e6-44d7-8226-6a335f8fa6f7 -NonStateChangingEventPortName:HostProcess-f56a77a7-74aa-4ac3-b52c-88df75f1af6f -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:59409d37-cf3b-4425-9497-93451cd35142
"C:\Windows\system32\NOTEPAD.EXE" C:\rsit\log.txt
"C:\Windows\system32\NOTEPAD.EXE" C:\rsit\log.txt
"C:\Users\Notebook\Desktop\RSITx64.exe"

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A}]
CentrumczToolbar BHO - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll [2010-03-26 1286448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Nero Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll [2011-01-20 1581376]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll [2011-01-20 988480]
{D5D47440-0750-463D-BAEF-A47D02414806} - Lišta Centrum.cz Toolbar - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll [2010-03-26 1286448]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Nero Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SAIICpl.exe [2009-11-19 307768]
"ETDWare"=C:\Program Files\Elantech\ETDCtrl.exe [2010-01-13 635784]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\/\KiesTrayAgent.exe [2010-01-28 3404600]
""= []
"NokiaOviSuite2"=C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2011-01-31 703360]
"ICQ"=C:\Program Files (x86)\ICQ7.4\ICQ.exe [2011-02-18 119608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-12-03 35184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSMTray]
C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe [2009-06-24 272952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2011-02-15 3054136]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-01-22 98304]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-02-04 7350912]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-01-05 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"MobileConnect"=C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe /silent []
"NokiaMServer"=C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"NBAgent"=C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-03-26 1234216]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
FancyStart daemon.lnk - C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe
SRS Premium Sound.lnk - C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2011-02-18 16:02:44 ----D---- C:\rsit
2011-02-18 16:02:44 ----D---- C:\Program Files\trend micro
2011-02-18 15:54:54 ----D---- C:\Users\Notebook\AppData\Roaming\ICQ
2011-02-18 15:54:50 ----D---- C:\Program Files (x86)\ICQ7.4
2011-02-17 21:53:52 ----D---- C:\Users\Notebook\AppData\Roaming\Nero
2011-02-17 21:50:06 ----D---- C:\ProgramData\Nero
2011-02-17 21:49:32 ----D---- C:\Program Files (x86)\Nero
2011-02-17 21:44:59 ----D---- C:\Program Files (x86)\Ask.com
2011-02-17 20:31:06 ----D---- C:\Users\Notebook\AppData\Roaming\Canneverbe Limited
2011-02-17 20:30:51 ----D---- C:\ProgramData\Canneverbe Limited
2011-02-17 20:30:51 ----D---- C:\Program Files (x86)\CDBurnerXP
2011-02-17 17:48:44 ----D---- C:\Users\Notebook\AppData\Roaming\Ashampoo
2011-02-17 17:48:40 ----D---- C:\ProgramData\ashampoo
2011-02-17 17:48:37 ----D---- C:\ProgramData\page
2011-02-17 17:48:37 ----D---- C:\Program Files (x86)\Ashampoo
2011-02-17 15:16:55 ----D---- C:\Program Files (x86)\MSXML 4.0
2011-02-15 21:53:12 ----D---- C:\ProgramData\Synetic
2011-02-15 20:29:29 ----D---- C:\Users\Notebook\AppData\Roaming\Zoner
2011-02-15 20:29:01 ----D---- C:\Program Files (x86)\Zoner
2011-02-15 19:45:07 ----D---- C:\ProgramData\Nokia
2011-02-15 19:38:42 ----A---- C:\Windows\system32\nmwcdclsX64.dll
2011-02-15 19:37:45 ----D---- C:\ProgramData\NokiaInstallerCache
2011-02-15 19:37:45 ----D---- C:\Program Files (x86)\Nokia
2011-02-15 19:22:04 ----A---- C:\Windows\SYSWOW64\quartz.dll
2011-02-15 19:22:04 ----A---- C:\Windows\system32\quartz.dll
2011-02-15 19:22:03 ----A---- C:\Windows\SYSWOW64\tsbyuv.dll
2011-02-15 19:22:03 ----A---- C:\Windows\SYSWOW64\msyuv.dll
2011-02-15 19:22:03 ----A---- C:\Windows\SYSWOW64\msvidc32.dll
2011-02-15 19:22:03 ----A---- C:\Windows\SYSWOW64\msrle32.dll
2011-02-15 19:22:03 ----A---- C:\Windows\SYSWOW64\mciavi32.dll
2011-02-15 19:22:03 ----A---- C:\Windows\SYSWOW64\iyuv_32.dll
2011-02-15 19:22:03 ----A---- C:\Windows\SYSWOW64\avifil32.dll
2011-02-15 19:22:03 ----A---- C:\Windows\system32\tsbyuv.dll
2011-02-15 19:22:03 ----A---- C:\Windows\system32\msyuv.dll
2011-02-15 19:22:03 ----A---- C:\Windows\system32\msvidc32.dll
2011-02-15 19:22:03 ----A---- C:\Windows\system32\msrle32.dll
2011-02-15 19:22:03 ----A---- C:\Windows\system32\iyuv_32.dll
2011-02-15 16:30:28 ----D---- C:\ProgramData\Vodafone
2011-02-15 16:30:20 ----D---- C:\Program Files (x86)\Vodafone
2011-02-15 16:15:27 ----D---- C:\Users\Notebook\AppData\Roaming\PC Suite
2011-02-15 16:15:27 ----D---- C:\ProgramData\PC Suite
2011-02-15 16:06:17 ----D---- C:\Windows\system32\appmgmt
2011-02-15 14:25:57 ----D---- C:\Windows\SYSWOW64\Wat
2011-02-15 14:25:57 ----D---- C:\Windows\system32\Wat
2011-02-15 14:15:27 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2011-02-15 14:15:27 ----A---- C:\Windows\system32\msv1_0.dll
2011-02-15 14:08:39 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2011-02-15 14:08:39 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2011-02-15 14:08:39 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2011-02-15 14:08:39 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2011-02-15 14:08:39 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2011-02-15 14:08:39 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2011-02-15 14:08:39 ----A---- C:\Windows\system32\PresentationHost.exe
2011-02-15 14:08:39 ----A---- C:\Windows\system32\netfxperf.dll
2011-02-15 14:08:39 ----A---- C:\Windows\system32\mscoree.dll
2011-02-15 14:08:39 ----A---- C:\Windows\system32\dfshim.dll
2011-02-15 14:08:22 ----A---- C:\Windows\system32\browserchoice.exe
2011-02-15 14:02:44 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2011-02-15 14:02:44 ----A---- C:\Windows\system32\drivers\ks.sys
2011-02-15 13:59:08 ----D---- C:\Program Files (x86)\HWiNFO32
2011-02-15 13:52:57 ----D---- C:\Program Files (x86)\Electronic Arts
2011-02-15 13:52:56 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2011-02-15 13:52:56 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2011-02-15 13:52:55 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2011-02-15 13:52:55 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2011-02-15 13:52:55 ----A---- C:\Windows\system32\XAudio2_6.dll
2011-02-15 13:52:55 ----A---- C:\Windows\system32\xactengine3_6.dll
2011-02-15 13:52:54 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2011-02-15 13:52:54 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2011-02-15 13:52:53 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2011-02-15 13:52:53 ----A---- C:\Windows\system32\XAudio2_5.dll
2011-02-15 13:52:52 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2011-02-15 13:52:52 ----A---- C:\Windows\system32\xactengine3_5.dll
2011-02-15 13:52:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2011-02-15 13:52:51 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2011-02-15 13:52:50 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2011-02-15 13:52:50 ----A---- C:\Windows\system32\d3dcsx_42.dll
2011-02-15 13:52:49 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2011-02-15 13:52:49 ----A---- C:\Windows\system32\d3dx11_42.dll
2011-02-15 13:52:48 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2011-02-15 13:52:48 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2011-02-15 13:52:48 ----A---- C:\Windows\system32\D3DX9_42.dll
2011-02-15 13:52:48 ----A---- C:\Windows\system32\d3dx10_42.dll
2011-02-15 13:52:43 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2011-02-15 13:52:43 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2011-02-15 13:52:37 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2011-02-15 13:52:37 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2011-02-15 13:52:37 ----A---- C:\Windows\system32\XAudio2_3.dll
2011-02-15 13:52:37 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2011-02-15 13:52:36 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2011-02-15 13:52:36 ----A---- C:\Windows\system32\xactengine3_3.dll
2011-02-15 13:52:35 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2011-02-15 13:52:35 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2011-02-15 13:52:33 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2011-02-15 13:52:33 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2011-02-15 13:52:33 ----A---- C:\Windows\system32\XAudio2_2.dll
2011-02-15 13:52:33 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2011-02-15 13:52:32 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2011-02-15 13:52:32 ----A---- C:\Windows\system32\xactengine3_2.dll
2011-02-15 13:50:26 ----D---- C:\ProgramData\Solidshield
2011-02-15 13:45:37 ----D---- C:\Program Files (x86)\7-Zip
2011-02-15 13:18:00 ----A---- C:\Windows\system32\drivers\ss_bwhnt.sys
2011-02-15 13:18:00 ----A---- C:\Windows\system32\drivers\ss_bwh.sys
2011-02-15 13:18:00 ----A---- C:\Windows\system32\drivers\ss_bserd.sys
2011-02-15 13:18:00 ----A---- C:\Windows\system32\drivers\ss_bmdm.sys
2011-02-15 13:18:00 ----A---- C:\Windows\system32\drivers\ss_bmdfl.sys
2011-02-15 13:18:00 ----A---- C:\Windows\system32\drivers\ss_bcmnt.sys
2011-02-15 13:18:00 ----A---- C:\Windows\system32\drivers\ss_bcm.sys
2011-02-15 13:18:00 ----A---- C:\Windows\system32\drivers\ss_bbus.sys
2011-02-15 13:17:14 ----D---- C:\Program Files\SAMSUNG
2011-02-15 13:16:53 ----D---- C:\Program Files\DIFX
2011-02-15 13:16:52 ----A---- C:\Windows\system32\drivers\pccsmcfdx64.sys
2011-02-15 13:16:49 ----DC---- C:\Windows\system32\DRVSTORE
2011-02-15 13:16:36 ----A---- C:\Windows\SYSWOW64\FsExService64.Exe
2011-02-15 13:16:36 ----A---- C:\Windows\SYSWOW64\drivers\TFsExDisk.Sys
2011-02-15 13:16:36 ----A---- C:\Windows\system32\drivers\TFsExDisk.sys
2011-02-15 13:15:16 ----D---- C:\Program Files (x86)\PC Connectivity Solution
2011-02-15 13:14:18 ----D---- C:\Users\Notebook\AppData\Roaming\Samsung
2011-02-15 13:14:16 ----D---- C:\Users\Notebook\AppData\Roaming\FLEXnet
2011-02-15 13:13:48 ----D---- C:\Program Files (x86)\MarkAny
2011-02-15 13:13:46 ----D---- C:\ProgramData\Samsung
2011-02-15 13:13:39 ----D---- C:\Program Files (x86)\Samsung
2011-02-15 13:08:56 ----D---- C:\Users\Notebook\AppData\Roaming\Vodafone
2011-02-15 13:08:04 ----A---- C:\Windows\system32\drivers\ewusbnet.sys
2011-02-15 13:08:02 ----A---- C:\Windows\system32\drivers\ewusbmdm.sys
2011-02-15 13:08:00 ----A---- C:\Windows\system32\drivers\ewusbfake.sys
2011-02-15 13:07:20 ----D---- C:\ProgramData\FLEXnet
2011-02-15 12:56:05 ----D---- C:\Program Files (x86)\Microsoft Works
2011-02-15 12:55:49 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2011-02-15 12:55:26 ----D---- C:\Windows\PCHEALTH
2011-02-15 12:55:26 ----D---- C:\Program Files (x86)\Microsoft.NET
2011-02-15 12:51:18 ----D---- C:\Program Files\Microsoft Office
2011-02-15 12:51:11 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2011-02-15 12:50:32 ----D---- C:\Program Files (x86)\Microsoft Office
2011-02-15 12:50:31 ----D---- C:\ProgramData\Microsoft Help
2011-02-15 12:50:00 ----RHD---- C:\MSOCache
2011-02-15 12:34:47 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2011-02-15 12:34:47 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2011-02-15 12:34:47 ----A---- C:\Windows\system32\d3dx10_41.dll
2011-02-15 12:34:47 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2011-02-15 12:34:46 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2011-02-15 12:34:46 ----A---- C:\Windows\system32\D3DX9_41.dll
2011-02-15 12:34:44 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2011-02-15 12:34:44 ----A---- C:\Windows\system32\XAudio2_4.dll
2011-02-15 12:34:43 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2011-02-15 12:34:43 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2011-02-15 12:34:43 ----A---- C:\Windows\system32\xactengine3_4.dll
2011-02-15 12:34:43 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2011-02-15 12:34:42 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2011-02-15 12:34:42 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2011-02-15 12:34:42 ----A---- C:\Windows\system32\d3dx10_40.dll
2011-02-15 12:34:42 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2011-02-15 12:34:41 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2011-02-15 12:34:41 ----A---- C:\Windows\system32\D3DX9_40.dll
2011-02-15 12:34:35 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2011-02-15 12:34:35 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2011-02-15 12:34:35 ----A---- C:\Windows\system32\d3dx10_39.dll
2011-02-15 12:34:35 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2011-02-15 12:34:34 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2011-02-15 12:34:34 ----A---- C:\Windows\system32\D3DX9_39.dll
2011-02-15 12:34:32 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2011-02-15 12:34:32 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2011-02-15 12:34:32 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2011-02-15 12:34:32 ----A---- C:\Windows\system32\XAudio2_1.dll
2011-02-15 12:34:32 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2011-02-15 12:34:32 ----A---- C:\Windows\system32\xactengine3_1.dll
2011-02-15 12:34:31 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2011-02-15 12:34:31 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2011-02-15 12:34:30 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2011-02-15 12:34:30 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2011-02-15 12:34:30 ----A---- C:\Windows\system32\d3dx10_38.dll
2011-02-15 12:34:30 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2011-02-15 12:34:29 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2011-02-15 12:34:29 ----A---- C:\Windows\system32\D3DX9_38.dll

[lenkavlkova]

