Takže qoobox je uložen zde: http://files.uloziste.com/3090799401df5f31/.
Log:
RogueKiller V8.0.0 [08/26/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Musilovi [Práva správce]
Mód : Kontrola -- Datum : 08/28/2012 23:44:13
¤¤¤ Škodlivé procesy: : 1 ¤¤¤
[SUSP PATH] c2c_service.exe -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -> SMAZÁNO [TermProc]
¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[TASK][SUSP PATH] Soluto-Diagnostics.job : C:\ProgramData\Soluto\Diag\SolutoDiag.exe -> NALEZENO
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{20204E47-E68F-4E0E-8C1A-44891672AE26} : NameServer (8.26.56.26,156.154.70.22) -> NALEZENO
[DNS] HKLM\[...]\ControlSet002\Services\Interfaces\{20204E47-E68F-4E0E-8C1A-44891672AE26} : NameServer (8.26.56.26,156.154.70.22) -> NALEZENO
[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> NALEZENO
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: ST31000524AS ATA Device +++++
--- User ---
[MBR] cdda023f6635116cbc4aac8ad19fad97
[BSP] d2ab2f3a015c3c8b55770e248d946347 : Windows 7 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 953767 Mo
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: Kingston DT 100 G2 USB Device +++++
--- User ---
[MBR] 5be15101433e37084d66d909d7bee9cf
[BSP] 33a07a59d299ab4ea9f4ab0156f9d86f : Windows XP MBR Code
Partition table:
0 - [ACTIVE] FAT32 (0x0b) [VISIBLE] Offset (sectors): 8064 | Size: 7636 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
Dokončeno : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Problematické chování PC po odčervení
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Problematické chování PC po odčervení
Spustte znovu RogueKiller
- Pokud pouzivate Win Vista ci W7, kliknete na RogueKiller pravym a dejte Run As Administrator ci Spustit jako spravce
- Zvolte moznost Prohledat a pote Smazat a nasledne Zprava - otevre se log, ten sem vlozte
- Pak kliknete na Oprava Host a Zprava - otevre se log, ten sem vlozte
- Pak kliknete na Oprava DNS a Zprava - otevre se log, ten sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Problematické chování PC po odčervení
Log je zde:
RogueKiller V8.0.0 [08/26/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Musilovi [Práva správce]
Mód : Odebrat -- Datum : 08/29/2012 08:53:30
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{20204E47-E68F-4E0E-8C1A-44891672AE26} : NameServer (8.26.56.26,156.154.70.22) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
[DNS] HKLM\[...]\ControlSet002\Services\Interfaces\{20204E47-E68F-4E0E-8C1A-44891672AE26} : NameServer (8.26.56.26,156.154.70.22) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: ST31000524AS ATA Device +++++
--- User ---
[MBR] cdda023f6635116cbc4aac8ad19fad97
[BSP] d2ab2f3a015c3c8b55770e248d946347 : Windows 7 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 953767 Mo
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: Kingston DataTraveler 108 USB Device +++++
--- User ---
[MBR] 8d70193cab9a880929a06e2e45d8e830
[BSP] 33a07a59d299ab4ea9f4ab0156f9d86f : Windows XP MBR Code
Partition table:
0 - [ACTIVE] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 8064 | Size: 14879 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
Dokončeno : << RKreport[7].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt ; RKreport[5].txt ;
RKreport[6].txt ; RKreport[7].txt
RogueKiller V8.0.0 [08/26/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Musilovi [Práva správce]
Mód : Odebrat -- Datum : 08/29/2012 08:53:30
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{20204E47-E68F-4E0E-8C1A-44891672AE26} : NameServer (8.26.56.26,156.154.70.22) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
[DNS] HKLM\[...]\ControlSet002\Services\Interfaces\{20204E47-E68F-4E0E-8C1A-44891672AE26} : NameServer (8.26.56.26,156.154.70.22) -> NEBYLO ODSTRANĚNO, POUŽIJTE DNSFIX
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: ST31000524AS ATA Device +++++
--- User ---
[MBR] cdda023f6635116cbc4aac8ad19fad97
[BSP] d2ab2f3a015c3c8b55770e248d946347 : Windows 7 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 953767 Mo
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: Kingston DataTraveler 108 USB Device +++++
--- User ---
[MBR] 8d70193cab9a880929a06e2e45d8e830
[BSP] 33a07a59d299ab4ea9f4ab0156f9d86f : Windows XP MBR Code
Partition table:
0 - [ACTIVE] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 8064 | Size: 14879 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
Dokončeno : << RKreport[7].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt ; RKreport[5].txt ;
RKreport[6].txt ; RKreport[7].txt
Re: Problematické chování PC po odčervení
Fajn, ted jeste volba Oprava Host+zprava a nasledne Oprava DNS+Zprava
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Problematické chování PC po odčervení
log HOSTS:RogueKiller V8.0.0 [08/26/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Musilovi [Práva správce]
Mód : Oprava HOSTS -- Datum : 08/29/2012 10:46:00
¤¤¤ Škodlivé procesy: : 1 ¤¤¤
[SUSP PATH] c2c_service.exe -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -> SMAZÁNO [TermProc]
¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts
¤¤¤ Resetovaný HOSTS: ¤¤¤
Dokončeno : << RKreport[8].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt ; RKreport[5].txt ;
RKreport[6].txt ; RKreport[7].txt ; RKreport[8].txt
log po DNS (dns jsem tam dříve zadával jako bezpečné od comodo)
RogueKiller V8.0.0 [08/26/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Musilovi [Práva správce]
Mód : Oprava DNS -- Datum : 08/29/2012 10:48:54
¤¤¤ Škodlivé procesy: : 1 ¤¤¤
[SUSP PATH] c2c_service.exe -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -> SMAZÁNO [TermProc]
¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{20204E47-E68F-4E0E-8C1A-44891672AE26} : NameServer (8.26.56.26,156.154.70.22) -> NAHRAZENO ()
[DNS] HKLM\[...]\ControlSet002\Services\Interfaces\{20204E47-E68F-4E0E-8C1A-44891672AE26} : NameServer (8.26.56.26,156.154.70.22) -> NAHRAZENO ()
¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤
¤¤¤ Nákaza : ¤¤¤
Dokončeno : << RKreport[9].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt ; RKreport[5].txt ;
RKreport[6].txt ; RKreport[7].txt ; RKreport[8].txt ; RKreport[9].txt
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Musilovi [Práva správce]
Mód : Oprava HOSTS -- Datum : 08/29/2012 10:46:00
¤¤¤ Škodlivé procesy: : 1 ¤¤¤
[SUSP PATH] c2c_service.exe -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -> SMAZÁNO [TermProc]
¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts
¤¤¤ Resetovaný HOSTS: ¤¤¤
Dokončeno : << RKreport[8].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt ; RKreport[5].txt ;
RKreport[6].txt ; RKreport[7].txt ; RKreport[8].txt
log po DNS (dns jsem tam dříve zadával jako bezpečné od comodo)
RogueKiller V8.0.0 [08/26/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Musilovi [Práva správce]
Mód : Oprava DNS -- Datum : 08/29/2012 10:48:54
¤¤¤ Škodlivé procesy: : 1 ¤¤¤
[SUSP PATH] c2c_service.exe -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -> SMAZÁNO [TermProc]
¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{20204E47-E68F-4E0E-8C1A-44891672AE26} : NameServer (8.26.56.26,156.154.70.22) -> NAHRAZENO ()
[DNS] HKLM\[...]\ControlSet002\Services\Interfaces\{20204E47-E68F-4E0E-8C1A-44891672AE26} : NameServer (8.26.56.26,156.154.70.22) -> NAHRAZENO ()
¤¤¤ Ovladač : [NENAHRÁNO] ¤¤¤
¤¤¤ Nákaza : ¤¤¤
Dokončeno : << RKreport[9].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt ; RKreport[5].txt ;
RKreport[6].txt ; RKreport[7].txt ; RKreport[8].txt ; RKreport[9].txt
Re: Problematické chování PC po odčervení
Fajn, nastala nejaka zmena po aplikovani RogueKilleru?
