Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

nenačtení emailu, webové stránky

Návody, recenze, diskuze, řešení problémů

Moderátor: Moderátoři

Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Zamčeno
Zpráva
Autor
harpie77
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 24 kvě 2014 19:58

nenačtení emailu, webové stránky

#1 Příspěvek od harpie77 »

Omlouvám se, nepřečetla jsem si dostatečně pravidla fóra.

* přes aplikaci pošťák (seznam) vstoupím do schránky => nekonečné minuty... se schránka načítá a nikdy se nenačte
(řeším to kliknutím na domovskou stránku, tam se objevím přihlášená a pak teprve vstoupím do mailu)

* na Seznamu => rozkliknu položku s Programy Tv, pouze stručný výpis (datum, den, počet označených programů) bez nastavených kanálů a jejich programů, vše na bílém pozadí
(v náhledu na stránce Seznamu je však momentální program viditelný - po rozkliknutí nikoliv)

* v liště záložek kliknu na uloženou stránku => některé se načtou a přihlásím se bez problémů, jiné se nenačtou a objeví se jakýsi strohý výpis obsahu stránky na levé straně okna, nebo je stránka graficky "rozbitá"

Je možné, že jsem někde na něco špatně klikla nebo dokonce smazala nebo přenastavila, ale nevím kde a nevím co... Prosím o radu.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: nenačtení emailu, webové stránky

#2 Příspěvek od Rudy »

Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

harpie77
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 24 kvě 2014 19:58

Re: nenačtení emailu, webové stránky

#3 Příspěvek od harpie77 »

Logfile of random's system information tool 1.08 (written by

random/random)
Run by sarah at 2014-05-30 13:26:20
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 311 GB (65%) free of 477 GB
Total RAM: 6143 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:26:27, on 30.5.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17041)
Boot mode: Normal

Running processes:
C:\Windows\PixArt\PAC7302\Monitor.exe
C:\Program Files (x86)\Seznam.cz\bin\postak.exe
C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE
C:\Program Files (x86)\Gaming Keyboard\OSD.exe
C:\Program Files\trend micro\sarah.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =

http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:

\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:

\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper

\SearchHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-

0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:

\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} -

C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [Memeo AutoSync] C:\Program Files (x86)\Memeo\AutoSync

\MemeoLauncher2.exe --silent
O4 - HKLM\..\Run: [VICTORY Gaming Keyboard] "C:\Program Files

(x86)\Gaming Keyboard\Monitor.exe"
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner64.exe"

/AUTO




O4 - HKCU\..\Run: [Seznam Postak] "C:\Program Files (x86)\Seznam.cz\bin

\postak.exe" -s
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar

\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows

\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar

\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows

\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Add to Google Photos Screensa&ver -

res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel -

res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office

Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:

\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-

8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office

\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-

7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office

\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4

-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office

\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote -

{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft

Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-

AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer

\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-

07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer

\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:

\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} -

C:\Program Files (x86)\Common Files\Microsoft Shared

\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe

Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM

\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service

(AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows

\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner

- C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows

\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:

\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AMD Reservation Manager - Advanced Micro Devices - C:

\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD

Reservation Manager.exe
O23 - Service: Application Driver Auto Removal Service (01) (appdrvrem01)

- Unknown owner - C:\Windows\System32\appdrvrem01.exe (file missing)
O23 - Service: COMODO System - Cleaner Service (Cleaner_Validator) -

Unknown owner - C:\Program Files\COMODO\COMODO System-Cleaner

\Cleaner_Validator.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown

owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown

owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files

(x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000

(IEEtwCollectorService) - Unknown owner - C:\Windows

\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows

\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla

Foundation - C:\Program Files (x86)\Mozilla Maintenance Service

\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows

\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) -

Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Acronis OS Selector activator (OS Selector) - Unknown

owner - C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage)

- Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) -

Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: RSEBoardServer - Unknown owner - C:\Program Files (x86)\Q

Draw Software\rseboardser.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown

owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Seagate Dashboard Service (SeagateDashboardService) -

Memeo - C:\Program Files (x86)\Seagate\Seagate Dashboard

\SeagateDashboardService.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC

Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:

\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:

\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) -

Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown

owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown

owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program

Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) -

Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) -

Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner

- C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown

owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) -

Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) -

Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) -

Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101

(WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media

Player\wmpnetwk.exe (file missing)

--
End of file - 9780 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows

SharedSection=1024,20480,768 Windows=On SubSystemType=Windows

ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3

ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4

ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows

SharedSection=1024,20480,768 Windows=On SubSystemType=Windows

ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3

ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4

ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD

Reservation Manager.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE"
"C:\Program Files (x86)\Q Draw Software\rseboardser.exe"
"C:\Program Files (x86)\Seagate\Seagate Dashboard

\SeagateDashboardService.exe"
"C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort

\SeaPort.exe"
"C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe"

/launchService
"C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe"
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-

be817523f6aa} -IoEventPortName:HostProcess-e8c065ad-6ade-4256-a6a3-

81b10536341a -SystemEventPortName:HostProcess-88bd6bb2-1c74-40d6-b1ba-

02c241c251c3 -IoCancelEventPortName:HostProcess-771fe4be-35ec-4f64-b29a-

176667ade695 -NonStateChangingEventPortName:HostProcess-3c471b4d-8fd4-

42c9-b3a0-bc47978e9faf -ServiceSID:S-1-5-80-2652678385-582572993-

1835434367-1344795993-749280709 -LifetimeId:b454887d-b4bf-4cc4-8c1b-

4f44a34da593 -DeviceGroupId:WpdFsGroup
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Windows\PixArt\PAC7302\Monitor.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files (x86)\Seznam.cz\bin\postak.exe" -s
"C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Gaming Keyboard\OSD.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\servicing\TrustedInstaller.exe
"C:\Windows\system32\RunDll32.exe" "C:\Windows\system32\WerConCpl.dll",

LaunchErcApp -responsepester
"C:\Windows\system32\SearchProtocolHost.exe" Global

\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -

2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible;

MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft

\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 504 508 516 65536 512
"C:\Users\sarah\Desktop\Viry fórum - programy\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-

AE615179BCCF}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer

\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL

[2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer

\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype

\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-08-06 6311296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer

\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:

\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows

\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-

A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack

\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows

\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9

-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL

[2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows

\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-

8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet

Explorer\skypeieplugin.dll [2013-08-06 4533120]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows

\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22

-42B3008E02FF}]
Office Document Cache Handler - C:

\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"PAC7302_Monitor"=C:\Windows\PixArt\PAC7302\Monitor.exe [2007-12-10

323584]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11

1271072]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ccleaner"=C:\Program Files\CCleaner\CCleaner64.exe [2011-01-24 3457336]
"Seznam Postak"=C:\Program Files (x86)\Seznam.cz\bin\postak.exe [2012-01

-10 491040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\3200 Scan2PC]
C:\Windows\twain_32\Samsung\SCX3200\Scan2Pc.exe [2010-05-18 1989120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\ActivControl]
C:\Program Files\Activ Software\Activdriver\ActivControl2x64.exe [2009-

04-03 1237504]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-

21 959904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\Google Update]
C:\Users\sarah\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-16

136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\GoogleDriveSync]
C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\HDAudDeck]
C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2009-09-21 2583040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\NokiaSuite.exe]
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [2013-04-19

1090912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\ReSent]
c:\program files (x86)\q draw software resource\resent\rs_resent.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\Seagate Dashboard]
C:\Program Files (x86)\Seagate\Seagate Dashboard\MemeoLauncher.exe [2011

-06-02 79112]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

[2011-01-26 336384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\Utility Chest Home Page Guard 64 bit]
C:\PROGRA~2\UTILIT~2\bar\1.bin\AppIntegrator64.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\Utility Chest Search Scope Monitor]
C:\PROGRA~2\UTILIT~2\bar\1.bin\49srchmn.exe /m=2 /w /h []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\UtilityChest_49 Browser Plugin Loader]
C:\PROGRA~2\UTILIT~2\bar\1.bin\49brmon.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig

\startupfolder\C:^ProgramData^Microsoft^Windows^Start

Menu^Programs^Startup^Adobe Gamma Loader.lnk]
C:\PROGRA~2\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2002-09-25 113664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig

\startupfolder\C:^ProgramData^Microsoft^Windows^Start

Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~1\MCAFEE~1\386EB9~1.130\SSSCHE~1.EXE []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows

\CurrentVersion\Run]
"Memeo AutoSync"=C:\Program Files (x86)\Memeo\AutoSync\MemeoLauncher2.exe

[2011-05-13 144608]
"VICTORY Gaming Keyboard"=C:\Program Files (x86)\Gaming Keyboard

\Monitor.exe [2013-04-09 270336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion

\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer

\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:

\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows

\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:

\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal

\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network

\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network

\MsMpSvc]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies

\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies

\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies

\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies

\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess

\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess

\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2014-05-30 13:26:20 ----D---- C:\rsit
2014-05-25 11:38:58 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-05-25 10:35:37 ----D---- C:\Windows\ERUNT
2014-05-25 10:33:50 ----A---- C:\AVScanner.ini
2014-05-24 22:55:24 ----D---- C:\Program Files\trend micro
2014-05-23 18:56:06 ----D---- C:\Windows\SYSWOW64\bitstreams
2014-05-23 18:56:06 ----AS---- C:\Windows\SYSWOW64\zlib1.dll
2014-05-23 18:56:06 ----AS---- C:\Windows\SYSWOW64\ssleay32.dll
2014-05-23 18:56:06 ----AS---- C:\Windows\SYSWOW64\pthreadVC2.dll
2014-05-23 18:56:05 ----AS---- C:\Windows\SYSWOW64\pthreadGC2.dll
2014-05-23 18:56:05 ----AS---- C:\Windows\SYSWOW64\libssh2.dll
2014-05-23 18:56:05 ----AS---- C:\Windows\SYSWOW64\librtmp.dll
2014-05-23 18:56:05 ----AS---- C:\Windows\SYSWOW64\libidn-11.dll
2014-05-23 18:56:04 ----AS---- C:\Windows\SYSWOW64\libeay32.dll
2014-05-23 18:56:04 ----AS---- C:\Windows\SYSWOW64\libcurl-4.dll
2014-05-23 18:56:04 ----AS---- C:\Windows\SYSWOW64\cudart32_50_35.dll
2014-05-15 16:00:29 ----A---- C:\Windows\system32\mshtmled.dll
2014-05-15 16:00:29 ----A---- C:\Windows\system32\mshtml.dll
2014-05-15 16:00:28 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-05-15 16:00:23 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-05-14 12:59:54 ----A---- C:\Windows\system32\shell32.dll
2014-05-14 12:59:53 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-05-14 12:59:52 ----A---- C:\Windows\system32\aepdu.dll
2014-05-14 12:59:51 ----A---- C:\Windows\system32\aeinv.dll
2014-05-14 12:59:20 ----A---- C:\Windows\system32\lsasrv.dll
2014-05-14 12:59:19 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-05-14 12:59:19 ----A---- C:\Windows\system32\kerberos.dll
2014-05-14 12:59:18 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-05-14 12:59:18 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-05-14 12:59:18 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-05-14 12:59:18 ----A---- C:\Windows\system32\winlogon.exe
2014-05-14 12:59:18 ----A---- C:\Windows\system32\objsel.dll
2014-05-14 12:59:18 ----A---- C:\Windows\system32\msv1_0.dll
2014-05-14 12:59:17 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-05-14 12:59:16 ----A---- C:\Windows\SYSWOW64\objsel.dll
2014-05-14 12:59:16 ----A---- C:\Windows\system32\TSpkg.dll
2014-05-14 12:59:15 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-05-14 12:59:15 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-05-14 12:59:15 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-05-14 12:59:15 ----A---- C:\Windows\system32\wdigest.dll
2014-05-14 12:59:15 ----A---- C:\Windows\system32\KernelBase.dll
2014-05-14 12:59:14 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2014-05-14 12:59:14 ----A---- C:\Windows\system32\schannel.dll
2014-05-14 12:59:14 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-05-14 12:59:14 ----A---- C:\Windows\system32\dimsroam.dll
2014-05-14 12:59:14 ----A---- C:\Windows\system32\adprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-05-14 12:59:13 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2014-05-14 12:59:13 ----A---- C:\Windows\system32\dpapiprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\system32\cngprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\system32\capiprovider.dll
2014-05-14 12:59:12 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2014-05-14 12:59:12 ----A---- C:\Windows\system32\wincredprovider.dll
2014-05-14 12:59:12 ----A---- C:\Windows\system32\sspicli.dll
2014-05-14 12:59:12 ----A---- C:\Windows\system32\lsass.exe
2014-05-14 12:59:12 ----A---- C:\Windows\system32\credssp.dll
2014-05-14 12:59:11 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-05-14 12:59:11 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-05-14 12:59:11 ----A---- C:\Windows\system32\sspisrv.dll
2014-05-14 12:59:11 ----A---- C:\Windows\system32\secur32.dll
2014-05-14 12:59:10 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-05-10 19:20:36 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-05-06 18:40:18 ----A---- C:\Windows\system32\ieui.dll
2014-05-06 18:40:17 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-05-06 18:40:15 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-05-06 18:40:15 ----A---- C:\Windows\system32\vbscript.dll
2014-05-06 18:40:07 ----A---- C:\Windows

\system32\JavaScriptCollectionAgent.dll
2014-05-06 18:40:07 ----A---- C:\Windows\system32\iernonce.dll
2014-05-06 18:40:07 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-05-06 18:40:07 ----A---- C:\Windows\system32\ie4uinit.exe
2014-05-06 18:40:05 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-05-06 18:40:05 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-05-06 18:40:05 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-05-06 18:40:05 ----A---- C:\Windows\system32\msrating.dll
2014-05-06 18:40:05 ----A---- C:\Windows\system32\jscript9diag.dll
2014-05-06 18:40:05 ----A---- C:\Windows\system32\dxtrans.dll
2014-05-06 18:40:05 ----A---- C:\Windows\system32\dxtmsft.dll
2014-05-06 18:40:04 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-05-06 18:40:04 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-05-06 18:40:04 ----A---- C:\Windows\system32\msfeeds.dll
2014-05-06 18:40:04 ----A---- C:\Windows\system32\jsproxy.dll
2014-05-06 18:40:03 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-05-06 18:40:03 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-05-06 18:40:03 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-05-06 18:40:03 ----A---- C:\Windows\system32\ieUnatt.exe
2014-05-06 18:40:03 ----A---- C:\Windows\system32\iesetup.dll
2014-05-06 18:40:02 ----A---- C:\Windows

\SYSWOW64\JavaScriptCollectionAgent.dll
2014-05-06 18:40:00 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-05-06 18:40:00 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-05-06 18:40:00 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-05-06 18:39:59 ----A---- C:\Windows

\system32\MsSpellCheckingFacility.exe
2014-05-06 18:39:59 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-05-06 18:39:59 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-05-06 18:39:59 ----A---- C:\Windows\system32\ieapfltr.dll
2014-05-06 18:39:57 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-05-06 18:39:57 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-05-06 18:39:57 ----A---- C:\Windows\system32\wininet.dll
2014-05-06 18:39:57 ----A---- C:\Windows\system32\iertutil.dll
2014-05-06 18:39:56 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-05-06 18:39:56 ----A---- C:\Windows\system32\urlmon.dll
2014-05-06 18:39:55 ----A---- C:\Windows\system32\ieframe.dll
2014-05-06 18:39:54 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-05-06 18:39:53 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-05-06 18:39:53 ----A---- C:\Windows\system32\jscript9.dll
2014-05-06 18:39:23 ----SD---- C:\Windows\system32\CompatTel

======List of files/folders modified in the last 1 months======

2014-05-30 13:26:27 ----D---- C:\Windows\Prefetch
2014-05-30 13:19:02 ----D---- C:\Windows\System32
2014-05-30 13:19:02 ----D---- C:\Windows\inf
2014-05-30 13:19:02 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-05-30 13:18:14 ----D---- C:\Windows\Temp
2014-05-30 13:16:18 ----D---- C:\Windows\system32\config
2014-05-29 20:04:21 ----SHD---- C:\System Volume Information
2014-05-28 21:46:03 ----D---- C:\Windows\system32\FxsTmp
2014-05-25 12:28:13 ----D---- C:\Windows\SysWOW64
2014-05-25 12:26:24 ----D---- C:\Windows\system32\drivers\etc
2014-05-25 12:26:24 ----D---- C:\Windows
2014-05-25 12:26:21 ----D---- C:\Windows\Tasks
2014-05-25 11:40:02 ----HD---- C:\ProgramData
2014-05-25 10:54:10 ----D---- C:\Program Files (x86)
2014-05-25 10:33:50 ----RD---- C:\Program Files
2014-05-24 16:17:35 ----D---- C:\Windows\system32\Tasks
2014-05-24 16:17:16 ----D---- C:\Program Files (x86)\Common Files
2014-05-17 11:30:32 ----D---- C:\Windows\rescache
2014-05-15 19:41:33 ----SHD---- C:\Windows\Installer
2014-05-15 19:11:53 ----D---- C:\Windows\Microsoft.NET
2014-05-15 19:11:17 ----RSD---- C:\Windows\assembly
2014-05-15 16:25:39 ----D---- C:\Windows\winsxs
2014-05-15 16:23:19 ----D---- C:\Windows\system32\drivers
2014-05-15 16:23:19 ----D---- C:\Windows\system32\cs-CZ
2014-05-15 16:23:19 ----D---- C:\Windows\PolicyDefinitions
2014-05-15 16:08:13 ----D---- C:\ProgramData\Microsoft Help
2014-05-15 16:00:50 ----D---- C:\Windows\system32\catroot
2014-05-15 16:00:48 ----D---- C:\Windows\system32\catroot2
2014-05-15 15:37:20 ----D---- C:\Program Files (x86)\Mozilla Maintenance

Service
2014-05-14 21:24:27 ----D---- C:\Windows\system32\MRT
2014-05-14 21:24:24 ----A---- C:\Windows\system32\MRT.exe
2014-05-14 12:37:59 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-05-09 20:32:26 ----D---- C:\Users\sarah\AppData\Roaming\Spore
2014-05-06 19:18:51 ----D---- C:\Program Files\Internet Explorer
2014-05-06 19:18:50 ----D---- C:\Windows\SYSWOW64\en-US
2014-05-06 19:18:50 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-05-06 19:18:49 ----D---- C:\Windows\system32\en-US
2014-05-06 19:18:49 ----D---- C:\Program Files (x86)\Internet Explorer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto,