2011-02-15 12:34:28 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2011-02-15 12:34:28 ----A---- C:\Windows\system32\XAudio2_0.dll
2011-02-15 12:34:27 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2011-02-15 12:34:27 ----A---- C:\Windows\system32\xactengine3_0.dll
2011-02-15 12:34:26 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2011-02-15 12:34:26 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2011-02-15 12:34:26 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2011-02-15 12:34:26 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2011-02-15 12:34:26 ----A---- C:\Windows\system32\d3dx10_37.dll
2011-02-15 12:34:26 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2011-02-15 12:34:24 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2011-02-15 12:34:24 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2011-02-15 12:34:24 ----A---- C:\Windows\system32\xactengine2_10.dll
2011-02-15 12:34:24 ----A---- C:\Windows\system32\D3DX9_37.dll
2011-02-15 12:34:22 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2011-02-15 12:34:22 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2011-02-15 12:34:22 ----A---- C:\Windows\system32\d3dx10_36.dll
2011-02-15 12:34:22 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2011-02-15 12:34:21 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2011-02-15 12:34:21 ----A---- C:\Windows\system32\d3dx9_36.dll
2011-02-15 12:34:19 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2011-02-15 12:34:19 ----A---- C:\Windows\system32\xactengine2_9.dll
2011-02-15 12:34:18 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2011-02-15 12:34:18 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2011-02-15 12:34:18 ----A---- C:\Windows\system32\d3dx10_35.dll
2011-02-15 12:34:18 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2011-02-15 12:34:17 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2011-02-15 12:34:17 ----A---- C:\Windows\system32\d3dx9_35.dll
2011-02-15 12:34:16 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2011-02-15 12:34:16 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2011-02-15 12:34:16 ----A---- C:\Windows\system32\xactengine2_8.dll
2011-02-15 12:34:16 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2011-02-15 12:34:15 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2011-02-15 12:34:15 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2011-02-15 12:34:15 ----A---- C:\Windows\system32\d3dx10_34.dll
2011-02-15 12:34:15 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2011-02-15 12:34:14 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2011-02-15 12:34:14 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2011-02-15 12:34:14 ----A---- C:\Windows\system32\xinput1_3.dll
2011-02-15 12:34:14 ----A---- C:\Windows\system32\d3dx9_34.dll
2011-02-15 12:34:13 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2011-02-15 12:34:13 ----A---- C:\Windows\system32\xactengine2_7.dll
2011-02-15 12:34:12 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2011-02-15 12:34:12 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2011-02-15 12:34:12 ----A---- C:\Windows\system32\d3dx10_33.dll
2011-02-15 12:34:12 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2011-02-15 12:34:11 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2011-02-15 12:34:11 ----A---- C:\Windows\system32\d3dx9_33.dll
2011-02-15 12:34:10 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2011-02-15 12:34:10 ----A---- C:\Windows\system32\xactengine2_6.dll
2011-02-15 12:34:08 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2011-02-15 12:34:08 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2011-02-15 12:34:08 ----A---- C:\Windows\system32\xactengine2_5.dll
2011-02-15 12:34:08 ----A---- C:\Windows\system32\d3dx10.dll
2011-02-15 12:34:07 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2011-02-15 12:34:07 ----A---- C:\Windows\system32\d3dx9_32.dll
2011-02-15 12:34:06 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2011-02-15 12:34:06 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2011-02-15 12:34:06 ----A---- C:\Windows\system32\xactengine2_4.dll
2011-02-15 12:34:06 ----A---- C:\Windows\system32\x3daudio1_1.dll
2011-02-15 12:34:05 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2011-02-15 12:34:05 ----A---- C:\Windows\system32\d3dx9_31.dll
2011-02-15 12:34:04 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2011-02-15 12:34:04 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2011-02-15 12:34:04 ----A---- C:\Windows\system32\xinput1_2.dll
2011-02-15 12:34:04 ----A---- C:\Windows\system32\xactengine2_3.dll
2011-02-15 12:34:03 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2011-02-15 12:34:03 ----A---- C:\Windows\system32\xactengine2_2.dll
2011-02-15 12:34:02 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2011-02-15 12:34:02 ----A---- C:\Windows\system32\xinput1_1.dll
2011-02-15 12:34:01 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2011-02-15 12:34:01 ----A---- C:\Windows\system32\xactengine2_1.dll
2011-02-15 12:33:54 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2011-02-15 12:33:54 ----A---- C:\Windows\system32\d3dx9_30.dll
2011-02-15 12:33:53 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2011-02-15 12:33:53 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2011-02-15 12:33:53 ----A---- C:\Windows\system32\xactengine2_0.dll
2011-02-15 12:33:53 ----A---- C:\Windows\system32\x3daudio1_0.dll
2011-02-15 12:33:52 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2011-02-15 12:33:52 ----A---- C:\Windows\system32\d3dx9_29.dll
2011-02-15 12:33:51 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2011-02-15 12:33:51 ----A---- C:\Windows\system32\d3dx9_28.dll
2011-02-15 12:33:50 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2011-02-15 12:33:50 ----A---- C:\Windows\system32\d3dx9_27.dll
2011-02-15 12:33:49 ----D---- C:\Program Files\CCleaner
2011-02-15 12:33:49 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2011-02-15 12:33:49 ----A---- C:\Windows\system32\d3dx9_26.dll
2011-02-15 12:33:48 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2011-02-15 12:33:48 ----A---- C:\Windows\system32\d3dx9_25.dll
2011-02-15 12:33:46 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2011-02-15 12:33:46 ----A---- C:\Windows\system32\d3dx9_24.dll
2011-02-15 12:31:58 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-02-15 12:31:52 ----D---- C:\ProgramData\CentrumczToolbar
2011-02-15 12:31:50 ----D---- C:\Program Files (x86)\CentrumczToolbar
2011-02-15 12:30:21 ----D---- C:\Users\Notebook\AppData\Roaming\Talkback
2011-02-15 12:30:19 ----A---- C:\Windows\MozillaUninstall.exe
2011-02-15 12:30:09 ----A---- C:\Windows\GREUninstall.exe
2011-02-15 12:30:05 ----D---- C:\Users\Notebook\AppData\Roaming\Mozilla
2011-02-15 12:29:58 ----D---- C:\Program Files (x86)\mozilla.org
2011-02-15 12:29:41 ----D---- C:\Program Files (x86)\City Interactive
2011-02-15 12:26:46 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2011-02-15 12:26:38 ----D---- C:\Program Files (x86)\DAEMON Tools Toolbar
2011-02-15 12:26:35 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2011-02-15 12:26:19 ----D---- C:\Users\Notebook\AppData\Roaming\DAEMON Tools Lite
2011-02-15 12:26:19 ----D---- C:\ProgramData\DAEMON Tools Lite
2011-02-15 11:33:35 ----D---- C:\Windows\system32\log
2011-02-15 11:26:23 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2011-02-15 11:26:23 ----A---- C:\Windows\system32\mshtml.dll
2011-02-15 11:26:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2011-02-15 11:26:19 ----A---- C:\Windows\system32\iertutil.dll
2011-02-15 11:26:18 ----A---- C:\Windows\SYSWOW64\mstime.dll
2011-02-15 11:26:18 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2011-02-15 11:26:18 ----A---- C:\Windows\system32\mstime.dll
2011-02-15 11:26:18 ----A---- C:\Windows\system32\msfeeds.dll
2011-02-15 11:26:17 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2011-02-15 11:26:17 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2011-02-15 11:26:17 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2011-02-15 11:26:17 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2011-02-15 11:26:17 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2011-02-15 11:26:17 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2011-02-15 11:26:17 ----A---- C:\Windows\system32\mshtmled.dll
2011-02-15 11:26:17 ----A---- C:\Windows\system32\msfeedssync.exe
2011-02-15 11:26:17 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-02-15 11:26:17 ----A---- C:\Windows\system32\licmgr10.dll
2011-02-15 11:26:17 ----A---- C:\Windows\system32\iepeers.dll
2011-02-15 11:26:17 ----A---- C:\Windows\system32\iedkcs32.dll
2011-02-15 11:24:59 ----A---- C:\Windows\system32\kerberos.dll
2011-02-15 11:24:58 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2011-02-15 11:24:57 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2011-02-15 11:24:57 ----A---- C:\Windows\system32\asycfilt.dll
2011-02-15 11:24:56 ----A---- C:\Windows\SYSWOW64\tzres.dll
2011-02-15 11:24:56 ----A---- C:\Windows\system32\tzres.dll
2011-02-15 11:24:33 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2011-02-15 11:24:33 ----A---- C:\Windows\system32\t2embed.dll
2011-02-15 11:24:28 ----A---- C:\Windows\SYSWOW64\ole32.dll
2011-02-15 11:24:28 ----A---- C:\Windows\system32\ole32.dll
2011-02-15 11:24:21 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2011-02-15 11:24:21 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2011-02-15 11:24:21 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2011-02-15 11:24:21 ----A---- C:\Windows\SYSWOW64\schtasks.exe
2011-02-15 11:24:21 ----A---- C:\Windows\system32\wmicmiplugin.dll
2011-02-15 11:24:21 ----A---- C:\Windows\system32\taskschd.dll
2011-02-15 11:24:21 ----A---- C:\Windows\system32\taskeng.exe
2011-02-15 11:24:21 ----A---- C:\Windows\system32\taskcomp.dll
2011-02-15 11:24:21 ----A---- C:\Windows\system32\schtasks.exe
2011-02-15 11:24:21 ----A---- C:\Windows\system32\schedsvc.dll
2011-02-15 11:23:50 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2011-02-15 11:23:50 ----A---- C:\Windows\system32\StructuredQuery.dll
2011-02-15 11:23:47 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2011-02-15 11:23:47 ----A---- C:\Windows\system32\CertEnroll.dll
2011-02-15 11:23:04 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2011-02-15 11:23:04 ----A---- C:\Windows\SYSWOW64\secproc.dll
2011-02-15 11:23:04 ----A---- C:\Windows\system32\secproc_isv.dll
2011-02-15 11:23:04 ----A---- C:\Windows\system32\secproc.dll
2011-02-15 11:23:04 ----A---- C:\Windows\system32\RMActivate_isv.exe
2011-02-15 11:23:03 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2011-02-15 11:23:03 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2011-02-15 11:23:03 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2011-02-15 11:23:03 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2011-02-15 11:23:03 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2011-02-15 11:23:03 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2011-02-15 11:23:03 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2011-02-15 11:23:03 ----A---- C:\Windows\system32\secproc_ssp.dll
2011-02-15 11:23:03 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2011-02-15 11:23:03 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2011-02-15 11:23:03 ----A---- C:\Windows\system32\RMActivate.exe
2011-02-15 11:22:50 ----A---- C:\Windows\system32\win32k.sys
2011-02-15 11:22:25 ----A---- C:\Windows\system32\shell32.dll
2011-02-15 11:22:24 ----A---- C:\Windows\SYSWOW64\shell32.dll
2011-02-15 11:22:19 ----A---- C:\Windows\system32\inetcomm.dll
2011-02-15 11:22:18 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2011-02-15 11:22:17 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2011-02-15 11:22:17 ----A---- C:\Windows\system32\CPFilters.dll
2011-02-15 11:22:16 ----A---- C:\Windows\system32\msdri.dll
2011-02-15 11:22:15 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2011-02-15 11:22:15 ----A---- C:\Windows\system32\psisdecd.dll
2011-02-15 11:21:50 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-02-15 11:21:43 ----A---- C:\Windows\SYSWOW64\schannel.dll
2011-02-15 11:21:43 ----A---- C:\Windows\system32\schannel.dll
2011-02-15 11:21:40 ----A---- C:\Windows\system32\comctl32.dll
2011-02-15 11:21:39 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2011-02-15 11:21:38 ----A---- C:\Windows\system32\ieframe.dll
2011-02-15 11:21:37 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2011-02-15 11:21:37 ----A---- C:\Windows\system32\msxml6.dll
2011-02-15 11:21:36 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2011-02-15 11:21:36 ----A---- C:\Windows\SYSWOW64\upnp.dll
2011-02-15 11:21:36 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2011-02-15 11:21:36 ----A---- C:\Windows\system32\wininet.dll
2011-02-15 11:21:36 ----A---- C:\Windows\system32\winhttp.dll
2011-02-15 11:21:36 ----A---- C:\Windows\system32\urlmon.dll
2011-02-15 11:21:36 ----A---- C:\Windows\system32\upnp.dll
2011-02-15 11:21:36 ----A---- C:\Windows\system32\msxml3.dll
2011-02-15 11:21:35 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2011-02-15 11:21:35 ----A---- C:\Windows\SYSWOW64\wininet.dll
2011-02-15 11:21:35 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2011-02-15 11:21:35 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2011-02-15 11:21:35 ----A---- C:\Windows\SYSWOW64\slwga.dll
2011-02-15 11:21:35 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2011-02-15 11:21:35 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2011-02-15 11:21:35 ----A---- C:\Windows\SYSWOW64\ieui.dll
2011-02-15 11:21:35 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2011-02-15 11:21:35 ----A---- C:\Windows\system32\wscsvc.dll
2011-02-15 11:21:35 ----A---- C:\Windows\system32\wscapi.dll
2011-02-15 11:21:35 ----A---- C:\Windows\system32\WebClnt.dll
2011-02-15 11:21:35 ----A---- C:\Windows\system32\slwga.dll
2011-02-15 11:21:35 ----A---- C:\Windows\system32\jsproxy.dll
2011-02-15 11:21:35 ----A---- C:\Windows\system32\ieui.dll
2011-02-15 11:21:35 ----A---- C:\Windows\system32\davclnt.dll
2011-02-15 11:21:20 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2011-02-15 11:21:20 ----A---- C:\Windows\system32\oleaut32.dll
2011-02-15 11:21:18 ----A---- C:\Windows\SYSWOW64\explorer.exe
2011-02-15 11:21:18 ----A---- C:\Windows\explorer.exe
2011-02-15 11:21:17 ----A---- C:\Windows\system32\winlogon.exe
2011-02-15 11:21:09 ----A---- C:\Windows\SYSWOW64\wow32.dll
2011-02-15 11:21:09 ----A---- C:\Windows\SYSWOW64\user.exe
2011-02-15 11:21:09 ----A---- C:\Windows\SYSWOW64\setup16.exe
2011-02-15 11:21:09 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2011-02-15 11:21:09 ----A---- C:\Windows\SYSWOW64\instnm.exe
2011-02-15 11:21:09 ----A---- C:\Windows\system32\wow64.dll
2011-02-15 11:21:06 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2011-02-15 11:21:06 ----A---- C:\Windows\system32\rtutils.dll
2011-02-15 11:20:48 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2011-02-15 11:20:48 ----A---- C:\Windows\SYSWOW64\jscript.dll
2011-02-15 11:20:48 ----A---- C:\Windows\system32\vbscript.dll
2011-02-15 11:20:48 ----A---- C:\Windows\system32\jscript.dll
2011-02-15 11:20:43 ----A---- C:\Windows\system32\winsrv.dll
2011-02-15 11:20:42 ----A---- C:\Windows\system32\spoolsv.exe
2011-02-15 11:20:41 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2011-02-15 11:20:41 ----A---- C:\Windows\system32\d3d10warp.dll
2011-02-15 11:20:41 ----A---- C:\Windows\system32\d2d1.dll
2011-02-15 11:20:40 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2011-02-15 11:20:40 ----A---- C:\Windows\system32\WMVDECOD.DLL
2011-02-15 11:20:40 ----A---- C:\Windows\system32\mf.dll
2011-02-15 11:20:40 ----A---- C:\Windows\system32\DWrite.dll
2011-02-15 11:20:39 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2011-02-15 11:20:39 ----A---- C:\Windows\SYSWOW64\mf.dll
2011-02-15 11:20:39 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2011-02-15 11:20:39 ----A---- C:\Windows\system32\XpsPrint.dll
2011-02-15 11:20:39 ----A---- C:\Windows\system32\FntCache.dll
2011-02-15 11:20:38 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2011-02-15 11:20:38 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2011-02-15 11:20:38 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-02-15 11:20:38 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-02-15 11:20:38 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-02-15 11:20:38 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-02-15 11:20:37 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2011-02-15 11:20:37 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2011-02-15 11:20:37 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2011-02-15 11:20:37 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2011-02-15 11:20:37 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2011-02-15 11:20:37 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-02-15 11:20:37 ----A---- C:\Windows\system32\mfreadwrite.dll
2011-02-15 11:20:37 ----A---- C:\Windows\system32\mfps.dll
2011-02-15 11:20:37 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2011-02-15 11:20:37 ----A---- C:\Windows\system32\d3d10_1.dll
2011-02-15 11:20:37 ----A---- C:\Windows\system32\cdd.dll
2011-02-15 11:20:07 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-02-15 11:20:06 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-02-15 11:20:06 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-02-15 11:20:00 ----A---- C:\Windows\system32\drivers\fvevol.sys
2011-02-15 11:19:59 ----A---- C:\Windows\SYSWOW64\webio.dll
2011-02-15 11:19:59 ----A---- C:\Windows\SYSWOW64\iccvid.dll
2011-02-15 11:19:59 ----A---- C:\Windows\system32\webio.dll
2011-02-15 11:19:52 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2011-02-15 11:19:52 ----A---- C:\Windows\system32\wmpmde.dll
2011-02-15 11:13:08 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-02-15 11:13:07 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2011-02-15 11:13:07 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2011-02-15 11:13:07 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2011-02-15 11:13:07 ----A---- C:\Windows\system32\ntdll.dll
2011-02-15 11:12:52 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2011-02-15 11:12:52 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2011-02-15 11:12:52 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2011-02-15 11:12:52 ----A---- C:\Windows\system32\fontsub.dll
2011-02-15 11:12:52 ----A---- C:\Windows\system32\atmlib.dll
2011-02-15 11:12:52 ----A---- C:\Windows\system32\atmfd.dll
2011-02-15 11:12:41 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-02-15 11:12:38 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2011-02-15 11:12:38 ----A---- C:\Windows\SYSWOW64\secur32.dll
2011-02-15 11:12:38 ----A---- C:\Windows\system32\lsasrv.dll
2011-02-15 11:12:38 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2011-02-15 11:12:19 ----A---- C:\Windows\SYSWOW64\mfc40u.dll
2011-02-15 11:12:19 ----A---- C:\Windows\SYSWOW64\mfc40.dll
2011-02-15 11:12:10 ----A---- C:\Windows\SYSWOW64\msasn1.dll
2011-02-15 11:12:10 ----A---- C:\Windows\system32\msasn1.dll
2011-02-15 11:12:09 ----A---- C:\Windows\system32\wmp.dll
2011-02-15 11:12:08 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2011-02-15 11:12:08 ----A---- C:\Windows\SYSWOW64\wmp.dll
2011-02-15 11:12:07 ----A---- C:\Windows\system32\wmploc.DLL
2011-02-15 11:11:53 ----A---- C:\Windows\system32\consent.exe
2011-02-15 11:11:51 ----A---- C:\Windows\SYSWOW64\odbc32.dll
2011-02-15 11:11:51 ----A---- C:\Windows\system32\odbc32.dll
2011-02-15 11:11:29 ----A---- C:\Windows\SYSWOW64\sscore.dll
2011-02-15 11:11:29 ----A---- C:\Windows\system32\srvsvc.dll
2011-02-15 11:11:29 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-02-15 11:11:29 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-02-15 11:11:29 ----A---- C:\Windows\system32\drivers\srv.sys
2011-02-15 11:09:41 ----D---- C:\ProgramData\Adobe
2011-02-15 11:09:21 ----D---- C:\Program Files (x86)\Adobe
2011-02-15 11:09:11 ----D---- C:\Windows\SYSWOW64\K_Series_ScreenSaver_EN dir
2011-02-15 11:08:41 ----A---- C:\Windows\AsScrPro.exe
2011-02-15 11:08:32 ----D---- C:\ProgramData\ASUS
2011-02-15 11:07:47 ----A---- C:\Windows\system32\drivers\AsDsm.sys
2011-02-15 11:05:51 ----D---- C:\eSupport
2011-02-15 11:05:49 ----A---- C:\Windows\system32\drivers\lullaby.sys
2011-02-15 11:05:30 ----A---- C:\Windows\SYSWOW64\LogonStart.dll
2011-02-15 11:05:21 ----HD---- C:\ASUS.DAT
2011-02-15 11:04:55 ----A---- C:\Windows\SYSWOW64\ACEngSvr.exe
2011-02-15 11:04:38 ----A---- C:\Windows\system32\ServiceFilter.ini
2011-02-15 11:04:38 ----A---- C:\Windows\system32\RemoveFont.ini
2011-02-15 11:04:38 ----A---- C:\Windows\system32\FBAgent.exe
2011-02-15 11:04:38 ----A---- C:\Windows\system32\FastBoot.ini
2011-02-15 11:04:38 ----A---- C:\Windows\system32\Defrag.ini
2011-02-15 11:04:38 ----A---- C:\Windows\system32\BootTime.ini
2011-02-15 11:04:38 ----A---- C:\Windows\system32\AutoRunFilter.ini
2011-02-15 11:04:37 ----D---- C:\Program Files\ASUS
2011-02-15 11:02:56 ----D---- C:\ProgramData\P4G
2011-02-15 11:02:56 ----D---- C:\Program Files\P4G
2011-02-15 11:01:26 ----D---- C:\Program Files (x86)\ASUS
2011-02-15 11:01:20 ----A---- C:\Windows\system32\drivers\kbfiltr.sys
2011-02-15 11:01:09 ----A---- C:\Windows\SYSWOW64\vsnp2uvc.dll
2011-02-15 11:01:09 ----A---- C:\Windows\system32\vsnp2uvc.dll
2011-02-15 11:01:09 ----A---- C:\Windows\system32\drivers\snp2uvc.sys
2011-02-15 11:01:09 ----A---- C:\Windows\system32\drivers\sncduvc.sys
2011-02-15 11:01:09 ----A---- C:\Windows\system32\csnp2uvc.dll
2011-02-15 11:01:09 ----A---- C:\Windows\snuninst.exe
2011-02-15 11:01:09 ----A---- C:\Windows\snp2uvc.ini
2011-02-15 11:00:16 ----A---- C:\Windows\system32\drivers\btwrchid.sys
2011-02-15 11:00:16 ----A---- C:\Windows\system32\drivers\btwl2cap.sys
2011-02-15 11:00:16 ----A---- C:\Windows\system32\drivers\btwavdt.sys
2011-02-15 11:00:16 ----A---- C:\Windows\system32\drivers\btwaudio.sys
2011-02-15 11:00:06 ----D---- C:\Program Files\WIDCOMM
2011-02-15 10:58:58 ----D---- C:\Program Files\Elantech
2011-02-15 10:58:57 ----A---- C:\Windows\system32\drivers\ETD.sys
2011-02-15 10:58:45 ----A---- C:\Windows\system32\jmcricon.dll
2011-02-15 10:58:45 ----A---- C:\Windows\system32\drivers\jmcr.sys
2011-02-15 10:58:39 ----D---- C:\Program Files (x86)\JMicron
2011-02-15 10:58:37 ----A---- C:\Windows\system32\drivers\JME.sys
2011-02-15 10:58:19 ----D---- C:\Program Files\SRS Labs
2011-02-15 10:57:14 ----D---- C:\Windows\system32\SRSLabs
2011-02-15 10:57:14 ----D---- C:\Program Files\CONEXANT
2011-02-15 10:57:12 ----A---- C:\Windows\system32\UCI64A48.dll
2011-02-15 10:57:12 ----A---- C:\Windows\system32\drivers\CHDRT64.sys
2011-02-15 10:57:12 ----A---- C:\Windows\system32\CX64OP19.dll
2011-02-15 10:55:39 ----D---- C:\Users\Notebook\AppData\Roaming\ATI
2011-02-15 10:55:39 ----D---- C:\ProgramData\ATI
2011-02-15 10:54:53 ----D---- C:\Program Files\Common Files\ATI Technologies
2011-02-15 10:54:48 ----A---- C:\Windows\system32\drivers\AtiHdmi.sys
2011-02-15 10:54:34 ----A---- C:\Windows\system32\coinst.dll
2011-02-15 10:54:34 ----A---- C:\Windows\system32\ATIDEMGX.dll
2011-02-15 10:54:24 ----D---- C:\Program Files\ATI
2011-02-15 10:54:21 ----D---- C:\Program Files (x86)\ATI Technologies
2011-02-15 10:54:09 ----SHD---- C:\Windows\Installer
2011-02-15 10:51:02 ----A---- C:\Windows\SYSWOW64\log.txt
2011-02-15 10:50:42 ----A---- C:\Windows\system32\drivers\HECIx64.sys
2011-02-15 10:50:41 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-02-15 10:50:40 ----D---- C:\Users\Notebook\AppData\Roaming\InstallShield
2011-02-15 10:47:50 ----RA---- C:\Windows\SYSWOW64\CSVer.dll
2011-02-15 10:47:50 ----D---- C:\Program Files (x86)\Intel
2011-02-15 10:47:33 ----D---- C:\Intel
2011-02-14 21:59:04 ----D---- C:\Program Files (x86)\ESET
2011-02-14 21:44:19 ----D---- C:\Users\Notebook\AppData\Roaming\Opera
2011-02-14 21:44:17 ----D---- C:\Program Files (x86)\Opera
2011-02-14 21:18:53 ----D---- C:\Users\Notebook\AppData\Roaming\Macromedia
2011-02-14 21:18:53 ----D---- C:\Users\Notebook\AppData\Roaming\Adobe
2011-02-14 21:18:51 ----D---- C:\Windows\SYSWOW64\Macromed
2011-02-14 21:00:16 ----N---- C:\Windows\system32\MpSigStub.exe
2011-02-14 20:46:18 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2011-02-14 20:46:18 ----A---- C:\Windows\SYSWOW64\cabview.dll
2011-02-14 20:46:18 ----A---- C:\Windows\system32\wintrust.dll
2011-02-14 20:46:18 ----A---- C:\Windows\system32\cabview.dll
2011-02-14 20:41:14 ----D---- C:\Users\Notebook\AppData\Roaming\Identities
2011-02-14 20:40:13 ----SD---- C:\Users\Notebook\AppData\Roaming\Microsoft
2011-02-14 20:40:13 ----D---- C:\Users\Notebook\AppData\Roaming\Media Center Programs
2011-02-14 20:39:39 ----SHD---- C:\Recovery
2011-02-14 20:39:39 ----SHD---- C:\ProgramData\Šablony
2011-02-14 20:39:39 ----SHD---- C:\ProgramData\Plocha
2011-02-14 20:39:39 ----SHD---- C:\ProgramData\Oblíbené položky
2011-02-14 20:39:39 ----SHD---- C:\ProgramData\Nabídka Start
2011-02-14 20:39:39 ----SHD---- C:\ProgramData\Dokumenty
2011-02-14 20:39:39 ----SHD---- C:\ProgramData\Data aplikací
2011-02-14 20:39:35 ----D---- C:\Windows\SoftwareDistribution
2011-02-14 20:34:04 ----D---- C:\Windows\Prefetch
2011-02-14 20:33:47 ----ASH---- C:\pagefile.sys
2011-02-14 20:33:44 ----SHD---- C:\System Volume Information
2011-02-14 20:33:44 ----ASH---- C:\hiberfil.sys
2011-02-14 20:33:14 ----D---- C:\Windows\Panther