V nouzovem rezimu tez internet nejde
V nouzovem rezimu tez internet nejde
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Problematické chování PC po odčervení
Žádná změna není.V nouzovém režimu jsem se pokusil přeinstalovat avast, ale bezúspěšně, jestli tam šel internet bohužel teď nevím jsem v práci a PC u sebe nemám.Co tedy zkusit? Děkuju....
Re: Problematické chování PC po odčervení
Tak jeste uklidime 
Odinstalujte Combofix
T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
OTC http://oldtimer.geekstogo.com/OTC.exe
TFC http://oldtimer.geekstogo.com/TFC.exe
Avast vemte po hlave timhle http://files.avast.com/files/eng/aswclear.exe a pak znovu nainstalujte
Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
Napiste co PC a dejte novy log z RSIT
Odinstalujte Combofix
- Prejmenujte ComboFix na Uninstall
- Spustte jej
- Tohle smaze Combofix a jeho slozky
T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
- Stahnete a spustte
- Pro potvrzeni volby mackejte A, Enter
- Po pouziti utilitu smazte
- Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
OTC http://oldtimer.geekstogo.com/OTC.exe
- Stahnete a spustte
- Kliknete na CleanUp a potvrdte YES
- Program uklidi a restartuje PC
TFC http://oldtimer.geekstogo.com/TFC.exe
- Stahnete a spustte
- Kliknete na Start a potvrdte OK
- Program uklidi a restartuje pc
- Po pouziti utilitu smazte
Avast vemte po hlave timhle http://files.avast.com/files/eng/aswclear.exe a pak znovu nainstalujte Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478Panel čistič
- Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
- dejte Hledej problémy
- nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
- postup opakujte dokud nebude bez problemu - vetsinou cca 3x
- Zde muzete odinstalovat nepotrebne programy
Napiste co PC a dejte novy log z RSIT"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Problematické chování PC po odčervení
Tak bohužel.Avast jsem pomocí aswcleaner odinstaloval a zpětně nainstaloval, nicméně stále nepracuje webový štít a nejde opravit.Nefunguje opět ani internetové připojení.Připojení k místní síti je funkční, stejně jako předtím.Všechny kroky jsem provedl tak jak jste mi určil.Zde je log:
Rkill 2.3.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html
Program started at: 08/30/2012 12:09:45 AM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1
Checking for Windows services to stop.
* No malware services found to stop.
Checking for processes to terminate.
* No malware processes found to kill.
Checking Registry for malware related settings.
* No issues found in the Registry.
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
Performing miscellaneous checks.
* No issues found.
Checking Windows Service Integrity:
* CscService [Missing Service]
* PeerDistSvc [Missing Service]
* UmRdpService [Missing Service]
Searching for Missing Digital Signatures:
* No issues found.
Program finished at: 08/30/2012 12:10:25 AM
Execution time: 0 hours(s), 0 minute(s), and 40 seconds(s)
Rkill 2.3.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html
Program started at: 08/30/2012 12:09:45 AM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1
Checking for Windows services to stop.
* No malware services found to stop.
Checking for processes to terminate.
* No malware processes found to kill.
Checking Registry for malware related settings.
* No issues found in the Registry.
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
Performing miscellaneous checks.
* No issues found.
Checking Windows Service Integrity:
* CscService [Missing Service]
* PeerDistSvc [Missing Service]
* UmRdpService [Missing Service]
Searching for Missing Digital Signatures:
* No issues found.