3=Demand, 4=Disabled)======

R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows

\system32\DRIVERS\MpFilter.sys [2014-01-25 268512]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14

12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-

11-20 213888]
R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS

\snapman.sys [2011-12-18 276576]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows

\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 appdrv01;Application Driver (01); C:\Windows\System32\Drivers

\appdrv01.sys [2013-11-02 2913904]
R1 CFRMD;CFRMD; C:\Windows\system32\DRIVERS\CFRMD.sys [2010-10-28 78528]
R1 CFRPD;CFRPD; C:\Windows\system32\DRIVERS\CFRPD.sys [2010-10-28 36840]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows

\system32\drivers\csc.sys [2010-11-20 514560]
R2 cpuz135;cpuz135; \??\C:\Windows\system32\drivers\cpuz135_x64.sys

[2011-09-21 21992]
R2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [2009-10

-29 53816]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows

\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 133928]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2009-10-29

11576]
R3 ActivHidSerMini;Promethean Serial Board Driver; C:\Windows

\system32\DRIVERS\activhidsermini.sys [2008-12-17 64256]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys

[2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-01-

27 9085952]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-01-

27 299520]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:

\Windows\system32\drivers\AtihdW76.sys [2010-11-17 115216]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows

\system32\DRIVERS\nvmf6264.sys [2010-08-12 350952]
R3 prmvmouse;Promethean HID Mouse Service; C:\Windows\system32\DRIVERS

\activmouse.sys [2008-12-17 7168]
R3 RTL8023x64;Realtek 10/100 NIC Family NDIS x64 Driver; C:\Windows

\system32\DRIVERS\Rtnic64.sys [2009-06-10 51712]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys

[2013-07-03 42496]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:

\Windows\system32\drivers\viahduaa.sys [2009-09-17 1250816]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-01-

27 9085952]
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files (x86)\MediaCoder

\SysInfoX64.sys []
S3 KMWDFILTER;HIDServiceDesc; C:\Windows\system32\DRIVERS\KMWDFILTER.sys

[2009-04-29 30208]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers

\ccdcmbx64.sys [2013-01-23 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers

\ccdcmbox64.sys [2013-01-23 27136]
S3 nmwcdnsucx64;Nokia USB Flashing Generic; C:\Windows\system32\drivers

\nmwcdnsucx64.sys [2013-01-23 12800]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\Windows

\system32\drivers\nmwcdnsux64.sys [2013-01-23 171008]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows

\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 PAC7302;Eye 312; C:\Windows\system32\DRIVERS\PAC7302.SYS [2009-04-28

532480]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS

\pccsmcfdx64.sys [2012-10-17 26112]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows

\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows

\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20

34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-

23 57856]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys

[2013-01-23 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\DRIVERS\usbser.sys [2013

-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS

\usbser_lowerfltjx64.sys [2013-01-23 9216]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-

20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20

41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto,

3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files

(x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows

\system32\atiesrxx.exe [2011-01-27 203776]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies

\ATI.ACE\Fuel\Fuel.Service.exe [2011-01-26 354304]
R2 AMD Reservation Manager;AMD Reservation Manager; C:\Program Files\ATI

Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe

[2010-06-17 194496]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows

\System32\svchost.exe [2009-07-14 27136]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files

\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft

Security Client\MsMpEng.exe [2014-03-11 23808]
R2 OS Selector;Acronis OS Selector activator; C:\Program Files

(x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe [2010-05-25 2139400]
R2 RSEBoardServer;RSEBoardServer; C:\Program Files (x86)\Q Draw Software

\rseboardser.exe [2011-09-01 433152]
R2 SeagateDashboardService;Seagate Dashboard Service; C:\Program Files

(x86)\Seagate\Seagate Dashboard\SeagateDashboardService.exe [2011-06-02

14088]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement

Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars

\Skype C2C Service\c2c_service.exe [2013-08-06 3291008]
R2 TeamViewer6;TeamViewer 6; C:\Program Files (x86)\TeamViewer

\Version6\TeamViewer_Service.exe [2011-08-30 2358656]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243;

C:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 347872]
S2 appdrvrem01;Application Driver Auto Removal Service (01); C:\Windows

\System32\appdrvrem01.exe [2013-11-02 551824]
S2 Cleaner_Validator;COMODO System - Cleaner Service; C:\Program Files

\COMODO\COMODO System-Cleaner\Cleaner_Validator.exe [2010-10-28 362432]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN

v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework

\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN

v4.0.30319_X64; C:\Windows\Microsoft.NET

\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater

\Updater.exe [2013-09-05 171680]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:

\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14

257712]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07

-14 27136]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common

\Google Updater\GoogleUpdaterService.exe [2011-02-08 136120]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-

1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-06 111616]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint

Workspace Audit Service; C:\Program Files (x86)\Microsoft Office

\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files

(x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-05-10

119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files

\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common

Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

[2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows

\System32\svchost.exe [2009-07-14 27136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity

Solution\ServiceLayer.exe [2013-04-18 737616]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows

\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows

\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows

\system32\Wat\WatAdminSvc.exe [2010-11-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET

\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google

\Update\GoogleUpdate.exe [2013-11-10 116648]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files

(x86)\Google\Update\GoogleUpdate.exe [2013-11-10 116648]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\

\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET

\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\

\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET

\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\

\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET

\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: nenačtení emailu, webové stránky

#4 Příspěvek od Rudy »

Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

harpie77
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 24 kvě 2014 19:58

Re: nenačtení emailu, webové stránky

#5 Příspěvek od harpie77 »

# AdwCleaner v3.211 - Report created 30/05/2014 at 19:12:21
# Updated 26/05/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : sarah - SARAH-PC
# Running from : C:\Users\sarah\Desktop\Viry fórum - programy

\adwcleaner_3.211.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\AppDataLow\Software
Key Deleted : [x64] HKLM\SOFTWARE\Software

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17041


-\\ Mozilla Firefox v29.0.1 (cs)

[ File : C:\Users\sarah\AppData\Roaming\Mozilla\Firefox\Profiles

\dbcm6k51.default\prefs.js ]


-\\ Google Chrome v

[ File : C:\Users\sarah\AppData\Local\Google\Chrome\User Data\Default

\preferences ]


*************************

AdwCleaner[R1].txt - [999 octets] - [30/05/2014 19:11:35]
AdwCleaner[S1].txt - [921 octets] - [30/05/2014 19:12:21]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [980 octets]

##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: nenačtení emailu, webové stránky

#6 Příspěvek od Rudy »

Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

harpie77
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 24 kvě 2014 19:58

Re: nenačtení emailu, webové stránky

#7 Příspěvek od harpie77 »

Logfile of random's system information tool 1.08 (written by

random/random)
Run by sarah at 2014-05-30 19:26:30
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 310 GB (65%) free of 477 GB
Total RAM: 6143 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:26:54, on 30.5.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17041)
Boot mode: Normal

Running processes:
C:\Windows\PixArt\PAC7302\Monitor.exe
C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE
C:\Program Files (x86)\Gaming Keyboard\OSD.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\sarah.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =

http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:

\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:

\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper

\SearchHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-

0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:

\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} -

C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [Memeo AutoSync] C:\Program Files (x86)\Memeo\AutoSync

\MemeoLauncher2.exe --silent
O4 - HKLM\..\Run: [VICTORY Gaming Keyboard] "C:\Program Files

(x86)\Gaming Keyboard\Monitor.exe"
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner64.exe"

/AUTO




O4 - HKCU\..\Run: [Seznam Postak] "C:\Program Files (x86)\Seznam.cz\bin

\postak.exe" -s
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar

\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows

\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar

\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows

\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Add to Google Photos Screensa&ver -

res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel -

res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office

Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:

\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-

8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office

\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-

7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office

\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4

-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office

\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote -

{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft

Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-

AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer

\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-

07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer

\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:

\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} -

C:\Program Files (x86)\Common Files\Microsoft Shared

\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe

Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM

\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service

(AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows

\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner

- C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows

\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:

\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AMD Reservation Manager - Advanced Micro Devices - C:

\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD

Reservation Manager.exe
O23 - Service: Application Driver Auto Removal Service (01) (appdrvrem01)

- Unknown owner - C:\Windows\System32\appdrvrem01.exe (file missing)
O23 - Service: COMODO System - Cleaner Service (Cleaner_Validator) -

Unknown owner - C:\Program Files\COMODO\COMODO System-Cleaner

\Cleaner_Validator.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown

owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown

owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files

(x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000

(IEEtwCollectorService) - Unknown owner - C:\Windows

\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows

\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla

Foundation - C:\Program Files (x86)\Mozilla Maintenance Service

\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows

\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) -

Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Acronis OS Selector activator (OS Selector) - Unknown

owner - C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage)

- Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) -

Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: RSEBoardServer - Unknown owner - C:\Program Files (x86)\Q

Draw Software\rseboardser.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown

owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Seagate Dashboard Service (SeagateDashboardService) -

Memeo - C:\Program Files (x86)\Seagate\Seagate Dashboard

\SeagateDashboardService.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC

Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:

\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:

\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) -

Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown

owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown

owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program

Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) -

Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) -

Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner

- C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown

owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) -

Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) -

Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) -

Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101

(WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media

Player\wmpnetwk.exe (file missing)