======List of files/folders modified in the last 3 months======

2011-02-18 16:05:22 ----D---- C:\Windows\System32
2011-02-18 16:05:22 ----D---- C:\Windows\inf
2011-02-18 16:05:22 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-02-18 16:02:44 ----RD---- C:\Program Files
2011-02-18 15:54:50 ----RD---- C:\Program Files (x86)
2011-02-18 12:55:49 ----D---- C:\Windows\system32\config
2011-02-18 12:55:18 ----D---- C:\Windows\Temp
2011-02-18 10:09:04 ----D---- C:\Windows\system32\Tasks
2011-02-17 21:50:09 ----D---- C:\Windows\SysWOW64
2011-02-17 21:50:06 ----HD---- C:\ProgramData
2011-02-17 21:49:38 ----D---- C:\Program Files (x86)\Common Files
2011-02-17 21:44:46 ----RSD---- C:\Windows\assembly
2011-02-17 21:44:21 ----D---- C:\Windows\winsxs
2011-02-17 18:30:11 ----D---- C:\Windows\Microsoft.NET
2011-02-17 16:23:18 ----D---- C:\Windows\system32\wdi
2011-02-17 15:17:01 ----D---- C:\Windows
2011-02-16 07:48:10 ----D---- C:\Windows\SYSWOW64\cs-CZ
2011-02-16 07:48:10 ----D---- C:\Windows\system32\cs-CZ
2011-02-16 07:45:05 ----D---- C:\Windows\SYSWOW64\en-US
2011-02-16 07:45:05 ----D---- C:\Windows\system32\en-US
2011-02-15 22:40:45 ----D---- C:\Windows\system32\catroot
2011-02-15 20:47:28 ----D---- C:\Windows\system32\drivers
2011-02-15 19:39:21 ----D---- C:\Windows\system32\DriverStore
2011-02-15 19:38:53 ----D---- C:\Windows\system32\catroot2
2011-02-15 16:16:39 ----D---- C:\Windows\system32\drivers\UMDF
2011-02-15 15:36:24 ----D---- C:\Windows\system32\drivers\etc
2011-02-15 14:26:12 ----D---- C:\Program Files\Internet Explorer
2011-02-15 14:26:12 ----D---- C:\Program Files (x86)\Internet Explorer
2011-02-15 14:26:06 ----D---- C:\Program Files\Windows Mail
2011-02-15 14:26:06 ----D---- C:\Program Files (x86)\Windows Mail
2011-02-15 14:26:05 ----D---- C:\Windows\ehome
2011-02-15 14:26:04 ----D---- C:\Windows\SYSWOW64\migration
2011-02-15 14:26:03 ----D---- C:\Windows\system32\migration
2011-02-15 14:26:02 ----D---- C:\Windows\AppPatch
2011-02-15 14:25:53 ----D---- C:\Program Files\Windows Media Player
2011-02-15 14:25:53 ----D---- C:\Program Files (x86)\Windows Media Player
2011-02-15 13:16:36 ----D---- C:\Windows\SYSWOW64\drivers
2011-02-15 12:56:00 ----D---- C:\Program Files (x86)\MSBuild
2011-02-15 12:55:47 ----D---- C:\Windows\ShellNew
2011-02-15 12:55:32 ----RSD---- C:\Windows\Fonts
2011-02-15 12:55:26 ----SD---- C:\ProgramData\Microsoft
2011-02-15 12:54:57 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-02-15 12:50:46 ----A---- C:\Windows\win.ini
2011-02-15 12:35:30 ----D---- C:\Windows\debug
2011-02-15 12:32:48 ----D---- C:\Windows\Logs
2011-02-15 11:08:12 ----D---- C:\Program Files\Common Files
2011-02-15 11:01:11 ----D---- C:\Windows\twain_32
2011-02-15 11:00:12 ----SD---- C:\Windows\system32\Microsoft
2011-02-14 21:18:53 ----D---- C:\Windows\Downloaded Program Files
2011-02-14 20:50:44 ----D---- C:\Windows\system32\CodeIntegrity
2011-02-14 20:50:11 ----D---- C:\Windows\system32\LogFiles
2011-02-14 20:47:40 ----D---- C:\Windows\system32\restore
2011-02-14 20:41:12 ----SHD---- C:\$Recycle.Bin
2011-02-14 20:40:10 ----RD---- C:\Users
2011-02-14 20:39:39 ----D---- C:\Program Files\Windows NT
2011-02-14 20:39:25 ----D---- C:\Windows\rescache
2011-02-14 20:36:30 ----D---- C:\Windows\system32\sysprep
2011-02-14 20:34:22 ----D---- C:\Windows\CSC
2011-02-14 20:32:45 ----D---- C:\Windows\Setup

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AsDsm;AsDsm; C:\Windows\system32\drivers\AsDsm.sys [2011-02-15 35384]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-12-17 538136]
R0 lullaby;lullaby; C:\Windows\system32\DRIVERS\lullaby.sys [2009-06-18 15928]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-02-15 254528]
R1 HWiNFO32;HWiNFO32 Kernel Driver; \??\C:\Program Files (x86)\HWiNFO32\HWiNFO64A.SYS [2010-09-29 28032]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
R2 ghaio;ghaio; \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [2007-08-03 17464]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2010-01-22 6233088]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-01-22 161280]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-10-05 1542656]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-09-30 121872]
R3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 79360]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-07-01 98344]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2009-07-01 132648]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-07-01 21160]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2009-10-30 704512]
R3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [2009-12-22 20568]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2010-01-18 128512]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2009-08-18 143472]
R3 JME;JMicron Ethernet Adapter NDIS6.20 Driver (Amd64 Bits); C:\Windows\system32\DRIVERS\JME.sys [2009-12-04 107120]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2009-05-13 15928]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-08-20 1800192]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-01-22 6233088]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 551936]
S3 ewusbnet;HUAWEI USB-NDIS miniport; C:\Windows\system32\DRIVERS\ewusbnet.sys [2009-07-23 132608]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-07-23 116992]
S3 hwusbfake;Huawei DataCard USB Fake; C:\Windows\system32\DRIVERS\ewusbfake.sys [2009-07-23 113792]
S3 ipswuio;ipswuio; C:\Windows\System32\DRIVERS\ipswuio.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2010-07-30 19456]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2010-07-30 26624]
S3 nmwcdnsucx64;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsucx64.sys [2010-07-26 12800]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsux64.sys [2010-07-26 171008]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-07-14 109056]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 127488]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 18944]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 161280]
S3 ss_bserd;SAMSUNG USB Mobile Logging Driver; C:\Windows\system32\DRIVERS\ss_bserd.sys [2009-09-19 128000]
S3 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys []
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 TFsExDisk;TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys [2009-12-22 16448]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2010-07-30 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-07-14 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2010-07-30 9216]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-23 154168]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2009-12-07 379520]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-01-22 202752]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-15 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-07-01 864032]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 dgdersvc;Device Error Recovery Service; C:\Windows\system32\dgdersvc.exe [2009-12-22 117584]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-09-30 262144]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-09-30 2314240]
R2 VMCService;Vodafone Mobile Connect Service; C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [2009-09-18 9216]
R3 ADSMService;ADSM Service; C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe [2008-03-31 225280]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2010-12-08 628736]
R3 spmgr;spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [2007-08-03 125496]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-02-15 1255736]

-----------------EOF-----------------

[lenkavlkova]

log usbfix
############################## | UsbFix 7.014 | [Deletion]

User: Notebook (Administrator) # NOTEBOOKVLK [ASUSTeK Computer Inc. K52JK]
Updated 24/06/10 by El Desaparecido / C_XX
Started at 16:47:43 | 18/02/2011
Website: http://pagesperso-orange.fr/NosTools/index.html
Contact: FindyKill.Contact@gmail.com

CPU: Intel(R) Core(TM) i3 CPU M 350 @ 2.27GHz
CPU 2: Intel(R) Core(TM) i3 CPU M 350 @ 2.27GHz
Microsoft Windows 7 Professional (6.1.7600 64-Bit) #
Internet Explorer 8.0.7600.16385

Windows Firewall: Enabled
RAM -> 3949 Mb
C:\ (%systemdrive%) -> Fixed drive # 98 Gb (56 Mb free - 58%) [] # NTFS
D:\ -> Fixed drive # 368 Gb (299 Mb free - 81%) [] # NTFS
E:\ -> CD-ROM
F:\ -> CD-ROM
G:\ -> Removable drive # 4 Gb (3 Mb free - 91%) [] # FAT32
H:\ -> Removable drive # 4 Gb (4 Mb free - 100%) [] # FAT32

################## | Files # Infected Folders |

Deleted ! G:\vcxuud.exe
Deleted ! G:\vcxuudx.exe
Deleted ! G:\Autorun.inf
Deleted ! G:\Documents.lnk
Deleted ! G:\Music.lnk
Deleted ! G:\New Folder.lnk
Deleted ! G:\Passwords.lnk
Deleted ! G:\Pictures.lnk
Deleted ! G:\Video.lnk

################## | Registry |


################## | Mountpoints2 |

Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{4b4d482f-38eb-11e0-844d-0025d3b07ea9}
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{5070597a-3914-11e0-a5ea-001e101fe70e}
Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{5167dcf4-3871-11e0-8494-806e6f6e6963}

################## | Listing |

[18/02/2011 - 16:48:39 | SHD ] C:\$Recycle.Bin
[15/02/2011 - 13:13:43 | A | 2006] C:\aqua_bitmap.cpp
[15/02/2011 - 11:07:16 | HD ] C:\ASUS.DAT
[14/07/2009 - 06:08:56 | SHD ] C:\Documents and Settings
[15/02/2011 - 11:05:51 | D ] C:\eSupport
[18/02/2011 - 10:08:39 | ASH | 3105259520] C:\hiberfil.sys
[15/02/2011 - 10:47:33 | D ] C:\Intel
[15/02/2011 - 12:50:00 | RHD ] C:\MSOCache
[18/02/2011 - 10:08:44 | ASH | 4140347392] C:\pagefile.sys
[14/07/2009 - 04:20:08 | D ] C:\PerfLogs
[18/02/2011 - 16:02:44 | RD ] C:\Program Files
[18/02/2011 - 15:54:50 | RD ] C:\Program Files (x86)
[17/02/2011 - 21:50:06 | HD ] C:\ProgramData
[14/02/2011 - 20:39:39 | SHD ] C:\Recovery
[18/02/2011 - 16:02:53 | D ] C:\rsit
[17/02/2011 - 21:49:19 | SHD ] C:\System Volume Information
[18/02/2011 - 16:48:39 | D ] C:\UsbFix
[18/02/2011 - 16:47:43 | A | 2330] C:\UsbFix.txt
[14/02/2011 - 20:40:10 | RD ] C:\Users
[17/02/2011 - 15:17:01 | D ] C:\Windows
[15/02/2011 - 20:27:23 | D ] D:\! FILMY
[15/02/2011 - 12:24:43 | D ] D:\! FOTKY
[18/02/2011 - 16:48:39 | SHD ] D:\$RECYCLE.BIN
[15/02/2011 - 13:48:44 | D ] D:\directx
[15/02/2011 - 13:16:36 | A | 108279664] D:\directx-9-0c-10-11.exe
[17/02/2011 - 22:33:12 | D ] D:\instalace
[17/02/2011 - 20:47:25 | A | 213714944] D:\kav_rescue_10.iso
[17/02/2011 - 20:29:58 | A | 120985600] D:\kav_rescue_2008.iso
[12/02/2011 - 00:09:36 | D ] D:\Kobra 11
[30/01/2011 - 20:25:53 | HD ] D:\msdownld.tmp
[15/02/2011 - 12:46:16 | D ] D:\NFS
[07/02/2011 - 20:16:59 | D ] D:\nokia c6
[15/02/2011 - 19:46:31 | D ] D:\nokia c6 zaloha lenca
[15/02/2011 - 13:03:10 | D ] D:\obrazky
[04/02/2011 - 13:12:15 | D ] D:\samsung zaloha tel
[08/02/2011 - 12:04:39 | D ] D:\soubory
[15/02/2011 - 11:18:13 | D ] D:\stare hry
[26/01/2011 - 17:59:49 | SHD ] D:\System Volume Information
[15/02/2011 - 11:16:59 | D ] D:\tiskarna samsung mp360
[16/04/2010 - 14:00:00 | D ] F:\boot
[18/08/2010 - 14:00:00 | R | 110395392] F:\image.squashfs
[19/08/2010 - 14:00:00 | R | 0] F:\livecd
[14/08/2010 - 14:00:00 | D ] F:\rescue
[15/02/2011 - 11:17:00 | SHD ] G:\tiskarna samsung mp360
[15/02/2011 - 13:48:46 | SHD ] G:\directx
[15/02/2011 - 13:58:36 | SHD ] G:\diagnostika HW
[15/02/2011 - 15:45:58 | SHD ] G:\MP360_370_390_Win2KXP_Drivers_En
[15/02/2011 - 17:05:50 | A | 19850635] G:\winxp_14428.zip
[15/02/2011 - 17:23:50 | RSH | 4286] G:\Kvrg.ico
[15/02/2011 - 17:23:50 | A | 0] G:\x.mpeg
[15/02/2011 - 17:23:52 | A | 345] G:\tiskarna samsung mp360.lnk
[15/02/2011 - 17:23:52 | A | 315] G:\directx.lnk
[15/02/2011 - 17:23:52 | A | 329] G:\diagnostika HW.lnk
[15/02/2011 - 17:23:52 | A | 365] G:\MP360_370_390_Win2KXP_Drivers_En.lnk
[15/02/2011 - 17:24:10 | D ] G:\winxp_14428

################## | Vaccin |

C:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
D:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
G:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)
H:\Autorun.inf -> Folder created by UsbFix (El Desaparecido & C_XX)

################## | Upload |

Please send the file: C:\UsbFix_Upload_Me_NOTEBOOKVLK.zip
http://chiquitine.changelog.fr/Sample/Upload.php
Thank you for your contribution.

################## | E.O.F |

[bledulka]

Fajn, pokračujeme

Stáhni na plochu ComboFix - http://download.bleepingcomputer.com/sUBs/ComboFix.exe
- Před použitím vypni všechny rezidentní bezpečnostní programy - antiviry, firewally, antispywary
-Zavři všechna aktivní okna a spusť ho pod učtem s právy administrátora
- Po spuštění se zobrazí podmínky použití, potvrď je stiskem tlačítka Ano

- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna

- Po dokončení skenování, se vytvoří log C:\ComboFix.txt, zkopíruj celý jeho obsah sem.

[lenkavlkova]

ComboFix 11-02-17.02 - Notebook 18.02.2011 17:19:25.1.4 - x64
Microsoft Windows 7 Professional 6.1.7600.0.1250.420.1029.18.3949.2682 [GMT 1:00]
Spuštěný z: c:\users\Notebook\Desktop\ComboFix.exe
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\programdata\Desktop
c:\programdata\page
c:\programdata\page\page.ico
c:\programdata\page\page.URL
c:\windows\system32\muzapp.exe
c:\windows\SysWow64\muzapp.exe

.
((((((((((((((((((((((((( Soubory vytvořené od 2011-01-18 do 2011-02-18 )))))))))))))))))))))))))))))))
.