Program finished at: 08/30/2012 12:10:25 AM
Execution time: 0 hours(s), 0 minute(s), and 40 seconds(s)
Re: Problematické chování PC po odčervení
Tohle je log z RKILL ja chci z RSIT http://forum.viry.cz/viewtopic.php?f=13&t=105895
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Problematické chování PC po odčervení
Omlouvám se a napravuji:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Musilovi at 2012-08-30 08:10:51
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 883 GB (93%) free of 954 GB
Total RAM: 4079 MB (78% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:10:55, on 30.8.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16448)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Marvell\storage\tray\MarvellTray.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Musilovi.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file)
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [MSUTray] C:\Program Files (x86)\Marvell\storage\tray\MarvellTray.exe
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Broken Internet access because of LSP provider 'c:\windows\system32\nwprovau.dll' missing
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://127.0.0.1
O15 - Trusted IP range: http://localhost
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Unknown owner - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Marvell Storage Management Service (Marvell Storage Management) - Marvell - C:\Program Files (x86)\Marvell\storage\svc\mvraidsvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSU Web Service (MSUWebService) - Apache Software Foundation - C:\Program Files (x86)\Marvell\storage\Apache2\bin\httpd.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PunkBuster (PnkBstrA) - Unknown owner - C:\Program Files (x86)\Electronic Arts\Medal of Honor Airborne\UnrealEngine3\MOHAGame\pb\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Soluto PCGenome Core Service (SolutoService) - Soluto - C:\Program Files\Soluto\SolutoService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8897 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"
"C:\Program Files (x86)\Marvell\storage\svc\mvraidsvc.exe"
"C:\Program Files\Soluto\SolutoService.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Soluto\soluto.exe" /userinit
"C:\Windows\system32\Dwm.exe"
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-c3e90a12-a5ae-40e0-a4c5-61826160a17d -SystemEventPortName:HostProcess-f585b014-e3b7-4266-8e32-b6a5063c2bf0 -IoCancelEventPortName:HostProcess-c0197a8a-6860-4348-8645-879578d65103 -NonStateChangingEventPortName:HostProcess-45d406c3-655b-44ac-8501-a5ff15b9d583 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:b4752381-02d9-4be1-95fc-80b39d17dbbe
C:\Windows\Explorer.EXE
"C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE" /logon
"C:\Program Files (x86)\Marvell\storage\tray\MarvellTray.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
"C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /welcome
"C:\Program Files\Windows Sidebar\sidebar.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" https://www.avast.com/program/api/?acti ... =0&p_wnf=0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/3/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/warmest_socket/ --renderer-print-preview --channel="3020.0.1775032746\179543740" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/3/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/warmest_socket/ --extension-process --renderer-print-preview --channel="3020.1.865355935\1920577641" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/3/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/warmest_socket/ --extension-process --renderer-print-preview --channel="3020.7.1562514125\985592709" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/3/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/warmest_socket/ --extension-process --renderer-print-preview --channel="3020.8.663610351\631337467" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\Musilovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.2.0.10687_0\npSkypeChromePlugin.dll" --lang=cs --channel="3020.9.1316685935\1214003218" /prefetch:4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/3/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/warmest_socket/ --extension-process --renderer-print-preview --channel="3020.10.1497275788\2019701139" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/3/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/warmest_socket/ --extension-process --renderer-print-preview --channel="3020.11.1390079797\252904703" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/3/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/warmest_socket/ --extension-process --renderer-print-preview --channel="3020.12.1759844203\1498633543" /prefetch:3
Notepad.exe C:\Users\Musilovi\Desktop\Rkill.txt
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe7_ Global\UsGthrCtrlFltPipeMssGthrPipe7 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\Musilovi\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\avast! Emergency Update.job
C:\Windows\tasks\SidebarExecute.job
C:\Windows\tasks\Soluto-Diagnostics.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2012-07-03 1387952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2012-08-13 5749952]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-27 63944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-07-03 1160792]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-08-13 4120256]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17}
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2012-07-03 1387952]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-07-03 1160792]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2009-07-27 2184520]
"CanonSolutionMenu"=C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [2009-03-18 767312]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"MSUTray"=C:\Program Files (x86)\Marvell\storage\tray\MarvellTray.exe [2012-06-13 1213952]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-07-03 4273976]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2011-04-28 249344]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2012-08-30 08:10:51 ----D---- C:\rsit
2012-08-30 00:04:32 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2012-08-30 00:04:30 ----A---- C:\Windows\system32\drivers\aswSP.sys
2012-08-30 00:04:26 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2012-08-30 00:04:25 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2012-08-30 00:04:22 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2012-08-30 00:04:19 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2012-08-30 00:04:18 ----A---- C:\Windows\system32\aswBoot.exe