--
End of file - 9783 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows

SharedSection=1024,20480,768 Windows=On SubSystemType=Windows

ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3

ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4

ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows

SharedSection=1024,20480,768 Windows=On SubSystemType=Windows

ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3

ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4

ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD

Reservation Manager.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\COMODO\COMODO System-Cleaner\Updater.exe" /initial_scan
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE"
"C:\Program Files (x86)\Q Draw Software\rseboardser.exe"
"C:\Program Files (x86)\Seagate\Seagate Dashboard

\SeagateDashboardService.exe"
"C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort

\SeaPort.exe"
"C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe"

/launchService
"C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe"
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-

be817523f6aa} -IoEventPortName:HostProcess-a4b22bfc-e534-471e-8e86-

7714ceeffcc4 -SystemEventPortName:HostProcess-89ff4d36-e453-434e-b9b1-

dd1c52520f90 -IoCancelEventPortName:HostProcess-ffaf1db2-8186-4386-b97e-

5f20ad0b4f4b -NonStateChangingEventPortName:HostProcess-7a7024c8-5f88-

458c-a349-cfabba0ddce6 -ServiceSID:S-1-5-80-2652678385-582572993-

1835434367-1344795993-749280709 -LifetimeId:93b18319-41db-4e14-bc2d-

7b0cf3ee2e94 -DeviceGroupId:WpdFsGroup
C:\Windows\Explorer.EXE
"C:\Windows\PixArt\PAC7302\Monitor.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Gaming Keyboard\OSD.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\AUDIODG.EXE 0x95c
"C:\Windows\system32\SearchProtocolHost.exe" Global

\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -

2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible;

MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft

\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 504 508 516 65536 512
"C:\Users\sarah\Desktop\Viry fórum - programy\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer

\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL

[2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer

\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype

\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-08-06 6311296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer

\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:

\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows

\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-

A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack

\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows

\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9

-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL

[2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows

\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-

8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet

Explorer\skypeieplugin.dll [2013-08-06 4533120]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows

\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22

-42B3008E02FF}]
Office Document Cache Handler - C:

\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"PAC7302_Monitor"=C:\Windows\PixArt\PAC7302\Monitor.exe [2007-12-10

323584]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11

1271072]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ccleaner"=C:\Program Files\CCleaner\CCleaner64.exe [2011-01-24 3457336]
"Seznam Postak"=C:\Program Files (x86)\Seznam.cz\bin\postak.exe [2012-01

-10 491040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\3200 Scan2PC]
C:\Windows\twain_32\Samsung\SCX3200\Scan2Pc.exe [2010-05-18 1989120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\ActivControl]
C:\Program Files\Activ Software\Activdriver\ActivControl2x64.exe [2009-

04-03 1237504]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-

21 959904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\Google Update]
C:\Users\sarah\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-16

136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\GoogleDriveSync]
C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\HDAudDeck]
C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2009-09-21 2583040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\NokiaSuite.exe]
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [2013-04-19

1090912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\ReSent]
c:\program files (x86)\q draw software resource\resent\rs_resent.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\Seagate Dashboard]
C:\Program Files (x86)\Seagate\Seagate Dashboard\MemeoLauncher.exe [2011

-06-02 79112]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

[2011-01-26 336384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\Utility Chest Home Page Guard 64 bit]
C:\PROGRA~2\UTILIT~2\bar\1.bin\AppIntegrator64.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\Utility Chest Search Scope Monitor]
C:\PROGRA~2\UTILIT~2\bar\1.bin\49srchmn.exe /m=2 /w /h []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\UtilityChest_49 Browser Plugin Loader]
C:\PROGRA~2\UTILIT~2\bar\1.bin\49brmon.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig

\startupfolder\C:^ProgramData^Microsoft^Windows^Start

Menu^Programs^Startup^Adobe Gamma Loader.lnk]
C:\PROGRA~2\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2002-09-25 113664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig

\startupfolder\C:^ProgramData^Microsoft^Windows^Start

Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~1\MCAFEE~1\386EB9~1.130\SSSCHE~1.EXE []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows

\CurrentVersion\Run]
"Memeo AutoSync"=C:\Program Files (x86)\Memeo\AutoSync\MemeoLauncher2.exe

[2011-05-13 144608]
"VICTORY Gaming Keyboard"=C:\Program Files (x86)\Gaming Keyboard

\Monitor.exe [2013-04-09 270336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion

\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer

\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:

\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows

\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:

\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal

\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network

\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network

\MsMpSvc]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies

\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies

\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies

\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies

\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess

\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess

\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2014-05-30 19:11:32 ----D---- C:\AdwCleaner
2014-05-30 13:26:20 ----D---- C:\rsit
2014-05-25 11:38:58 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-05-25 10:35:37 ----D---- C:\Windows\ERUNT
2014-05-25 10:33:50 ----A---- C:\AVScanner.ini
2014-05-24 22:55:24 ----D---- C:\Program Files\trend micro
2014-05-23 18:56:06 ----D---- C:\Windows\SYSWOW64\bitstreams
2014-05-23 18:56:06 ----AS---- C:\Windows\SYSWOW64\zlib1.dll
2014-05-23 18:56:06 ----AS---- C:\Windows\SYSWOW64\ssleay32.dll
2014-05-23 18:56:06 ----AS---- C:\Windows\SYSWOW64\pthreadVC2.dll
2014-05-23 18:56:05 ----AS---- C:\Windows\SYSWOW64\pthreadGC2.dll
2014-05-23 18:56:05 ----AS---- C:\Windows\SYSWOW64\libssh2.dll
2014-05-23 18:56:05 ----AS---- C:\Windows\SYSWOW64\librtmp.dll
2014-05-23 18:56:05 ----AS---- C:\Windows\SYSWOW64\libidn-11.dll
2014-05-23 18:56:04 ----AS---- C:\Windows\SYSWOW64\libeay32.dll
2014-05-23 18:56:04 ----AS---- C:\Windows\SYSWOW64\libcurl-4.dll
2014-05-23 18:56:04 ----AS---- C:\Windows\SYSWOW64\cudart32_50_35.dll
2014-05-15 16:00:29 ----A---- C:\Windows\system32\mshtmled.dll
2014-05-15 16:00:29 ----A---- C:\Windows\system32\mshtml.dll
2014-05-15 16:00:28 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-05-15 16:00:23 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-05-14 12:59:54 ----A---- C:\Windows\system32\shell32.dll
2014-05-14 12:59:53 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-05-14 12:59:52 ----A---- C:\Windows\system32\aepdu.dll
2014-05-14 12:59:51 ----A---- C:\Windows\system32\aeinv.dll
2014-05-14 12:59:20 ----A---- C:\Windows\system32\lsasrv.dll
2014-05-14 12:59:19 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-05-14 12:59:19 ----A---- C:\Windows\system32\kerberos.dll
2014-05-14 12:59:18 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-05-14 12:59:18 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-05-14 12:59:18 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-05-14 12:59:18 ----A---- C:\Windows\system32\winlogon.exe
2014-05-14 12:59:18 ----A---- C:\Windows\system32\objsel.dll
2014-05-14 12:59:18 ----A---- C:\Windows\system32\msv1_0.dll
2014-05-14 12:59:17 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-05-14 12:59:16 ----A---- C:\Windows\SYSWOW64\objsel.dll
2014-05-14 12:59:16 ----A---- C:\Windows\system32\TSpkg.dll
2014-05-14 12:59:15 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-05-14 12:59:15 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-05-14 12:59:15 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-05-14 12:59:15 ----A---- C:\Windows\system32\wdigest.dll
2014-05-14 12:59:15 ----A---- C:\Windows\system32\KernelBase.dll
2014-05-14 12:59:14 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2014-05-14 12:59:14 ----A---- C:\Windows\system32\schannel.dll
2014-05-14 12:59:14 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-05-14 12:59:14 ----A---- C:\Windows\system32\dimsroam.dll
2014-05-14 12:59:14 ----A---- C:\Windows\system32\adprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-05-14 12:59:13 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2014-05-14 12:59:13 ----A---- C:\Windows\system32\dpapiprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\system32\cngprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\system32\capiprovider.dll
2014-05-14 12:59:12 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2014-05-14 12:59:12 ----A---- C:\Windows\system32\wincredprovider.dll
2014-05-14 12:59:12 ----A---- C:\Windows\system32\sspicli.dll
2014-05-14 12:59:12 ----A---- C:\Windows\system32\lsass.exe
2014-05-14 12:59:12 ----A---- C:\Windows\system32\credssp.dll
2014-05-14 12:59:11 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-05-14 12:59:11 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-05-14 12:59:11 ----A---- C:\Windows\system32\sspisrv.dll
2014-05-14 12:59:11 ----A---- C:\Windows\system32\secur32.dll
2014-05-14 12:59:10 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-05-10 19:20:36 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-05-06 18:40:18 ----A---- C:\Windows\system32\ieui.dll
2014-05-06 18:40:17 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-05-06 18:40:15 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-05-06 18:40:15 ----A---- C:\Windows\system32\vbscript.dll
2014-05-06 18:40:07 ----A---- C:\Windows