2011-02-18 15:37 . 2011-02-18 15:48 -------- d-----w- C:\UsbFix
2011-02-18 15:02 . 2011-02-18 15:14 -------- d-----w- c:\program files\trend micro
2011-02-18 15:02 . 2011-02-18 15:02 -------- d-----w- C:\rsit
2011-02-18 14:54 . 2011-02-18 14:55 -------- d-----w- c:\program files (x86)\ICQ7.4
2011-02-17 20:50 . 2011-02-17 20:53 -------- d-----w- c:\programdata\Nero
2011-02-17 20:49 . 2011-02-17 20:50 -------- d-----w- c:\program files (x86)\Common Files\Nero
2011-02-17 20:49 . 2011-02-17 20:53 -------- d-----w- c:\program files (x86)\Nero
2011-02-17 20:44 . 2011-02-17 20:45 -------- d-----w- c:\program files (x86)\Ask.com
2011-02-17 19:30 . 2011-02-17 19:30 -------- d-----w- c:\program files (x86)\CDBurnerXP
2011-02-17 19:30 . 2011-02-17 19:30 -------- d-----w- c:\programdata\Canneverbe Limited
2011-02-17 16:48 . 2011-02-17 16:48 -------- d-----w- c:\programdata\ashampoo
2011-02-17 16:48 . 2011-02-17 16:48 -------- d-----w- c:\program files (x86)\Ashampoo
2011-02-17 14:16 . 2011-02-17 14:16 -------- d-----w- c:\program files (x86)\MSXML 4.0
2011-02-15 20:53 . 2011-02-15 20:53 -------- d-----w- c:\programdata\Synetic
2011-02-15 19:29 . 2011-02-15 19:29 -------- d-----w- c:\program files (x86)\Zoner
2011-02-15 18:45 . 2011-02-15 18:45 -------- d-----w- c:\programdata\Nokia
2011-02-15 18:39 . 2011-02-15 18:39 -------- d-----w- c:\program files (x86)\Common Files\Nokia
2011-02-15 18:38 . 2010-07-30 13:18 57856 ----a-w- c:\windows\system32\nmwcdclsX64.dll
2011-02-15 18:37 . 2011-02-15 18:39 -------- d-----w- c:\program files (x86)\Nokia
2011-02-15 15:30 . 2011-02-15 15:30 -------- d-----w- c:\programdata\Vodafone
2011-02-15 15:30 . 2011-02-15 15:30 -------- d-----w- c:\program files (x86)\Vodafone
2011-02-15 15:15 . 2011-02-15 15:15 -------- d-----w- c:\programdata\PC Suite
2011-02-15 15:06 . 2011-02-15 15:06 -------- d-----w- c:\windows\system32\appmgmt
2011-02-15 13:25 . 2011-02-15 13:25 -------- d-----w- c:\windows\SysWow64\Wat
2011-02-15 13:25 . 2011-02-15 13:25 -------- d-----w- c:\windows\system32\Wat
2011-02-15 13:15 . 2009-09-10 06:28 311808 ----a-w- c:\windows\system32\msv1_0.dll
2011-02-15 13:15 . 2009-09-10 05:52 257024 ----a-w- c:\windows\SysWow64\msv1_0.dll
2011-02-15 13:08 . 2009-11-25 11:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll
2011-02-15 13:08 . 2009-11-25 11:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll
2011-02-15 13:08 . 2009-11-25 11:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
2011-02-15 13:08 . 2009-11-25 11:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll
2011-02-15 13:08 . 2009-11-25 11:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe
2011-02-15 13:08 . 2009-11-25 11:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
2011-02-15 13:08 . 2009-11-25 11:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2011-02-15 13:08 . 2009-11-25 11:47 444752 ----a-w- c:\windows\system32\mscoree.dll
2011-02-15 13:08 . 2009-11-25 11:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
2011-02-15 13:08 . 2009-11-25 11:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
2011-02-15 13:08 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2011-02-15 13:02 . 2010-03-04 04:40 184832 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2011-02-15 13:02 . 2010-03-04 04:32 243712 ----a-w- c:\windows\system32\drivers\ks.sys
2011-02-15 12:59 . 2011-02-15 12:59 -------- d-----w- c:\program files (x86)\HWiNFO32
2011-02-15 12:50 . 2011-02-15 12:50 -------- d-----w- c:\programdata\Solidshield
2011-02-15 12:45 . 2011-02-15 12:45 -------- d-----w- c:\program files (x86)\7-Zip
2011-02-15 12:18 . 2009-09-19 05:30 18944 ----a-w- c:\windows\system32\drivers\ss_bmdfl.sys
2011-02-15 12:18 . 2009-09-19 05:30 161280 ----a-w- c:\windows\system32\drivers\ss_bmdm.sys
2011-02-15 12:18 . 2009-09-19 05:30 15872 ----a-w- c:\windows\system32\drivers\ss_bwhnt.sys
2011-02-15 12:18 . 2009-09-19 05:30 15872 ----a-w- c:\windows\system32\drivers\ss_bwh.sys
2011-02-15 12:18 . 2009-09-19 05:30 15360 ----a-w- c:\windows\system32\drivers\ss_bcmnt.sys
2011-02-15 12:18 . 2009-09-19 05:30 15360 ----a-w- c:\windows\system32\drivers\ss_bcm.sys
2011-02-15 12:18 . 2009-09-19 05:30 128000 ----a-w- c:\windows\system32\drivers\ss_bserd.sys
2011-02-15 12:18 . 2009-09-19 05:30 127488 ----a-w- c:\windows\system32\drivers\ss_bbus.sys
2011-02-15 12:17 . 2011-02-15 12:17 -------- d-----w- c:\program files\SAMSUNG
2011-02-15 12:16 . 2011-02-15 18:39 -------- d-----w- c:\program files\DIFX
2011-02-15 12:16 . 2008-08-28 10:44 25600 ----a-w- c:\windows\system32\drivers\pccsmcfdx64.sys
2011-02-15 12:16 . 2011-02-15 18:39 -------- dc----w- c:\windows\system32\DRVSTORE
2011-02-15 12:16 . 2009-12-22 02:31 20480 ----a-w- c:\windows\SysWow64\FsExService64.Exe
2011-02-15 12:16 . 2009-12-22 02:31 16448 ----a-w- c:\windows\SysWow64\drivers\TFsExDisk.Sys
2011-02-15 12:16 . 2009-12-22 02:31 16448 ----a-w- c:\windows\system32\drivers\TFsExDisk.sys
2011-02-15 12:15 . 2011-02-15 18:39 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
2011-02-15 12:13 . 2011-02-15 12:13 -------- d-----w- c:\program files (x86)\MarkAny
2011-02-15 12:13 . 2011-02-15 12:16 -------- d-----w- c:\programdata\Samsung
2011-02-15 12:13 . 2011-02-15 12:13 -------- d-----w- c:\program files (x86)\Samsung
2011-02-15 12:13 . 2011-02-15 12:13 -------- d-----w- c:\program files (x86)\Common Files\Samsung
2011-02-15 12:08 . 2009-07-23 10:57 132608 ----a-w- c:\windows\system32\drivers\ewusbnet.sys
2011-02-15 12:08 . 2009-07-23 10:57 116992 ----a-w- c:\windows\system32\drivers\ewusbmdm.sys
2011-02-15 12:08 . 2009-07-23 10:57 113792 ----a-w- c:\windows\system32\drivers\ewusbfake.sys
2011-02-15 12:07 . 2011-02-15 12:07 -------- d-----w- c:\programdata\FLEXnet
2011-02-15 11:56 . 2011-02-15 11:56 -------- d-----w- c:\program files (x86)\Microsoft Works
2011-02-15 11:55 . 2011-02-16 06:45 -------- d-----w- c:\program files (x86)\Microsoft.NET
2011-02-15 11:55 . 2011-02-15 11:55 -------- d-----w- c:\windows\PCHEALTH
2011-02-15 11:51 . 2011-02-15 11:51 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8
2011-02-15 11:50 . 2011-02-15 11:57 -------- d-----w- c:\programdata\Microsoft Help
2011-02-15 11:50 . 2011-02-15 11:50 -------- d-----r- C:\MSOCache
2011-02-15 11:31 . 2011-02-18 15:49 -------- d-----w- c:\programdata\CentrumczToolbar
2011-02-15 11:31 . 2011-02-15 11:31 -------- d-----w- c:\program files (x86)\CentrumczToolbar
2011-02-15 11:30 . 2011-02-15 11:30 99024 ----a-w- c:\windows\MozillaUninstall.exe
2011-02-15 11:30 . 2011-02-15 11:30 99024 ----a-w- c:\windows\GREUninstall.exe
2011-02-15 11:29 . 2011-02-15 11:31 -------- d-----w- c:\program files (x86)\mozilla.org
2011-02-15 11:29 . 2011-02-15 11:29 -------- d-----w- c:\program files (x86)\City Interactive
2011-02-15 11:26 . 2011-02-15 11:26 254528 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-02-15 11:26 . 2011-02-15 11:26 -------- d-----w- c:\program files (x86)\DAEMON Tools Toolbar
2011-02-15 11:26 . 2011-02-15 11:27 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2011-02-15 11:26 . 2011-02-15 11:26 -------- d-----w- c:\programdata\DAEMON Tools Lite
2011-02-15 10:33 . 2011-02-15 10:33 -------- d-----w- c:\windows\system32\log
2011-02-15 10:24 . 2010-12-18 06:11 714752 ----a-w- c:\windows\system32\kerberos.dll
2011-02-15 10:23 . 2010-05-05 07:37 483840 ----a-w- c:\windows\system32\StructuredQuery.dll
2011-02-15 10:22 . 2011-01-05 04:00 3127808 ----a-w- c:\windows\system32\win32k.sys
2011-02-15 10:21 . 2010-06-14 06:37 1896832 ----a-w- c:\windows\system32\drivers\tcpip.sys
2011-02-15 10:20 . 2011-01-05 06:20 612352 ----a-w- c:\windows\system32\vbscript.dll
2011-02-15 10:19 . 2010-10-16 05:19 395776 ----a-w- c:\windows\system32\webio.dll
2011-02-15 10:19 . 2010-10-16 04:36 314368 ----a-w- c:\windows\SysWow64\webio.dll
2011-02-15 10:19 . 2010-07-29 06:30 82944 ----a-w- c:\windows\SysWow64\iccvid.dll
2011-02-15 10:19 . 2010-08-21 06:38 1024512 ----a-w- c:\windows\system32\wmpmde.dll
2011-02-15 10:19 . 2010-08-21 05:36 738816 ----a-w- c:\windows\SysWow64\wmpmde.dll
2011-02-15 10:15 . 2011-02-15 14:36 824 ----a-w- c:\windows\system32\drivers\etc\tmvsthfud.bin
2011-02-15 10:15 . 2011-02-15 14:36 824 ----a-w- c:\windows\system32\drivers\etc\tmvsthfss.bin
2011-02-15 10:13 . 2010-10-27 05:18 5510528 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-02-15 10:13 . 2010-10-27 05:16 1739176 ----a-w- c:\windows\system32\ntdll.dll
2011-02-15 10:13 . 2010-10-27 04:43 3901824 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2011-02-15 10:13 . 2010-10-27 04:43 3957120 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2011-02-15 10:13 . 2010-10-27 04:40 1293120 ----a-w- c:\windows\SysWow64\ntdll.dll
2011-02-15 10:11 . 2010-10-16 05:23 112000 ----a-w- c:\windows\system32\consent.exe
2011-02-15 10:09 . 2011-02-15 10:09 -------- d-----w- c:\program files (x86)\Common Files\Adobe AIR
2011-02-15 10:09 . 2011-02-15 19:25 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2011-02-15 10:09 . 2011-02-15 10:09 -------- d-----w- c:\windows\SysWow64\K_Series_ScreenSaver_EN dir
2011-02-15 10:09 . 2011-02-15 10:09 520192 ----a-w- c:\windows\SysWow64\K_Series_ScreenSaver_EN.scr
2011-02-15 10:08 . 2011-02-15 10:09 3054136 ----a-w- c:\windows\AsScrPro.exe
2011-02-15 10:08 . 2011-02-15 10:08 -------- d-----w- c:\programdata\ASUS
2011-02-15 10:07 . 2011-02-15 10:07 35384 ----a-w- c:\windows\system32\drivers\AsDsm.sys
2011-02-15 10:05 . 2011-02-15 10:05 -------- d-----w- C:\eSupport
2011-02-15 10:05 . 2009-06-18 11:18 15928 ----a-w- c:\windows\system32\drivers\lullaby.sys
2011-02-15 10:05 . 2009-03-09 09:29 53248 ----a-w- c:\windows\SysWow64\LogonStart.dll
2011-02-15 10:05 . 2011-02-15 10:07 -------- d-----w- C:\ASUS.DAT
2011-02-15 10:04 . 2011-02-15 10:05 -------- d-----w- c:\program files (x86)\Common Files\InstallShield
2011-02-15 10:04 . 2006-10-09 18:07 183296 ----a-w- c:\windows\SysWow64\ACEngSvr.exe
2011-02-15 10:04 . 2011-02-15 10:04 -------- d-----w- c:\program files (x86)\Common Files\ControlDeck
2011-02-15 10:04 . 2009-12-07 15:16 379520 ----a-w- c:\windows\system32\FBAgent.exe
2011-02-15 10:04 . 2011-02-15 10:08 -------- d-----w- c:\program files\ASUS
2011-02-15 10:01 . 2011-02-15 10:08 -------- d-----w- c:\program files (x86)\ASUS
2011-02-15 10:01 . 2009-07-20 09:29 15416 ----a-w- c:\windows\system32\drivers\kbfiltr.sys
2011-02-15 10:01 . 2010-01-15 02:04 2414605 ----a-w- c:\windows\snuninst.exe
2011-02-15 10:01 . 2009-08-21 02:55 306176 ----a-w- c:\windows\SysWow64\vsnp2uvc.dll
2011-02-15 10:01 . 2009-08-21 02:55 375808 ----a-w- c:\windows\system32\vsnp2uvc.dll
2011-02-15 10:01 . 2009-08-20 02:41 1800192 ----a-w- c:\windows\system32\drivers\snp2uvc.sys
2011-02-15 10:01 . 2009-02-16 10:33 306176 ----a-w- c:\windows\system32\csnp2uvc.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-02-18 15:48 . 2011-02-18 15:48 72940 ----a-w- C:\UsbFix_Upload_Me_NOTEBOOKVLK.zip
2009-04-08 09:31 . 2009-04-08 09:31 106496 ----a-w- c:\program files (x86)\Common Files\CPInstallAction.dll
2008-08-11 20:45 . 2008-08-11 20:45 155648 ----a-w- c:\program files (x86)\Common Files\MSIactionall.dll
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2010-02-04 15:50 1197448 ----a-w- c:\program files (x86)\Ask.com\GenericAskToolbar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files (x86)\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-01 16:08 143360 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\" [X]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
"NokiaOviSuite2"="c:\program files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe" [2011-01-31 703360]
"ICQ"="c:\program files (x86)\ICQ7.4\ICQ.exe" [2011-02-18 119608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NokiaMServer"="c:\program files (x86)\Common Files\Nokia\MPlatform\NokiaMServer" [X]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-01-22 98304]
"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2010-02-04 7350912]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-01-05 170624]
"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"NBAgent"="c:\program files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" [2010-03-26 1234216]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-7-1 1079584]
FancyStart daemon.lnk - c:\windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe [2011-2-15 12862]
SRS Premium Sound.lnk - c:\windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe [2011-2-15 156952]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys [2009-07-23 132608]
R3 hwusbfake;Huawei DataCard USB Fake;c:\windows\system32\DRIVERS\ewusbfake.sys [2009-07-23 113792]
R3 ipswuio;ipswuio;c:\windows\system32\DRIVERS\ipswuio.sys [x]
R3 nmwcdnsucx64;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsucx64.sys [2010-07-26 12800]
R3 nmwcdnsux64;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsux64.sys [2010-07-26 171008]
R3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 127488]
R3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 18944]
R3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 161280]
R3 ss_bserd;SAMSUNG USB Mobile Logging Driver;c:\windows\system32\DRIVERS\ss_bserd.sys [2009-09-19 128000]
R3 TFsExDisk;TFsExDisk;c:\windows\System32\Drivers\TFsExDisk.sys [2009-12-22 16448]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-02-15 1255736]
S0 lullaby;lullaby;c:\windows\system32\DRIVERS\lullaby.sys [2009-06-18 15928]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-02-15 254528]
S1 HWiNFO32;HWiNFO32 Kernel Driver;c:\program files (x86)\HWiNFO32\HWiNFO64A.SYS [2010-09-29 28032]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [2009-12-07 379520]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-01-22 202752]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
S2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe [2009-12-22 117584]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-09-30 2314240]
S2 VMCService;Vodafone Mobile Connect Service;c:\program files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [2009-09-18 9216]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [2010-01-22 6233088]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-01-22 161280]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2009-12-22 20568]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [2010-01-18 128512]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2009-08-18 143472]
S3 JME;JMicron Ethernet Adapter NDIS6.20 Driver (Amd64 Bits);c:\windows\system32\DRIVERS\JME.sys [2009-12-04 107120]

.

--------- x86-64 -----------


[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-01 15:52 159744 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SmartAudio"="c:\program files\CONEXANT\SAII\SAIICpl.exe" [2009-11-19 307768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - c:\program files (x86)\ICQ7.4\ICQ.exe
Handler: centrumcztoolbar - {61A97628-7C82-4315-957A-C74C2CDD85DF} - c:\program files (x86)\CentrumczToolbar\IEToolbar.dll
FF - ProfilePath - c:\users\Notebook\AppData\Roaming\Mozilla\Firefox\Profiles\tcps5siw.default\
FF - prefs.js: browser.search.selectedEngine - Centrum.cz Search
FF - prefs.js: browser.startup.homepage - hxxp://centrum.cz/firefox
FF - prefs.js: keyword.URL - hxxp://search.centrum.cz/index.php?tool ... m-1.0.0&q=
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Lišta Centrum.cz Toolbar em:version=1.203.023.002 em:displayname=Lišta Centrum.cz Toolbar em:iconURL=chrome://cetrumczp/skin/logo.ico em:creator=iGeared LLC em:description=Lišta Centrum.cz Toolbar em:homepageURL=http://www.igeared.com >: Cetrumcz@igeared - c:\program files (x86)\CentrumczToolbar\Firefox\Cetrumcz@igeared
FF - Ext: Firefox Synchronisation Extension: {A27F3FEF-1113-4cfb-A032-8E12D7D8EE70} - c:\program files (x86)\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension
FF - Ext: Nero Toolbar: toolbar@ask.com - %profile%\extensions\toolbar@ask.com
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

Wow6432Node-HKLM-Run-MobileConnect - %programfiles%\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKLM-Run-ETDWare - %ProgramFiles%\Elantech\ETDCtrl.exe
AddRemove-K_Series_ScreenSaver_EN - c:\windows\system32\K_Series_ScreenSaver_EN.scr


.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10m_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10m_ActiveX.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx"
"ThreadingModel"="Apartment"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx, 1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx"
"ThreadingModel"="Apartment"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10m.ocx, 1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\ASUS\Net4Switch\Net4Switch.exe
c:\program files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
c:\program files (x86)\ASUS\SmartLogon\sensorsrv.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
c:\program files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
c:\program files\ASUS\NB Probe\SPM\spmgr.exe
c:\windows\AsScrPro.exe
c:\program files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
c:\program files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
c:\program files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
c:\program files (x86)\PC Connectivity Solution\ServiceLayer.exe
c:\program files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe
c:\program files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
.
**************************************************************************
.
Celkový čas: 2011-02-18 17:29:01 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-02-18 16:29

Před spuštěním: Volných bajtů: 59 862 720 512
Po spuštění: Volných bajtů: 61 399 695 360

- - End Of File - - C26D1A5FB0B1F03D1FD274B478BF8FC3

[bledulka]

otestuj ho na www.virustotal.com
"c:\program files\CONEXANT\SAII\SAIICpl.exe

[bledulka]

Fajn, vypadá to dobře.
Přes přidat/odebat programy odinstaluj Asktoolbar.


Odinstaluj combofix přes
Start >> Spustit zkopíruj do okénka:
ComboFix /Uninstall

stiskni Enter
-To odinstaluje ComboFix a smaže s ním související soubory a složky.