2012-08-29 23:55:59 ----D---- C:\Users\Musilovi\AppData\Roaming\Soluto
2012-08-28 09:59:25 ----D---- C:\Program Files (x86)\Marvell
2012-08-28 09:04:06 ----D---- C:\Windows\system32\Soluto
2012-08-28 09:01:08 ----SHD---- C:\$RECYCLE.BIN
2012-08-28 00:27:08 ----D---- C:\Windows\temp
2012-08-27 09:22:26 ----D---- C:\Windows\erdnt
2012-08-26 17:21:22 ----D---- C:\Users\Musilovi\AppData\Roaming\Malwarebytes
2012-08-26 17:21:08 ----D---- C:\ProgramData\Malwarebytes
2012-08-26 17:21:07 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-08-26 17:21:07 ----A---- C:\Windows\system32\drivers\mbam.sys
2012-08-26 15:24:43 ----D---- C:\Program Files\trend micro
2012-08-26 14:31:46 ----D---- C:\Program Files\CCleaner
2012-08-26 13:16:12 ----A---- C:\Users\Musilovi\AppData\Roaming\burnaware.ini
2012-08-26 13:15:22 ----D---- C:\Program Files (x86)\BurnAware Professional
2012-08-26 13:10:49 ----D---- C:\Program Files (x86)\špion
2012-08-26 13:00:34 ----D---- C:\Users\Musilovi\AppData\Roaming\vlc
2012-08-26 12:59:55 ----D---- C:\Program Files (x86)\VideoLAN
2012-08-26 12:19:52 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2012-08-26 12:19:52 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2012-08-26 12:19:52 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2012-08-26 12:19:52 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2012-08-26 12:19:52 ----A---- C:\Windows\SYSWOW64\nvdecodemft.dll
2012-08-26 12:19:52 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2012-08-26 12:19:52 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2012-08-26 12:19:52 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2012-08-26 12:19:52 ----A---- C:\Windows\system32\nvoglv64.dll
2012-08-26 12:19:52 ----A---- C:\Windows\system32\nvinitx.dll
2012-08-26 12:19:52 ----A---- C:\Windows\system32\nvhdap64.dll
2012-08-26 12:19:52 ----A---- C:\Windows\system32\nvdecodemft.dll
2012-08-26 12:19:52 ----A---- C:\Windows\system32\nvcuvid.dll
2012-08-26 12:19:52 ----A---- C:\Windows\system32\nvcuvenc.dll
2012-08-26 12:19:52 ----A---- C:\Windows\system32\nvcuda.dll
2012-08-26 12:19:52 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2012-08-26 12:19:52 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2012-08-26 12:19:51 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2012-08-26 12:19:51 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2012-08-26 12:19:51 ----A---- C:\Windows\system32\nvcompiler.dll
2012-08-26 11:09:32 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2012-08-26 11:09:32 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2012-08-26 11:09:32 ----A---- C:\Windows\system32\OpenCL.dll
2012-08-26 11:09:32 ----A---- C:\Windows\system32\nvumdshimx.dll
2012-08-26 11:09:32 ----A---- C:\Windows\system32\nvhdagenco6420103.dll
2012-08-26 11:08:55 ----D---- C:\NVIDIA
2012-08-26 10:54:56 ----A---- C:\Windows\system32\drivers\Soluto.sys
2012-08-26 10:54:55 ----D---- C:\Program Files\Soluto
2012-08-26 10:53:27 ----D---- C:\ProgramData\Soluto
2012-08-25 23:51:38 ----D---- C:\Program Files\Popeláři
2012-08-25 22:32:38 ----D---- C:\Program Files (x86)\Traktor 3
2012-08-25 22:07:43 ----D---- C:\Program Files\NVIDIA Corporation
2012-08-25 20:58:35 ----D---- C:\Program Files\Microsoft Office
2012-08-25 20:21:32 ----D---- C:\Program Files (x86)\7-Zip
2012-08-25 16:09:04 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2012-08-25 16:09:04 ----A---- C:\Windows\system32\qdvd.dll
2012-08-19 11:26:46 ----D---- C:\Users\Musilovi\AppData\Roaming\Seznam.cz
2012-08-17 16:36:23 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2012-08-17 16:36:23 ----A---- C:\Windows\system32\mshtmled.dll
2012-08-17 16:36:22 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2012-08-17 16:36:22 ----A---- C:\Windows\SYSWOW64\url.dll
2012-08-17 16:36:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2012-08-17 16:36:22 ----A---- C:\Windows\system32\urlmon.dll
2012-08-17 16:36:22 ----A---- C:\Windows\system32\url.dll
2012-08-17 16:36:22 ----A---- C:\Windows\system32\iertutil.dll
2012-08-17 16:36:21 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2012-08-17 16:36:21 ----A---- C:\Windows\SYSWOW64\ieui.dll
2012-08-17 16:36:21 ----A---- C:\Windows\system32\ieUnatt.exe
2012-08-17 16:36:21 ----A---- C:\Windows\system32\ieui.dll
2012-08-17 16:36:20 ----A---- C:\Windows\SYSWOW64\wininet.dll
2012-08-17 16:36:20 ----A---- C:\Windows\system32\wininet.dll
2012-08-17 16:36:20 ----A---- C:\Windows\system32\jscript9.dll
2012-08-17 16:36:19 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2012-08-17 16:36:19 ----A---- C:\Windows\SYSWOW64\jscript.dll
2012-08-17 16:36:19 ----A---- C:\Windows\system32\jsproxy.dll
2012-08-17 16:36:19 ----A---- C:\Windows\system32\jscript.dll
2012-08-17 16:36:18 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2012-08-17 16:36:17 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2012-08-17 16:36:16 ----A---- C:\Windows\system32\mshtml.dll
2012-08-17 16:36:15 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2012-08-17 16:36:15 ----A---- C:\Windows\system32\ieframe.dll
2012-08-17 14:56:25 ----A---- C:\Windows\SYSWOW64\srclient.dll
2012-08-17 14:56:25 ----A---- C:\Windows\system32\srcore.dll
2012-08-17 14:56:17 ----A---- C:\Windows\system32\win32spl.dll
2012-08-17 14:56:16 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2012-08-17 14:56:16 ----A---- C:\Windows\system32\spoolsv.exe
2012-08-17 14:56:16 ----A---- C:\Windows\splwow64.exe
2012-08-17 14:56:15 ----A---- C:\Windows\system32\netapi32.dll
2012-08-17 14:56:15 ----A---- C:\Windows\system32\browser.dll
2012-08-17 14:56:15 ----A---- C:\Windows\system32\browcli.dll
2012-08-17 14:56:14 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2012-08-17 14:56:14 ----A---- C:\Windows\SYSWOW64\browcli.dll
2012-08-17 14:56:13 ----A---- C:\Windows\system32\win32k.sys
2012-08-17 14:56:12 ----A---- C:\Windows\system32\localspl.dll
2012-08-10 23:29:33 ----A---- C:\Windows\avastSS.scr
2012-08-10 23:29:32 ----A---- C:\Windows\SYSWOW64\aswBoot.exe
2012-08-10 23:29:22 ----D---- C:\ProgramData\AVAST Software
2012-08-10 23:29:22 ----D---- C:\Program Files\AVAST Software
2012-08-09 19:54:22 ----D---- C:\Program Files (x86)\Electronic Arts
2012-08-07 22:12:31 ----A---- C:\Windows\SYSWOW64\certsentry.dll
2012-08-07 22:12:31 ----A---- C:\Windows\system32\certsentry.dll
2012-08-07 22:12:26 ----D---- C:\Program Files (x86)\Comodo
2012-08-07 22:07:57 ----A---- C:\Windows\SYSWOW64\gdiplus.dll
======List of files/folders modified in the last 1 month======
2012-08-30 08:10:55 ----D---- C:\Windows\SysWOW64
2012-08-30 00:15:32 ----D---- C:\Windows