\system32\JavaScriptCollectionAgent.dll
2014-05-06 18:40:07 ----A---- C:\Windows\system32\iernonce.dll
2014-05-06 18:40:07 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-05-06 18:40:07 ----A---- C:\Windows\system32\ie4uinit.exe
2014-05-06 18:40:05 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-05-06 18:40:05 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-05-06 18:40:05 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-05-06 18:40:05 ----A---- C:\Windows\system32\msrating.dll
2014-05-06 18:40:05 ----A---- C:\Windows\system32\jscript9diag.dll
2014-05-06 18:40:05 ----A---- C:\Windows\system32\dxtrans.dll
2014-05-06 18:40:05 ----A---- C:\Windows\system32\dxtmsft.dll
2014-05-06 18:40:04 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-05-06 18:40:04 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-05-06 18:40:04 ----A---- C:\Windows\system32\msfeeds.dll
2014-05-06 18:40:04 ----A---- C:\Windows\system32\jsproxy.dll
2014-05-06 18:40:03 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-05-06 18:40:03 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-05-06 18:40:03 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-05-06 18:40:03 ----A---- C:\Windows\system32\ieUnatt.exe
2014-05-06 18:40:03 ----A---- C:\Windows\system32\iesetup.dll
2014-05-06 18:40:02 ----A---- C:\Windows

\SYSWOW64\JavaScriptCollectionAgent.dll
2014-05-06 18:40:00 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-05-06 18:40:00 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-05-06 18:40:00 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-05-06 18:39:59 ----A---- C:\Windows

\system32\MsSpellCheckingFacility.exe
2014-05-06 18:39:59 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-05-06 18:39:59 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-05-06 18:39:59 ----A---- C:\Windows\system32\ieapfltr.dll
2014-05-06 18:39:57 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-05-06 18:39:57 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-05-06 18:39:57 ----A---- C:\Windows\system32\wininet.dll
2014-05-06 18:39:57 ----A---- C:\Windows\system32\iertutil.dll
2014-05-06 18:39:56 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-05-06 18:39:56 ----A---- C:\Windows\system32\urlmon.dll
2014-05-06 18:39:55 ----A---- C:\Windows\system32\ieframe.dll
2014-05-06 18:39:54 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-05-06 18:39:53 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-05-06 18:39:53 ----A---- C:\Windows\system32\jscript9.dll
2014-05-06 18:39:23 ----SD---- C:\Windows\system32\CompatTel

======List of files/folders modified in the last 1 months======

2014-05-30 19:21:06 ----D---- C:\Windows\System32
2014-05-30 19:21:06 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-05-30 19:21:05 ----D---- C:\Windows\inf
2014-05-30 19:20:01 ----D---- C:\Windows\Prefetch
2014-05-30 19:19:56 ----D---- C:\Windows\Temp
2014-05-30 19:19:48 ----D---- C:\Windows\system32\config
2014-05-29 20:04:21 ----SHD---- C:\System Volume Information
2014-05-28 21:46:03 ----D---- C:\Windows\system32\FxsTmp
2014-05-25 12:28:13 ----D---- C:\Windows\SysWOW64
2014-05-25 12:26:24 ----D---- C:\Windows\system32\drivers\etc
2014-05-25 12:26:24 ----D---- C:\Windows
2014-05-25 12:26:21 ----D---- C:\Windows\Tasks
2014-05-25 11:40:02 ----HD---- C:\ProgramData
2014-05-25 10:54:10 ----D---- C:\Program Files (x86)
2014-05-25 10:33:50 ----RD---- C:\Program Files
2014-05-24 16:17:35 ----D---- C:\Windows\system32\Tasks
2014-05-24 16:17:16 ----D---- C:\Program Files (x86)\Common Files
2014-05-17 11:30:32 ----D---- C:\Windows\rescache
2014-05-15 19:41:33 ----SHD---- C:\Windows\Installer
2014-05-15 19:11:53 ----D---- C:\Windows\Microsoft.NET
2014-05-15 19:11:17 ----RSD---- C:\Windows\assembly
2014-05-15 16:25:39 ----D---- C:\Windows\winsxs
2014-05-15 16:23:19 ----D---- C:\Windows\system32\drivers
2014-05-15 16:23:19 ----D---- C:\Windows\system32\cs-CZ
2014-05-15 16:23:19 ----D---- C:\Windows\PolicyDefinitions
2014-05-15 16:08:13 ----D---- C:\ProgramData\Microsoft Help
2014-05-15 16:00:50 ----D---- C:\Windows\system32\catroot
2014-05-15 16:00:48 ----D---- C:\Windows\system32\catroot2
2014-05-15 15:37:20 ----D---- C:\Program Files (x86)\Mozilla Maintenance

Service
2014-05-14 21:24:27 ----D---- C:\Windows\system32\MRT
2014-05-14 21:24:24 ----A---- C:\Windows\system32\MRT.exe
2014-05-14 12:37:59 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-05-09 20:32:26 ----D---- C:\Users\sarah\AppData\Roaming\Spore
2014-05-06 19:18:51 ----D---- C:\Program Files\Internet Explorer
2014-05-06 19:18:50 ----D---- C:\Windows\SYSWOW64\en-US
2014-05-06 19:18:50 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-05-06 19:18:49 ----D---- C:\Windows\system32\en-US
2014-05-06 19:18:49 ----D---- C:\Program Files (x86)\Internet Explorer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto,

3=Demand, 4=Disabled)======

R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows

\system32\DRIVERS\MpFilter.sys [2014-01-25 268512]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14

12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-

11-20 213888]
R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS

\snapman.sys [2011-12-18 276576]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows

\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 appdrv01;Application Driver (01); C:\Windows\System32\Drivers

\appdrv01.sys [2013-11-02 2913904]
R1 CFRMD;CFRMD; C:\Windows\system32\DRIVERS\CFRMD.sys [2010-10-28 78528]
R1 CFRPD;CFRPD; C:\Windows\system32\DRIVERS\CFRPD.sys [2010-10-28 36840]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows

\system32\drivers\csc.sys [2010-11-20 514560]
R2 cpuz135;cpuz135; \??\C:\Windows\system32\drivers\cpuz135_x64.sys

[2011-09-21 21992]
R2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [2009-10

-29 53816]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows

\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 133928]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2009-10-29

11576]
R3 ActivHidSerMini;Promethean Serial Board Driver; C:\Windows

\system32\DRIVERS\activhidsermini.sys [2008-12-17 64256]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys

[2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-01-

27 9085952]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-01-

27 299520]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:

\Windows\system32\drivers\AtihdW76.sys [2010-11-17 115216]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows

\system32\DRIVERS\nvmf6264.sys [2010-08-12 350952]
R3 prmvmouse;Promethean HID Mouse Service; C:\Windows\system32\DRIVERS

\activmouse.sys [2008-12-17 7168]
R3 RTL8023x64;Realtek 10/100 NIC Family NDIS x64 Driver; C:\Windows

\system32\DRIVERS\Rtnic64.sys [2009-06-10 51712]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys

[2013-07-03 42496]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:

\Windows\system32\drivers\viahduaa.sys [2009-09-17 1250816]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-01-

27 9085952]
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files (x86)\MediaCoder

\SysInfoX64.sys []
S3 KMWDFILTER;HIDServiceDesc; C:\Windows\system32\DRIVERS\KMWDFILTER.sys

[2009-04-29 30208]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers

\ccdcmbx64.sys [2013-01-23 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers

\ccdcmbox64.sys [2013-01-23 27136]
S3 nmwcdnsucx64;Nokia USB Flashing Generic; C:\Windows\system32\drivers

\nmwcdnsucx64.sys [2013-01-23 12800]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\Windows

\system32\drivers\nmwcdnsux64.sys [2013-01-23 171008]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows

\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 PAC7302;Eye 312; C:\Windows\system32\DRIVERS\PAC7302.SYS [2009-04-28

532480]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS

\pccsmcfdx64.sys [2012-10-17 26112]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows

\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows

\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20

34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-

23 57856]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys

[2013-01-23 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\DRIVERS\usbser.sys [2013

-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS

\usbser_lowerfltjx64.sys [2013-01-23 9216]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-

20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20

41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto,

3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files

(x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows

\system32\atiesrxx.exe [2011-01-27 203776]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies

\ATI.ACE\Fuel\Fuel.Service.exe [2011-01-26 354304]
R2 AMD Reservation Manager;AMD Reservation Manager; C:\Program Files\ATI

Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe

[2010-06-17 194496]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows

\System32\svchost.exe [2009-07-14 27136]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files

\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft

Security Client\MsMpEng.exe [2014-03-11 23808]
R2 OS Selector;Acronis OS Selector activator; C:\Program Files

(x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe [2010-05-25 2139400]
R2 RSEBoardServer;RSEBoardServer; C:\Program Files (x86)\Q Draw Software

\rseboardser.exe [2011-09-01 433152]
R2 SeagateDashboardService;Seagate Dashboard Service; C:\Program Files

(x86)\Seagate\Seagate Dashboard\SeagateDashboardService.exe [2011-06-02

14088]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement

Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars

\Skype C2C Service\c2c_service.exe [2013-08-06 3291008]
R2 TeamViewer6;TeamViewer 6; C:\Program Files (x86)\TeamViewer

\Version6\TeamViewer_Service.exe [2011-08-30 2358656]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243;

C:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 347872]
S2 appdrvrem01;Application Driver Auto Removal Service (01); C:\Windows

\System32\appdrvrem01.exe [2013-11-02 551824]
S2 Cleaner_Validator;COMODO System - Cleaner Service; C:\Program Files