Stahni ATF Cleaner http://www.slunecnice.cz/sw/atf-cleaner/
- Na záložce main zaškrtni All users temp a potvrď Empty selected

[lenkavlkova]

RSIT log.txt
Logfile of random's system information tool 1.08 (written by random/random)
Run by Notebook at 2011-02-18 18:09:06
Microsoft Windows 7 Professional
System drive C: has 59 GB (60%) free of 100 GB
Total RAM: 3949 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:09:09, on 18.2.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16722)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\Net4Switch\Net4Switch.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
C:\Program Files (x86)\ICQ7.4\ICQ.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files (x86)\Opera\opera.exe
C:\Users\Notebook\Desktop\ATF-Cleaner.exe
C:\Program Files\trend micro\Notebook.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: CentrumczToolbar BHO - {33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: Lišta Centrum.cz Toolbar - {D5D47440-0750-463D-BAEF-A47D02414806} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
O3 - Toolbar: Nero Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\/\KiesTrayAgent.exe
O4 - HKCU\..\Run: [NokiaOviSuite2] C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray
O4 - HKCU\..\Run: [ICQ] "C:\Program Files (x86)\ICQ7.4\ICQ.exe" silent loginmode=4
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: FancyStart daemon.lnk = ?
O4 - Global Startup: SRS Premium Sound.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files (x86)\ICQ7.4\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: centrumcztoolbar - {61A97628-7C82-4315-957A-C74C2CDD85DF} - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Device Error Recovery Service (dgdersvc) - Devguru Co., Ltd. - C:\Windows\system32\dgdersvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: Vodafone Mobile Connect Service (VMCService) - Vodafone - C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10217 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Windows\system32\FBAgent.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
C:\Windows\System32\spoolsv.exe
atieclxx
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\system32\dgdersvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe"
"taskhost.exe"
taskeng.exe {5D431B44-30F6-49E7-8D1D-6293205D6EB3}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\Net4Switch\Net4Switch.exe"
"C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe"
"C:\Program Files\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe"
"C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Windows\SysWOW64\ACEngSvr.exe" -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\wbem\wmiprvse.exe
ATKOSD.exe
WDC.exe
"C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe"
"C:\Windows\AsScrPro.exe"
C:\Windows\System32\rundll32.exe shell32.dll,SHCreateLocalServerRunDll {995C996E-D918-4a8c-A302-45719A6F4EA7} -Embedding
"C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe" -tray
"C:\Program Files (x86)\ICQ7.4\ICQ.exe" silent loginmode=4
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe" /f=srs_premium_sound_nopreset.zip
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe" /silent
"C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe" /watchfiles startup
"C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
{F62EA0CF-858C-41C3-AF5D-804AB5127CFD}
{C81CF19F-000E-4715-88E9-FB2FC7D7D8FA}
{856B474E-7DEB-49BF-BEE2-370D7E323285}
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Windows\system32\wuauclt.exe"
"C:\Program Files (x86)\Opera\opera.exe"
"taskhost.exe"
"C:\Users\Notebook\Desktop\ATF-Cleaner.exe"
"C:\Users\Notebook\Desktop\RSITx64.exe"