2012-08-30 00:11:42 ----D---- C:\Windows\system32\config
2012-08-30 00:09:36 ----D---- C:\Windows\System32
2012-08-30 00:09:36 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-08-30 00:04:33 ----D---- C:\Windows\inf
2012-08-30 00:04:32 ----D---- C:\Windows\system32\drivers
2012-08-30 00:04:19 ----D---- C:\Windows\Tasks
2012-08-30 00:04:16 ----SHD---- C:\Windows\Installer
2012-08-30 00:04:16 ----D---- C:\Config.Msi
2012-08-30 00:03:49 ----SHD---- C:\System Volume Information
2012-08-30 00:01:32 ----D---- C:\Windows\SoftwareDistribution
2012-08-29 23:56:46 ----D---- C:\Users\Musilovi\AppData\Roaming\Skype
2012-08-29 23:33:01 ----RD---- C:\Program Files (x86)
2012-08-29 23:33:01 ----D---- C:\Program Files (x86)\Google
2012-08-29 11:28:19 ----D---- C:\Users\Musilovi\AppData\Roaming\Yandex
2012-08-29 11:28:19 ----D---- C:\ProgramData
2012-08-29 11:27:52 ----D---- C:\ProgramData\Norton
2012-08-29 10:06:24 ----D---- C:\Users\Musilovi\AppData\Roaming\ICQ
2012-08-29 10:01:48 ----D---- C:\ProgramData\NVIDIA
2012-08-29 00:12:47 ----D---- C:\Windows\system32\NDF
2012-08-28 23:18:21 ----D---- C:\Windows\system32\catroot2
2012-08-28 10:03:41 ----D---- C:\Windows\system32\catroot
2012-08-28 10:00:35 ----D---- C:\Windows\system32\DriverStore
2012-08-28 09:14:19 ----D---- C:\Windows\system32\drivers\etc
2012-08-28 00:24:00 ----A---- C:\Windows\system.ini
2012-08-28 00:20:05 ----D---- C:\Windows\SYSWOW64\drivers
2012-08-28 00:20:05 ----D---- C:\Windows\AppPatch
2012-08-28 00:20:04 ----D---- C:\Program Files (x86)\Common Files
2012-08-27 09:26:24 ----D---- C:\Windows\Prefetch
2012-08-26 15:24:43 ----RD---- C:\Program Files
2012-08-26 14:56:11 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-08-26 14:41:10 ----D---- C:\Windows\Logs
2012-08-26 14:38:42 ----D---- C:\Windows\Panther
2012-08-26 14:38:42 ----D---- C:\Windows\debug
2012-08-26 14:31:50 ----D---- C:\Windows\system32\Tasks
2012-08-26 12:21:45 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2012-08-26 11:11:58 ----RD---- C:\Users
2012-08-26 10:57:03 ----RSD---- C:\Windows\assembly
2012-08-26 10:57:03 ----D---- C:\Windows\Microsoft.NET
2012-08-26 10:54:56 ----DC---- C:\Windows\system32\DRVSTORE
2012-08-25 22:17:18 ----D---- C:\ProgramData\Microsoft Help
2012-08-25 21:40:25 ----D---- C:\Windows\winsxs
2012-08-25 21:14:27 ----A---- C:\Windows\win.ini
2012-08-25 20:58:35 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-08-25 15:54:17 ----D---- C:\Program Files (x86)\GameSpy Arcade
2012-08-25 15:24:46 ----D---- C:\ProgramData\Skype
2012-08-25 15:24:28 ----RD---- C:\Program Files (x86)\Skype
2012-08-21 17:46:22 ----D---- C:\TopCD
2012-08-17 22:20:01 ----D---- C:\Windows\system32\FxsTmp
2012-08-17 19:15:37 ----RSD---- C:\Windows\Fonts
2012-08-17 19:15:36 ----D---- C:\Windows\SYSWOW64\migration
2012-08-17 19:15:36 ----D---- C:\Windows\system32\migration
2012-08-17 19:15:36 ----D---- C:\Program Files\Internet Explorer
2012-08-17 19:15:36 ----D---- C:\Program Files (x86)\Internet Explorer
2012-08-17 16:34:51 ----A---- C:\Windows\system32\MRT.exe
2012-08-17 16:33:04 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2012-08-10 23:23:20 ----D---- C:\ProgramData\AVG2012
2012-08-10 23:19:45 ----D---- C:\ProgramData\MFAData
2012-08-10 23:19:32 ----D---- C:\Windows\system32\drivers\AVG
2012-08-09 20:10:36 ----D---- C:\Windows\system32\LogFiles
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 Soluto;Soluto; C:\Windows\system32\Drivers\Soluto.sys [2012-08-23 54728]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-07-28 834544]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2012-07-03 54072]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-07-03 355856]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-07-03 59728]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2010-12-17 40816]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-07-03 25232]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-07-03 71064]
R3 cpuz135;cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys []
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 Mv_Process;Marvell process notification.; \??\c:\windows\syswow64\mv_process.sys [2011-11-22 14376]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2012-04-18 188736]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-12-24 412264]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2011-01-15 36352]
S1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-07-03 958400]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys []
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys []
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-01-04 2697448]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-21 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-07-03 44808]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2012-08-22 1852048]
R2 Marvell Storage Management;Marvell Storage Management Service; C:\Program Files (x86)\Marvell\storage\svc\mvraidsvc.exe [2012-05-14 313192]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-05-15 889664]
R2 SolutoService;Soluto PCGenome Core Service; C:\Program Files\Soluto\SolutoService.exe [2012-08-23 599568]
R3 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-08-13 3064000]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 MSUWebService;MSU Web Service; C:\Program Files (x86)\Marvell\storage\Apache2\bin\httpd.exe [2011-11-22 24645]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-17 250056]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe []
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PnkBstrA;PunkBuster; C:\Program Files (x86)\Electronic Arts\Medal of Honor Airborne\UnrealEngine3\MOHAGame\pb\PnkBstrA.exe [2007-08-15 63040]
S3 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-06-07 160944]
S3 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-05-15 382272]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-04-28 1255736]
-----------------EOF-----------------
Logfile of random's system information tool 1.09 (written by random/random)
Run by Musilovi at 2012-08-30 08:10:51
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 883 GB (93%) free of 954 GB
Total RAM: 4079 MB (78% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:10:55, on 30.8.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16448)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Marvell\storage\tray\MarvellTray.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Musilovi.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file)
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [MSUTray] C:\Program Files (x86)\Marvell\storage\tray\MarvellTray.exe
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files (x86)\ICQ7.6\ICQ.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Broken Internet access because of LSP provider 'c:\windows\system32\nwprovau.dll' missing
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://127.0.0.1
O15 - Trusted IP range: http://localhost
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Unknown owner - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Marvell Storage Management Service (Marvell Storage Management) - Marvell - C:\Program Files (x86)\Marvell\storage\svc\mvraidsvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MSU Web Service (MSUWebService) - Apache Software Foundation - C:\Program Files (x86)\Marvell\storage\Apache2\bin\httpd.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PunkBuster (PnkBstrA) - Unknown owner - C:\Program Files (x86)\Electronic Arts\Medal of Honor Airborne\UnrealEngine3\MOHAGame\pb\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Soluto PCGenome Core Service (SolutoService) - Soluto - C:\Program Files\Soluto\SolutoService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8897 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe"
"C:\Program Files (x86)\Marvell\storage\svc\mvraidsvc.exe"
"C:\Program Files\Soluto\SolutoService.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Soluto\soluto.exe" /userinit
"C:\Windows\system32\Dwm.exe"
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-c3e90a12-a5ae-40e0-a4c5-61826160a17d -SystemEventPortName:HostProcess-f585b014-e3b7-4266-8e32-b6a5063c2bf0 -IoCancelEventPortName:HostProcess-c0197a8a-6860-4348-8645-879578d65103 -NonStateChangingEventPortName:HostProcess-45d406c3-655b-44ac-8501-a5ff15b9d583 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:b4752381-02d9-4be1-95fc-80b39d17dbbe
C:\Windows\Explorer.EXE
"C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE" /logon
"C:\Program Files (x86)\Marvell\storage\tray\MarvellTray.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
"C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /welcome
"C:\Program Files\Windows Sidebar\sidebar.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" https://www.avast.com/program/api/?acti ... =0&p_wnf=0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/3/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/warmest_socket/ --renderer-print-preview --channel="3020.0.1775032746\179543740" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/3/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/warmest_socket/ --extension-process --renderer-print-preview --channel="3020.1.865355935\1920577641" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/3/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/warmest_socket/ --extension-process --renderer-print-preview --channel="3020.7.1562514125\985592709" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/3/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/warmest_socket/ --extension-process --renderer-print-preview --channel="3020.8.663610351\631337467" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\Musilovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.2.0.10687_0\npSkypeChromePlugin.dll" --lang=cs --channel="3020.9.1316685935\1214003218" /prefetch:4
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/3/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/warmest_socket/ --extension-process --renderer-print-preview --channel="3020.10.1497275788\2019701139" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/3/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/warmest_socket/ --extension-process --renderer-print-preview --channel="3020.11.1390079797\252904703" /prefetch:3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/3/Prerender/ContentPrefetchPrerender2/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/spdy3/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Uniformity-Trial-1-Percent/group_86/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/WarmSocketImpact/warmest_socket/ --extension-process --renderer-print-preview --channel="3020.12.1759844203\1498633543" /prefetch:3
Notepad.exe C:\Users\Musilovi\Desktop\Rkill.txt
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe7_ Global\UsGthrCtrlFltPipeMssGthrPipe7 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\Musilovi\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\avast! Emergency Update.job
C:\Windows\tasks\SidebarExecute.job
C:\Windows\tasks\Soluto-Diagnostics.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2012-07-03 1387952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2012-08-13 5749952]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-27 63944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-07-03 1160792]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-08-13 4120256]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17}
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2012-07-03 1387952]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-07-03 1160792]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2009-07-27 2184520]
"CanonSolutionMenu"=C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [2009-03-18 767312]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"MSUTray"=C:\Program Files (x86)\Marvell\storage\tray\MarvellTray.exe [2012-06-13 1213952]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-07-03 4273976]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2011-04-28 249344]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2012-08-30 08:10:51 ----D---- C:\rsit
2012-08-30 00:04:32 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2012-08-30 00:04:30 ----A---- C:\Windows\system32\drivers\aswSP.sys
2012-08-30 00:04:26 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2012-08-30 00:04:25 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2012-08-30 00:04:22 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2012-08-30 00:04:19 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2012-08-30 00:04:18 ----A---- C:\Windows\system32\aswBoot.exe
2012-08-29 23:55:59 ----D---- C:\Users\Musilovi\AppData\Roaming\Soluto
2012-08-28 09:59:25 ----D---- C:\Program Files (x86)\Marvell
2012-08-28 09:04:06 ----D---- C:\Windows\system32\Soluto
2012-08-28 09:01:08 ----SHD---- C:\$RECYCLE.BIN
2012-08-28 00:27:08 ----D---- C:\Windows\temp
2012-08-27 09:22:26 ----D---- C:\Windows\erdnt
2012-08-26 17:21:22 ----D---- C:\Users\Musilovi\AppData\Roaming\Malwarebytes
2012-08-26 17:21:08 ----D---- C:\ProgramData\Malwarebytes
2012-08-26 17:21:07 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-08-26 17:21:07 ----A---- C:\Windows\system32\drivers\mbam.sys
2012-08-26 15:24:43 ----D---- C:\Program Files\trend micro
2012-08-26 14:31:46 ----D---- C:\Program Files\CCleaner
2012-08-26 13:16:12 ----A---- C:\Users\Musilovi\AppData\Roaming\burnaware.ini
2012-08-26 13:15:22 ----D---- C:\Program Files (x86)\BurnAware Professional
2012-08-26 13:10:49 ----D---- C:\Program Files (x86)\špion
2012-08-26 13:00:34 ----D---- C:\Users\Musilovi\AppData\Roaming\vlc
2012-08-26 12:59:55 ----D---- C:\Program Files (x86)\VideoLAN
2012-08-26 12:19:52 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2012-08-26 12:19:52 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2012-08-26 12:19:52 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2012-08-26 12:19:52 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2012-08-26 12:19:52 ----A---- C:\Windows\SYSWOW64\nvdecodemft.dll
2012-08-26 12:19:52 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2012-08-26 12:19:52 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2012-08-26 12:19:52 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2012-08-26 12:19:52 ----A---- C:\Windows\system32\nvoglv64.dll
2012-08-26 12:19:52 ----A---- C:\Windows\system32\nvinitx.dll
2012-08-26 12:19:52 ----A---- C:\Windows\system32\nvhdap64.dll
2012-08-26 12:19:52 ----A---- C:\Windows\system32\nvdecodemft.dll
2012-08-26 12:19:52 ----A---- C:\Windows\system32\nvcuvid.dll
2012-08-26 12:19:52 ----A---- C:\Windows\system32\nvcuvenc.dll
2012-08-26 12:19:52 ----A---- C:\Windows\system32\nvcuda.dll
2012-08-26 12:19:52 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2012-08-26 12:19:52 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2012-08-26 12:19:51 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2012-08-26 12:19:51 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2012-08-26 12:19:51 ----A---- C:\Windows\system32\nvcompiler.dll
2012-08-26 11:09:32 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2012-08-26 11:09:32 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2012-08-26 11:09:32 ----A---- C:\Windows\system32\OpenCL.dll
2012-08-26 11:09:32 ----A---- C:\Windows\system32\nvumdshimx.dll
2012-08-26 11:09:32 ----A---- C:\Windows\system32\nvhdagenco6420103.dll
2012-08-26 11:08:55 ----D---- C:\NVIDIA
2012-08-26 10:54:56 ----A---- C:\Windows\system32\drivers\Soluto.sys
2012-08-26 10:54:55 ----D---- C:\Program Files\Soluto
2012-08-26 10:53:27 ----D---- C:\ProgramData\Soluto
2012-08-25 23:51:38 ----D---- C:\Program Files\Popeláři
2012-08-25 22:32:38 ----D---- C:\Program Files (x86)\Traktor 3
2012-08-25 22:07:43 ----D---- C:\Program Files\NVIDIA Corporation
2012-08-25 20:58:35 ----D---- C:\Program Files\Microsoft Office
2012-08-25 20:21:32 ----D---- C:\Program Files (x86)\7-Zip
2012-08-25 16:09:04 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2012-08-25 16:09:04 ----A---- C:\Windows\system32\qdvd.dll
2012-08-19 11:26:46 ----D---- C:\Users\Musilovi\AppData\Roaming\Seznam.cz
2012-08-17 16:36:23 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2012-08-17 16:36:23 ----A---- C:\Windows\system32\mshtmled.dll
2012-08-17 16:36:22 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2012-08-17 16:36:22 ----A---- C:\Windows\SYSWOW64\url.dll
2012-08-17 16:36:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2012-08-17 16:36:22 ----A---- C:\Windows\system32\urlmon.dll
2012-08-17 16:36:22 ----A---- C:\Windows\system32\url.dll
2012-08-17 16:36:22 ----A---- C:\Windows\system32\iertutil.dll
2012-08-17 16:36:21 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2012-08-17 16:36:21 ----A---- C:\Windows\SYSWOW64\ieui.dll
2012-08-17 16:36:21 ----A---- C:\Windows\system32\ieUnatt.exe
2012-08-17 16:36:21 ----A---- C:\Windows\system32\ieui.dll
2012-08-17 16:36:20 ----A---- C:\Windows\SYSWOW64\wininet.dll
2012-08-17 16:36:20 ----A---- C:\Windows\system32\wininet.dll
2012-08-17 16:36:20 ----A---- C:\Windows\system32\jscript9.dll
2012-08-17 16:36:19 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2012-08-17 16:36:19 ----A---- C:\Windows\SYSWOW64\jscript.dll
2012-08-17 16:36:19 ----A---- C:\Windows\system32\jsproxy.dll
2012-08-17 16:36:19 ----A---- C:\Windows\system32\jscript.dll
2012-08-17 16:36:18 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2012-08-17 16:36:17 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2012-08-17 16:36:16 ----A---- C:\Windows\system32\mshtml.dll
2012-08-17 16:36:15 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2012-08-17 16:36:15 ----A---- C:\Windows\system32\ieframe.dll
2012-08-17 14:56:25 ----A---- C:\Windows\SYSWOW64\srclient.dll
2012-08-17 14:56:25 ----A---- C:\Windows\system32\srcore.dll
2012-08-17 14:56:17 ----A---- C:\Windows\system32\win32spl.dll
2012-08-17 14:56:16 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2012-08-17 14:56:16 ----A---- C:\Windows\system32\spoolsv.exe
2012-08-17 14:56:16 ----A---- C:\Windows\splwow64.exe
2012-08-17 14:56:15 ----A---- C:\Windows\system32\netapi32.dll
2012-08-17 14:56:15 ----A---- C:\Windows\system32\browser.dll
2012-08-17 14:56:15 ----A---- C:\Windows\system32\browcli.dll
2012-08-17 14:56:14 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2012-08-17 14:56:14 ----A---- C:\Windows\SYSWOW64\browcli.dll
2012-08-17 14:56:13 ----A---- C:\Windows\system32\win32k.sys
2012-08-17 14:56:12 ----A---- C:\Windows\system32\localspl.dll
2012-08-10 23:29:33 ----A---- C:\Windows\avastSS.scr
2012-08-10 23:29:32 ----A---- C:\Windows\SYSWOW64\aswBoot.exe
2012-08-10 23:29:22 ----D---- C:\ProgramData\AVAST Software
2012-08-10 23:29:22 ----D---- C:\Program Files\AVAST Software
2012-08-09 19:54:22 ----D---- C:\Program Files (x86)\Electronic Arts
2012-08-07 22:12:31 ----A---- C:\Windows\SYSWOW64\certsentry.dll
2012-08-07 22:12:31 ----A---- C:\Windows\system32\certsentry.dll
2012-08-07 22:12:26 ----D---- C:\Program Files (x86)\Comodo
2012-08-07 22:07:57 ----A---- C:\Windows\SYSWOW64\gdiplus.dll
======List of files/folders modified in the last 1 month======
2012-08-30 08:10:55 ----D---- C:\Windows\SysWOW64
2012-08-30 00:15:32 ----D---- C:\Windows
2012-08-30 00:11:42 ----D---- C:\Windows\system32\config
2012-08-30 00:09:36 ----D---- C:\Windows\System32
2012-08-30 00:09:36 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-08-30 00:04:33 ----D---- C:\Windows\inf
2012-08-30 00:04:32 ----D---- C:\Windows\system32\drivers
2012-08-30 00:04:19 ----D---- C:\Windows\Tasks
2012-08-30 00:04:16 ----SHD---- C:\Windows\Installer
2012-08-30 00:04:16 ----D---- C:\Config.Msi
2012-08-30 00:03:49 ----SHD---- C:\System Volume Information
2012-08-30 00:01:32 ----D---- C:\Windows\SoftwareDistribution
2012-08-29 23:56:46 ----D---- C:\Users\Musilovi\AppData\Roaming\Skype
2012-08-29 23:33:01 ----RD---- C:\Program Files (x86)
2012-08-29 23:33:01 ----D---- C:\Program Files (x86)\Google
2012-08-29 11:28:19 ----D---- C:\Users\Musilovi\AppData\Roaming\Yandex
2012-08-29 11:28:19 ----D---- C:\ProgramData
2012-08-29 11:27:52 ----D---- C:\ProgramData\Norton
2012-08-29 10:06:24 ----D---- C:\Users\Musilovi\AppData\Roaming\ICQ
2012-08-29 10:01:48 ----D---- C:\ProgramData\NVIDIA
2012-08-29 00:12:47 ----D---- C:\Windows\system32\NDF
2012-08-28 23:18:21 ----D---- C:\Windows\system32\catroot2
2012-08-28 10:03:41 ----D---- C:\Windows\system32\catroot
2012-08-28 10:00:35 ----D---- C:\Windows\system32\DriverStore
2012-08-28 09:14:19 ----D---- C:\Windows\system32\drivers\etc
2012-08-28 00:24:00 ----A---- C:\Windows\system.ini
2012-08-28 00:20:05 ----D---- C:\Windows\SYSWOW64\drivers
2012-08-28 00:20:05 ----D---- C:\Windows\AppPatch
2012-08-28 00:20:04 ----D---- C:\Program Files (x86)\Common Files
2012-08-27 09:26:24 ----D---- C:\Windows\Prefetch
2012-08-26 15:24:43 ----RD---- C:\Program Files
2012-08-26 14:56:11 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-08-26 14:41:10 ----D---- C:\Windows\Logs
2012-08-26 14:38:42 ----D---- C:\Windows\Panther
2012-08-26 14:38:42 ----D---- C:\Windows\debug
2012-08-26 14:31:50 ----D---- C:\Windows\system32\Tasks
2012-08-26 12:21:45 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2012-08-26 11:11:58 ----RD---- C:\Users
2012-08-26 10:57:03 ----RSD---- C:\Windows\assembly
2012-08-26 10:57:03 ----D---- C:\Windows\Microsoft.NET
2012-08-26 10:54:56 ----DC---- C:\Windows\system32\DRVSTORE
2012-08-25 22:17:18 ----D---- C:\ProgramData\Microsoft Help
2012-08-25 21:40:25 ----D---- C:\Windows\winsxs
2012-08-25 21:14:27 ----A---- C:\Windows\win.ini
2012-08-25 20:58:35 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-08-25 15:54:17 ----D---- C:\Program Files (x86)\GameSpy Arcade
2012-08-25 15:24:46 ----D---- C:\ProgramData\Skype
2012-08-25 15:24:28 ----RD---- C:\Program Files (x86)\Skype
2012-08-21 17:46:22 ----D---- C:\TopCD
2012-08-17 22:20:01 ----D---- C:\Windows\system32\FxsTmp
2012-08-17 19:15:37 ----RSD---- C:\Windows\Fonts
2012-08-17 19:15:36 ----D---- C:\Windows\SYSWOW64\migration
2012-08-17 19:15:36 ----D---- C:\Windows\system32\migration
2012-08-17 19:15:36 ----D---- C:\Program Files\Internet Explorer
2012-08-17 19:15:36 ----D---- C:\Program Files (x86)\Internet Explorer
2012-08-17 16:34:51 ----A---- C:\Windows\system32\MRT.exe
2012-08-17 16:33:04 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2012-08-10 23:23:20 ----D---- C:\ProgramData\AVG2012
2012-08-10 23:19:45 ----D---- C:\ProgramData\MFAData
2012-08-10 23:19:32 ----D---- C:\Windows\system32\drivers\AVG
2012-08-09 20:10:36 ----D---- C:\Windows\system32\LogFiles
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 Soluto;Soluto; C:\Windows\system32\Drivers\Soluto.sys [2012-08-23 54728]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-07-28 834544]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2012-07-03 54072]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-07-03 355856]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-07-03 59728]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2010-12-17 40816]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-07-03 25232]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-07-03 71064]
R3 cpuz135;cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys []
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 Mv_Process;Marvell process notification.; \??\c:\windows\syswow64\mv_process.sys [2011-11-22 14376]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2012-04-18 188736]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-12-24 412264]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2011-01-15 36352]
S1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-07-03 958400]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys []
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys []
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-01-04 2697448]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-21 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-07-03 44808]
R2 DragonUpdater;COMODO Dragon Update Service; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2012-08-22 1852048]
R2 Marvell Storage Management;Marvell Storage Management Service; C:\Program Files (x86)\Marvell\storage\svc\mvraidsvc.exe [2012-05-14 313192]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-05-15 889664]
R2 SolutoService;Soluto PCGenome Core Service; C:\Program Files\Soluto\SolutoService.exe [2012-08-23 599568]
R3 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-08-13 3064000]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 MSUWebService;MSU Web Service; C:\Program Files (x86)\Marvell\storage\Apache2\bin\httpd.exe [2011-11-22 24645]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-17 250056]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe []
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PnkBstrA;PunkBuster; C:\Program Files (x86)\Electronic Arts\Medal of Honor Airborne\UnrealEngine3\MOHAGame\pb\PnkBstrA.exe [2007-08-15 63040]
S3 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-06-07 160944]
S3 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-05-15 382272]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-04-28 1255736]
-----------------EOF-----------------
Re: Problematické chování PC po odčervení
Spustte HJT a provedeme fixnuti polozek
- HJT najdete zde C:\Program Files\trend micro\Musilovi.exe
- Otevre se Vam okno, kliknete na Do a system scan only
- V dalsim okne najdete radky které jsem Vam vypsal nize, vedle nich je ctverecek, do ktereho udelate zatrzitko
- O15 - Trusted IP range: http://127.0.0.1
O15 - Trusted IP range: http://localhost - Kliknete na Fix checked (vlevo dole)
- HJT se Vas zepta zda opravdu ANO, s tim souhlasite a je hotovo
Pripadne preinstalujte ovladac sitove karty pokud net stale nefunguje Jak jste pripojen - kabel ci wifi "Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Problematické chování PC po odčervení
PC je připojen na Lan.Reinstalace driveru nepomohla stále není připojení na net.Moc děkuji za vaši trpělivost.
- Výstřižek4.PNG (170.57 KiB) Zobrazeno 1848 x
Naposledy upravil(a) awas dne 30 srp 2012 23:21, celkem upraveno 1 x.
Re: Problematické chování PC po odčervení
A v nouzovem rezimu ten net funguje? jine PC predpokladam ten problem nemaji
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Problematické chování PC po odčervení
Ano mám tu ještě další počítač a notebook, ty pracují bez problému.Internet na tomto nejde ani v nouzovém režimu se sítí.Několikrát jsem zkoušel přeinstalovat ovladače síťové karty, ale nic.....teď jsem vyzkoušel vyhrabat starou síťovku, dal ji do PC, ale je to marné, nejde také.....
Přispějete na provoz fóra?