\COMODO\COMODO System-Cleaner\Cleaner_Validator.exe [2010-10-28 362432]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN

v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework

\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN

v4.0.30319_X64; C:\Windows\Microsoft.NET

\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater

\Updater.exe [2013-09-05 171680]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:

\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14

257712]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07

-14 27136]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common

\Google Updater\GoogleUpdaterService.exe [2011-02-08 136120]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-

1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-06 111616]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint

Workspace Audit Service; C:\Program Files (x86)\Microsoft Office

\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files

(x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-05-10

119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files

\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common

Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

[2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows

\System32\svchost.exe [2009-07-14 27136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity

Solution\ServiceLayer.exe [2013-04-18 737616]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows

\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows

\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows

\system32\Wat\WatAdminSvc.exe [2010-11-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET

\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google

\Update\GoogleUpdate.exe [2013-11-10 116648]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files

(x86)\Google\Update\GoogleUpdate.exe [2013-11-10 116648]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\

\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET

\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\

\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET

\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\

\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET

\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: nenačtení emailu, webové stránky

#8 Příspěvek od Rudy »

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
:files
C:\Program Files (x86)\Skype\Toolbars
C:\Program Files (x86)\Memeo

:services
Skype C2C Service
SeaPort

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Utility Chest Home Page Guard 64 bit]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolderC:^ProgramData^Microsoft^Windows^StartMenu^Programs^Startup^McAfee Security Scan Plus.lnk]

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

harpie77
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 24 kvě 2014 19:58

Re: nenačtení emailu, webové stránky

#9 Příspěvek od harpie77 »

Logfile of random's system information tool 1.08 (written by

random/random)
Run by sarah at 2014-05-31 08:08:23
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 310 GB (65%) free of 477 GB
Total RAM: 6143 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:08:31, on 31.5.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17041)
Boot mode: Normal

Running processes:
C:\Windows\PixArt\PAC7302\Monitor.exe
C:\Program Files (x86)\Seznam.cz\bin\postak.exe
C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE
C:\Program Files (x86)\Gaming Keyboard\OSD.exe
C:\Program Files\trend micro\sarah.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =

http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =

http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =

http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =

http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =

http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:

\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:

\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper

\SearchHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-

0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} -

C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [Memeo AutoSync] C:\Program Files (x86)\Memeo\AutoSync

\MemeoLauncher2.exe --silent
O4 - HKLM\..\Run: [VICTORY Gaming Keyboard] "C:\Program Files

(x86)\Gaming Keyboard\Monitor.exe"
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner64.exe"

/AUTO




O4 - HKCU\..\Run: [Seznam Postak] "C:\Program Files (x86)\Seznam.cz\bin

\postak.exe" -s
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar

\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows

\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar

\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows

\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Add to Google Photos Screensa&ver -

res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel -

res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office

Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:

\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-

8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office

\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-

7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office

\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4

-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office

\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote -

{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft

Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-

AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer

\skypeieplugin.dll (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-

07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer

\skypeieplugin.dll (file missing)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:

\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} -

C:\Program Files (x86)\Common Files\Microsoft Shared

\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe

Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM

\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service

(AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows

\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner

- C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows

\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:

\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AMD Reservation Manager - Advanced Micro Devices - C:

\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD

Reservation Manager.exe
O23 - Service: Application Driver Auto Removal Service (01) (appdrvrem01)

- Unknown owner - C:\Windows\System32\appdrvrem01.exe (file missing)
O23 - Service: COMODO System - Cleaner Service (Cleaner_Validator) -

Unknown owner - C:\Program Files\COMODO\COMODO System-Cleaner

\Cleaner_Validator.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown

owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown

owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files

(x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000

(IEEtwCollectorService) - Unknown owner - C:\Windows

\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows

\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla

Foundation - C:\Program Files (x86)\Mozilla Maintenance Service

\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows

\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) -

Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Acronis OS Selector activator (OS Selector) - Unknown

owner - C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage)

- Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) -

Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: RSEBoardServer - Unknown owner - C:\Program Files (x86)\Q

Draw Software\rseboardser.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown

owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Seagate Dashboard Service (SeagateDashboardService) -

Memeo - C:\Program Files (x86)\Seagate\Seagate Dashboard

\SeagateDashboardService.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC

Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:

\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) -

Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown

owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown

owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program

Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) -

Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) -

Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner

- C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown

owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) -

Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) -

Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) -

Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101

(WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media

Player\wmpnetwk.exe (file missing)

--
End of file - 9538 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows

SharedSection=1024,20480,768 Windows=On SubSystemType=Windows

ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3

ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4

ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows

SharedSection=1024,20480,768 Windows=On SubSystemType=Windows

ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3

ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4

ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD

Reservation Manager.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE"
"C:\Program Files\COMODO\COMODO System-Cleaner\Updater.exe" /initial_scan
"C:\Program Files (x86)\Q Draw Software\rseboardser.exe"
"C:\Program Files (x86)\Seagate\Seagate Dashboard

\SeagateDashboardService.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe"

/launchService
"C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe"
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-

be817523f6aa} -IoEventPortName:HostProcess-93ff45cc-7fd3-4194-88cf-

83557d1a295c -SystemEventPortName:HostProcess-8b98f434-21ef-4f50-8680-

070e891667f8 -IoCancelEventPortName:HostProcess-848d3788-4594-4160-b6f8-

9ca5faab8905 -NonStateChangingEventPortName:HostProcess-2117a8e4-7d7a-

4692-b69b-6151acbbb1ec -ServiceSID:S-1-5-80-2652678385-582572993-

1835434367-1344795993-749280709 -LifetimeId:6a93d572-6b3a-4866-afc3-

b89bb4ab111f -DeviceGroupId:WpdFsGroup
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"taskhost.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\PixArt\PAC7302\Monitor.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files (x86)\Seznam.cz\bin\postak.exe" -s
"C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE"
"C:\Program Files (x86)\Gaming Keyboard\OSD.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\sppsvc.exe
wmiadap.exe /F /T /R
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\servicing\TrustedInstaller.exe
"C:\Users\sarah\Desktop\Viry fórum - programy\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-

AE615179BCCF}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer

\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL

[2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer

\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype

\Toolbars\Internet Explorer x64\skypeieplugin.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer

\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:

\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows

\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-

A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack

\Search Helper\SearchHelper.dll [2009-01-14 92504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows

\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9

-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL

[2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows

\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22

-42B3008E02FF}]
Office Document Cache Handler - C:

\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"PAC7302_Monitor"=C:\Windows\PixArt\PAC7302\Monitor.exe [2007-12-10

323584]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2014-03-11

1271072]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ccleaner"=C:\Program Files\CCleaner\CCleaner64.exe [2011-01-24 3457336]
"Seznam Postak"=C:\Program Files (x86)\Seznam.cz\bin\postak.exe [2012-01

-10 491040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\3200 Scan2PC]
C:\Windows\twain_32\Samsung\SCX3200\Scan2Pc.exe [2010-05-18 1989120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\ActivControl]
C:\Program Files\Activ Software\Activdriver\ActivControl2x64.exe [2009-

04-03 1237504]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-

21 959904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\Google Update]
C:\Users\sarah\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-16

136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\GoogleDriveSync]
C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\HDAudDeck]
C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2009-09-21 2583040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\NokiaSuite.exe]
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [2013-04-19

1090912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\ReSent]
c:\program files (x86)\q draw software resource\resent\rs_resent.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\Seagate Dashboard]
C:\Program Files (x86)\Seagate\Seagate Dashboard\MemeoLauncher.exe [2011

-06-02 79112]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\StartCCC]
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

[2011-01-26 336384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\Utility Chest Home Page Guard 64 bit]
C:\PROGRA~2\UTILIT~2\bar\1.bin\AppIntegrator64.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\Utility Chest Search Scope Monitor]
C:\PROGRA~2\UTILIT~2\bar\1.bin\49srchmn.exe /m=2 /w /h []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg

\UtilityChest_49 Browser Plugin Loader]
C:\PROGRA~2\UTILIT~2\bar\1.bin\49brmon.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig

\startupfolder\C:^ProgramData^Microsoft^Windows^Start

Menu^Programs^Startup^Adobe Gamma Loader.lnk]
C:\PROGRA~2\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [2002-09-25 113664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig

\startupfolder\C:^ProgramData^Microsoft^Windows^Start

Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~1\MCAFEE~1\386EB9~1.130\SSSCHE~1.EXE []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows

\CurrentVersion\Run]
"Memeo AutoSync"=C:\Program Files (x86)\Memeo\AutoSync\MemeoLauncher2.exe

--silent []
"VICTORY Gaming Keyboard"=C:\Program Files (x86)\Gaming Keyboard

\Monitor.exe [2013-04-09 270336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion

\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer

\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:

\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows

\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:

\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal

\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network

\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network

\MsMpSvc]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies

\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies

\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies

\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies

\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess

\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess

\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2014-05-31 07:58:23 ----D---- C:\_OTM
2014-05-30 19:11:32 ----D---- C:\AdwCleaner
2014-05-30 13:26:20 ----D---- C:\rsit
2014-05-25 11:38:58 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-05-25 10:35:37 ----D---- C:\Windows\ERUNT
2014-05-25 10:33:50 ----A---- C:\AVScanner.ini
2014-05-24 22:55:24 ----D---- C:\Program Files\trend micro
2014-05-23 18:56:06 ----D---- C:\Windows\SYSWOW64\bitstreams
2014-05-23 18:56:06 ----AS---- C:\Windows\SYSWOW64\zlib1.dll
2014-05-23 18:56:06 ----AS---- C:\Windows\SYSWOW64\ssleay32.dll
2014-05-23 18:56:06 ----AS---- C:\Windows\SYSWOW64\pthreadVC2.dll
2014-05-23 18:56:05 ----AS---- C:\Windows\SYSWOW64\pthreadGC2.dll
2014-05-23 18:56:05 ----AS---- C:\Windows\SYSWOW64\libssh2.dll
2014-05-23 18:56:05 ----AS---- C:\Windows\SYSWOW64\librtmp.dll
2014-05-23 18:56:05 ----AS---- C:\Windows\SYSWOW64\libidn-11.dll
2014-05-23 18:56:04 ----AS---- C:\Windows\SYSWOW64\libeay32.dll
2014-05-23 18:56:04 ----AS---- C:\Windows\SYSWOW64\libcurl-4.dll
2014-05-23 18:56:04 ----AS---- C:\Windows\SYSWOW64\cudart32_50_35.dll
2014-05-15 16:00:29 ----A---- C:\Windows\system32\mshtmled.dll
2014-05-15 16:00:29 ----A---- C:\Windows\system32\mshtml.dll
2014-05-15 16:00:28 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-05-15 16:00:23 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-05-14 12:59:54 ----A---- C:\Windows\system32\shell32.dll
2014-05-14 12:59:53 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-05-14 12:59:52 ----A---- C:\Windows\system32\aepdu.dll
2014-05-14 12:59:51 ----A---- C:\Windows\system32\aeinv.dll
2014-05-14 12:59:20 ----A---- C:\Windows\system32\lsasrv.dll
2014-05-14 12:59:19 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-05-14 12:59:19 ----A---- C:\Windows\system32\kerberos.dll
2014-05-14 12:59:18 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-05-14 12:59:18 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-05-14 12:59:18 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-05-14 12:59:18 ----A---- C:\Windows\system32\winlogon.exe
2014-05-14 12:59:18 ----A---- C:\Windows\system32\objsel.dll
2014-05-14 12:59:18 ----A---- C:\Windows\system32\msv1_0.dll
2014-05-14 12:59:17 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-05-14 12:59:16 ----A---- C:\Windows\SYSWOW64\objsel.dll
2014-05-14 12:59:16 ----A---- C:\Windows\system32\TSpkg.dll
2014-05-14 12:59:15 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-05-14 12:59:15 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-05-14 12:59:15 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-05-14 12:59:15 ----A---- C:\Windows\system32\wdigest.dll
2014-05-14 12:59:15 ----A---- C:\Windows\system32\KernelBase.dll
2014-05-14 12:59:14 ----A---- C:\Windows\SYSWOW64\dimsroam.dll
2014-05-14 12:59:14 ----A---- C:\Windows\system32\schannel.dll
2014-05-14 12:59:14 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-05-14 12:59:14 ----A---- C:\Windows\system32\dimsroam.dll
2014-05-14 12:59:14 ----A---- C:\Windows\system32\adprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-05-14 12:59:13 ----A---- C:\Windows\SYSWOW64\dpapiprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\SYSWOW64\cngprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\SYSWOW64\capiprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\SYSWOW64\adprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2014-05-14 12:59:13 ----A---- C:\Windows\system32\dpapiprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\system32\cngprovider.dll
2014-05-14 12:59:13 ----A---- C:\Windows\system32\capiprovider.dll
2014-05-14 12:59:12 ----A---- C:\Windows\SYSWOW64\wincredprovider.dll
2014-05-14 12:59:12 ----A---- C:\Windows\system32\wincredprovider.dll
2014-05-14 12:59:12 ----A---- C:\Windows\system32\sspicli.dll
2014-05-14 12:59:12 ----A---- C:\Windows\system32\lsass.exe
2014-05-14 12:59:12 ----A---- C:\Windows\system32\credssp.dll
2014-05-14 12:59:11 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-05-14 12:59:11 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-05-14 12:59:11 ----A---- C:\Windows\system32\sspisrv.dll
2014-05-14 12:59:11 ----A---- C:\Windows\system32\secur32.dll
2014-05-14 12:59:10 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-05-10 19:20:36 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-05-06 18:40:18 ----A---- C:\Windows\system32\ieui.dll
2014-05-06 18:40:17 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-05-06 18:40:15 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-05-06 18:40:15 ----A---- C:\Windows\system32\vbscript.dll
2014-05-06 18:40:07 ----A---- C:\Windows

\system32\JavaScriptCollectionAgent.dll
2014-05-06 18:40:07 ----A---- C:\Windows\system32\iernonce.dll
2014-05-06 18:40:07 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-05-06 18:40:07 ----A---- C:\Windows\system32\ie4uinit.exe
2014-05-06 18:40:05 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-05-06 18:40:05 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-05-06 18:40:05 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-05-06 18:40:05 ----A---- C:\Windows\system32\msrating.dll
2014-05-06 18:40:05 ----A---- C:\Windows\system32\jscript9diag.dll
2014-05-06 18:40:05 ----A---- C:\Windows\system32\dxtrans.dll
2014-05-06 18:40:05 ----A---- C:\Windows\system32\dxtmsft.dll
2014-05-06 18:40:04 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-05-06 18:40:04 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-05-06 18:40:04 ----A---- C:\Windows\system32\msfeeds.dll
2014-05-06 18:40:04 ----A---- C:\Windows\system32\jsproxy.dll
2014-05-06 18:40:03 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-05-06 18:40:03 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-05-06 18:40:03 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-05-06 18:40:03 ----A---- C:\Windows\system32\ieUnatt.exe
2014-05-06 18:40:03 ----A---- C:\Windows\system32\iesetup.dll
2014-05-06 18:40:02 ----A---- C:\Windows

\SYSWOW64\JavaScriptCollectionAgent.dll
2014-05-06 18:40:00 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-05-06 18:40:00 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-05-06 18:40:00 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-05-06 18:39:59 ----A---- C:\Windows

\system32\MsSpellCheckingFacility.exe
2014-05-06 18:39:59 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-05-06 18:39:59 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-05-06 18:39:59 ----A---- C:\Windows\system32\ieapfltr.dll
2014-05-06 18:39:57 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-05-06 18:39:57 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-05-06 18:39:57 ----A---- C:\Windows\system32\wininet.dll
2014-05-06 18:39:57 ----A---- C:\Windows\system32\iertutil.dll
2014-05-06 18:39:56 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-05-06 18:39:56 ----A---- C:\Windows\system32\urlmon.dll
2014-05-06 18:39:55 ----A---- C:\Windows\system32\ieframe.dll
2014-05-06 18:39:54 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-05-06 18:39:53 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-05-06 18:39:53 ----A---- C:\Windows\system32\jscript9.dll
2014-05-06 18:39:23 ----SD---- C:\Windows\system32\CompatTel

======List of files/folders modified in the last 1 months======

2014-05-31 08:08:14 ----D---- C:\Windows\Prefetch
2014-05-31 08:07:09 ----D---- C:\Windows\Temp
2014-05-31 08:06:53 ----D---- C:\Windows\system32\config
2014-05-31 07:58:24 ----D---- C:\Program Files (x86)
2014-05-31 07:58:23 ----RD---- C:\Program Files (x86)\Skype
2014-05-30 19:21:06 ----D---- C:\Windows\System32
2014-05-30 19:21:06 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-05-30 19:21:05 ----D---- C:\Windows\inf
2014-05-29 20:04:21 ----SHD---- C:\System Volume Information
2014-05-28 21:46:03 ----D---- C:\Windows\system32\FxsTmp
2014-05-25 12:28:13 ----D---- C:\Windows\SysWOW64
2014-05-25 12:26:24 ----D---- C:\Windows\system32\drivers\etc
2014-05-25 12:26:24 ----D---- C:\Windows
2014-05-25 12:26:21 ----D---- C:\Windows\Tasks
2014-05-25 11:40:02 ----HD---- C:\ProgramData
2014-05-25 10:33:50 ----RD---- C:\Program Files
2014-05-24 16:17:35 ----D---- C:\Windows\system32\Tasks
2014-05-24 16:17:16 ----D---- C:\Program Files (x86)\Common Files
2014-05-17 11:30:32 ----D---- C:\Windows\rescache
2014-05-15 19:41:33 ----SHD---- C:\Windows\Installer
2014-05-15 19:11:53 ----D---- C:\Windows\Microsoft.NET
2014-05-15 19:11:17 ----RSD---- C:\Windows\assembly
2014-05-15 16:25:39 ----D---- C:\Windows\winsxs
2014-05-15 16:23:19 ----D---- C:\Windows\system32\drivers
2014-05-15 16:23:19 ----D---- C:\Windows\system32\cs-CZ
2014-05-15 16:23:19 ----D---- C:\Windows\PolicyDefinitions
2014-05-15 16:08:13 ----D---- C:\ProgramData\Microsoft Help
2014-05-15 16:00:50 ----D---- C:\Windows\system32\catroot
2014-05-15 16:00:48 ----D---- C:\Windows\system32\catroot2
2014-05-15 15:37:20 ----D---- C:\Program Files (x86)\Mozilla Maintenance