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{33CD02D0-8C93-4926-A2FE-2CE72CE7DF1A}]
CentrumczToolbar BHO - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll [2010-03-26 1286448]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Nero Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll [2011-01-20 1581376]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll [2011-01-20 988480]
{D5D47440-0750-463D-BAEF-A47D02414806} - Lišta Centrum.cz Toolbar - C:\Program Files (x86)\CentrumczToolbar\IEToolbar.dll [2010-03-26 1286448]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Nero Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-02-04 1197448]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SAIICpl.exe [2009-11-19 307768]
"ETDWare"=C:\Program Files\Elantech\ETDCtrl.exe [2010-01-13 635784]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\/\KiesTrayAgent.exe [2010-01-28 3404600]
"NokiaOviSuite2"=C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2011-01-31 703360]
"ICQ"=C:\Program Files (x86)\ICQ7.4\ICQ.exe [2011-02-18 119608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-12-03 35184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ADSMTray]
C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe [2009-06-24 272952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Screen Saver Protector]
C:\Windows\AsScrPro.exe [2011-02-15 3054136]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-01-22 98304]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-02-04 7350912]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-01-05 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"NokiaMServer"=C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"NBAgent"=C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-03-26 1234216]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
FancyStart daemon.lnk - C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe
SRS Premium Sound.lnk - C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2009-07-14 290304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=0
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=0
"NoDriveTypeAutoRun"=0
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2011-02-18 17:29:04 ----D---- C:\Windows\temp
2011-02-18 17:29:02 ----A---- C:\ComboFix.txt
2011-02-18 17:25:09 ----D---- C:\$RECYCLE.BIN
2011-02-18 17:18:41 ----D---- C:\Windows\ERDNT
2011-02-18 16:48:42 ----RAD---- C:\Autorun.inf
2011-02-18 16:47:43 ----A---- C:\UsbFix.txt
2011-02-18 16:37:57 ----D---- C:\UsbFix
2011-02-18 16:02:44 ----D---- C:\rsit
2011-02-18 16:02:44 ----D---- C:\Program Files\trend micro
2011-02-18 15:54:54 ----D---- C:\Users\Notebook\AppData\Roaming\ICQ
2011-02-18 15:54:50 ----D---- C:\Program Files (x86)\ICQ7.4
2011-02-17 21:53:52 ----D---- C:\Users\Notebook\AppData\Roaming\Nero
2011-02-17 21:50:06 ----D---- C:\ProgramData\Nero
2011-02-17 21:49:32 ----D---- C:\Program Files (x86)\Nero
2011-02-17 21:44:59 ----D---- C:\Program Files (x86)\Ask.com
2011-02-17 20:31:06 ----D---- C:\Users\Notebook\AppData\Roaming\Canneverbe Limited
2011-02-17 20:30:51 ----D---- C:\ProgramData\Canneverbe Limited
2011-02-17 20:30:51 ----D---- C:\Program Files (x86)\CDBurnerXP
2011-02-17 17:48:44 ----D---- C:\Users\Notebook\AppData\Roaming\Ashampoo
2011-02-17 17:48:40 ----D---- C:\ProgramData\ashampoo
2011-02-17 17:48:37 ----D---- C:\Program Files (x86)\Ashampoo
2011-02-17 15:16:55 ----D---- C:\Program Files (x86)\MSXML 4.0
2011-02-15 21:53:12 ----D---- C:\ProgramData\Synetic
2011-02-15 20:29:29 ----D---- C:\Users\Notebook\AppData\Roaming\Zoner
2011-02-15 20:29:01 ----D---- C:\Program Files (x86)\Zoner
2011-02-15 19:45:07 ----D---- C:\ProgramData\Nokia
2011-02-15 19:38:42 ----A---- C:\Windows\system32\nmwcdclsX64.dll
2011-02-15 19:37:45 ----D---- C:\ProgramData\NokiaInstallerCache
2011-02-15 19:37:45 ----D---- C:\Program Files (x86)\Nokia
2011-02-15 19:22:04 ----A---- C:\Windows\SYSWOW64\quartz.dll
2011-02-15 19:22:04 ----A---- C:\Windows\system32\quartz.dll
2011-02-15 19:22:03 ----A---- C:\Windows\SYSWOW64\tsbyuv.dll
2011-02-15 19:22:03 ----A---- C:\Windows\SYSWOW64\msyuv.dll
2011-02-15 19:22:03 ----A---- C:\Windows\SYSWOW64\msvidc32.dll
2011-02-15 19:22:03 ----A---- C:\Windows\SYSWOW64\msrle32.dll
2011-02-15 19:22:03 ----A---- C:\Windows\SYSWOW64\mciavi32.dll
2011-02-15 19:22:03 ----A---- C:\Windows\SYSWOW64\iyuv_32.dll
2011-02-15 19:22:03 ----A---- C:\Windows\SYSWOW64\avifil32.dll
2011-02-15 19:22:03 ----A---- C:\Windows\system32\tsbyuv.dll
2011-02-15 19:22:03 ----A---- C:\Windows\system32\msyuv.dll
2011-02-15 19:22:03 ----A---- C:\Windows\system32\msvidc32.dll
2011-02-15 19:22:03 ----A---- C:\Windows\system32\msrle32.dll
2011-02-15 19:22:03 ----A---- C:\Windows\system32\iyuv_32.dll
2011-02-15 16:30:28 ----D---- C:\ProgramData\Vodafone
2011-02-15 16:30:20 ----D---- C:\Program Files (x86)\Vodafone
2011-02-15 16:15:27 ----D---- C:\Users\Notebook\AppData\Roaming\PC Suite
2011-02-15 16:15:27 ----D---- C:\ProgramData\PC Suite
2011-02-15 16:06:17 ----D---- C:\Windows\system32\appmgmt
2011-02-15 14:25:57 ----D---- C:\Windows\SYSWOW64\Wat
2011-02-15 14:25:57 ----D---- C:\Windows\system32\Wat
2011-02-15 14:15:27 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2011-02-15 14:15:27 ----A---- C:\Windows\system32\msv1_0.dll
2011-02-15 14:08:39 ----A---- C:\Windows\SYSWOW64\PresentationHostProxy.dll
2011-02-15 14:08:39 ----A---- C:\Windows\SYSWOW64\PresentationHost.exe
2011-02-15 14:08:39 ----A---- C:\Windows\SYSWOW64\netfxperf.dll
2011-02-15 14:08:39 ----A---- C:\Windows\SYSWOW64\mscoree.dll
2011-02-15 14:08:39 ----A---- C:\Windows\SYSWOW64\dfshim.dll
2011-02-15 14:08:39 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2011-02-15 14:08:39 ----A---- C:\Windows\system32\PresentationHost.exe
2011-02-15 14:08:39 ----A---- C:\Windows\system32\netfxperf.dll
2011-02-15 14:08:39 ----A---- C:\Windows\system32\mscoree.dll
2011-02-15 14:08:39 ----A---- C:\Windows\system32\dfshim.dll
2011-02-15 14:08:22 ----A---- C:\Windows\system32\browserchoice.exe
2011-02-15 14:02:44 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2011-02-15 14:02:44 ----A---- C:\Windows\system32\drivers\ks.sys
2011-02-15 13:59:08 ----D---- C:\Program Files (x86)\HWiNFO32
2011-02-15 13:52:57 ----D---- C:\Program Files (x86)\Electronic Arts
2011-02-15 13:52:56 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2011-02-15 13:52:56 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2011-02-15 13:52:55 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2011-02-15 13:52:55 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2011-02-15 13:52:55 ----A---- C:\Windows\system32\XAudio2_6.dll
2011-02-15 13:52:55 ----A---- C:\Windows\system32\xactengine3_6.dll
2011-02-15 13:52:54 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2011-02-15 13:52:54 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2011-02-15 13:52:53 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2011-02-15 13:52:53 ----A---- C:\Windows\system32\XAudio2_5.dll
2011-02-15 13:52:52 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2011-02-15 13:52:52 ----A---- C:\Windows\system32\xactengine3_5.dll
2011-02-15 13:52:51 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2011-02-15 13:52:51 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2011-02-15 13:52:50 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2011-02-15 13:52:50 ----A---- C:\Windows\system32\d3dcsx_42.dll
2011-02-15 13:52:49 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2011-02-15 13:52:49 ----A---- C:\Windows\system32\d3dx11_42.dll
2011-02-15 13:52:48 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2011-02-15 13:52:48 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2011-02-15 13:52:48 ----A---- C:\Windows\system32\D3DX9_42.dll
2011-02-15 13:52:48 ----A---- C:\Windows\system32\d3dx10_42.dll
2011-02-15 13:52:43 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2011-02-15 13:52:43 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2011-02-15 13:52:37 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2011-02-15 13:52:37 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2011-02-15 13:52:37 ----A---- C:\Windows\system32\XAudio2_3.dll
2011-02-15 13:52:37 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2011-02-15 13:52:36 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2011-02-15 13:52:36 ----A---- C:\Windows\system32\xactengine3_3.dll
2011-02-15 13:52:35 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2011-02-15 13:52:35 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2011-02-15 13:52:33 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2011-02-15 13:52:33 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2011-02-15 13:52:33 ----A---- C:\Windows\system32\XAudio2_2.dll
2011-02-15 13:52:33 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2011-02-15 13:52:32 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2011-02-15 13:52:32 ----A---- C:\Windows\system32\xactengine3_2.dll
2011-02-15 13:50:26 ----D---- C:\ProgramData\Solidshield
2011-02-15 13:45:37 ----D---- C:\Program Files (x86)\7-Zip
2011-02-15 13:18:00 ----A---- C:\Windows\system32\drivers\ss_bwhnt.sys
2011-02-15 13:18:00 ----A---- C:\Windows\system32\drivers\ss_bwh.sys
2011-02-15 13:18:00 ----A---- C:\Windows\system32\drivers\ss_bserd.sys
2011-02-15 13:18:00 ----A---- C:\Windows\system32\drivers\ss_bmdm.sys
2011-02-15 13:18:00 ----A---- C:\Windows\system32\drivers\ss_bmdfl.sys
2011-02-15 13:18:00 ----A---- C:\Windows\system32\drivers\ss_bcmnt.sys
2011-02-15 13:18:00 ----A---- C:\Windows\system32\drivers\ss_bcm.sys
2011-02-15 13:18:00 ----A---- C:\Windows\system32\drivers\ss_bbus.sys
2011-02-15 13:17:14 ----D---- C:\Program Files\SAMSUNG
2011-02-15 13:16:53 ----D---- C:\Program Files\DIFX
2011-02-15 13:16:52 ----A---- C:\Windows\system32\drivers\pccsmcfdx64.sys
2011-02-15 13:16:49 ----DC---- C:\Windows\system32\DRVSTORE
2011-02-15 13:16:36 ----A---- C:\Windows\SYSWOW64\FsExService64.Exe
2011-02-15 13:16:36 ----A---- C:\Windows\SYSWOW64\drivers\TFsExDisk.Sys
2011-02-15 13:16:36 ----A---- C:\Windows\system32\drivers\TFsExDisk.sys
2011-02-15 13:15:16 ----D---- C:\Program Files (x86)\PC Connectivity Solution
2011-02-15 13:14:18 ----D---- C:\Users\Notebook\AppData\Roaming\Samsung
2011-02-15 13:14:16 ----D---- C:\Users\Notebook\AppData\Roaming\FLEXnet
2011-02-15 13:13:48 ----D---- C:\Program Files (x86)\MarkAny
2011-02-15 13:13:46 ----D---- C:\ProgramData\Samsung
2011-02-15 13:13:39 ----D---- C:\Program Files (x86)\Samsung
2011-02-15 13:08:56 ----D---- C:\Users\Notebook\AppData\Roaming\Vodafone
2011-02-15 13:08:04 ----A---- C:\Windows\system32\drivers\ewusbnet.sys
2011-02-15 13:08:02 ----A---- C:\Windows\system32\drivers\ewusbmdm.sys
2011-02-15 13:08:00 ----A---- C:\Windows\system32\drivers\ewusbfake.sys
2011-02-15 13:07:20 ----D---- C:\ProgramData\FLEXnet
2011-02-15 12:56:05 ----D---- C:\Program Files (x86)\Microsoft Works
2011-02-15 12:55:49 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2011-02-15 12:55:26 ----D---- C:\Windows\PCHEALTH
2011-02-15 12:55:26 ----D---- C:\Program Files (x86)\Microsoft.NET
2011-02-15 12:51:18 ----D---- C:\Program Files\Microsoft Office
2011-02-15 12:51:11 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2011-02-15 12:50:32 ----D---- C:\Program Files (x86)\Microsoft Office
2011-02-15 12:50:31 ----D---- C:\ProgramData\Microsoft Help
2011-02-15 12:50:00 ----RD---- C:\MSOCache
2011-02-15 12:34:47 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2011-02-15 12:34:47 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2011-02-15 12:34:47 ----A---- C:\Windows\system32\d3dx10_41.dll
2011-02-15 12:34:47 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2011-02-15 12:34:46 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2011-02-15 12:34:46 ----A---- C:\Windows\system32\D3DX9_41.dll
2011-02-15 12:34:44 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2011-02-15 12:34:44 ----A---- C:\Windows\system32\XAudio2_4.dll
2011-02-15 12:34:43 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2011-02-15 12:34:43 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2011-02-15 12:34:43 ----A---- C:\Windows\system32\xactengine3_4.dll
2011-02-15 12:34:43 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2011-02-15 12:34:42 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2011-02-15 12:34:42 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2011-02-15 12:34:42 ----A---- C:\Windows\system32\d3dx10_40.dll
2011-02-15 12:34:42 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2011-02-15 12:34:41 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2011-02-15 12:34:41 ----A---- C:\Windows\system32\D3DX9_40.dll
2011-02-15 12:34:35 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2011-02-15 12:34:35 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2011-02-15 12:34:35 ----A---- C:\Windows\system32\d3dx10_39.dll
2011-02-15 12:34:35 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2011-02-15 12:34:34 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2011-02-15 12:34:34 ----A---- C:\Windows\system32\D3DX9_39.dll
2011-02-15 12:34:32 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2011-02-15 12:34:32 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2011-02-15 12:34:32 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2011-02-15 12:34:32 ----A---- C:\Windows\system32\XAudio2_1.dll
2011-02-15 12:34:32 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2011-02-15 12:34:32 ----A---- C:\Windows\system32\xactengine3_1.dll
2011-02-15 12:34:31 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2011-02-15 12:34:31 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2011-02-15 12:34:30 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2011-02-15 12:34:30 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2011-02-15 12:34:30 ----A---- C:\Windows\system32\d3dx10_38.dll
2011-02-15 12:34:30 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2011-02-15 12:34:29 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2011-02-15 12:34:29 ----A---- C:\Windows\system32\D3DX9_38.dll
2011-02-15 12:34:28 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2011-02-15 12:34:28 ----A---- C:\Windows\system32\XAudio2_0.dll
2011-02-15 12:34:27 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2011-02-15 12:34:27 ----A---- C:\Windows\system32\xactengine3_0.dll
2011-02-15 12:34:26 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2011-02-15 12:34:26 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2011-02-15 12:34:26 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2011-02-15 12:34:26 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2011-02-15 12:34:26 ----A---- C:\Windows\system32\d3dx10_37.dll
2011-02-15 12:34:26 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2011-02-15 12:34:24 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2011-02-15 12:34:24 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2011-02-15 12:34:24 ----A---- C:\Windows\system32\xactengine2_10.dll
2011-02-15 12:34:24 ----A---- C:\Windows\system32\D3DX9_37.dll
2011-02-15 12:34:22 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2011-02-15 12:34:22 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2011-02-15 12:34:22 ----A---- C:\Windows\system32\d3dx10_36.dll
2011-02-15 12:34:22 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2011-02-15 12:34:21 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2011-02-15 12:34:21 ----A---- C:\Windows\system32\d3dx9_36.dll
2011-02-15 12:34:19 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2011-02-15 12:34:19 ----A---- C:\Windows\system32\xactengine2_9.dll
2011-02-15 12:34:18 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2011-02-15 12:34:18 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2011-02-15 12:34:18 ----A---- C:\Windows\system32\d3dx10_35.dll
2011-02-15 12:34:18 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2011-02-15 12:34:17 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2011-02-15 12:34:17 ----A---- C:\Windows\system32\d3dx9_35.dll
2011-02-15 12:34:16 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2011-02-15 12:34:16 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2011-02-15 12:34:16 ----A---- C:\Windows\system32\xactengine2_8.dll
2011-02-15 12:34:16 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2011-02-15 12:34:15 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2011-02-15 12:34:15 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2011-02-15 12:34:15 ----A---- C:\Windows\system32\d3dx10_34.dll
2011-02-15 12:34:15 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2011-02-15 12:34:14 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2011-02-15 12:34:14 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2011-02-15 12:34:14 ----A---- C:\Windows\system32\xinput1_3.dll
2011-02-15 12:34:14 ----A---- C:\Windows\system32\d3dx9_34.dll
2011-02-15 12:34:13 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2011-02-15 12:34:13 ----A---- C:\Windows\system32\xactengine2_7.dll
2011-02-15 12:34:12 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2011-02-15 12:34:12 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2011-02-15 12:34:12 ----A---- C:\Windows\system32\d3dx10_33.dll
2011-02-15 12:34:12 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2011-02-15 12:34:11 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2011-02-15 12:34:11 ----A---- C:\Windows\system32\d3dx9_33.dll
2011-02-15 12:34:10 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2011-02-15 12:34:10 ----A---- C:\Windows\system32\xactengine2_6.dll
2011-02-15 12:34:08 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2011-02-15 12:34:08 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2011-02-15 12:34:08 ----A---- C:\Windows\system32\xactengine2_5.dll
2011-02-15 12:34:08 ----A---- C:\Windows\system32\d3dx10.dll
2011-02-15 12:34:07 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2011-02-15 12:34:07 ----A---- C:\Windows\system32\d3dx9_32.dll
2011-02-15 12:34:06 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2011-02-15 12:34:06 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2011-02-15 12:34:06 ----A---- C:\Windows\system32\xactengine2_4.dll
2011-02-15 12:34:06 ----A---- C:\Windows\system32\x3daudio1_1.dll
2011-02-15 12:34:05 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2011-02-15 12:34:05 ----A---- C:\Windows\system32\d3dx9_31.dll
2011-02-15 12:34:04 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2011-02-15 12:34:04 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2011-02-15 12:34:04 ----A---- C:\Windows\system32\xinput1_2.dll
2011-02-15 12:34:04 ----A---- C:\Windows\system32\xactengine2_3.dll
2011-02-15 12:34:03 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2011-02-15 12:34:03 ----A---- C:\Windows\system32\xactengine2_2.dll
2011-02-15 12:34:02 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2011-02-15 12:34:02 ----A---- C:\Windows\system32\xinput1_1.dll
2011-02-15 12:34:01 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2011-02-15 12:34:01 ----A---- C:\Windows\system32\xactengine2_1.dll
2011-02-15 12:33:54 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2011-02-15 12:33:54 ----A---- C:\Windows\system32\d3dx9_30.dll
2011-02-15 12:33:53 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2011-02-15 12:33:53 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2011-02-15 12:33:53 ----A---- C:\Windows\system32\xactengine2_0.dll
2011-02-15 12:33:53 ----A---- C:\Windows\system32\x3daudio1_0.dll
2011-02-15 12:33:52 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2011-02-15 12:33:52 ----A---- C:\Windows\system32\d3dx9_29.dll
2011-02-15 12:33:51 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2011-02-15 12:33:51 ----A---- C:\Windows\system32\d3dx9_28.dll
2011-02-15 12:33:50 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2011-02-15 12:33:50 ----A---- C:\Windows\system32\d3dx9_27.dll
2011-02-15 12:33:49 ----D---- C:\Program Files\CCleaner
2011-02-15 12:33:49 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2011-02-15 12:33:49 ----A---- C:\Windows\system32\d3dx9_26.dll
2011-02-15 12:33:48 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2011-02-15 12:33:48 ----A---- C:\Windows\system32\d3dx9_25.dll
2011-02-15 12:33:46 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2011-02-15 12:33:46 ----A---- C:\Windows\system32\d3dx9_24.dll
2011-02-15 12:31:58 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-02-15 12:31:52 ----D---- C:\ProgramData\CentrumczToolbar
2011-02-15 12:31:50 ----D---- C:\Program Files (x86)\CentrumczToolbar
2011-02-15 12:30:21 ----D---- C:\Users\Notebook\AppData\Roaming\Talkback
2011-02-15 12:30:19 ----A---- C:\Windows\MozillaUninstall.exe
2011-02-15 12:30:09 ----A---- C:\Windows\GREUninstall.exe
2011-02-15 12:30:05 ----D---- C:\Users\Notebook\AppData\Roaming\Mozilla
2011-02-15 12:29:58 ----D---- C:\Program Files (x86)\mozilla.org
2011-02-15 12:29:41 ----D---- C:\Program Files (x86)\City Interactive
2011-02-15 12:26:46 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2011-02-15 12:26:38 ----D---- C:\Program Files (x86)\DAEMON Tools Toolbar
2011-02-15 12:26:35 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2011-02-15 12:26:19 ----D---- C:\Users\Notebook\AppData\Roaming\DAEMON Tools Lite
2011-02-15 12:26:19 ----D---- C:\ProgramData\DAEMON Tools Lite
2011-02-15 11:33:35 ----D---- C:\Windows\system32\log
2011-02-15 11:26:23 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2011-02-15 11:26:23 ----A---- C:\Windows\system32\mshtml.dll
2011-02-15 11:26:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2011-02-15 11:26:19 ----A---- C:\Windows\system32\iertutil.dll
2011-02-15 11:26:18 ----A---- C:\Windows\SYSWOW64\mstime.dll
2011-02-15 11:26:18 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2011-02-15 11:26:18 ----A---- C:\Windows\system32\mstime.dll
2011-02-15 11:26:18 ----A---- C:\Windows\system32\msfeeds.dll
2011-02-15 11:26:17 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2011-02-15 11:26:17 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2011-02-15 11:26:17 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2011-02-15 11:26:17 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2011-02-15 11:26:17 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2011-02-15 11:26:17 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2011-02-15 11:26:17 ----A---- C:\Windows\system32\mshtmled.dll
2011-02-15 11:26:17 ----A---- C:\Windows\system32\msfeedssync.exe
2011-02-15 11:26:17 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-02-15 11:26:17 ----A---- C:\Windows\system32\licmgr10.dll
2011-02-15 11:26:17 ----A---- C:\Windows\system32\iepeers.dll
2011-02-15 11:26:17 ----A---- C:\Windows\system32\iedkcs32.dll
2011-02-15 11:24:59 ----A---- C:\Windows\system32\kerberos.dll
2011-02-15 11:24:58 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2011-02-15 11:24:57 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2011-02-15 11:24:57 ----A---- C:\Windows\system32\asycfilt.dll
2011-02-15 11:24:56 ----A---- C:\Windows\SYSWOW64\tzres.dll
2011-02-15 11:24:56 ----A---- C:\Windows\system32\tzres.dll
2011-02-15 11:24:33 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2011-02-15 11:24:33 ----A---- C:\Windows\system32\t2embed.dll
2011-02-15 11:24:28 ----A---- C:\Windows\SYSWOW64\ole32.dll
2011-02-15 11:24:28 ----A---- C:\Windows\system32\ole32.dll
2011-02-15 11:24:21 ----A---- C:\Windows\SYSWOW64\taskschd.dll
2011-02-15 11:24:21 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2011-02-15 11:24:21 ----A---- C:\Windows\SYSWOW64\taskcomp.dll
2011-02-15 11:24:21 ----A---- C:\Windows\SYSWOW64\schtasks.exe
2011-02-15 11:24:21 ----A---- C:\Windows\system32\wmicmiplugin.dll
2011-02-15 11:24:21 ----A---- C:\Windows\system32\taskschd.dll
2011-02-15 11:24:21 ----A---- C:\Windows\system32\taskeng.exe
2011-02-15 11:24:21 ----A---- C:\Windows\system32\taskcomp.dll
2011-02-15 11:24:21 ----A---- C:\Windows\system32\schtasks.exe
2011-02-15 11:24:21 ----A---- C:\Windows\system32\schedsvc.dll
2011-02-15 11:23:50 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2011-02-15 11:23:50 ----A---- C:\Windows\system32\StructuredQuery.dll
2011-02-15 11:23:47 ----A---- C:\Windows\SYSWOW64\CertEnroll.dll
2011-02-15 11:23:47 ----A---- C:\Windows\system32\CertEnroll.dll
2011-02-15 11:23:04 ----A---- C:\Windows\SYSWOW64\secproc_isv.dll
2011-02-15 11:23:04 ----A---- C:\Windows\SYSWOW64\secproc.dll
2011-02-15 11:23:04 ----A---- C:\Windows\system32\secproc_isv.dll
2011-02-15 11:23:04 ----A---- C:\Windows\system32\secproc.dll
2011-02-15 11:23:04 ----A---- C:\Windows\system32\RMActivate_isv.exe
2011-02-15 11:23:03 ----A---- C:\Windows\SYSWOW64\secproc_ssp_isv.dll
2011-02-15 11:23:03 ----A---- C:\Windows\SYSWOW64\secproc_ssp.dll
2011-02-15 11:23:03 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp_isv.exe
2011-02-15 11:23:03 ----A---- C:\Windows\SYSWOW64\RMActivate_ssp.exe
2011-02-15 11:23:03 ----A---- C:\Windows\SYSWOW64\RMActivate_isv.exe
2011-02-15 11:23:03 ----A---- C:\Windows\SYSWOW64\RMActivate.exe
2011-02-15 11:23:03 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2011-02-15 11:23:03 ----A---- C:\Windows\system32\secproc_ssp.dll
2011-02-15 11:23:03 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2011-02-15 11:23:03 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2011-02-15 11:23:03 ----A---- C:\Windows\system32\RMActivate.exe
2011-02-15 11:22:50 ----A---- C:\Windows\system32\win32k.sys
2011-02-15 11:22:25 ----A---- C:\Windows\system32\shell32.dll
2011-02-15 11:22:24 ----A---- C:\Windows\SYSWOW64\shell32.dll
2011-02-15 11:22:19 ----A---- C:\Windows\system32\inetcomm.dll
2011-02-15 11:22:18 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2011-02-15 11:22:17 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2011-02-15 11:22:17 ----A---- C:\Windows\system32\CPFilters.dll
2011-02-15 11:22:16 ----A---- C:\Windows\system32\msdri.dll
2011-02-15 11:22:15 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2011-02-15 11:22:15 ----A---- C:\Windows\system32\psisdecd.dll
2011-02-15 11:21:50 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-02-15 11:21:43 ----A---- C:\Windows\SYSWOW64\schannel.dll
2011-02-15 11:21:43 ----A---- C:\Windows\system32\schannel.dll
2011-02-15 11:21:40 ----A---- C:\Windows\system32\comctl32.dll
2011-02-15 11:21:39 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2011-02-15 11:21:38 ----A---- C:\Windows\system32\ieframe.dll
2011-02-15 11:21:37 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2011-02-15 11:21:37 ----A---- C:\Windows\system32\msxml6.dll
2011-02-15 11:21:36 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2011-02-15 11:21:36 ----A---- C:\Windows\SYSWOW64\upnp.dll
2011-02-15 11:21:36 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2011-02-15 11:21:36 ----A---- C:\Windows\system32\wininet.dll
2011-02-15 11:21:36 ----A---- C:\Windows\system32\winhttp.dll
2011-02-15 11:21:36 ----A---- C:\Windows\system32\urlmon.dll
2011-02-15 11:21:36 ----A---- C:\Windows\system32\upnp.dll
2011-02-15 11:21:36 ----A---- C:\Windows\system32\msxml3.dll
2011-02-15 11:21:35 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2011-02-15 11:21:35 ----A---- C:\Windows\SYSWOW64\wininet.dll
2011-02-15 11:21:35 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2011-02-15 11:21:35 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2011-02-15 11:21:35 ----A---- C:\Windows\SYSWOW64\slwga.dll
2011-02-15 11:21:35 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2011-02-15 11:21:35 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2011-02-15 11:21:35 ----A---- C:\Windows\SYSWOW64\ieui.dll
2011-02-15 11:21:35 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2011-02-15 11:21:35 ----A---- C:\Windows\system32\wscsvc.dll
2011-02-15 11:21:35 ----A---- C:\Windows\system32\wscapi.dll
2011-02-15 11:21:35 ----A---- C:\Windows\system32\WebClnt.dll
2011-02-15 11:21:35 ----A---- C:\Windows\system32\slwga.dll
2011-02-15 11:21:35 ----A---- C:\Windows\system32\jsproxy.dll
2011-02-15 11:21:35 ----A---- C:\Windows\system32\ieui.dll
2011-02-15 11:21:35 ----A---- C:\Windows\system32\davclnt.dll
2011-02-15 11:21:20 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2011-02-15 11:21:20 ----A---- C:\Windows\system32\oleaut32.dll
2011-02-15 11:21:18 ----A---- C:\Windows\SYSWOW64\explorer.exe
2011-02-15 11:21:18 ----A---- C:\Windows\explorer.exe
2011-02-15 11:21:17 ----A---- C:\Windows\system32\winlogon.exe
2011-02-15 11:21:09 ----A---- C:\Windows\SYSWOW64\wow32.dll
2011-02-15 11:21:09 ----A---- C:\Windows\SYSWOW64\user.exe
2011-02-15 11:21:09 ----A---- C:\Windows\SYSWOW64\setup16.exe
2011-02-15 11:21:09 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2011-02-15 11:21:09 ----A---- C:\Windows\SYSWOW64\instnm.exe
2011-02-15 11:21:09 ----A---- C:\Windows\system32\wow64.dll
2011-02-15 11:21:06 ----A---- C:\Windows\SYSWOW64\rtutils.dll
2011-02-15 11:21:06 ----A---- C:\Windows\system32\rtutils.dll
2011-02-15 11:20:48 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2011-02-15 11:20:48 ----A---- C:\Windows\SYSWOW64\jscript.dll
2011-02-15 11:20:48 ----A---- C:\Windows\system32\vbscript.dll
2011-02-15 11:20:48 ----A---- C:\Windows\system32\jscript.dll
2011-02-15 11:20:43 ----A---- C:\Windows\system32\winsrv.dll
2011-02-15 11:20:42 ----A---- C:\Windows\system32\spoolsv.exe
2011-02-15 11:20:41 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2011-02-15 11:20:41 ----A---- C:\Windows\system32\d3d10warp.dll
2011-02-15 11:20:41 ----A---- C:\Windows\system32\d2d1.dll
2011-02-15 11:20:40 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2011-02-15 11:20:40 ----A---- C:\Windows\system32\WMVDECOD.DLL
2011-02-15 11:20:40 ----A---- C:\Windows\system32\mf.dll
2011-02-15 11:20:40 ----A---- C:\Windows\system32\DWrite.dll
2011-02-15 11:20:39 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2011-02-15 11:20:39 ----A---- C:\Windows\SYSWOW64\mf.dll
2011-02-15 11:20:39 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2011-02-15 11:20:39 ----A---- C:\Windows\system32\XpsPrint.dll
2011-02-15 11:20:39 ----A---- C:\Windows\system32\FntCache.dll
2011-02-15 11:20:38 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2011-02-15 11:20:38 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2011-02-15 11:20:38 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-02-15 11:20:38 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-02-15 11:20:38 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-02-15 11:20:38 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-02-15 11:20:37 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2011-02-15 11:20:37 ----A---- C:\Windows\SYSWOW64\mfreadwrite.dll
2011-02-15 11:20:37 ----A---- C:\Windows\SYSWOW64\ExplorerFrame.dll
2011-02-15 11:20:37 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2011-02-15 11:20:37 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2011-02-15 11:20:37 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-02-15 11:20:37 ----A---- C:\Windows\system32\mfreadwrite.dll
2011-02-15 11:20:37 ----A---- C:\Windows\system32\mfps.dll
2011-02-15 11:20:37 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2011-02-15 11:20:37 ----A---- C:\Windows\system32\d3d10_1.dll
2011-02-15 11:20:37 ----A---- C:\Windows\system32\cdd.dll
2011-02-15 11:20:07 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-02-15 11:20:06 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-02-15 11:20:06 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-02-15 11:20:00 ----A---- C:\Windows\system32\drivers\fvevol.sys
2011-02-15 11:19:59 ----A---- C:\Windows\SYSWOW64\webio.dll
2011-02-15 11:19:59 ----A---- C:\Windows\SYSWOW64\iccvid.dll
2011-02-15 11:19:59 ----A---- C:\Windows\system32\webio.dll
2011-02-15 11:19:52 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2011-02-15 11:19:52 ----A---- C:\Windows\system32\wmpmde.dll
2011-02-15 11:13:08 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-02-15 11:13:07 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2011-02-15 11:13:07 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2011-02-15 11:13:07 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2011-02-15 11:13:07 ----A---- C:\Windows\system32\ntdll.dll
2011-02-15 11:12:52 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2011-02-15 11:12:52 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2011-02-15 11:12:52 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2011-02-15 11:12:52 ----A---- C:\Windows\system32\fontsub.dll
2011-02-15 11:12:52 ----A---- C:\Windows\system32\atmlib.dll
2011-02-15 11:12:52 ----A---- C:\Windows\system32\atmfd.dll
2011-02-15 11:12:41 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-02-15 11:12:38 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2011-02-15 11:12:38 ----A---- C:\Windows\SYSWOW64\secur32.dll
2011-02-15 11:12:38 ----A---- C:\Windows\system32\lsasrv.dll
2011-02-15 11:12:38 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2011-02-15 11:12:19 ----A---- C:\Windows\SYSWOW64\mfc40u.dll
2011-02-15 11:12:19 ----A---- C:\Windows\SYSWOW64\mfc40.dll
2011-02-15 11:12:10 ----A---- C:\Windows\SYSWOW64\msasn1.dll
2011-02-15 11:12:10 ----A---- C:\Windows\system32\msasn1.dll
2011-02-15 11:12:09 ----A---- C:\Windows\system32\wmp.dll
2011-02-15 11:12:08 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2011-02-15 11:12:08 ----A---- C:\Windows\SYSWOW64\wmp.dll
2011-02-15 11:12:07 ----A---- C:\Windows\system32\wmploc.DLL
2011-02-15 11:11:53 ----A---- C:\Windows\system32\consent.exe
2011-02-15 11:11:51 ----A---- C:\Windows\SYSWOW64\odbc32.dll
2011-02-15 11:11:51 ----A---- C:\Windows\system32\odbc32.dll
2011-02-15 11:11:29 ----A---- C:\Windows\SYSWOW64\sscore.dll
2011-02-15 11:11:29 ----A---- C:\Windows\system32\srvsvc.dll
2011-02-15 11:11:29 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-02-15 11:11:29 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-02-15 11:11:29 ----A---- C:\Windows\system32\drivers\srv.sys
2011-02-15 11:09:41 ----D---- C:\ProgramData\Adobe
2011-02-15 11:09:21 ----D---- C:\Program Files (x86)\Adobe
2011-02-15 11:09:11 ----D---- C:\Windows\SYSWOW64\K_Series_ScreenSaver_EN dir
2011-02-15 11:08:41 ----A---- C:\Windows\AsScrPro.exe
2011-02-15 11:08:32 ----D---- C:\ProgramData\ASUS
2011-02-15 11:07:47 ----A---- C:\Windows\system32\drivers\AsDsm.sys
2011-02-15 11:05:51 ----D---- C:\eSupport
2011-02-15 11:05:49 ----A---- C:\Windows\system32\drivers\lullaby.sys
2011-02-15 11:05:30 ----A---- C:\Windows\SYSWOW64\LogonStart.dll
2011-02-15 11:05:21 ----D---- C:\ASUS.DAT
2011-02-15 11:04:55 ----A---- C:\Windows\SYSWOW64\ACEngSvr.exe
2011-02-15 11:04:38 ----A---- C:\Windows\system32\ServiceFilter.ini
2011-02-15 11:04:38 ----A---- C:\Windows\system32\RemoveFont.ini
2011-02-15 11:04:38 ----A---- C:\Windows\system32\FBAgent.exe
2011-02-15 11:04:38 ----A---- C:\Windows\system32\FastBoot.ini
2011-02-15 11:04:38 ----A---- C:\Windows\system32\Defrag.ini
2011-02-15 11:04:38 ----A---- C:\Windows\system32\BootTime.ini
2011-02-15 11:04:38 ----A---- C:\Windows\system32\AutoRunFilter.ini
2011-02-15 11:04:37 ----D---- C:\Program Files\ASUS
2011-02-15 11:02:56 ----D---- C:\ProgramData\P4G
2011-02-15 11:02:56 ----D---- C:\Program Files\P4G
2011-02-15 11:01:26 ----D---- C:\Program Files (x86)\ASUS
2011-02-15 11:01:20 ----A---- C:\Windows\system32\drivers\kbfiltr.sys
2011-02-15 11:01:09 ----A---- C:\Windows\SYSWOW64\vsnp2uvc.dll
2011-02-15 11:01:09 ----A---- C:\Windows\system32\vsnp2uvc.dll
2011-02-15 11:01:09 ----A---- C:\Windows\system32\drivers\snp2uvc.sys
2011-02-15 11:01:09 ----A---- C:\Windows\system32\drivers\sncduvc.sys
2011-02-15 11:01:09 ----A---- C:\Windows\system32\csnp2uvc.dll
2011-02-15 11:01:09 ----A---- C:\Windows\snuninst.exe
2011-02-15 11:01:09 ----A---- C:\Windows\snp2uvc.ini
2011-02-15 11:00:16 ----A---- C:\Windows\system32\drivers\btwrchid.sys
2011-02-15 11:00:16 ----A---- C:\Windows\system32\drivers\btwl2cap.sys
2011-02-15 11:00:16 ----A---- C:\Windows\system32\drivers\btwavdt.sys
2011-02-15 11:00:16 ----A---- C:\Windows\system32\drivers\btwaudio.sys
2011-02-15 11:00:06 ----D---- C:\Program Files\WIDCOMM
2011-02-15 10:58:58 ----D---- C:\Program Files\Elantech
2011-02-15 10:58:57 ----A---- C:\Windows\system32\drivers\ETD.sys
2011-02-15 10:58:45 ----A---- C:\Windows\system32\jmcricon.dll
2011-02-15 10:58:45 ----A---- C:\Windows\system32\drivers\jmcr.sys
2011-02-15 10:58:39 ----D---- C:\Program Files (x86)\JMicron
2011-02-15 10:58:37 ----A---- C:\Windows\system32\drivers\JME.sys
2011-02-15 10:58:19 ----D---- C:\Program Files\SRS Labs
2011-02-15 10:57:14 ----D---- C:\Windows\system32\SRSLabs
2011-02-15 10:57:14 ----D---- C:\Program Files\CONEXANT
2011-02-15 10:57:12 ----A---- C:\Windows\system32\UCI64A48.dll
2011-02-15 10:57:12 ----A---- C:\Windows\system32\drivers\CHDRT64.sys
2011-02-15 10:57:12 ----A---- C:\Windows\system32\CX64OP19.dll
2011-02-15 10:55:39 ----D---- C:\Users\Notebook\AppData\Roaming\ATI
2011-02-15 10:55:39 ----D---- C:\ProgramData\ATI
2011-02-15 10:54:53 ----D---- C:\Program Files\Common Files\ATI Technologies
2011-02-15 10:54:48 ----A---- C:\Windows\system32\drivers\AtiHdmi.sys
2011-02-15 10:54:34 ----A---- C:\Windows\system32\coinst.dll
2011-02-15 10:54:34 ----A---- C:\Windows\system32\ATIDEMGX.dll
2011-02-15 10:54:24 ----D---- C:\Program Files\ATI
2011-02-15 10:54:21 ----D---- C:\Program Files (x86)\ATI Technologies
2011-02-15 10:54:09 ----SHD---- C:\Windows\Installer
2011-02-15 10:51:02 ----A---- C:\Windows\SYSWOW64\log.txt
2011-02-15 10:50:42 ----A---- C:\Windows\system32\drivers\HECIx64.sys
2011-02-15 10:50:41 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-02-15 10:50:40 ----D---- C:\Users\Notebook\AppData\Roaming\InstallShield
2011-02-15 10:47:50 ----RA---- C:\Windows\SYSWOW64\CSVer.dll
2011-02-15 10:47:50 ----D---- C:\Program Files (x86)\Intel
2011-02-15 10:47:33 ----D---- C:\Intel
2011-02-14 21:59:04 ----D---- C:\Program Files (x86)\ESET
2011-02-14 21:44:19 ----D---- C:\Users\Notebook\AppData\Roaming\Opera
2011-02-14 21:44:17 ----D---- C:\Program Files (x86)\Opera
2011-02-14 21:18:53 ----D---- C:\Users\Notebook\AppData\Roaming\Macromedia
2011-02-14 21:18:53 ----D---- C:\Users\Notebook\AppData\Roaming\Adobe
2011-02-14 21:18:51 ----D---- C:\Windows\SYSWOW64\Macromed
2011-02-14 21:00:16 ----N---- C:\Windows\system32\MpSigStub.exe
2011-02-14 20:46:18 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2011-02-14 20:46:18 ----A---- C:\Windows\SYSWOW64\cabview.dll
2011-02-14 20:46:18 ----A---- C:\Windows\system32\wintrust.dll
2011-02-14 20:46:18 ----A---- C:\Windows\system32\cabview.dll
2011-02-14 20:41:14 ----D---- C:\Users\Notebook\AppData\Roaming\Identities
2011-02-14 20:40:13 ----SD---- C:\Users\Notebook\AppData\Roaming\Microsoft
2011-02-14 20:40:13 ----D---- C:\Users\Notebook\AppData\Roaming\Media Center Programs
2011-02-14 20:39:39 ----SHD---- C:\ProgramData\Šablony
2011-02-14 20:39:39 ----SHD---- C:\ProgramData\Plocha
2011-02-14 20:39:39 ----SHD---- C:\ProgramData\Oblíbené položky
2011-02-14 20:39:39 ----SHD---- C:\ProgramData\Nabídka Start
2011-02-14 20:39:39 ----SHD---- C:\ProgramData\Dokumenty
2011-02-14 20:39:39 ----SHD---- C:\ProgramData\Data aplikací
2011-02-14 20:39:39 ----D---- C:\Recovery
2011-02-14 20:39:35 ----D---- C:\Windows\SoftwareDistribution
2011-02-14 20:34:04 ----D---- C:\Windows\Prefetch
2011-02-14 20:33:47 ----ASH---- C:\pagefile.sys
2011-02-14 20:33:44 ----SHD---- C:\System Volume Information
2011-02-14 20:33:44 ----ASH---- C:\hiberfil.sys
2011-02-14 20:33:14 ----D---- C:\Windows\Panther

[lenkavlkova]

======List of files/folders modified in the last 1 months======

2011-02-18 18:01:39 ----D---- C:\Windows
2011-02-18 17:57:23 ----D---- C:\Windows\system32\config
2011-02-18 17:30:55 ----D---- C:\Windows\System32
2011-02-18 17:30:55 ----D---- C:\Windows\inf
2011-02-18 17:30:55 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-02-18 17:29:04 ----D---- C:\Windows\system32\drivers
2011-02-18 17:25:40 ----D---- C:\Windows\system32\catroot2
2011-02-18 17:25:12 ----A---- C:\Windows\system.ini
2011-02-18 17:24:54 ----D---- C:\Windows\system32\Tasks
2011-02-18 17:23:30 ----D---- C:\Windows\SysWOW64
2011-02-18 17:23:30 ----D---- C:\ProgramData
2011-02-18 17:21:43 ----D---- C:\Windows\SYSWOW64\drivers
2011-02-18 17:21:43 ----D---- C:\Windows\AppPatch
2011-02-18 17:21:42 ----D---- C:\Program Files\Common Files
2011-02-18 17:21:42 ----D---- C:\Program Files (x86)\Common Files
2011-02-18 16:02:44 ----RD---- C:\Program Files
2011-02-18 15:54:50 ----RD---- C:\Program Files (x86)
2011-02-17 21:44:46 ----RSD---- C:\Windows\assembly
2011-02-17 21:44:21 ----D---- C:\Windows\winsxs
2011-02-17 18:30:11 ----D---- C:\Windows\Microsoft.NET
2011-02-17 16:23:18 ----D---- C:\Windows\system32\wdi
2011-02-16 07:48:10 ----D---- C:\Windows\SYSWOW64\cs-CZ
2011-02-16 07:48:10 ----D---- C:\Windows\system32\cs-CZ
2011-02-16 07:45:05 ----D---- C:\Windows\SYSWOW64\en-US
2011-02-16 07:45:05 ----D---- C:\Windows\system32\en-US
2011-02-15 22:40:45 ----D---- C:\Windows\system32\catroot
2011-02-15 19:39:21 ----D---- C:\Windows\system32\DriverStore
2011-02-15 16:16:39 ----D---- C:\Windows\system32\drivers\UMDF
2011-02-15 15:36:24 ----D---- C:\Windows\system32\drivers\etc
2011-02-15 14:26:12 ----D---- C:\Program Files\Internet Explorer
2011-02-15 14:26:12 ----D---- C:\Program Files (x86)\Internet Explorer
2011-02-15 14:26:06 ----D---- C:\Program Files\Windows Mail
2011-02-15 14:26:06 ----D---- C:\Program Files (x86)\Windows Mail
2011-02-15 14:26:05 ----D---- C:\Windows\ehome
2011-02-15 14:26:04 ----D---- C:\Windows\SYSWOW64\migration
2011-02-15 14:26:03 ----D---- C:\Windows\system32\migration
2011-02-15 14:25:53 ----D---- C:\Program Files\Windows Media Player
2011-02-15 14:25:53 ----D---- C:\Program Files (x86)\Windows Media Player
2011-02-15 12:56:00 ----D---- C:\Program Files (x86)\MSBuild
2011-02-15 12:55:47 ----D---- C:\Windows\ShellNew
2011-02-15 12:55:32 ----RSD---- C:\Windows\Fonts
2011-02-15 12:55:26 ----SD---- C:\ProgramData\Microsoft
2011-02-15 12:54:57 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-02-15 12:50:46 ----A---- C:\Windows\win.ini
2011-02-15 12:35:30 ----D---- C:\Windows\debug
2011-02-15 12:32:48 ----D---- C:\Windows\Logs
2011-02-15 11:01:11 ----D---- C:\Windows\twain_32
2011-02-15 11:00:12 ----SD---- C:\Windows\system32\Microsoft
2011-02-14 21:18:53 ----D---- C:\Windows\Downloaded Program Files
2011-02-14 20:50:44 ----D---- C:\Windows\system32\CodeIntegrity
2011-02-14 20:50:11 ----D---- C:\Windows\system32\LogFiles
2011-02-14 20:47:40 ----D---- C:\Windows\system32\restore
2011-02-14 20:40:10 ----RD---- C:\Users
2011-02-14 20:39:39 ----D---- C:\Program Files\Windows NT
2011-02-14 20:39:25 ----D---- C:\Windows\rescache
2011-02-14 20:36:30 ----D---- C:\Windows\system32\sysprep
2011-02-14 20:34:22 ----D---- C:\Windows\CSC
2011-02-14 20:32:45 ----D---- C:\Windows\Setup

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AsDsm;AsDsm; C:\Windows\system32\drivers\AsDsm.sys [2011-02-15 35384]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-12-17 538136]
R0 lullaby;lullaby; C:\Windows\system32\DRIVERS\lullaby.sys [2009-06-18 15928]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-02-15 254528]
R1 HWiNFO32;HWiNFO32 Kernel Driver; \??\C:\Program Files (x86)\HWiNFO32\HWiNFO64A.SYS [2010-09-29 28032]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
R2 ghaio;ghaio; \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [2007-08-03 17464]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atipmdag.sys [2010-01-22 6233088]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-01-22 161280]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2009-10-05 1542656]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2009-09-30 121872]
R3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 79360]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-07-01 98344]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2009-07-01 132648]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-07-01 21160]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2009-10-30 704512]
R3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [2009-12-22 20568]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2010-01-18 128512]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2009-08-18 143472]
R3 JME;JMicron Ethernet Adapter NDIS6.20 Driver (Amd64 Bits); C:\Windows\system32\DRIVERS\JME.sys [2009-12-04 107120]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATK64AMD.sys [2009-05-13 15928]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-08-20 1800192]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-01-22 6233088]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 551936]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 ewusbnet;HUAWEI USB-NDIS miniport; C:\Windows\system32\DRIVERS\ewusbnet.sys [2009-07-23 132608]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-07-23 116992]
S3 hwusbfake;Huawei DataCard USB Fake; C:\Windows\system32\DRIVERS\ewusbfake.sys [2009-07-23 113792]
S3 ipswuio;ipswuio; C:\Windows\System32\DRIVERS\ipswuio.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2010-07-30 19456]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2010-07-30 26624]
S3 nmwcdnsucx64;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsucx64.sys [2010-07-26 12800]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsux64.sys [2010-07-26 171008]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-07-14 109056]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 127488]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 18944]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 161280]
S3 ss_bserd;SAMSUNG USB Mobile Logging Driver; C:\Windows\system32\DRIVERS\ss_bserd.sys [2009-09-19 128000]
S3 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys []
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 TFsExDisk;TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys [2009-12-22 16448]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2010-07-30 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-07-14 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2010-07-30 9216]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-23 154168]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2009-12-07 379520]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-01-22 202752]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-15 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-07-01 864032]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 dgdersvc;Device Error Recovery Service; C:\Windows\system32\dgdersvc.exe [2009-12-22 117584]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-09-30 262144]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-09-30 2314240]
R2 VMCService;Vodafone Mobile Connect Service; C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [2009-09-18 9216]
R3 ADSMService;ADSM Service; C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe [2008-03-31 225280]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2010-12-08 628736]
R3 spmgr;spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [2007-08-03 125496]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-02-15 1255736]

-----------------EOF-----------------

[lenkavlkova]

PEVNY PC:
Logfile of random's system information tool 1.08 (written by random/random)
Run by chrudim at 2011-02-18 18:19:01
Microsoft Windows 7 Home Premium
System drive C: has 28 GB (28%) free of 100 GB
Total RAM: 3839 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:19:32, on 18.2.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16722)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
C:\Program Files (x86)\Replay Media Catcher\FLVSrvc.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe
C:\Program Files (x86)\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe
C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files (x86)\Common Files\Nokia\NoA\nokiaaserver.exe
C:\Program Files (x86)\Opera\opera.exe
C:\Program Files\trend micro\chrudim.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.3\pdfforgeToolbarIE.dll
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: Movier-media Toolbar - {ce10bf86-da68-441e-91fa-38336363e3cd} - C:\Program Files (x86)\Movier-media\tbMovi.dll
R3 - URLSearchHook: (no name) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: QuickStores-Toolbar - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - mscoree.dll (file missing)
O2 - BHO: (no name) - {140BD8E3-C167-11D4-B4A3-080000180323} - (no file)
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files (x86)\FlashGet\jccatch.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll
O2 - BHO: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.3\pdfforgeToolbarIE.dll
O2 - BHO: Movier-media Toolbar - {ce10bf86-da68-441e-91fa-38336363e3cd} - C:\Program Files (x86)\Movier-media\tbMovi.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files (x86)\FlashGet\getflash.dll
O3 - Toolbar: QuickStores-Toolbar - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - mscoree.dll (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: Movier-media Toolbar - {ce10bf86-da68-441e-91fa-38336363e3cd} - C:\Program Files (x86)\Movier-media\tbMovi.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O3 - Toolbar: Nero Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files (x86)\pdfforge Toolbar\IE\4.3\pdfforgeToolbarIE.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [RemoteControl9] "C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe"
O4 - HKLM\..\Run: [PDVD9LanguageShortcut] "C:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Ask and Record FLV Service] "C:\Program Files (x86)\Replay Media Catcher\FLVSrvc.exe" /run
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [NBAgent] "C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe" /WinStart
O4 - HKLM\..\Run: [SAOB Monitor] C:\Program Files (x86)\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe
O4 - HKLM\..\Run: [TrueImageMonitor.exe] "C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [SearchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\/\KiesTrayAgent.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [ICQ] "C:\Program Files (x86)\ICQ6.5\ICQ.exe" silent
O4 - HKCU\..\Run: [NokiaOviSuite2] C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: &Stáhnout FlashGetem - C:\Program Files (x86)\FlashGet\jc_link.htm
O8 - Extra context menu item: &Stáhnout všechny FlashGetem - C:\Program Files (x86)\FlashGet\jc_all.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\FlashGet.exe
O15 - Trusted Zone: http://software.kuaiche.com
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Acronis OS Selector Reinstall Service (AcronisOSSReinstallSvc) - Unknown owner - C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Služba Acronis Nonstop Backup (afcdpsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
O23 - Service: Device Error Recovery Service (dgdersvc) - Devguru Co., Ltd. - C:\Windows\system32\dgdersvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Aktivátor Správce výběru OS Acronis (Správce výběru OS) - Unknown owner - C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14254 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe"
"C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe"
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe" /rep_new
"C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe"
C:\Windows\system32\dgdersvc.exe
"C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe"
"C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe"
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe"
"C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
"C:\Windows\System32\StikyNot.exe"
"C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe" -tray
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe"
"C:\Program Files (x86)\Replay Media Catcher\FLVSrvc.exe" /run
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe"
"C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe" /WinStart
"C:\Program Files (x86)\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe"
"C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"
"C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe" /watchfiles startup
"C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
{770DBB25-2B5A-45CB-A05B-C38B5A450F97}
{D873F78F-966C-4D5E-8E0D-9D6B18D18B2D}
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-7478d0a7-3747-42f3-a4a8-e6fd8fa7a5dd -SystemEventPortName:HostProcess-e4770d88-0f13-4968-850c-76e3b6c0faea -IoCancelEventPortName:HostProcess-7c6a4908-f783-4f4d-a38a-b6ee59662063 -NonStateChangingEventPortName:HostProcess-2069cdea-ccf4-43bc-a6b4-379e8eae9f94 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:86980275-e117-49ce-883c-cf2aca71276b
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
{FCA5A637-5F22-49A5-AB5F-2A16A580E692}
"C:\Program Files (x86)\Common Files\Nokia\NoA\nokiaaserver.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Windows\system32\wuauclt.exe"
"C:\Program Files (x86)\Opera\opera.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 504 508 516 65536 512
"C:\Users\chrudim\Desktop\RSITx64.exe"
"c:\program files\windows defender\MpCmdRun.exe" SpyNetService -RestrictPrivileges -AccessKey E2244905-7B23-B0BE-CC9C-3F29DC7A4CFB -Reinvoke
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-07-12 371888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg64.dll [2010-09-01 317496]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}]
QuickStores-Toolbar - C:\Windows\system32\mscoree.dll [2009-11-25 444752]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{140BD8E3-C167-11D4-B4A3-080000180323}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}]
FGCatchUrl - C:\Program Files (x86)\FlashGet\jccatch.dll [2007-08-06 94308]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll [2010-11-29 3908192]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2010-07-12 278192]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll [2010-09-01 842296]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B922D405-6D13-4A2B-AE89-08A030DA4402}]
pdfforge Toolbar - C:\Program Files (x86)\pdfforge Toolbar\IE\4.3\pdfforgeToolbarIE.dll [2011-01-28 726016]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ce10bf86-da68-441e-91fa-38336363e3cd}]
Movier-media Toolbar - C:\Program Files (x86)\Movier-media\tbMovi.dll [2010-03-09 2355224]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Nero Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-10-11 1244040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-05-03 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F156768E-81EF-470C-9057-481BA8380DBA}]
FlashGet GetFlash Class - C:\Program Files (x86)\FlashGet\getflash.dll [2007-05-18 163840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll []
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2010-07-12 371888]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - QuickStores-Toolbar - C:\Windows\system32\mscoree.dll [2009-11-25 444752]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2010-07-12 278192]
{E0E899AB-F487-11D5-8D29-0050BA6940E3}
{ce10bf86-da68-441e-91fa-38336363e3cd} - Movier-media Toolbar - C:\Program Files (x86)\Movier-media\tbMovi.dll [2010-03-09 2355224]
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll [2010-09-06 1048888]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll [2010-11-29 3908192]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Nero Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-10-11 1244040]
{B922D405-6D13-4A2B-AE89-08A030DA4402} - pdfforge Toolbar - C:\Program Files (x86)\pdfforge Toolbar\IE\4.3\pdfforgeToolbarIE.dll [2011-01-28 726016]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2009-07-20 7981088]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"Služba Acronis Scheduler2"=C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [2010-12-17 391144]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2009-10-30 369200]
"KiesTrayAgent"=C:\Program Files (x86)\Samsung\Kies\/\KiesTrayAgent.exe [2010-01-28 3404600]
"swg"=C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-06-08 39408]
"AlcoholAutomount"=C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2010-08-20 33120]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 427520]
"ICQ"=C:\Program Files (x86)\ICQ6.5\ICQ.exe silent []
""= []
"NokiaOviSuite2"=C:\Program Files (x86)\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2011-01-31 703360]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-05-04 102400]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-21 932288]
"SunJavaUpdateSched"=C:\Program Files (x86)\Java\jre6\bin\jusched.exe []
"RemoteControl9"=C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe [2009-02-16 87336]
"PDVD9LanguageShortcut"=C:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe [2008-10-13 50472]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"Ask and Record FLV Service"=C:\Program Files (x86)\Replay Media Catcher\FLVSrvc.exe [2009-09-22 156672]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"ArcSoft Connection Service"=C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2009-04-29 188728]
"NBAgent"=C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe [2010-03-14 1086760]
"SAOB Monitor"=C:\Program Files (x86)\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe [2010-11-16 2536752]
"TrueImageMonitor.exe"=C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [2010-12-17 5566176]
"NokiaMServer"=C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
""= []
"SearchSettings"=C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe [2011-01-28 526336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe"="C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-02-18 18:19:01 ----D---- C:\rsit
2011-02-18 18:19:01 ----D---- C:\Program Files\trend micro
2011-02-18 13:21:37 ----AD---- C:\Kaspersky Rescue Disk 10.0
2011-02-17 20:02:18 ----D---- C:\Windows\Minidump
2011-02-14 21:27:28 ----D---- C:\Program Files (x86)\pdfforge Toolbar
2011-02-14 21:27:28 ----D---- C:\Program Files (x86)\Application Updater
2011-02-09 10:14:21 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2011-02-09 10:14:20 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-02-09 10:14:20 ----A---- C:\Windows\system32\cdd.dll
2011-02-09 10:14:18 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2011-02-09 10:14:18 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2011-02-09 10:14:18 ----A---- C:\Windows\system32\atmlib.dll
2011-02-09 10:14:18 ----A---- C:\Windows\system32\atmfd.dll
2011-02-09 10:14:13 ----A---- C:\Windows\system32\mshtml.dll
2011-02-09 10:14:12 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2011-02-09 10:14:10 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2011-02-09 10:14:09 ----A---- C:\Windows\SYSWOW64\mstime.dll
2011-02-09 10:14:09 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2011-02-09 10:14:09 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2011-02-09 10:14:09 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2011-02-09 10:14:09 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2011-02-09 10:14:09 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2011-02-09 10:14:09 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2011-02-09 10:14:09 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2011-02-09 10:14:09 ----A---- C:\Windows\system32\mstime.dll
2011-02-09 10:14:09 ----A---- C:\Windows\system32\mshtmled.dll
2011-02-09 10:14:09 ----A---- C:\Windows\system32\msfeedssync.exe
2011-02-09 10:14:09 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-02-09 10:14:09 ----A---- C:\Windows\system32\msfeeds.dll
2011-02-09 10:14:09 ----A---- C:\Windows\system32\licmgr10.dll
2011-02-09 10:14:09 ----A---- C:\Windows\system32\iertutil.dll
2011-02-09 10:14:09 ----A---- C:\Windows\system32\iepeers.dll
2011-02-09 10:14:09 ----A---- C:\Windows\system32\iedkcs32.dll
2011-02-09 10:13:15 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2011-02-09 10:13:15 ----A---- C:\Windows\system32\kerberos.dll
2011-02-09 10:13:12 ----A---- C:\Windows\system32\win32k.sys
2011-02-09 10:13:07 ----A---- C:\Windows\system32\upnp.dll
2011-02-09 10:13:07 ----A---- C:\Windows\system32\msxml6.dll
2011-02-09 10:13:07 ----A---- C:\Windows\system32\msxml3.dll
2011-02-09 10:13:06 ----A---- C:\Windows\SYSWOW64\wininet.dll
2011-02-09 10:13:06 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2011-02-09 10:13:06 ----A---- C:\Windows\SYSWOW64\upnp.dll
2011-02-09 10:13:06 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2011-02-09 10:13:06 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2011-02-09 10:13:06 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2011-02-09 10:13:06 ----A---- C:\Windows\system32\wininet.dll
2011-02-09 10:13:06 ----A---- C:\Windows\system32\winhttp.dll
2011-02-09 10:13:06 ----A---- C:\Windows\system32\WebClnt.dll
2011-02-09 10:13:06 ----A---- C:\Windows\system32\urlmon.dll
2011-02-09 10:13:06 ----A---- C:\Windows\system32\davclnt.dll
2011-02-09 10:13:05 ----A---- C:\Windows\SYSWOW64\wscapi.dll
2011-02-09 10:13:05 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2011-02-09 10:13:05 ----A---- C:\Windows\SYSWOW64\WebClnt.dll
2011-02-09 10:13:05 ----A---- C:\Windows\SYSWOW64\slwga.dll
2011-02-09 10:13:05 ----A---- C:\Windows\SYSWOW64\davclnt.dll
2011-02-09 10:13:05 ----A---- C:\Windows\system32\wscsvc.dll
2011-02-09 10:13:05 ----A---- C:\Windows\system32\wscapi.dll
2011-02-09 10:13:05 ----A---- C:\Windows\system32\slwga.dll
2011-02-09 10:13:05 ----A---- C:\Windows\system32\ieframe.dll
2011-02-09 10:13:03 ----A---- C:\Windows\system32\winsrv.dll
2011-02-09 10:12:44 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2011-02-09 10:12:44 ----A---- C:\Windows\SYSWOW64\jscript.dll
2011-02-09 10:12:44 ----A---- C:\Windows\system32\vbscript.dll
2011-02-09 10:12:44 ----A---- C:\Windows\system32\jscript.dll
2011-02-09 10:12:41 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-02-09 10:12:40 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2011-02-09 10:12:40 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2011-02-09 10:12:40 ----A---- C:\Windows\system32\ntdll.dll
2011-02-09 10:12:39 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2011-02-02 21:41:17 ----D---- C:\ProgramData\Nokia
2011-01-30 12:02:31 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2011-01-30 12:02:31 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2011-01-30 12:02:31 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2011-01-30 12:02:31 ----A---- C:\Windows\system32\XAudio2_7.dll
2011-01-30 12:02:31 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2011-01-30 12:02:31 ----A---- C:\Windows\system32\xactengine3_7.dll
2011-01-30 12:02:30 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2011-01-30 12:02:30 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2011-01-30 12:02:30 ----A---- C:\Windows\system32\d3dcsx_43.dll
2011-01-30 12:02:30 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2011-01-30 12:02:29 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2011-01-30 12:02:29 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2011-01-30 12:02:29 ----A---- C:\Windows\system32\d3dx11_43.dll
2011-01-30 12:02:29 ----A---- C:\Windows\system32\d3dx10_43.dll
2011-01-30 12:02:28 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2011-01-30 12:02:28 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2011-01-30 12:02:28 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2011-01-30 12:02:28 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2011-01-30 12:02:28 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2011-01-30 12:02:28 ----A---- C:\Windows\system32\XAudio2_6.dll
2011-01-30 12:02:28 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2011-01-30 12:02:28 ----A---- C:\Windows\system32\xactengine3_6.dll
2011-01-30 12:02:28 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2011-01-30 12:02:28 ----A---- C:\Windows\system32\D3DX9_43.dll
2011-01-30 12:02:27 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2011-01-30 12:02:27 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2011-01-30 12:02:27 ----A---- C:\Windows\system32\XAudio2_5.dll
2011-01-30 12:02:27 ----A---- C:\Windows\system32\xactengine3_5.dll
2011-01-30 12:02:26 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2011-01-30 12:02:26 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2011-01-30 12:02:25 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2011-01-30 12:02:25 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2011-01-30 12:02:25 ----A---- C:\Windows\system32\d3dx11_42.dll
2011-01-30 12:02:25 ----A---- C:\Windows\system32\d3dcsx_42.dll
2011-01-30 12:02:24 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2011-01-30 12:02:24 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2011-01-30 12:02:24 ----A---- C:\Windows\system32\D3DX9_42.dll
2011-01-30 12:02:24 ----A---- C:\Windows\system32\d3dx10_42.dll
2011-01-30 12:02:21 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2011-01-30 12:02:21 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2011-01-30 12:02:19 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2011-01-30 12:02:19 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2011-01-30 12:02:19 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2011-01-30 12:02:19 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2011-01-30 12:02:19 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2011-01-30 12:02:19 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2011-01-30 12:02:19 ----A---- C:\Windows\system32\XAudio2_3.dll
2011-01-30 12:02:19 ----A---- C:\Windows\system32\XAudio2_2.dll
2011-01-30 12:02:19 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2011-01-30 12:02:19 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2011-01-30 12:02:19 ----A---- C:\Windows\system32\xactengine3_3.dll
2011-01-30 12:02:19 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2011-01-30 12:02:18 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2011-01-30 12:02:18 ----A---- C:\Windows\system32\xactengine3_2.dll
2011-01-30 11:57:45 ----D---- C:\Program Files (x86)\Activision
2011-01-29 22:58:26 ----D---- C:\Program Files (x86)\ImagingShop Viewer
2011-01-29 22:49:49 ----D---- C:\Users\chrudim\AppData\Roaming\FastStone
2011-01-29 22:49:46 ----D---- C:\Program Files (x86)\FastStone Image Viewer
2011-01-29 22:47:14 ----D---- C:\Users\chrudim\AppData\Roaming\IrfanView
2011-01-29 22:47:14 ----D---- C:\Program Files (x86)\IrfanView
2011-01-28 20:59:25 ----D---- C:\Program Files (x86)\LSoft Technologies
2011-01-28 20:29:56 ----A---- C:\Windows\system32\drivers\afcdp.sys
2011-01-28 20:29:50 ----A---- C:\Windows\system32\drivers\tdrpm273.sys
2011-01-28 20:29:47 ----A---- C:\Windows\system32\drivers\timntr.sys
2011-01-28 20:19:06 ----D---- C:\Users\chrudim\AppData\Roaming\Acronis
2011-01-28 18:58:14 ----D---- C:\Program Files (x86)\DIY DataRecovery MBRtool
2011-01-28 18:43:58 ----D---- C:\Program Files (x86)\PTDD Group
2011-01-27 20:23:15 ----D---- C:\Program Files\OO Software
2011-01-27 19:40:02 ----A---- C:\readme.txt
2011-01-27 19:40:02 ----A---- C:\ooviewer.dll
2011-01-27 19:40:02 ----A---- C:\oosu.dll
2011-01-27 19:40:02 ----A---- C:\oorwiz.dll
2011-01-27 19:40:02 ----A---- C:\oodskrec.exe
2011-01-27 19:40:02 ----A---- C:\oodrsurs.dll
2011-01-27 19:40:02 ----A---- C:\oodrrwrs.dll
2011-01-27 19:40:02 ----A---- C:\oodrrs.dll
2011-01-27 19:40:02 ----A---- C:\oodrar.dll
2011-01-27 19:40:02 ----A---- C:\ooabout.dll
2011-01-27 19:38:05 ----D---- C:\Program Files (x86)\OO Software
2011-01-27 14:10:18 ----D---- C:\Program Files\Recuva
2011-01-27 13:26:13 ----D---- C:\Program Files (x86)\EASEUS
2011-01-27 12:47:28 ----N---- C:\Windows\system32\pwdrvio.sys
2011-01-27 12:47:28 ----A---- C:\Windows\system32\pwNative.exe
2011-01-27 12:47:27 ----N---- C:\Windows\system32\pwdspio.sys
2011-01-27 12:42:24 ----D---- C:\Program Files (x86)\Recover Data for FAT & NTFS (Trial Version)
2011-01-27 10:55:05 ----D---- C:\Program Files (x86)\Acronis
2011-01-27 10:28:07 ----D---- C:\ProgramData\Acronis
2011-01-27 10:27:41 ----A---- C:\Windows\system32\drivers\snapman.sys
2011-01-27 10:10:07 ----A---- C:\Windows\SYSWOW64\vxdblock.exe
2011-01-27 10:09:51 ----D---- C:\Program Files (x86)\Evolution Labs
2011-01-25 16:17:53 ----D---- C:\Program Files (x86)\Ask.com

======List of files/folders modified in the last 1 months======

2011-02-18 18:19:16 ----D---- C:\Windows\Temp
2011-02-18 18:19:13 ----D---- C:\Windows\Prefetch
2011-02-18 18:19:01 ----RD---- C:\Program Files
2011-02-18 18:03:25 ----D---- C:\Windows\system32\config
2011-02-18 17:53:05 ----SHD---- C:\System Volume Information
2011-02-18 17:50:41 ----D---- C:\Windows\System32
2011-02-18 17:50:41 ----D---- C:\Windows\inf
2011-02-18 17:50:41 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-02-17 20:03:20 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-02-17 20:02:18 ----D---- C:\Windows
2011-02-14 21:27:31 ----SHD---- C:\Windows\Installer
2011-02-14 21:27:28 ----RD---- C:\Program Files (x86)
2011-02-14 21:27:28 ----D---- C:\Program Files (x86)\Common Files
2011-02-12 18:50:35 ----D---- C:\Windows\system32\drivers
2011-02-12 18:48:55 ----D---- C:\Windows\SysWOW64
2011-02-11 12:32:44 ----D---- C:\Program Files (x86)\Replay Media Catcher
2011-02-11 09:24:17 ----A---- C:\Windows\SYSWOW64\rmc_rtspdl.dll
2011-02-11 09:24:17 ----A---- C:\Windows\SYSWOW64\rmc_fixasf.exe
2011-02-10 17:21:37 ----D---- C:\Windows\winsxs
2011-02-10 17:19:50 ----D---- C:\Program Files (x86)\Internet Explorer
2011-02-10 17:19:49 ----D---- C:\Program Files\Internet Explorer
2011-02-09 11:25:13 ----D---- C:\Windows\debug
2011-02-09 11:04:29 ----D---- C:\Windows\system32\Tasks
2011-02-09 10:13:00 ----D---- C:\Windows\system32\catroot
2011-02-09 10:12:59 ----D---- C:\Windows\system32\catroot2
2011-02-02 21:41:17 ----HD---- C:\ProgramData
2011-02-02 21:41:09 ----D---- C:\Users\chrudim\AppData\Roaming\PC Suite
2011-02-02 21:35:06 ----DC---- C:\Windows\system32\DRVSTORE
2011-02-02 21:35:06 ----D---- C:\Windows\system32\DriverStore
2011-02-02 21:35:02 ----D---- C:\Program Files (x86)\PC Connectivity Solution
2011-02-02 21:34:33 ----D---- C:\Program Files (x86)\Nokia
2011-02-02 21:28:20 ----D---- C:\Users\chrudim\AppData\Roaming\Nokia
2011-02-01 09:28:04 ----D---- C:\Program Files (x86)\Opera
2011-02-01 09:26:29 ----D---- C:\Users\chrudim\AppData\Roaming\uTorrent
2011-01-30 14:29:04 ----RSD---- C:\Windows\assembly
2011-01-28 20:59:24 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-01-28 20:17:29 ----D---- C:\Windows\system32\wdi
2011-01-28 20:14:59 ----D---- C:\Users\chrudim\AppData\Roaming\ICQ
2011-01-27 12:36:24 ----D---- C:\Program Files (x86)\ICQ7.2
2011-01-25 19:35:13 ----D---- C:\Program Files (x86)\CesarFTP
2011-01-25 16:21:05 ----D---- C:\Users\chrudim\AppData\Roaming\Nero
2011-01-25 16:18:37 ----D---- C:\Program Files (x86)\Nero
2011-01-21 11:05:49 ----SD---- C:\Users\chrudim\AppData\Roaming\Microsoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys [2011-02-12 198944]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-11-07 503352]
R0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273); C:\Windows\system32\DRIVERS\tdrpm273.sys [2011-01-28 1263200]
R0 timounter;Acronis Backup Archive Explorer; C:\Windows\system32\DRIVERS\timntr.sys [2011-01-28 970336]
R3 afcdp;afcdp; C:\Windows\system32\DRIVERS\afcdp.sys [2011-01-28 285280]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-05-05 6789632]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-05-05 221184]
R3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [2009-12-22 20568]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-07-20 1831968]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-05-22 215040]
S3 adphzqwz;adphzqwz; C:\Windows\system32\drivers\adphzqwz.sys []
S3 ao7lntj5;ao7lntj5; C:\Windows\system32\drivers\ao7lntj5.sys []
S3 appliandMP;appliandMP; C:\Windows\system32\DRIVERS\appliand.sys []
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files (x86)\MediaCoder\SysInfoX64.sys []
S3 MSICDSetup;MSICDSetup; \??\E:\CDriver64.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2010-07-30 19456]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2010-07-30 26624]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys []
S3 slicedisk.sys;slicedisk.sys; \??\C:\Windows\syswow64\slicedisk.sys []
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 127488]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 18944]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 161280]
S3 ss_bserd;SAMSUNG USB Mobile Logging Driver; C:\Windows\system32\DRIVERS\ss_bserd.sys [2009-09-19 128000]
S3 TFsExDisk;TFsExDisk; \??\C:\Windows\System32\Drivers\TFsExDisk.sys [2009-12-22 16448]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2010-07-30 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-07-14 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2010-07-30 9216]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 40448]
S4 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\Windows\System32\drivers\sfdrv01.sys [2005-08-10 68608]
S4 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\Windows\System32\drivers\sfhlp02.sys [2005-05-16 7168]
S4 sfvfs02;StarForce Protection VFS Driver (version 2.x); C:\Windows\System32\drivers\sfvfs02.sys [2005-11-03 89600]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2009-02-06 109056]
R2 AcrSch2Svc;Služba Acronis Scheduler2; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [2010-12-17 1112664]
R2 afcdpsrv;Služba Acronis Nonstop Backup; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2011-01-28 3246040]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-05-05 202752]
R2 Application Updater;Application Updater; C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe [2011-01-28 387072]
R2 dgdersvc;Device Error Recovery Service; C:\Windows\system32\dgdersvc.exe [2009-12-22 117584]
R2 ICQ Service;ICQ Service; C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe [2010-09-06 247096]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-24 935208]
R2 Správce výběru OS;Aktivátor Správce výběru OS Acronis; C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe [2010-07-07 2156952]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2010-12-08 628736]
S2 AcronisOSSReinstallSvc;Acronis OS Selector Reinstall Service; C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe [2007-03-14 2233400]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-06-18 135664]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-06-08 182768]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-03-19 1255736]

-----------------EOF-----------------