Service
2014-05-14 21:24:27 ----D---- C:\Windows\system32\MRT
2014-05-14 21:24:24 ----A---- C:\Windows\system32\MRT.exe
2014-05-14 12:37:59 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-05-09 20:32:26 ----D---- C:\Users\sarah\AppData\Roaming\Spore
2014-05-06 19:18:51 ----D---- C:\Program Files\Internet Explorer
2014-05-06 19:18:50 ----D---- C:\Windows\SYSWOW64\en-US
2014-05-06 19:18:50 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-05-06 19:18:49 ----D---- C:\Windows\system32\en-US
2014-05-06 19:18:49 ----D---- C:\Program Files (x86)\Internet Explorer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto,

3=Demand, 4=Disabled)======

R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows

\system32\DRIVERS\MpFilter.sys [2014-01-25 268512]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14

12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-

11-20 213888]
R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS

\snapman.sys [2011-12-18 276576]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows

\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 appdrv01;Application Driver (01); C:\Windows\System32\Drivers

\appdrv01.sys [2013-11-02 2913904]
R1 CFRMD;CFRMD; C:\Windows\system32\DRIVERS\CFRMD.sys [2010-10-28 78528]
R1 CFRPD;CFRPD; C:\Windows\system32\DRIVERS\CFRPD.sys [2010-10-28 36840]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows

\system32\drivers\csc.sys [2010-11-20 514560]
R2 cpuz135;cpuz135; \??\C:\Windows\system32\drivers\cpuz135_x64.sys

[2011-09-21 21992]
R2 DgiVecp;DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [2009-10

-29 53816]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows

\system32\DRIVERS\NisDrvWFP.sys [2014-03-11 133928]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2009-10-29

11576]
R3 ActivHidSerMini;Promethean Serial Board Driver; C:\Windows

\system32\DRIVERS\activhidsermini.sys [2008-12-17 64256]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys

[2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-01-

27 9085952]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2011-01-

27 299520]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service; C:

\Windows\system32\drivers\AtihdW76.sys [2010-11-17 115216]
R3 NVNET;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\Windows

\system32\DRIVERS\nvmf6264.sys [2010-08-12 350952]
R3 prmvmouse;Promethean HID Mouse Service; C:\Windows\system32\DRIVERS

\activmouse.sys [2008-12-17 7168]
R3 RTL8023x64;Realtek 10/100 NIC Family NDIS x64 Driver; C:\Windows

\system32\DRIVERS\Rtnic64.sys [2009-06-10 51712]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys

[2013-07-03 42496]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:

\Windows\system32\drivers\viahduaa.sys [2009-09-17 1250816]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2011-01-

27 9085952]
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files (x86)\MediaCoder

\SysInfoX64.sys []
S3 KMWDFILTER;HIDServiceDesc; C:\Windows\system32\DRIVERS\KMWDFILTER.sys

[2009-04-29 30208]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers

\ccdcmbx64.sys [2013-01-23 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers

\ccdcmbox64.sys [2013-01-23 27136]
S3 nmwcdnsucx64;Nokia USB Flashing Generic; C:\Windows\system32\drivers

\nmwcdnsucx64.sys [2013-01-23 12800]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\Windows

\system32\drivers\nmwcdnsux64.sys [2013-01-23 171008]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows

\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 PAC7302;Eye 312; C:\Windows\system32\DRIVERS\PAC7302.SYS [2009-04-28

532480]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS

\pccsmcfdx64.sys [2012-10-17 26112]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows

\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows

\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20

34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-

23 57856]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys

[2013-01-23 9216]
S3 usbser;USB Modem Driver; C:\Windows\system32\DRIVERS\usbser.sys [2013

-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS

\usbser_lowerfltjx64.sys [2013-01-23 9216]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-

20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20

41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto,

3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files

(x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows

\system32\atiesrxx.exe [2011-01-27 203776]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies

\ATI.ACE\Fuel\Fuel.Service.exe [2011-01-26 354304]
R2 AMD Reservation Manager;AMD Reservation Manager; C:\Program Files\ATI

Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe

[2010-06-17 194496]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows

\System32\svchost.exe [2009-07-14 27136]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files

\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft

Security Client\MsMpEng.exe [2014-03-11 23808]
R2 OS Selector;Acronis OS Selector activator; C:\Program Files

(x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe [2010-05-25 2139400]
R2 RSEBoardServer;RSEBoardServer; C:\Program Files (x86)\Q Draw Software

\rseboardser.exe [2011-09-01 433152]
R2 SeagateDashboardService;Seagate Dashboard Service; C:\Program Files

(x86)\Seagate\Seagate Dashboard\SeagateDashboardService.exe [2011-06-02

14088]
R2 TeamViewer6;TeamViewer 6; C:\Program Files (x86)\TeamViewer

\Version6\TeamViewer_Service.exe [2011-08-30 2358656]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243;

C:\Program Files\Microsoft Security Client\NisSrv.exe [2014-03-11 347872]
S2 appdrvrem01;Application Driver Auto Removal Service (01); C:\Windows

\System32\appdrvrem01.exe [2013-11-02 551824]
S2 Cleaner_Validator;COMODO System - Cleaner Service; C:\Program Files

\COMODO\COMODO System-Cleaner\Cleaner_Validator.exe [2010-10-28 362432]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN

v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework

\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN

v4.0.30319_X64; C:\Windows\Microsoft.NET

\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater

\Updater.exe [2013-09-05 171680]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:

\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14

257712]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07

-14 27136]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common

\Google Updater\GoogleUpdaterService.exe [2011-02-08 136120]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-

1000; C:\Windows\system32\IEEtwCollector.exe [2014-03-06 111616]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint

Workspace Audit Service; C:\Program Files (x86)\Microsoft Office

\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files

(x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-05-10

119408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files

\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common

Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

[2010-01-09 4925184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows

\System32\svchost.exe [2009-07-14 27136]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity

Solution\ServiceLayer.exe [2013-04-18 737616]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows

\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows

\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows

\system32\Wat\WatAdminSvc.exe [2010-11-20 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET

\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google

\Update\GoogleUpdate.exe [2013-11-10 116648]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files

(x86)\Google\Update\GoogleUpdate.exe [2013-11-10 116648]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\

\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET

\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\

\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET

\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\

\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET

\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

harpie77
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 24 kvě 2014 19:58

Re: nenačtení emailu, webové stránky

#10 Příspěvek od harpie77 »

Stránky a emaily jsem postupně otestovala a všechno se zobrazuje jak má. Je to super a moc děkuji za pomoc!!!
Byla by troufalá otázka, co jsem s tím chudákem provedla, že jsem ho tak rozhodila? Jsem ten typ, co občas v dobré víře špatně klikne... Tak abych se tomu na příště vyvarovala.


Měla bych ještě jeden dotaz (mám založit nové vlákno?). Týká se spamu - respektive emailů, které mi neustále chodí pouze na jednu adresu... Postupuji tak, že vždy odesílatele zablokuji. Mám už zablokovaných nespočet adres (přes 60), aniž bych tušila, kde se stále berou. Ale mám pocit, že se někde generují stále nové. Ve zprávě zpravidla čeká odkaz, na který mám asi kliknout. Na takové odkazy neklikám, odesílatele blokuji, zprávy mažu. Můžu udělat něco více? Nebo se mám něčemu při pohybu na internetu vyvarovat, abych spamům předešla? (pokud se tedy jedná o spam)

Např.:
rmsobecks@dorfner.de
She'll be impressed by your new force

Don't be the worst http://beeswax.bleurolo.in/


Přeji hezký den.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: nenačtení emailu, webové stránky

#11 Příspěvek od Rudy »

Byly tam pouze AdWary a zbytečnosti. Vše bylo smazáno.

Ke spamu. Pokud někde uveřejníte váš e-mail, uveřejňujte ho ve tvaru nekdo(zavináč)nekde.cz a nikoli nekdo@nekde.cz . Druhý způsob je korektní tvar, který na internetu sbírají tzv. boti, sestavují z nich databéze a různé rádoby společnosti, která se živí nabídkami podřadného až nefunkčního zboží vám pak posílají nabídky. Pokud uveřejníte svůj mail v prvně uvedeném tvaru, který není korektní, žádný spam nepřijde, protože mailový server ho v tomto tvaru "nestráví". Maximálně bude někdo nadávat, že to musí přepisovat. :) Toto je jediná známá obrana vůči spamu.

Nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

harpie77
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 24 kvě 2014 19:58

Re: nenačtení emailu, webové stránky

#12 Příspěvek od harpie77 »

Aha! Tak proto máte své emailové adresy v "nekorektním" tvaru? :)
A můžu tuto formu aplikovat i při lognutí na nějakou stránku, kde se místo jménem přihlašuji emailovou adresou?
Můžu (nebo bych měla) tento neobvyklý tvar uvádět také v případech registrací...?

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: nenačtení emailu, webové stránky

#13 Příspěvek od Rudy »

V tom "nekorektním" tvaru je uvádím jen, když ji chci dát někomu na vědomí na veřejně přístupném místě. Do mailu ji ale musíte korektně přepsat ( s atsign - @ ).
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

harpie77
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 24 kvě 2014 19:58

Re: nenačtení emailu, webové stránky

#14 Příspěvek od harpie77 »

Děkuji za odpověď a přeji hezký zbytek večera :190:

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: nenačtení emailu, webové stránky

#15 Příspěvek od Rudy »

Hezký večer i vám a nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno