Problém

[denyn]

Dobrý den, mám takový problém. Nevím, jak to napsat, aby tomu šlo rozumět. Když např. hraju něco, tak mi samovolně hra skáče do windowsu jakože se zobrazí plocha, jako kdybych ji minimalizoval. Není to jen u her. i Když jsem na netu a něco si prohlížím, tak okno se najednou přepne a musím do něj kliknout, abych mohl pokračovat. Prostě každou chvíli cca po minutě mi něco ruší práci nebo hraní na pc. jako kdybych pořád mačkal klávesu windows. klávesnicí to není. Prosím o radu. Děkuju

[Rudy]

Zdravím!
Můžeme se podívat, jestli vám v systému neběží nějaké svinstvo. Dejte log RSIT: http://www.viry.cz/forum/viewtopic.php?f=13&t=105895 .

[denyn]

Logfile of random's system information tool 1.09 (written by random/random)
Run by PC at 2013-02-08 13:16:06
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 36 GB (63%) free of 57 GB
Total RAM: 3561 MB (71% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:16:11, on 8.2.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
D:\programy\winnamp\Winamp\winampa.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\EPSON Software\Event Manager\EEventManager.exe
D:\wifi\TWCU.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_5_502_149.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_5_502_149.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskmgr.exe
C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe
D:\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\PC.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.good-results.info/?pid ... g=EN&cc=CZ
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.good-results.info/?pid ... g=EN&cc=CZ
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll
O3 - Toolbar: KMPlayer Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe"
O4 - HKLM\..\Run: [WinampAgent] D:\programy\winnamp\Winamp\winampa.exe
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\RunOnce: [EasyTuneVI] C:\Program Files\GIGABYTE\ET6\ETCall.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [uTorrent] "D:\programy\utorrent\uTorrent.exe" /MINIMIZED
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2412793768-3229914952-523974569-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2412793768-3229914952-523974569-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = D:\wifi\TWCU.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GRA32A~1.DLL
O20 - AppInit_DLLs: c:\progra~1\browse~1\sprote~1.dll
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Seiko Epson Corporation - C:\Windows\system32\EscSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

--
End of file - 8220 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

=========Mozilla firefox=========

ProfilePath - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\y25epvkb.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "keyword.URL" - "http://websearch.good-results.info/?pid ... =CZ&l=1&q="

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.149 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_149.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
npwachk.dll

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\y25epvkb.default\extensions\
toolbar@ask.com
{0b38152b-1b20-484d-a11f-5e04a9b0661f}

C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\y25epvkb.default\searchplugins\
aol-search.xml
WebSearch.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]
Winamp Toolbar Loader - C:\Program Files\Winamp Toolbar\winamptb.dll [2013-01-02 2086600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2011-01-26 319488]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
KMPlayer Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2012-12-19 1528096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]
{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - Winamp Toolbar - C:\Program Files\Winamp Toolbar\winamptb.dll [2013-01-02 2086600]
{D4027C7F-154A-4066-A1AD-4243D8127440} - KMPlayer Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2012-12-19 1528096]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2011-01-26 319488]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2012-06-11 10996368]
"USB3MON"=C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-05-20 291648]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-30 4297136]
""= []
"ApnUpdater"=C:\Program Files\Ask.com\Updater\Updater.exe [2012-12-19 1645856]
"WinampAgent"=D:\programy\winnamp\Winamp\winampa.exe [2012-06-28 74752]
"EEventManager"=C:\Program Files\Epson Software\Event Manager\EEventManager.exe [2011-10-31 1058400]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"EasyTuneVI"=C:\Program Files\GIGABYTE\ET6\ETCall.exe [2012-07-09 40960]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
"uTorrent"=D:\programy\utorrent\uTorrent.exe [2013-02-04 969104]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
TP-LINK Wireless Configuration Utility.lnk - D:\wifi\TWCU.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\progra~1\browse~1\sprote~1.dll "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-02-08 13:16:06 ----D---- C:\rsit
2013-02-08 13:16:06 ----D---- C:\Program Files\trend micro
2013-02-07 18:33:20 ----D---- C:\Users\PC\AppData\Roaming\NCdownloader
2013-02-06 22:24:32 ----AD---- C:\ProgramData\TEMP
2013-02-06 22:09:56 ----D---- C:\ProgramData\RightClick
2013-02-06 22:09:14 ----D---- C:\Program Files\Optimizer Pro
2013-02-06 22:09:01 ----D---- C:\Program Files\BrowseToSave
2013-02-06 22:08:06 ----D---- C:\ProgramData\InstallMate
2013-02-06 19:16:48 ----A---- C:\Windows\EEventManager.INI
2013-02-06 18:45:10 ----D---- C:\Users\PC\AppData\Roaming\Epson
2013-02-06 16:49:27 ----D---- C:\ProgramData\ABBYY
2013-02-06 16:49:27 ----D---- C:\Program Files\Common Files\ABBYY
2013-02-06 16:49:27 ----D---- C:\Program Files\ABBYY FineReader 9.0 Sprint
2013-02-06 16:48:32 ----D---- C:\ProgramData\UDL
2013-02-06 16:47:04 ----D---- C:\Program Files\EpsonNet
2013-02-06 16:47:04 ----A---- C:\Windows\system32\enspres.dll
2013-02-06 16:47:04 ----A---- C:\Windows\system32\ensppui.dll
2013-02-06 16:47:04 ----A---- C:\Windows\system32\ensppmon.dll
2013-02-06 16:47:04 ----A---- C:\Windows\system32\enpres.dll
2013-02-06 16:47:04 ----A---- C:\Windows\system32\enppui.dll
2013-02-06 16:47:04 ----A---- C:\Windows\system32\enppmon.dll
2013-02-06 16:46:54 ----D---- C:\Program Files\Common Files\EPSON
2013-02-06 16:46:53 ----D---- C:\Program Files\EPSON Software
2013-02-06 16:46:42 ----A---- C:\Windows\system32\E_DCINST.DLL
2013-02-06 16:46:38 ----A---- C:\Windows\system32\E_FLBILE.DLL
2013-02-06 16:46:36 ----A---- C:\Windows\system32\E_FD4BILE.DLL
2013-02-06 16:46:32 ----D---- C:\ProgramData\EPSON
2013-02-06 16:46:27 ----A---- C:\Windows\system32\esw2ud.dll
2013-02-06 16:46:27 ----A---- C:\Windows\system32\escsvc.exe
2013-02-06 16:46:24 ----D---- C:\Program Files\epson
2013-02-06 16:26:31 ----D---- C:\Program Files\Mozilla Firefox
2013-02-04 19:45:59 ----D---- C:\Users\PC\AppData\Roaming\WinRAR
2013-02-04 19:38:21 ----D---- C:\Program Files\Ask.com
2013-02-04 19:37:59 ----D---- C:\Program Files\The KMPlayer
2013-02-04 19:35:13 ----D---- C:\ProgramData\Winamp Toolbar
2013-02-04 19:35:13 ----D---- C:\Program Files\Winamp Toolbar
2013-02-04 19:35:09 ----D---- C:\Program Files\Common Files\Software Update Utility
2013-02-04 19:34:51 ----A---- C:\Windows\system32\D3DX9_42.dll
2013-02-04 19:34:51 ----A---- C:\Windows\system32\d3dx9_31.dll
2013-02-04 19:34:34 ----D---- C:\Program Files\Common Files\PX Storage Engine
2013-02-04 19:34:31 ----D---- C:\Users\PC\AppData\Roaming\Winamp
2013-02-04 19:31:59 ----D---- C:\Users\PC\AppData\Roaming\uTorrent
2013-02-04 19:31:23 ----A---- C:\Windows\system32\TURegOpt.exe
2013-02-04 19:31:23 ----A---- C:\Windows\system32\authuitu.dll
2013-02-04 19:31:20 ----D---- C:\Users\PC\AppData\Roaming\TuneUp Software
2013-02-04 19:31:18 ----D---- C:\Program Files\TuneUp Utilities 2013
2013-02-04 19:31:17 ----D---- C:\ProgramData\TuneUp Software
2013-02-04 19:31:15 ----SHD---- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-02-04 19:31:15 ----HD---- C:\ProgramData\Common Files
2013-02-04 19:30:38 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2013-02-04 19:30:37 ----D---- C:\Users\PC\AppData\Roaming\DAEMON Tools Lite
2013-02-04 19:30:35 ----D---- C:\Users\PC\AppData\Roaming\OpenCandy
2013-02-04 19:30:35 ----D---- C:\Program Files\DAEMON Tools Lite
2013-02-04 19:27:00 ----D---- C:\ProgramData\DAEMON Tools Lite
2013-02-04 18:35:58 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-02-04 18:35:58 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-02-04 18:35:58 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-02-04 18:35:58 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-02-04 18:35:58 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-02-04 18:35:58 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-02-04 18:35:58 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-02-04 18:35:57 ----A---- C:\Windows\system32\fsutil.exe
2013-02-04 18:35:57 ----A---- C:\Windows\system32\esent.dll
2013-02-04 18:35:57 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2013-02-04 18:35:57 ----A---- C:\Windows\system32\drivers\storport.sys
2013-02-04 18:35:57 ----A---- C:\Windows\system32\drivers\nvstor.sys
2013-02-04 18:35:57 ----A---- C:\Windows\system32\drivers\nvraid.sys
2013-02-04 18:35:57 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2013-02-04 18:35:57 ----A---- C:\Windows\system32\drivers\amdxata.sys
2013-02-04 18:35:57 ----A---- C:\Windows\system32\drivers\amdsata.sys
2013-02-04 18:35:14 ----D---- C:\Users\PC\AppData\Roaming\Macromedia
2013-02-04 18:35:14 ----D---- C:\Users\PC\AppData\Roaming\Adobe
2013-02-04 18:33:52 ----D---- C:\Users\PC\AppData\Roaming\TP-LINK
2013-02-04 18:32:47 ----A---- C:\Windows\system32\drivers\athur.sys
2013-02-04 18:32:47 ----A---- C:\Windows\system32\athur.sys
2013-02-04 18:31:30 ----D---- C:\ProgramData\TP-LINK
2013-02-01 22:14:44 ----A---- C:\Windows\system32\msonpmon.dll
2013-02-01 22:14:19 ----D---- C:\Program Files\Microsoft Works
2013-02-01 22:14:15 ----D---- C:\Program Files\Microsoft Visual Studio
2013-02-01 22:14:15 ----D---- C:\Program Files\Common Files\DESIGNER
2013-02-01 22:14:09 ----D---- C:\Windows\PCHEALTH
2013-02-01 22:13:25 ----D---- C:\Program Files\Microsoft Visual Studio 8
2013-02-01 22:13:12 ----D---- C:\ProgramData\Microsoft Help
2013-02-01 22:13:12 ----D---- C:\Program Files\Microsoft Office
2013-02-01 22:13:05 ----RHD---- C:\MSOCache
2013-02-01 22:12:28 ----D---- C:\Program Files\AMD
2013-02-01 22:11:44 ----D---- C:\Program Files\GIGABYTE
2013-02-01 22:11:44 ----A---- C:\Windows\system32\drivers\AppleCharger.sys
2013-02-01 22:11:44 ----A---- C:\Windows\system32\AppleChargerSrv.exe
2013-02-01 22:10:22 ----D---- C:\Windows\system32\RTCOM
2013-02-01 22:10:20 ----A---- C:\Windows\system32\drivers\iusb3hcs.sys
2013-02-01 22:10:14 ----A---- C:\Windows\system32\WdfCoInstaller01009.dll
2013-02-01 22:10:11 ----A---- C:\Windows\system32\drivers\L1C62x86.sys
2013-02-01 22:10:03 ----A---- C:\Windows\system32\drivers\iusb3xhc.sys
2013-02-01 22:10:02 ----A---- C:\Windows\system32\WavesLib.dll
2013-02-01 22:10:02 ----A---- C:\Windows\system32\SRSWOW.dll
2013-02-01 22:10:01 ----A---- C:\Windows\system32\SRSTSXT.dll
2013-02-01 22:10:01 ----A---- C:\Windows\system32\SRSTSHD.dll
2013-02-01 22:10:01 ----A---- C:\Windows\system32\SRSHP360.dll
2013-02-01 22:10:00 ----A---- C:\Windows\system32\RtkPgExt.dll
2013-02-01 22:09:59 ----A---- C:\Windows\system32\RtkCoLDR.dll
2013-02-01 22:09:59 ----A---- C:\Windows\system32\RtkCoInstII.dll
2013-02-01 22:09:59 ----A---- C:\Windows\system32\drivers\iusb3hub.sys
2013-02-01 22:09:58 ----A---- C:\Windows\system32\RtkApoApi.dll
2013-02-01 22:09:57 ----A---- C:\Windows\system32\RtkAPO.dll
2013-02-01 22:09:50 ----A---- C:\Windows\system32\RTEEP32A.dll
2013-02-01 22:09:50 ----A---- C:\Windows\system32\RTEEL32A.dll
2013-02-01 22:09:50 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2013-02-01 22:09:49 ----A---- C:\Windows\system32\RTEEG32A.dll
2013-02-01 22:09:49 ----A---- C:\Windows\system32\RTEED32A.dll
2013-02-01 22:09:48 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2013-02-01 22:09:47 ----A---- C:\Windows\system32\RP3DHT32.dll
2013-02-01 22:09:47 ----A---- C:\Windows\system32\RP3DAA32.dll
2013-02-01 22:09:28 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2013-02-01 22:09:27 ----A---- C:\Windows\system32\MBWrp32.dll
2013-02-01 22:09:27 ----A---- C:\Windows\system32\MBppld32.dll
2013-02-01 22:09:27 ----A---- C:\Windows\system32\MaxxAudioAPOShell.dll
2013-02-01 22:09:27 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2013-02-01 22:09:27 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2013-02-01 22:09:26 ----A---- C:\Windows\system32\MBPPCn32.dll
2013-02-01 22:09:25 ----A---- C:\Windows\system32\MBAPO32.dll
2013-02-01 22:09:16 ----D---- C:\Windows\system32\Atheros_L1e
2013-02-01 22:09:00 ----A---- C:\Windows\system32\FMAPO.dll
2013-02-01 22:08:49 ----D---- C:\Program Files\Realtek
2013-02-01 22:08:49 ----A---- C:\Windows\system32\AERTARen.dll
2013-02-01 22:08:49 ----A---- C:\Windows\system32\AERTACap.dll
2013-02-01 22:08:47 ----HD---- C:\Program Files\Temp
2013-02-01 22:08:46 ----R---- C:\Windows\RtlExUpd.dll
2013-02-01 22:08:42 ----D---- C:\Program Files\Common Files\InstallShield
2013-02-01 22:08:40 ----A---- C:\Windows\system32\drivers\IntelMEFWVer.dll
2013-02-01 22:08:32 ----A---- C:\Windows\system32\log.txt
2013-02-01 22:08:30 ----D---- C:\ProgramData\Intel
2013-02-01 22:08:29 ----D---- C:\Program Files\WinRAR
2013-02-01 22:08:26 ----RA---- C:\Windows\system32\CSVer.dll
2013-02-01 22:08:21 ----D---- C:\Program Files\Common Files\postureAgent
2013-02-01 22:08:19 ----A---- C:\Windows\system32\drivers\HECI.sys
2013-02-01 22:08:18 ----D---- C:\Intel
2013-02-01 22:08:09 ----HD---- C:\Program Files\InstallShield Installation Information
2013-02-01 22:08:09 ----D---- C:\Program Files\Intel
2013-02-01 22:08:08 ----D---- C:\Users\PC\AppData\Roaming\InstallShield
2013-02-01 22:07:13 ----D---- C:\Program Files\Microsoft.NET
2013-02-01 22:07:11 ----SHD---- C:\Windows\Installer
2013-02-01 22:05:51 ----A---- C:\Windows\GSetup.ini
2013-02-01 22:04:36 ----D---- C:\Users\PC\AppData\Roaming\Identities
2013-02-01 22:04:32 ----SD---- C:\Users\PC\AppData\Roaming\Microsoft
2013-02-01 22:04:32 ----D---- C:\Users\PC\AppData\Roaming\Media Center Programs
2013-02-01 22:03:53 ----SHD---- C:\Recovery
2013-02-01 22:03:53 ----SHD---- C:\ProgramData\Šablony
2013-02-01 22:03:53 ----SHD---- C:\ProgramData\Plocha
2013-02-01 22:03:53 ----SHD---- C:\ProgramData\Oblíbené položky
2013-02-01 22:03:53 ----SHD---- C:\ProgramData\Nabídka Start
2013-02-01 22:03:53 ----SHD---- C:\ProgramData\Dokumenty
2013-02-01 22:03:53 ----SHD---- C:\ProgramData\Data aplikací
2013-02-01 22:03:51 ----D---- C:\Windows\SoftwareDistribution
2013-02-01 22:01:22 ----D---- C:\Windows\Prefetch
2013-02-01 22:01:14 ----ASH---- C:\pagefile.sys
2013-02-01 22:01:13 ----SHD---- C:\System Volume Information
2013-02-01 22:01:13 ----ASH---- C:\hiberfil.sys
2013-02-01 22:00:41 ----D---- C:\Windows\Panther
2013-02-01 16:10:29 ----A---- C:\Windows\system32\FntCache.dll
2013-02-01 16:10:29 ----A---- C:\Windows\system32\d2d1.dll
2013-02-01 16:09:39 ----D---- C:\Windows\system32\Wat
2013-02-01 16:05:59 ----A---- C:\Windows\system32\fontsub.dll
2013-02-01 16:05:59 ----A---- C:\Windows\system32\atmlib.dll
2013-02-01 16:05:59 ----A---- C:\Windows\system32\atmfd.dll
2013-02-01 15:57:19 ----N---- C:\Windows\system32\MpSigStub.exe
2013-02-01 15:49:19 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2013-02-01 15:49:19 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-02-01 15:49:18 ----A---- C:\Windows\system32\Wdfres.dll
2013-02-01 15:48:55 ----A---- C:\Windows\system32\WUDFSvc.dll
2013-02-01 15:48:55 ----A---- C:\Windows\system32\WUDFPlatform.dll
2013-02-01 15:48:55 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2013-02-01 15:48:55 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2013-02-01 15:48:54 ----A---- C:\Windows\system32\WUDFx.dll
2013-02-01 15:48:54 ----A---- C:\Windows\system32\WUDFHost.exe
2013-02-01 15:48:54 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2013-02-01 15:48:35 ----A---- C:\Windows\system32\wmi.dll
2013-02-01 15:48:35 ----A---- C:\Windows\system32\imagehlp.dll
2013-02-01 15:48:35 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2013-02-01 15:47:58 ----A---- C:\Windows\system32\wininet.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\wextract.exe
2013-02-01 15:47:58 ----A---- C:\Windows\system32\webcheck.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\vbscript.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\urlmon.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\url.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-02-01 15:47:58 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-02-01 15:47:58 ----A---- C:\Windows\system32\pngfilt.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\occache.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\msrating.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\msls31.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\mshtmler.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\mshtmled.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\mshtml.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\mshta.exe
2013-02-01 15:47:58 ----A---- C:\Windows\system32\msfeedssync.exe
2013-02-01 15:47:58 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\msfeeds.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\licmgr10.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\jsproxy.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\jscript9.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\jscript.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\inseng.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\imgutil.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\iexpress.exe
2013-02-01 15:47:58 ----A---- C:\Windows\system32\ieUnatt.exe
2013-02-01 15:47:58 ----A---- C:\Windows\system32\ieui.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\iesysprep.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\iesetup.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\iertutil.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\iernonce.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\iepeers.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\ieframe.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\iedkcs32.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\ieapfltr.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\ieapfltr.dat
2013-02-01 15:47:58 ----A---- C:\Windows\system32\ieakui.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\ieaksie.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\ieakeng.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\ie4uinit.exe
2013-02-01 15:47:58 ----A---- C:\Windows\system32\icardie.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\dxtrans.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\dxtmsft.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\admparse.dll
2013-02-01 15:47:10 ----A---- C:\Windows\system32\browserchoice.exe
2013-02-01 15:42:21 ----A---- C:\Windows\system32\MRT.exe
2013-02-01 15:39:43 ----A---- C:\Windows\system32\rdpcorets.dll
2013-02-01 15:39:43 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2013-02-01 15:39:43 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2013-02-01 15:39:43 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-02-01 15:39:41 ----A---- C:\Windows\system32\winsrv.dll
2013-02-01 15:39:41 ----A---- C:\Windows\system32\KernelBase.dll
2013-02-01 15:39:41 ----A---- C:\Windows\system32\kernel32.dll
2013-02-01 15:39:41 ----A---- C:\Windows\system32\conhost.exe
2013-02-01 15:39:39 ----A---- C:\Windows\system32\usp10.dll
2013-02-01 15:39:37 ----A---- C:\Windows\system32\Wpc.dll
2013-02-01 15:39:37 ----A---- C:\Windows\system32\gameux.dll
2013-02-01 15:39:35 ----A---- C:\Windows\system32\dpnet.dll
2013-02-01 15:39:27 ----A---- C:\Windows\system32\spoolsv.exe
2013-02-01 15:39:13 ----A---- C:\Windows\system32\nlasvc.dll
2013-02-01 15:39:13 ----A---- C:\Windows\system32\nlaapi.dll
2013-02-01 15:39:13 ----A---- C:\Windows\system32\netevent.dll
2013-02-01 15:39:13 ----A---- C:\Windows\system32\netcorehc.dll
2013-02-01 15:39:13 ----A---- C:\Windows\system32\ncsi.dll
2013-02-01 15:39:13 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-02-01 15:39:13 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2013-02-01 15:39:13 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-02-01 15:39:13 ----A---- C:\Windows\system32\drivers\netio.sys
2013-02-01 15:39:13 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-02-01 15:39:11 ----A---- C:\Windows\system32\OxpsConverter.exe
2013-02-01 15:39:10 ----A---- C:\Windows\system32\kerberos.dll
2013-02-01 15:39:04 ----A---- C:\Windows\system32\tquery.dll
2013-02-01 15:39:04 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2013-02-01 15:39:04 ----A---- C:\Windows\system32\SearchIndexer.exe
2013-02-01 15:39:04 ----A---- C:\Windows\system32\SearchFilterHost.exe
2013-02-01 15:39:04 ----A---- C:\Windows\system32\mssvp.dll
2013-02-01 15:39:04 ----A---- C:\Windows\system32\mssrch.dll
2013-02-01 15:39:04 ----A---- C:\Windows\system32\mssphtb.dll
2013-02-01 15:39:04 ----A---- C:\Windows\system32\mssph.dll
2013-02-01 15:39:04 ----A---- C:\Windows\system32\msscntrs.dll
2013-02-01 15:39:03 ----A---- C:\Windows\system32\sbe.dll
2013-02-01 15:39:03 ----A---- C:\Windows\system32\CPFilters.dll
2013-02-01 15:39:01 ----A---- C:\Windows\system32\cdosys.dll
2013-02-01 15:38:59 ----A---- C:\Windows\system32\cryptsvc.dll
2013-02-01 15:38:59 ----A---- C:\Windows\system32\cryptnet.dll
2013-02-01 15:38:59 ----A---- C:\Windows\system32\crypt32.dll
2013-02-01 15:38:57 ----A---- C:\Windows\system32\schannel.dll
2013-02-01 15:38:57 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-02-01 15:38:57 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-02-01 15:38:57 ----A---- C:\Windows\system32\drivers\cng.sys
2013-02-01 15:38:56 ----A---- C:\Windows\system32\win32k.sys
2013-02-01 15:38:56 ----A---- C:\Windows\system32\oleaut32.dll
2013-02-01 15:38:56 ----A---- C:\Windows\system32\oleacc.dll
2013-02-01 15:38:55 ----D---- C:\Users\PC\AppData\Roaming\GHISLER
2013-02-01 15:38:55 ----D---- C:\totalcmd
2013-02-01 15:38:55 ----A---- C:\Windows\UC.PIF
2013-02-01 15:38:55 ----A---- C:\Windows\system32\drivers\afd.sys
2013-02-01 15:38:55 ----A---- C:\Windows\system32\dnsrslvr.dll
2013-02-01 15:38:55 ----A---- C:\Windows\system32\dnscacheugc.exe
2013-02-01 15:38:55 ----A---- C:\Windows\system32\dnsapi.dll
2013-02-01 15:38:55 ----A---- C:\Windows\RAR.PIF
2013-02-01 15:38:55 ----A---- C:\Windows\PKZIP.PIF
2013-02-01 15:38:55 ----A---- C:\Windows\PKUNZIP.PIF
2013-02-01 15:38:55 ----A---- C:\Windows\NOCLOSE.PIF
2013-02-01 15:38:55 ----A---- C:\Windows\LHA.PIF
2013-02-01 15:38:55 ----A---- C:\Windows\ARJ.PIF
2013-02-01 15:38:54 ----A---- C:\Windows\system32\ntdll.dll
2013-02-01 15:38:54 ----A---- C:\Windows\system32\msxml3r.dll
2013-02-01 15:38:54 ----A---- C:\Windows\system32\msxml3.dll
2013-02-01 15:38:52 ----A---- C:\Windows\system32\psisdecd.dll
2013-02-01 15:38:52 ----A---- C:\Windows\system32\msi.dll
2013-02-01 15:38:52 ----A---- C:\Windows\system32\drivers\srvnet.sys
2013-02-01 15:38:52 ----A---- C:\Windows\system32\drivers\srv2.sys
2013-02-01 15:38:52 ----A---- C:\Windows\system32\drivers\srv.sys
2013-02-01 15:38:51 ----A---- C:\Windows\system32\wintrust.dll
2013-02-01 15:38:51 ----A---- C:\Windows\system32\win32spl.dll
2013-02-01 15:38:51 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-02-01 15:38:50 ----A---- C:\Windows\system32\srcore.dll
2013-02-01 15:38:50 ----A---- C:\Windows\system32\ntkrnlpa.exe
2013-02-01 15:38:49 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-02-01 15:38:48 ----A---- C:\Windows\system32\xmllite.dll
2013-02-01 15:38:48 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2013-02-01 15:38:48 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2013-02-01 15:38:48 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2013-02-01 15:38:47 ----A---- C:\Windows\system32\umpnpmgr.dll
2013-02-01 15:38:47 ----A---- C:\Windows\system32\msxml6.dll
2013-02-01 15:38:47 ----A---- C:\Windows\system32\csrsrv.dll
2013-02-01 15:38:46 ----A---- C:\Windows\system32\rdrmemptylst.exe
2013-02-01 15:38:46 ----A---- C:\Windows\system32\prevhost.exe
2013-02-01 15:38:46 ----A---- C:\Windows\system32\inetcomm.dll
2013-02-01 15:38:46 ----A---- C:\Windows\explorer.exe
2013-02-01 15:38:45 ----A---- C:\Windows\system32\rdpwsx.dll
2013-02-01 15:38:45 ----A---- C:\Windows\system32\rdpcorekmts.dll
2013-02-01 15:38:45 ----A---- C:\Windows\system32\FXSCOVER.exe
2013-02-01 15:38:45 ----A---- C:\Windows\system32\EncDec.dll
2013-02-01 15:38:45 ----A---- C:\Windows\system32\browser.dll
2013-02-01 15:38:44 ----A---- C:\Windows\system32\netapi32.dll
2013-02-01 15:38:44 ----A---- C:\Windows\system32\localspl.dll
2013-02-01 15:38:44 ----A---- C:\Windows\system32\browcli.dll
2013-02-01 15:38:43 ----A---- C:\Windows\system32\XpsPrint.dll
2013-02-01 15:38:43 ----A---- C:\Windows\system32\quartz.dll
2013-02-01 15:38:43 ----A---- C:\Windows\system32\qdvd.dll
2013-02-01 15:38:42 ----A---- C:\Windows\system32\taskhost.exe
2013-02-01 15:38:42 ----A---- C:\Windows\system32\packager.dll
2013-02-01 15:38:42 ----A---- C:\Windows\system32\drivers\partmgr.sys
2013-02-01 15:38:42 ----A---- C:\Windows\system32\d3d10_1.dll
2013-02-01 15:38:41 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-02-01 15:38:41 ----A---- C:\Windows\system32\webio.dll
2013-02-01 15:38:41 ----A---- C:\Windows\system32\sspisrv.dll
2013-02-01 15:38:41 ----A---- C:\Windows\system32\sspicli.dll
2013-02-01 15:38:41 ----A---- C:\Windows\system32\secur32.dll
2013-02-01 15:38:41 ----A---- C:\Windows\system32\lsass.exe
2013-02-01 15:38:41 ----A---- C:\Windows\system32\lsasrv.dll
2013-02-01 15:38:41 ----A---- C:\Windows\system32\d3d10level9.dll
2013-02-01 15:38:40 ----A---- C:\Windows\system32\ntshrui.dll
2013-02-01 15:38:39 ----A---- C:\Windows\system32\synceng.dll
2013-02-01 15:38:39 ----A---- C:\Windows\system32\profsvc.dll
2013-02-01 15:38:39 ----A---- C:\Windows\system32\msvcrt.dll
2013-02-01 15:38:38 ----A---- C:\Windows\system32\odbctrac.dll
2013-02-01 15:38:38 ----A---- C:\Windows\system32\odbcjt32.dll
2013-02-01 15:38:38 ----A---- C:\Windows\system32\odbccu32.dll
2013-02-01 15:38:38 ----A---- C:\Windows\system32\odbccr32.dll
2013-02-01 15:38:38 ----A---- C:\Windows\system32\odbccp32.dll
2013-02-01 15:38:38 ----A---- C:\Windows\system32\ncrypt.dll
2013-02-01 15:38:37 ----A---- C:\Windows\system32\shell32.dll
2013-02-01 15:38:32 ----A---- C:\Windows\system32\tzres.dll
2013-02-01 15:38:12 ----A---- C:\Windows\system32\DWrite.dll
2013-02-01 15:38:11 ----A---- C:\Windows\system32\poqexec.exe
2013-02-01 15:38:10 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-02-01 15:38:10 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-02-01 15:38:09 ----A---- C:\Windows\system32\mfc42u.dll
2013-02-01 15:38:09 ----A---- C:\Windows\system32\mfc42.dll
2013-02-01 15:38:09 ----A---- C:\Windows\system32\drivers\bowser.sys
2013-02-01 15:38:08 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2013-02-01 15:35:23 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-02-01 15:34:34 ----A---- C:\Windows\system32\rdpcore.dll
2013-02-01 15:34:34 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2013-02-01 15:34:03 ----A---- C:\Windows\etdrv.sys
2013-02-01 15:32:06 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2013-02-01 15:32:05 ----D---- C:\Windows\system32\Macromed
2013-02-01 15:30:21 ----A---- C:\Windows\system32\unrar.dll
2013-02-01 15:30:18 ----D---- C:\Program Files\K-Lite Codec Pack
2013-02-01 15:25:52 ----D---- C:\Users\PC\AppData\Roaming\Mozilla
2013-02-01 15:25:50 ----D---- C:\ProgramData\Mozilla
2013-02-01 15:25:49 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-02-01 15:23:00 ----D---- C:\ProgramData\NVIDIA
2013-02-01 15:22:40 ----A---- C:\Windows\system32\nvhdap32.dll
2013-02-01 15:22:40 ----A---- C:\Windows\system32\nvhdagenco3220103.dll
2013-02-01 15:22:40 ----A---- C:\Windows\system32\drivers\nvhda32v.sys
2013-02-01 15:22:35 ----A---- C:\Windows\system32\nvvsvc.exe
2013-02-01 15:22:35 ----A---- C:\Windows\system32\nvsvcr.dll
2013-02-01 15:22:35 ----A---- C:\Windows\system32\nvsvc.dll
2013-02-01 15:22:35 ----A---- C:\Windows\system32\nvshext.dll
2013-02-01 15:22:35 ----A---- C:\Windows\system32\nvmctray.dll
2013-02-01 15:22:35 ----A---- C:\Windows\system32\nvcpl.dll
2013-02-01 15:22:26 ----D---- C:\temp
2013-02-01 15:22:24 ----A---- C:\Windows\system32\OpenCL.dll
2013-02-01 15:22:22 ----D---- C:\ProgramData\NVIDIA Corporation
2013-02-01 15:22:04 ----A---- C:\Windows\system32\nvdispco32.dll
2013-02-01 15:22:03 ----A---- C:\Windows\system32\nvdispgenco32.dll
2013-02-01 15:21:37 ----A---- C:\Windows\system32\nvumdshim.dll
2013-02-01 15:21:09 ----A---- C:\Windows\system32\nvapi.dll
2013-02-01 15:20:56 ----D---- C:\Program Files\NVIDIA Corporation
2013-02-01 15:20:30 ----A---- C:\Windows\system32\drivers\GVTDrv.sys
2013-02-01 15:20:12 ----A---- C:\Windows\gdrv.sys
2013-02-01 15:18:46 ----A---- C:\Windows\system32\drivers\aswSP.sys
2013-02-01 15:18:46 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2013-02-01 15:18:45 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2013-02-01 15:18:45 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2013-02-01 15:18:45 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2013-02-01 15:18:45 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2013-02-01 15:18:34 ----A---- C:\Windows\system32\aswBoot.exe
2013-02-01 15:18:34 ----A---- C:\Windows\avastSS.scr
2013-02-01 15:18:27 ----D---- C:\ProgramData\AVAST Software
2013-02-01 15:18:27 ----D---- C:\Program Files\AVAST Software
2013-02-01 15:18:09 ----A---- C:\Windows\system32\wups2.dll
2013-02-01 15:18:09 ----A---- C:\Windows\system32\wucltux.dll
2013-02-01 15:18:09 ----A---- C:\Windows\system32\wuaueng.dll
2013-02-01 15:18:09 ----A---- C:\Windows\system32\wuauclt.exe
2013-02-01 15:18:08 ----A---- C:\Windows\system32\wups.dll
2013-02-01 15:18:08 ----A---- C:\Windows\system32\wudriver.dll
2013-02-01 15:18:08 ----A---- C:\Windows\system32\wuapi.dll
2013-02-01 15:18:07 ----A---- C:\Windows\system32\wuwebv.dll
2013-02-01 15:18:07 ----A---- C:\Windows\system32\wuapp.exe

======List of files/folders modified in the last 1 month======

2013-02-08 13:16:09 ----D---- C:\Windows\Temp
2013-02-08 13:16:06 ----RD---- C:\Program Files
2013-02-08 12:46:02 ----D---- C:\Windows\System32
2013-02-08 12:46:02 ----D---- C:\Windows\inf
2013-02-08 12:46:02 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-02-08 12:42:58 ----D---- C:\Windows\system32\config
2013-02-07 22:40:36 ----D---- C:\Windows\system32\Tasks
2013-02-07 21:05:35 ----HD---- C:\ProgramData
2013-02-07 21:05:35 ----D---- C:\Windows\Tasks
2013-02-06 19:16:48 ----D---- C:\Windows
2013-02-06 19:16:29 ----D---- C:\Windows\system32\DriverStore
2013-02-06 19:16:29 ----D---- C:\Windows\system32\catroot
2013-02-06 19:12:53 ----D---- C:\Windows\system32\FxsTmp
2013-02-06 17:59:13 ----D---- C:\Windows\system32\drivers
2013-02-06 16:49:27 ----D---- C:\Program Files\Common Files
2013-02-06 16:47:49 ----D---- C:\Windows\winsxs
2013-02-06 16:46:24 ----D---- C:\Windows\twain_32
2013-02-05 20:23:09 ----D---- C:\Windows\rescache
2013-02-05 18:08:08 ----D---- C:\Windows\system32\cs-CZ
2013-02-04 21:23:20 ----D---- C:\Windows\system32\wdi
2013-02-04 20:41:02 ----D---- C:\Windows\Logs
2013-02-04 20:25:58 ----D---- C:\Windows\Microsoft.NET
2013-02-04 20:25:52 ----RSD---- C:\Windows\assembly
2013-02-04 19:21:26 ----D---- C:\Windows\system32\catroot2
2013-02-04 18:34:43 ----SD---- C:\ProgramData\Microsoft
2013-02-01 22:14:28 ----D---- C:\Windows\system32\CodeIntegrity
2013-02-01 22:14:18 ----D---- C:\Program Files\Common Files\microsoft shared
2013-02-01 22:14:17 ----D---- C:\Program Files\MSBuild
2013-02-01 22:14:14 ----D---- C:\Windows\ShellNew
2013-02-01 22:13:18 ----A---- C:\Windows\win.ini
2013-02-01 22:07:07 ----D---- C:\Windows\system32\restore
2013-02-01 22:04:35 ----SHD---- C:\$Recycle.Bin
2013-02-01 22:03:53 ----D---- C:\Program Files\Windows NT
2013-02-01 22:02:34 ----D---- C:\Windows\system32\sysprep
2013-02-01 22:01:47 ----D---- C:\Windows\system32\drivers\UMDF
2013-02-01 22:01:21 ----D---- C:\Windows\CSC
2013-02-01 22:00:23 ----D---- C:\Windows\Setup
2013-02-01 16:06:38 ----RSD---- C:\Windows\Fonts
2013-02-01 16:06:38 ----D---- C:\Windows\system32\migration
2013-02-01 16:06:38 ----D---- C:\Windows\PolicyDefinitions
2013-02-01 16:06:38 ----D---- C:\Windows\ehome
2013-02-01 16:06:38 ----D---- C:\Windows\AppPatch
2013-02-01 16:06:38 ----D---- C:\Program Files\Windows Journal
2013-02-01 16:06:38 ----D---- C:\Program Files\Common Files\System
2013-02-01 16:06:37 ----D---- C:\Windows\system32\wbem
2013-02-01 16:06:37 ----D---- C:\Windows\system32\en-US
2013-02-01 16:06:37 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-02-01 16:06:37 ----D---- C:\Program Files\Internet Explorer
2013-02-01 15:42:22 ----D---- C:\Windows\debug
2013-02-01 15:22:59 ----RD---- C:\Users
2013-02-01 15:22:34 ----D---- C:\Windows\Help

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-05-20 15680]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2011-11-02 19056]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2012-10-15 44784]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-10-30 738504]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-10-30 361032]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-10-30 54232]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-02-04 242240]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-10-30 21256]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-10-30 58680]
R3 athur;Atheros AR9271 Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\athur.sys [2011-04-20 1570304]
R3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2013-02-08 17488]
R3 GVTDrv;GVTDrv; \??\C:\Windows\system32\Drivers\GVTDrv.sys [2013-02-08 24944]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2012-06-19 3240400]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-05-20 350016]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-05-20 793920]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x86.sys [2012-07-19 99992]
R3 MEI;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECI.sys [2012-07-02 55104]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2012-07-03 149352]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [2012-09-19 10088]
S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
S3 etdrv;etdrv; \??\C:\Windows\etdrv.sys [2013-02-01 17488]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-20 77184]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2010-11-20 25600]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\DRIVERS\TsUsbGD.sys [2010-11-20 27264]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-30 44808]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 EpsonScanSvc;Epson Scanner Service; C:\Windows\system32\EscSvc.exe [2011-12-12 122000]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 462048]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-10-02 645992]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-08-04 1258856]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-02 382824]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [2012-11-02 1699168]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2011-08-30 160256]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-07 251248]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-02-06 115608]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-02-01 1343400]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------






info.txt logfile of random's system information tool 1.09 2013-02-08 13:16:13

======Uninstall list======

@BIOS-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}\Setup.exe" -l0x9 -removeonly
-->C:\PROGRA~2\INSTAL~1\{7B030~1\Setup.exe /remove /q0
-->MsiExec /X{64467D47-FFE4-4FBC-ABBA-A0DB829A17EB}
µTorrent-->"D:\programy\utorrent\uTorrent.exe" /UNINSTALL
ABBYY FineReader 9.0 Sprint-->MsiExec.exe /I {F9000000-0018-0000-0000-074957833700}
ABBYY FineReader 9.0 Sprint-->MsiExec.exe /X{F9000000-0018-0000-0000-074957833700}
Adobe Flash Player 11 Plugin-->C:\Windows\system32\Macromed\Flash\FlashUtil32_11_5_502_149_Plugin.exe -maintain plugin
Aktualizace NVIDIA 1.10.8-->"C:\Windows\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL",UninstallPackage Display.Update
Ask Toolbar-->MsiExec.exe /X{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver-->"C:\Program Files\InstallShield Installation Information\{3108C217-BE83-42E4-AE9E-A56A2A92E549}\SETUP.EXE" -runfromtemp -removeonly
AutoGreen B12.0206.1-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{C75FAD21-EC08-42F3-92D6-C9C0AB355345}
avast! Free Antivirus-->C:\Program Files\AVAST Software\Avast\aswRunDll.exe "C:\Program Files\AVAST Software\Avast\Setup\setiface.dll" RunSetup
BrowseToSave 1.74-->"C:\Program Files\BrowseToSave\uninstall.exe" /FULLPATH="C:\Program Files\BrowseToSave"
DAEMON Tools Lite-->C:\Program Files\DAEMON Tools Lite\uninst.exe
Download Navigator-->MsiExec.exe /X{E728441A-7820-4B1C-87C9-DE7BE37B2953}
Download Updater (AOL Inc.)-->C:\Program Files\Common Files\Software Update Utility\uninstall.exe
Easy Tune 6 B12.0912.1-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{457D7505-D665-4F95-91C3-ECB8C56E9ACA}
Epson Easy Photo Print 2-->"C:\Program Files\InstallShield Installation Information\{30E01116-5666-4807-8EF1-D80E9FF16717}\SETUP.EXE" -runfromtemp -l0x0409 UNINST -removeonly
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser)-->"C:\Program Files\InstallShield Installation Information\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}\setup.exe" -runfromtemp -l0x0409 -removeonly
Epson Event Manager-->MsiExec.exe /X{BECE9CCD-83F6-4BAA-9B26-227DF7D2E932}
EPSON Scan-->C:\Program Files\epson\escndv\setup\setup.exe /r
EPSON XP-205 207 Series Printer Uninstall-->C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FINSILE.EXE /R /APD /P:"EPSON XP-205 207 Series"
EpsonNet Print-->C:\Program Files\InstallShield Installation Information\{3E31400D-274E-4647-916C-2CACC3741799}\ENPSETUP.exe -runfromtemp -l0x0009 -EPSON -removeonly
Intel(R) Management Engine Components-->C:\Program Files\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall
Intel(R) USB 3.0 eXtensible Host Controller Driver-->C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Uninstall\setup.exe -uninstall
Intel® Trusted Connect Service Client-->MsiExec.exe /I{152A537F-45E9-4B15-8847-2E3E5BE61859}
K-Lite Codec Pack 9.7.0 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}
Microsoft .NET Framework 4 Extended-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\Setup.exe /repair /x86 /parameterfolder Extended
Microsoft .NET Framework 4 Extended-->MsiExec.exe /X{0A0CADCF-78DA-33C4-A350-CD51849B9702}
Microsoft Office Access MUI (Czech) 2007-->MsiExec.exe /X{90120000-0015-0405-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (Czech) 2007-->MsiExec.exe /X{90120000-0016-0405-0000-0000000FF1CE}
Microsoft Office Groove MUI (Czech) 2007-->MsiExec.exe /X{90120000-00BA-0405-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Czech) 2007-->MsiExec.exe /X{90120000-0044-0405-0000-0000000FF1CE}
Microsoft Office OneNote MUI (Czech) 2007-->MsiExec.exe /X{90120000-00A1-0405-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Czech) 2007-->MsiExec.exe /X{90120000-001A-0405-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Czech) 2007-->MsiExec.exe /X{90120000-0018-0405-0000-0000000FF1CE}
Microsoft Office Proof (Czech) 2007-->MsiExec.exe /X{90120000-001F-0405-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Slovak) 2007-->MsiExec.exe /X{90120000-001F-041B-0000-0000000FF1CE}
Microsoft Office Proofing (Czech) 2007-->MsiExec.exe /X{90120000-002C-0405-0000-0000000FF1CE}
Microsoft Office Publisher MUI (Czech) 2007-->MsiExec.exe /X{90120000-0019-0405-0000-0000000FF1CE}
Microsoft Office Shared MUI (Czech) 2007-->MsiExec.exe /X{90120000-006E-0405-0000-0000000FF1CE}
Microsoft Office Word MUI (Czech) 2007-->MsiExec.exe /X{90120000-001B-0405-0000-0000000FF1CE}
Microsoft VC9 runtime libraries-->MsiExec.exe /I{553C904F-57A2-4113-888E-BA0C3D1C69C0}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Mozilla Firefox 18.0.2 (x86 cs)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mozilla Maintenance Service-->"C:\Program Files\Mozilla Maintenance Service\uninstall.exe"
NVIDIA Ovladač 3D Vision 306.97-->"C:\Windows\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.2\NVI2.DLL",UninstallPackage Display.3DVision
NVIDIA Ovladač HD audia 1.3.18.0-->"C:\Windows\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL",UninstallPackage HDAudio.Driver
NVIDIA Ovladač řídící jednotky 3D Vision 305.57-->"C:\Windows\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL",UninstallPackage Display.NVIRUSB
NVIDIA Ovladače grafiky 306.97-->"C:\Windows\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.2\NVI2.DLL",UninstallPackage Display.Driver
NVIDIA PhysX-->MsiExec.exe /X{64467D47-FFE4-4FBC-ABBA-A0DB829A17EB}
NVIDIA Stereoscopic 3D Driver-->"C:\Program Files\NVIDIA Corporation\3D Vision\nvStInst.exe" /uninstall /ask
NVIDIA Systémový software PhysX 9.12.0613-->"C:\Windows\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL",UninstallPackage Display.PhysX
ON_OFF Charge B11.1102.1-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3DECD372-76A1-4483-BF10-B547790A3261}\setup.exe" -l0x9 -removeonly
PDF-XChange PDF Viewer verze 2.0.0.36-->"D:\programy\pdf\PDF-XChange Viewer\unins000.exe"
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\SETUP.EXE" -removeonly
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {67A5F99B-5EBA-3812-8D2E-BC251490DD3F} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4952F442-5C1A-38EB-8C23-B18EFE77E20C} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {CD6D9B8A-BBC4-3FA7-B24D-D74CE90630CF} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {FCBF8C05-F031-381A-8B7F-45403B55ADF5} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {ECBEE23D-AB7E-3DAA-B66B-CD52003198F1} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {788818B1-B191-3217-A210-7ACFDE19CE4A} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {42A3562E-8B4E-39A4-B82D-CC12F82889E3} /parameterfolder Extended
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {4952F442-5C1A-38EB-8C23-B18EFE77E20C} /parameterfolder Extended
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {FCBF8C05-F031-381A-8B7F-45403B55ADF5} /parameterfolder Extended
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {788818B1-B191-3217-A210-7ACFDE19CE4A} /parameterfolder Extended
The KMPlayer (remove only)-->"C:\Program Files\The KMPlayer\uninstall.exe"
TL-WN721N/TL-WN722N Driver-->"C:\Program Files\InstallShield Installation Information\{38A1E3ED-D913-41D2-9953-A93D5ACE3ADF}\setup.exe" -runfromtemp -l0x0009 -removeonly DriverOnly
Total Commander (Remove or Repair)-->c:\totalcmd\tcuninst.exe
TP-LINK Wireless Configuration Utility-->"C:\Program Files\InstallShield Installation Information\{319D91C6-3D44-436C-9F79-36C0D22372DC}\setup.exe" -runfromtemp -l0x0009 -removeonly
TuneUp Utilities 2013-->C:\Program Files\TuneUp Utilities 2013\TUInstallHelper.exe --Trigger-Uninstall
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5D9961AC-7C99-36A2-9EF0-34678AED5384} /parameterfolder Client
Update for Microsoft .NET Framework 4 Extended (KB2468871)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Extended
Update for Microsoft .NET Framework 4 Extended (KB2533523)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Extended
Update for Microsoft .NET Framework 4 Extended (KB2600217)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {5D9961AC-7C99-36A2-9EF0-34678AED5384} /parameterfolder Extended
Winamp Toolbar-->"C:\Program Files\Winamp Toolbar\uninstall.exe"
Winamp-->"D:\programy\winnamp\Winamp\UninstWA.exe"
WinRAR-->C:\Program Files\WinRAR\uninstall.exe

======System event log======

Computer Name: 37L4247F27-08
Event Code: 7036
Message: Stav služby Plug and Play byl změněn na: stopped
Record Number: 5
Source Name: Service Control Manager
Time Written: 20101120215742.697406-000
Event Type: Informace
User:

Computer Name: 37L4247F27-08
Event Code: 20010
Message: Došlo ke změně jednoho nebo více podsystémů služby Plug and Play.

Povolený instalační podsystém služby PlugPlay: 'false'
Povolený podsystém mezipaměti služby PlugPlay: 'false'

Record Number: 4
Source Name: Microsoft-Windows-UserPnp
Time Written: 20101120215742.697406-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: 37L4247F27-08
Event Code: 7036
Message: Stav služby Software Protection byl změněn na: stopped
Record Number: 3
Source Name: Service Control Manager
Time Written: 20101120215742.479005-000
Event Type: Informace
User:

Computer Name: 37L4247F27-08
Event Code: 7036
Message: Stav služby Windows Event Log byl změněn na: stopped
Record Number: 2
Source Name: Service Control Manager
Time Written: 20101120215742.338605-000
Event Type: Informace
User:

Computer Name: 37L4247F27-08
Event Code: 7036
Message: Stav služby Volume Shadow Copy byl změněn na: stopped
Record Number: 1
Source Name: Service Control Manager
Time Written: 20101120215742.323005-000
Event Type: Informace
User:

=====Application event log=====

Computer Name: 37L4247F27-08
Event Code: 1001
Message: Chybný blok , typ 0
Název události: PnPDriverNotFound
Reakce: Není k dispozici
ID souboru CAB: 0

Podpis problému:
P1: x86
P2: PCI\VEN_8086&DEV_1E3A&SUBSYS_1C3A1458&REV_04
P3:
P4:
P5:
P6:
P7:
P8:
P9:
P10:

Připojené soubory:
C:\Windows\Temp\DMIDF08.tmp.log.xml

Tyto soubory mohou být k dispozici zde:
C:\ProgramData\Microsoft\Windows\WER\ReportQueue\NonCritical_x86_175a17b9975ce5de2b18d4093b092ed15ecbceb_cab_058cdf17

Symbol analýzy:
Opětovné hledání řešení: 0
ID hlášení: 9a04131e-6cb2-11e2-b526-f307203c8be7
Stav hlášení: 6
Record Number: 5
Source Name: Windows Error Reporting
Time Written: 20130201210152.000000-000
Event Type: Informace
User:

Computer Name: 37L4247F27-08
Event Code: 1531
Message: Služba Profil uživatele byla úspěšně spuštěna.


Record Number: 4
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20130201210121.974844-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: 37L4247F27-08
Event Code: 5617
Message: Windows Management Instrumentation Service subsystems initialized successfully
Record Number: 3
Source Name: Microsoft-Windows-WMI
Time Written: 20130201210122.000000-000
Event Type: Informace
User:

Computer Name: 37L4247F27-08
Event Code: 5615
Message: Windows Management Instrumentation Service started sucessfully
Record Number: 2
Source Name: Microsoft-Windows-WMI
Time Written: 20130201210122.000000-000
Event Type: Informace
User:

Computer Name: 37L4247F27-08
Event Code: 4625
Message: Subsystém EventSystem zabraňuje vytváření duplicitních záznamů v protokolu událostí po dobu 86400 sekund. Tuto dobu lze změnit pomocí hodnoty REG_DWORD s názvem SuppressDuplicateDuration v následujícím klíči registru: HKLM\Software\Microsoft\EventSystem\EventLog.
Record Number: 1
Source Name: Microsoft-Windows-EventSystem
Time Written: 20130201210121.000000-000
Event Type: Informace
User:

=====Security event log=====

Computer Name: 37L4247F27-08
Event Code: 4735
Message: Byla změněna zabezpečená místní skupina.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: 37L4247F27-08$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin

Změněné atributy:
Název účtu SAM: -
Historie identifikátoru zabezpečení: -

Další informace:
Oprávnění: -
Record Number: 5
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20130201210119.088839-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247F27-08
Event Code: 4731
Message: Byla vytvořena zabezpečená místní skupina.

Předmět:
ID zabezpečení: S-1-5-18
Název účtu: 37L4247F27-08$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7

Nová skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin

Atributy:
Název účtu SAM: Backup Operators
Historie identifikátoru zabezpečení: -

Další informace:
Oprávnění: -
Record Number: 4
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20130201210119.088839-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247F27-08
Event Code: 4902
Message: Tabulka zásad auditu pro jednotlivé uživatele byla vytvořena.

Počet prvků: 0
ID zásady: 0x24375
Record Number: 3
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20130201210119.073239-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247F27-08
Event Code: 4624
Message: Účet byl úspěšně přihlášen.

Předmět:
ID zabezpečení: S-1-0-0
Název účtu: -
Doména účtu: -
ID přihlášení: 0x0

Typ přihlášení: 0

Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3e7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}

Informace o procesu:
ID procesu: 0x4
Název procesu:

Informace o síti:
Název pracovní stanice: -
Adresa zdrojové sítě -
Zdrojový port: -

Podrobné informace o ověření:
Proces přihlášení: -
Balíček ověření: -
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0

Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.

Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.

Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).

Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.

Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.

Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 2
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20130201210118.979639-000
Event Type: Úspěšný audit
User:

Computer Name: 37L4247F27-08
Event Code: 4608
Message: Spouští se systém Windows.

Tato událost je zaznamenána při spuštění procesu LSASS.EXE a inicializaci kontrolního podsystému.
Record Number: 1
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20130201210118.979639-000
Event Type: Úspěšný audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files\NVIDIA Corporation\PhysX\Common;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 58 Stepping 9, GenuineIntel
"PROCESSOR_REVISION"=3a09
"windows_tracing_logfile"=C:\BVTBin\Tests\installpackage\csilogfile.log
"windows_tracing_flags"=3

-----------------EOF-----------------

[Rudy]

Nejprve spusťte tuto utilitu:

Stáhněte AdwCleaner http://stahnu.cz/tag/adw-cleaner-free-download
Uložte na plochu
Ukončete všechny programy
Klikněte na Search
Proběhne skenováni a pak se objeví log, který sem vložte.

[denyn]

# AdwCleaner v2.111 - Logfile created 02/08/2013 at 21:20:38
# Updated 05/02/2013 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (32 bits)
# User : PC - PC-PC
# Boot Mode : Normal
# Running from : D:\Stažené soubory\AdwCleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

File Found : C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\y25epvkb.default\searchplugins\WebSearch.xml
Folder Found : C:\Program Files\Ask.com
Folder Found : C:\Program Files\Common Files\Software Update Utility
Folder Found : C:\Program Files\Optimizer Pro
Folder Found : C:\Program Files\Winamp Toolbar
Folder Found : C:\ProgramData\InstallMate
Folder Found : C:\ProgramData\RightClick
Folder Found : C:\ProgramData\Winamp Toolbar
Folder Found : C:\Users\PC\AppData\Local\Temp\AskSearch
Folder Found : C:\Users\PC\AppData\LocalLow\AskToolbar
Folder Found : C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\y25epvkb.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
Folder Found : C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\y25epvkb.default\extensions\toolbar@ask.com
Folder Found : C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\y25epvkb.default\WinampToolbarData
Folder Found : C:\Users\PC\AppData\Roaming\OpenCandy
Folder Found : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

***** [Registry] *****

Data Found : HKLM\..\Windows [AppInit_DLLs] = c:\progra~1\browse~1\sprote~1.dll
Key Found : HKCU\Software\APN
Key Found : HKCU\Software\AppDataLow\Software\AskToolbar
Key Found : HKCU\Software\AppDataLow\SProtector
Key Found : HKCU\Software\Ask.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Winamp Toolbar
Key Found : HKCU\Software\Winamp Toolbar
Key Found : HKLM\Software\APN
Key Found : HKLM\Software\AskToolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Found : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Found : HKLM\SOFTWARE\Classes\AppID\{B27D9527-3762-4D71-963D-FB7A94FDD678}
Key Found : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\winamptbServer.exe
Key Found : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{57BCA5FA-5DBB-45A2-B558-1755C3F6253B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{6EF4E91D-DDD5-4478-BCA7-DA04435934C0}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{841FD004-57A2-4B49-BBDB-5897394619DB}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B38D6EDE-390B-4620-8365-29E16459EBDA}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E1164984-B567-47BD-A7FF-240C2594404A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F20F11FD-203E-45A9-B7BB-AFC1B4FEA7A6}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FE178B09-C8AA-4734-804D-1849BCCA0C29}
Key Found : HKLM\SOFTWARE\Classes\dnUpdate
Key Found : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Found : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Found : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Found : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Found : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Found : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Found : HKLM\SOFTWARE\Classes\Interface\{0F54B66A-21CF-4548-AE59-A6B83EE6676F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{51A971CA-D36E-4D13-A799-2CF0A491D04D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{56FBEA9F-EF93-4318-B75F-A96FC7C7BD7B}
Key Found : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66DD22B9-6521-4B05-97DB-0EBC00B1DA5D}
Key Found : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Found : HKLM\SOFTWARE\Classes\Interface\{78B3C85E-44FF-4DC8-B3AD-156F39DC75E5}
Key Found : HKLM\SOFTWARE\Classes\Interface\{841FD004-57A2-4B49-BBDB-5897394619DB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Found : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E1164984-B567-47BD-A7FF-240C2594404A}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E19FDA06-5BDF-43C2-B794-BCD8A4C2051F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FAB076F5-E4DD-4EA4-AFEE-F18BF972B057}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{507591C2-2F4E-46A7-92D6-E6CFF82E5F26}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{538CD77C-BFDD-49B0-9562-77419CAB89D1}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Found : HKLM\SOFTWARE\Classes\WinampTb.AOLTBSearch
Key Found : HKLM\SOFTWARE\Classes\WinampTb.AOLTBSearch.1
Key Found : HKLM\SOFTWARE\Classes\WinampTb.AOLToolBand
Key Found : HKLM\SOFTWARE\Classes\WinampTb.AOLToolBand.1
Key Found : HKLM\SOFTWARE\Classes\WinampTb.Downloader
Key Found : HKLM\SOFTWARE\Classes\WinampTb.Downloader.1
Key Found : HKLM\SOFTWARE\Classes\WinampTb.ToolbarInfo
Key Found : HKLM\SOFTWARE\Classes\WinampTb.ToolbarInfo.1
Key Found : HKLM\SOFTWARE\Classes\WinampTb.ToolbarParams
Key Found : HKLM\SOFTWARE\Classes\WinampTb.ToolbarParams.1
Key Found : HKLM\SOFTWARE\Classes\WinampTbServer.AolToolbarHelper
Key Found : HKLM\SOFTWARE\Classes\WinampTbServer.AolToolbarHelper.1
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Winamp Toolbar
Key Found : HKLM\Software\SP Global
Key Found : HKLM\Software\SProtector
Key Found : HKLM\Software\Winamp Toolbar
Key Found : HKU\S-1-5-21-2412793768-3229914952-523974569-1000\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://websearch.good-results.info/?pid=724&r=2013/02/06&hid=3997167738&lg=EN&cc=CZ
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Start Page] = hxxp://websearch.good-results.info/?pid=724&r=2013/02/06&hid=3997167738&lg=EN&cc=CZ

-\\ Mozilla Firefox v18.0.2 (cs)

File : C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\y25epvkb.default\prefs.js

Found : user_pref("aol_toolbar.default.homepage.check", false);
Found : user_pref("aol_toolbar.default.search.check", false);
Found : user_pref("aol_toolbar.surf.date", "217");
Found : user_pref("aol_toolbar.surf.lastDate", "8");
Found : user_pref("aol_toolbar.surf.lastMonth", "1");
Found : user_pref("aol_toolbar.surf.lastYear", "2013");
Found : user_pref("aol_toolbar.surf.month", "608");
Found : user_pref("aol_toolbar.surf.prevMonth", "0");
Found : user_pref("aol_toolbar.surf.total", "612");
Found : user_pref("aol_toolbar.surf.week", "608");
Found : user_pref("aol_toolbar.surf.year", "608");
Found : user_pref("browser.search.defaultenginename", "WebSearch");
Found : user_pref("browser.search.defaultenginename,S", "WebSearch");
Found : user_pref("browser.search.defaulturl", "hxxp://websearch.good-results.info/?pid=724&r=2013/02/06&hid[...]
Found : user_pref("browser.search.order.1", "WebSearch");
Found : user_pref("browser.search.order.1,S", "WebSearch");
Found : user_pref("browser.search.selectedEngine,S", "WebSearch");
Found : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Found : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Found : user_pref("keyword.URL", "hxxp://websearch.good-results.info/?pid=724&r=2013/02/06&hid=3997167738&lg[...]
Found : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Found : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Found : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Found : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Found : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Found : user_pref("sweetim.toolbar.searchguard.enable", "");
Found : user_pref("winamp_toolbar.buttons.layout", "shoutcast_30026;mobile/android_33522;post_to_twitter_466[...]
Found : user_pref("winamp_toolbar.curtain.congrats", "none");
Found : user_pref("winamp_toolbar.default.homepage.check", false);
Found : user_pref("winamp_toolbar.default.search.check", false);
Found : user_pref("winamp_toolbar.default.search.label", "AOL Search");
Found : user_pref("winamp_toolbar.default.search.url", "hxxp://search.winamp.com/search/search?query={search[...]
Found : user_pref("winamp_toolbar.firsttime.showwindow", false);
Found : user_pref("winamp_toolbar.guid", "{D3966C78-4A77-57C3-A578-95B493ED940B}");
Found : user_pref("winamp_toolbar.install.distroid", "winamp");
Found : user_pref("winamp_toolbar.install.homepage.label", "AOL.com");
Found : user_pref("winamp_toolbar.install.lastTbVersion", "5.6.20.9143");
Found : user_pref("winamp_toolbar.install.lid", "");
Found : user_pref("winamp_toolbar.install.mtmhp", "");
Found : user_pref("winamp_toolbar.install.ncid", "");
Found : user_pref("winamp_toolbar.metrics.activestampdate", "8");
Found : user_pref("winamp_toolbar.metrics.activestampmonth", "1");
Found : user_pref("winamp_toolbar.metrics.activestampyear", "2013");
Found : user_pref("winamp_toolbar.metrics.log", false);
Found : user_pref("winamp_toolbar.metrics.originalDate", "3");
Found : user_pref("winamp_toolbar.metrics.originalHours", "23");
Found : user_pref("winamp_toolbar.metrics.originalMinutes", "0");
Found : user_pref("winamp_toolbar.metrics.originalMonth", "2");
Found : user_pref("winamp_toolbar.metrics.originalSeconds", "0");
Found : user_pref("winamp_toolbar.metrics.originalYear", "2013");
Found : user_pref("winamp_toolbar.relatednews.enabled", false);
Found : user_pref("winamp_toolbar.remote.publish.xml", "1360348588159");
Found : user_pref("winamp_toolbar.reset.flag", "1");
Found : user_pref("winamp_toolbar.reset.style", "A");
Found : user_pref("winamp_toolbar.resetprompt.daily.num", "1");
Found : user_pref("winamp_toolbar.resetprompt.daily.timestamp", "Tue Feb 05 2013 21:11:39 GMT+0100");
Found : user_pref("winamp_toolbar.resetprompt.display.limit", "8");
Found : user_pref("winamp_toolbar.search.button", true);
Found : user_pref("winamp_toolbar.search.cid", "04-02-2013");
Found : user_pref("winamp_toolbar.search.instd", "20130204133429168");
Found : user_pref("winamp_toolbar.search.oid", "03-02-2013");
Found : user_pref("winamp_toolbar.search.placement", "left");
Found : user_pref("winamp_toolbar.search.populateoncomplete", false);
Found : user_pref("winamp_toolbar.search.savehistory", false);
Found : user_pref("winamp_toolbar.search.searchtype", "web");
Found : user_pref("winamp_toolbar.search.source", "winamp-ff");
Found : user_pref("winamp_toolbar.searchengine.label", "AOL Search");
Found : user_pref("winamp_toolbar.skin.custom", true);
Found : user_pref("winamp_toolbar.upgrade.showwindow", false);
Found : user_pref("winamp_toolbar.weather.degc", "1");
Found : user_pref("winamp_toolbar.weather.degf", "33");
Found : user_pref("winamp_toolbar.weather.image", "chrome://winamptoolbar/skin/weather/11.png");
Found : user_pref("winamp_toolbar.weather.locationid", "USNY0996");
Found : user_pref("winamp_toolbar.weather.metric", true);
Found : user_pref("winamp_toolbar.weather.tooltip", "New York , NY : Showers");
Found : user_pref("winamp_toolbar.weather.update", "1360348588160");
Found : user_pref("winamp_toolbar.winamp.artist", "");
Found : user_pref("winamp_toolbar.winamp.button.focus", true);
Found : user_pref("winamp_toolbar.winamp.button.forward", true);
Found : user_pref("winamp_toolbar.winamp.button.open", true);
Found : user_pref("winamp_toolbar.winamp.button.pause", true);
Found : user_pref("winamp_toolbar.winamp.button.play", true);
Found : user_pref("winamp_toolbar.winamp.button.rewind", true);
Found : user_pref("winamp_toolbar.winamp.button.stop", false);
Found : user_pref("winamp_toolbar.winamp.button.volume", true);
Found : user_pref("winamp_toolbar.winamp.ticker.show", true);
Found : user_pref("winamp_toolbar.winamp.title", "-999999");
Found : user_pref("winamp_toolbar.winamp.volume", "");

*************************

AdwCleaner[R1].txt - [17872 octets] - [08/02/2013 21:20:38]

########## EOF - C:\AdwCleaner[R1].txt - [17933 octets] ##########

[Rudy]

Spusťte znovu ADWCleaner a klikněte na >Delete<. Vložte nový log.

[denyn]

# AdwCleaner v2.111 - Logfile created 02/08/2013 at 22:21:44
# Updated 05/02/2013 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (32 bits)
# User : PC - PC-PC
# Boot Mode : Normal
# Running from : D:\Stažené soubory\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\y25epvkb.default\searchplugins\WebSearch.xml
Folder Deleted : C:\Program Files\Ask.com
Folder Deleted : C:\Program Files\Common Files\Software Update Utility
Folder Deleted : C:\Program Files\Optimizer Pro
Folder Deleted : C:\Program Files\Winamp Toolbar
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\RightClick
Folder Deleted : C:\ProgramData\Winamp Toolbar
Folder Deleted : C:\Users\PC\AppData\Local\Temp\AskSearch
Folder Deleted : C:\Users\PC\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\y25epvkb.default\extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f}
Folder Deleted : C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\y25epvkb.default\extensions\toolbar@ask.com
Folder Deleted : C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\y25epvkb.default\WinampToolbarData
Folder Deleted : C:\Users\PC\AppData\Roaming\OpenCandy
Folder Deleted : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

***** [Registry] *****

Data Deleted : HKLM\..\Windows [AppInit_DLLs] = c:\progra~1\browse~1\sprote~1.dll
Key Deleted : HKCU\Software\APN
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Winamp Toolbar
Key Deleted : HKCU\Software\Winamp Toolbar
Key Deleted : HKLM\Software\APN
Key Deleted : HKLM\Software\AskToolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B27D9527-3762-4D71-963D-FB7A94FDD678}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\winamptbServer.exe
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{57BCA5FA-5DBB-45A2-B558-1755C3F6253B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6EF4E91D-DDD5-4478-BCA7-DA04435934C0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{841FD004-57A2-4B49-BBDB-5897394619DB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B38D6EDE-390B-4620-8365-29E16459EBDA}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E1164984-B567-47BD-A7FF-240C2594404A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F20F11FD-203E-45A9-B7BB-AFC1B4FEA7A6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FE178B09-C8AA-4734-804D-1849BCCA0C29}
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0F54B66A-21CF-4548-AE59-A6B83EE6676F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{51A971CA-D36E-4D13-A799-2CF0A491D04D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{56FBEA9F-EF93-4318-B75F-A96FC7C7BD7B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66DD22B9-6521-4B05-97DB-0EBC00B1DA5D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{78B3C85E-44FF-4DC8-B3AD-156F39DC75E5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{841FD004-57A2-4B49-BBDB-5897394619DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1164984-B567-47BD-A7FF-240C2594404A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E19FDA06-5BDF-43C2-B794-BCD8A4C2051F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FAB076F5-E4DD-4EA4-AFEE-F18BF972B057}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{507591C2-2F4E-46A7-92D6-E6CFF82E5F26}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{538CD77C-BFDD-49B0-9562-77419CAB89D1}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.AOLTBSearch
Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.AOLTBSearch.1
Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.AOLToolBand
Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.AOLToolBand.1
Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.Downloader
Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.Downloader.1
Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.ToolbarInfo
Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.ToolbarInfo.1
Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.ToolbarParams
Key Deleted : HKLM\SOFTWARE\Classes\WinampTb.ToolbarParams.1
Key Deleted : HKLM\SOFTWARE\Classes\WinampTbServer.AolToolbarHelper
Key Deleted : HKLM\SOFTWARE\Classes\WinampTbServer.AolToolbarHelper.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25CEE8EC-5730-41BC-8B58-22DDC8AB8C20}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Winamp Toolbar
Key Deleted : HKLM\Software\SP Global
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\Software\Winamp Toolbar
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EBF2BA02-9094-4C5A-858B-BB198F3D8DE2}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://websearch.good-results.info/?pid=724&r=2013/02/06&hid=3997167738&lg=EN&cc=CZ --> hxxp://www.google.com
Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Start Page] = hxxp://websearch.good-results.info/?pid=724&r=2013/02/06&hid=3997167738&lg=EN&cc=CZ --> hxxp://www.google.com

-\\ Mozilla Firefox v18.0.2 (cs)

File : C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\y25epvkb.default\prefs.js

C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\y25epvkb.default\user.js ... Deleted !

Deleted : user_pref("aol_toolbar.default.homepage.check", false);
Deleted : user_pref("aol_toolbar.default.search.check", false);
Deleted : user_pref("aol_toolbar.surf.date", "235");
Deleted : user_pref("aol_toolbar.surf.lastDate", "8");
Deleted : user_pref("aol_toolbar.surf.lastMonth", "1");
Deleted : user_pref("aol_toolbar.surf.lastYear", "2013");
Deleted : user_pref("aol_toolbar.surf.month", "626");
Deleted : user_pref("aol_toolbar.surf.prevMonth", "0");
Deleted : user_pref("aol_toolbar.surf.total", "630");
Deleted : user_pref("aol_toolbar.surf.week", "626");
Deleted : user_pref("aol_toolbar.surf.year", "626");
Deleted : user_pref("browser.search.defaultenginename", "WebSearch");
Deleted : user_pref("browser.search.defaultenginename,S", "WebSearch");
Deleted : user_pref("browser.search.defaulturl", "hxxp://websearch.good-results.info/?pid=724&r=2013/02/06&hid[...]
Deleted : user_pref("browser.search.order.1", "WebSearch");
Deleted : user_pref("browser.search.order.1,S", "WebSearch");
Deleted : user_pref("browser.search.selectedEngine,S", "WebSearch");
Deleted : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Deleted : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Deleted : user_pref("keyword.URL", "hxxp://websearch.good-results.info/?pid=724&r=2013/02/06&hid=3997167738&lg[...]
Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Deleted : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Deleted : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Deleted : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Deleted : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Deleted : user_pref("sweetim.toolbar.searchguard.enable", "");
Deleted : user_pref("winamp_toolbar.buttons.layout", "shoutcast_30026;mobile/android_33522;post_to_twitter_466[...]
Deleted : user_pref("winamp_toolbar.curtain.congrats", "none");
Deleted : user_pref("winamp_toolbar.default.homepage.check", false);
Deleted : user_pref("winamp_toolbar.default.search.check", false);
Deleted : user_pref("winamp_toolbar.default.search.label", "AOL Search");
Deleted : user_pref("winamp_toolbar.default.search.url", "hxxp://search.winamp.com/search/search?query={search[...]
Deleted : user_pref("winamp_toolbar.firsttime.showwindow", false);
Deleted : user_pref("winamp_toolbar.guid", "{D3966C78-4A77-57C3-A578-95B493ED940B}");
Deleted : user_pref("winamp_toolbar.install.distroid", "winamp");
Deleted : user_pref("winamp_toolbar.install.homepage.label", "AOL.com");
Deleted : user_pref("winamp_toolbar.install.lastTbVersion", "5.6.20.9143");
Deleted : user_pref("winamp_toolbar.install.lid", "");
Deleted : user_pref("winamp_toolbar.install.mtmhp", "");
Deleted : user_pref("winamp_toolbar.install.ncid", "");
Deleted : user_pref("winamp_toolbar.metrics.activestampdate", "8");
Deleted : user_pref("winamp_toolbar.metrics.activestampmonth", "1");
Deleted : user_pref("winamp_toolbar.metrics.activestampyear", "2013");
Deleted : user_pref("winamp_toolbar.metrics.log", false);
Deleted : user_pref("winamp_toolbar.metrics.originalDate", "3");
Deleted : user_pref("winamp_toolbar.metrics.originalHours", "23");
Deleted : user_pref("winamp_toolbar.metrics.originalMinutes", "0");
Deleted : user_pref("winamp_toolbar.metrics.originalMonth", "2");
Deleted : user_pref("winamp_toolbar.metrics.originalSeconds", "0");
Deleted : user_pref("winamp_toolbar.metrics.originalYear", "2013");
Deleted : user_pref("winamp_toolbar.relatednews.enabled", false);
Deleted : user_pref("winamp_toolbar.remote.publish.xml", "1360354848611");
Deleted : user_pref("winamp_toolbar.reset.flag", "1");
Deleted : user_pref("winamp_toolbar.reset.style", "A");
Deleted : user_pref("winamp_toolbar.resetprompt.daily.num", "1");
Deleted : user_pref("winamp_toolbar.resetprompt.daily.timestamp", "Tue Feb 05 2013 21:11:39 GMT+0100");
Deleted : user_pref("winamp_toolbar.resetprompt.display.limit", "8");
Deleted : user_pref("winamp_toolbar.search.button", true);
Deleted : user_pref("winamp_toolbar.search.cid", "04-02-2013");
Deleted : user_pref("winamp_toolbar.search.instd", "20130204133429168");
Deleted : user_pref("winamp_toolbar.search.oid", "03-02-2013");
Deleted : user_pref("winamp_toolbar.search.placement", "left");
Deleted : user_pref("winamp_toolbar.search.populateoncomplete", false);
Deleted : user_pref("winamp_toolbar.search.savehistory", false);
Deleted : user_pref("winamp_toolbar.search.searchtype", "web");
Deleted : user_pref("winamp_toolbar.search.source", "winamp-ff");
Deleted : user_pref("winamp_toolbar.searchengine.label", "AOL Search");
Deleted : user_pref("winamp_toolbar.skin.custom", true);
Deleted : user_pref("winamp_toolbar.upgrade.showwindow", false);
Deleted : user_pref("winamp_toolbar.weather.degc", "1");
Deleted : user_pref("winamp_toolbar.weather.degf", "33");
Deleted : user_pref("winamp_toolbar.weather.image", "chrome://winamptoolbar/skin/weather/14.png");
Deleted : user_pref("winamp_toolbar.weather.locationid", "USNY0996");
Deleted : user_pref("winamp_toolbar.weather.metric", true);
Deleted : user_pref("winamp_toolbar.weather.tooltip", "New York , NY : Snow Showers");
Deleted : user_pref("winamp_toolbar.weather.update", "1360354848612");
Deleted : user_pref("winamp_toolbar.winamp.artist", "");
Deleted : user_pref("winamp_toolbar.winamp.button.focus", true);
Deleted : user_pref("winamp_toolbar.winamp.button.forward", true);
Deleted : user_pref("winamp_toolbar.winamp.button.open", true);
Deleted : user_pref("winamp_toolbar.winamp.button.pause", true);
Deleted : user_pref("winamp_toolbar.winamp.button.play", true);
Deleted : user_pref("winamp_toolbar.winamp.button.rewind", true);
Deleted : user_pref("winamp_toolbar.winamp.button.stop", false);
Deleted : user_pref("winamp_toolbar.winamp.button.volume", true);
Deleted : user_pref("winamp_toolbar.winamp.ticker.show", true);
Deleted : user_pref("winamp_toolbar.winamp.title", "-999999");
Deleted : user_pref("winamp_toolbar.winamp.volume", "");

*************************

AdwCleaner[R1].txt - [18003 octets] - [08/02/2013 21:20:38]
AdwCleaner[S1].txt - [18263 octets] - [08/02/2013 22:21:44]

########## EOF - C:\AdwCleaner[S1].txt - [18324 octets] ##########

[denyn]

Někdy to dělá, někdy zas ne. Jakmile jsem udělal ten test delete, tak sem musel restartovat PC. Před restartem to nedělalo, teď už to zas dělá. A padá mi i net.

[Rudy]

Dejte nový log RSIT.

[denyn]

Logfile of random's system information tool 1.09 (written by random/random)
Run by PC at 2013-02-08 22:48:02
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 36 GB (63%) free of 57 GB
Total RAM: 3561 MB (74% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:48:06, on 8.2.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
D:\programy\winnamp\Winamp\winampa.exe
C:\Program Files\EPSON Software\Event Manager\EEventManager.exe
D:\programy\utorrent\uTorrent.exe
D:\wifi\TWCU.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_5_502_149.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_5_502_149.exe
C:\Windows\system32\taskeng.exe
D:\Stažené soubory\RSIT(1).exe
C:\Program Files\trend micro\PC.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [WinampAgent] D:\programy\winnamp\Winamp\winampa.exe
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\RunOnce: [EasyTuneVI] C:\Program Files\GIGABYTE\ET6\ETCall.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [uTorrent] "D:\programy\utorrent\uTorrent.exe" /MINIMIZED
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2412793768-3229914952-523974569-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2412793768-3229914952-523974569-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = D:\wifi\TWCU.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GRA32A~1.DLL
O20 - AppInit_DLLs:
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Epson Scanner Service (EpsonScanSvc) - Seiko Epson Corporation - C:\Windows\system32\EscSvc.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

--
End of file - 7335 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job

=========Mozilla firefox=========

ProfilePath - C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\y25epvkb.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.149 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_149.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
npwachk.dll

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\y25epvkb.default\searchplugins\
aol-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2011-01-26 319488]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2012-10-30 1227736]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2011-01-26 319488]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2012-06-11 10996368]
"USB3MON"=C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-05-20 291648]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2012-10-30 4297136]
""= []
"WinampAgent"=D:\programy\winnamp\Winamp\winampa.exe [2012-06-28 74752]
"EEventManager"=C:\Program Files\Epson Software\Event Manager\EEventManager.exe [2011-10-31 1058400]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"EasyTuneVI"=C:\Program Files\GIGABYTE\ET6\ETCall.exe [2012-07-09 40960]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
"uTorrent"=D:\programy\utorrent\uTorrent.exe [2013-02-04 969104]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
TP-LINK Wireless Configuration Utility.lnk - D:\wifi\TWCU.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-02-08 22:21:44 ----A---- C:\AdwCleaner[S1].txt
2013-02-08 21:20:38 ----A---- C:\AdwCleaner[R1].txt
2013-02-08 13:16:06 ----D---- C:\rsit
2013-02-08 13:16:06 ----D---- C:\Program Files\trend micro
2013-02-07 18:33:20 ----D---- C:\Users\PC\AppData\Roaming\NCdownloader
2013-02-06 22:24:32 ----AD---- C:\ProgramData\TEMP
2013-02-06 22:09:01 ----D---- C:\Program Files\BrowseToSave
2013-02-06 19:16:48 ----A---- C:\Windows\EEventManager.INI
2013-02-06 18:45:10 ----D---- C:\Users\PC\AppData\Roaming\Epson
2013-02-06 16:49:27 ----D---- C:\ProgramData\ABBYY
2013-02-06 16:49:27 ----D---- C:\Program Files\Common Files\ABBYY
2013-02-06 16:49:27 ----D---- C:\Program Files\ABBYY FineReader 9.0 Sprint
2013-02-06 16:48:32 ----D---- C:\ProgramData\UDL
2013-02-06 16:47:04 ----D---- C:\Program Files\EpsonNet
2013-02-06 16:47:04 ----A---- C:\Windows\system32\enspres.dll
2013-02-06 16:47:04 ----A---- C:\Windows\system32\ensppui.dll
2013-02-06 16:47:04 ----A---- C:\Windows\system32\ensppmon.dll
2013-02-06 16:47:04 ----A---- C:\Windows\system32\enpres.dll
2013-02-06 16:47:04 ----A---- C:\Windows\system32\enppui.dll
2013-02-06 16:47:04 ----A---- C:\Windows\system32\enppmon.dll
2013-02-06 16:46:54 ----D---- C:\Program Files\Common Files\EPSON
2013-02-06 16:46:53 ----D---- C:\Program Files\EPSON Software
2013-02-06 16:46:42 ----A---- C:\Windows\system32\E_DCINST.DLL
2013-02-06 16:46:38 ----A---- C:\Windows\system32\E_FLBILE.DLL
2013-02-06 16:46:36 ----A---- C:\Windows\system32\E_FD4BILE.DLL
2013-02-06 16:46:32 ----D---- C:\ProgramData\EPSON
2013-02-06 16:46:27 ----A---- C:\Windows\system32\esw2ud.dll
2013-02-06 16:46:27 ----A---- C:\Windows\system32\escsvc.exe
2013-02-06 16:46:24 ----D---- C:\Program Files\epson
2013-02-06 16:26:31 ----D---- C:\Program Files\Mozilla Firefox
2013-02-04 19:45:59 ----D---- C:\Users\PC\AppData\Roaming\WinRAR
2013-02-04 19:37:59 ----D---- C:\Program Files\The KMPlayer
2013-02-04 19:34:51 ----A---- C:\Windows\system32\D3DX9_42.dll
2013-02-04 19:34:51 ----A---- C:\Windows\system32\d3dx9_31.dll
2013-02-04 19:34:34 ----D---- C:\Program Files\Common Files\PX Storage Engine
2013-02-04 19:34:31 ----D---- C:\Users\PC\AppData\Roaming\Winamp
2013-02-04 19:31:59 ----D---- C:\Users\PC\AppData\Roaming\uTorrent
2013-02-04 19:31:23 ----A---- C:\Windows\system32\TURegOpt.exe
2013-02-04 19:31:23 ----A---- C:\Windows\system32\authuitu.dll
2013-02-04 19:31:20 ----D---- C:\Users\PC\AppData\Roaming\TuneUp Software
2013-02-04 19:31:18 ----D---- C:\Program Files\TuneUp Utilities 2013
2013-02-04 19:31:17 ----D---- C:\ProgramData\TuneUp Software
2013-02-04 19:31:15 ----SHD---- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-02-04 19:31:15 ----HD---- C:\ProgramData\Common Files
2013-02-04 19:30:38 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2013-02-04 19:30:37 ----D---- C:\Users\PC\AppData\Roaming\DAEMON Tools Lite
2013-02-04 19:30:35 ----D---- C:\Program Files\DAEMON Tools Lite
2013-02-04 19:27:00 ----D---- C:\ProgramData\DAEMON Tools Lite
2013-02-04 18:35:58 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-02-04 18:35:58 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-02-04 18:35:58 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-02-04 18:35:58 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-02-04 18:35:58 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-02-04 18:35:58 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-02-04 18:35:58 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-02-04 18:35:57 ----A---- C:\Windows\system32\fsutil.exe
2013-02-04 18:35:57 ----A---- C:\Windows\system32\esent.dll
2013-02-04 18:35:57 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2013-02-04 18:35:57 ----A---- C:\Windows\system32\drivers\storport.sys
2013-02-04 18:35:57 ----A---- C:\Windows\system32\drivers\nvstor.sys
2013-02-04 18:35:57 ----A---- C:\Windows\system32\drivers\nvraid.sys
2013-02-04 18:35:57 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2013-02-04 18:35:57 ----A---- C:\Windows\system32\drivers\amdxata.sys
2013-02-04 18:35:57 ----A---- C:\Windows\system32\drivers\amdsata.sys
2013-02-04 18:35:14 ----D---- C:\Users\PC\AppData\Roaming\Macromedia
2013-02-04 18:35:14 ----D---- C:\Users\PC\AppData\Roaming\Adobe
2013-02-04 18:33:52 ----D---- C:\Users\PC\AppData\Roaming\TP-LINK
2013-02-04 18:32:47 ----A---- C:\Windows\system32\drivers\athur.sys
2013-02-04 18:32:47 ----A---- C:\Windows\system32\athur.sys
2013-02-04 18:31:30 ----D---- C:\ProgramData\TP-LINK
2013-02-01 22:14:44 ----A---- C:\Windows\system32\msonpmon.dll
2013-02-01 22:14:19 ----D---- C:\Program Files\Microsoft Works
2013-02-01 22:14:15 ----D---- C:\Program Files\Microsoft Visual Studio
2013-02-01 22:14:15 ----D---- C:\Program Files\Common Files\DESIGNER
2013-02-01 22:14:09 ----D---- C:\Windows\PCHEALTH
2013-02-01 22:13:25 ----D---- C:\Program Files\Microsoft Visual Studio 8
2013-02-01 22:13:12 ----D---- C:\ProgramData\Microsoft Help
2013-02-01 22:13:12 ----D---- C:\Program Files\Microsoft Office
2013-02-01 22:13:05 ----RHD---- C:\MSOCache
2013-02-01 22:12:28 ----D---- C:\Program Files\AMD
2013-02-01 22:11:44 ----D---- C:\Program Files\GIGABYTE
2013-02-01 22:11:44 ----A---- C:\Windows\system32\drivers\AppleCharger.sys
2013-02-01 22:11:44 ----A---- C:\Windows\system32\AppleChargerSrv.exe
2013-02-01 22:10:22 ----D---- C:\Windows\system32\RTCOM
2013-02-01 22:10:20 ----A---- C:\Windows\system32\drivers\iusb3hcs.sys
2013-02-01 22:10:14 ----A---- C:\Windows\system32\WdfCoInstaller01009.dll
2013-02-01 22:10:11 ----A---- C:\Windows\system32\drivers\L1C62x86.sys
2013-02-01 22:10:03 ----A---- C:\Windows\system32\drivers\iusb3xhc.sys
2013-02-01 22:10:02 ----A---- C:\Windows\system32\WavesLib.dll
2013-02-01 22:10:02 ----A---- C:\Windows\system32\SRSWOW.dll
2013-02-01 22:10:01 ----A---- C:\Windows\system32\SRSTSXT.dll
2013-02-01 22:10:01 ----A---- C:\Windows\system32\SRSTSHD.dll
2013-02-01 22:10:01 ----A---- C:\Windows\system32\SRSHP360.dll
2013-02-01 22:10:00 ----A---- C:\Windows\system32\RtkPgExt.dll
2013-02-01 22:09:59 ----A---- C:\Windows\system32\RtkCoLDR.dll
2013-02-01 22:09:59 ----A---- C:\Windows\system32\RtkCoInstII.dll
2013-02-01 22:09:59 ----A---- C:\Windows\system32\drivers\iusb3hub.sys
2013-02-01 22:09:58 ----A---- C:\Windows\system32\RtkApoApi.dll
2013-02-01 22:09:57 ----A---- C:\Windows\system32\RtkAPO.dll
2013-02-01 22:09:50 ----A---- C:\Windows\system32\RTEEP32A.dll
2013-02-01 22:09:50 ----A---- C:\Windows\system32\RTEEL32A.dll
2013-02-01 22:09:50 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2013-02-01 22:09:49 ----A---- C:\Windows\system32\RTEEG32A.dll
2013-02-01 22:09:49 ----A---- C:\Windows\system32\RTEED32A.dll
2013-02-01 22:09:48 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2013-02-01 22:09:47 ----A---- C:\Windows\system32\RP3DHT32.dll
2013-02-01 22:09:47 ----A---- C:\Windows\system32\RP3DAA32.dll
2013-02-01 22:09:28 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2013-02-01 22:09:27 ----A---- C:\Windows\system32\MBWrp32.dll
2013-02-01 22:09:27 ----A---- C:\Windows\system32\MBppld32.dll
2013-02-01 22:09:27 ----A---- C:\Windows\system32\MaxxAudioAPOShell.dll
2013-02-01 22:09:27 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2013-02-01 22:09:27 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2013-02-01 22:09:26 ----A---- C:\Windows\system32\MBPPCn32.dll
2013-02-01 22:09:25 ----A---- C:\Windows\system32\MBAPO32.dll
2013-02-01 22:09:16 ----D---- C:\Windows\system32\Atheros_L1e
2013-02-01 22:09:00 ----A---- C:\Windows\system32\FMAPO.dll
2013-02-01 22:08:49 ----D---- C:\Program Files\Realtek
2013-02-01 22:08:49 ----A---- C:\Windows\system32\AERTARen.dll
2013-02-01 22:08:49 ----A---- C:\Windows\system32\AERTACap.dll
2013-02-01 22:08:47 ----HD---- C:\Program Files\Temp
2013-02-01 22:08:46 ----R---- C:\Windows\RtlExUpd.dll
2013-02-01 22:08:42 ----D---- C:\Program Files\Common Files\InstallShield
2013-02-01 22:08:40 ----A---- C:\Windows\system32\drivers\IntelMEFWVer.dll
2013-02-01 22:08:32 ----A---- C:\Windows\system32\log.txt
2013-02-01 22:08:30 ----D---- C:\ProgramData\Intel
2013-02-01 22:08:29 ----D---- C:\Program Files\WinRAR
2013-02-01 22:08:26 ----RA---- C:\Windows\system32\CSVer.dll
2013-02-01 22:08:21 ----D---- C:\Program Files\Common Files\postureAgent
2013-02-01 22:08:19 ----A---- C:\Windows\system32\drivers\HECI.sys
2013-02-01 22:08:18 ----D---- C:\Intel
2013-02-01 22:08:09 ----HD---- C:\Program Files\InstallShield Installation Information
2013-02-01 22:08:09 ----D---- C:\Program Files\Intel
2013-02-01 22:08:08 ----D---- C:\Users\PC\AppData\Roaming\InstallShield
2013-02-01 22:07:13 ----D---- C:\Program Files\Microsoft.NET
2013-02-01 22:07:11 ----SHD---- C:\Windows\Installer
2013-02-01 22:05:51 ----A---- C:\Windows\GSetup.ini
2013-02-01 22:04:36 ----D---- C:\Users\PC\AppData\Roaming\Identities
2013-02-01 22:04:32 ----SD---- C:\Users\PC\AppData\Roaming\Microsoft
2013-02-01 22:04:32 ----D---- C:\Users\PC\AppData\Roaming\Media Center Programs
2013-02-01 22:03:53 ----SHD---- C:\Recovery
2013-02-01 22:03:53 ----SHD---- C:\ProgramData\Šablony
2013-02-01 22:03:53 ----SHD---- C:\ProgramData\Plocha
2013-02-01 22:03:53 ----SHD---- C:\ProgramData\Oblíbené položky
2013-02-01 22:03:53 ----SHD---- C:\ProgramData\Nabídka Start
2013-02-01 22:03:53 ----SHD---- C:\ProgramData\Dokumenty
2013-02-01 22:03:53 ----SHD---- C:\ProgramData\Data aplikací
2013-02-01 22:03:51 ----D---- C:\Windows\SoftwareDistribution
2013-02-01 22:01:22 ----D---- C:\Windows\Prefetch
2013-02-01 22:01:14 ----ASH---- C:\pagefile.sys
2013-02-01 22:01:13 ----SHD---- C:\System Volume Information
2013-02-01 22:01:13 ----ASH---- C:\hiberfil.sys
2013-02-01 22:00:41 ----D---- C:\Windows\Panther
2013-02-01 16:10:29 ----A---- C:\Windows\system32\FntCache.dll
2013-02-01 16:10:29 ----A---- C:\Windows\system32\d2d1.dll
2013-02-01 16:09:39 ----D---- C:\Windows\system32\Wat
2013-02-01 16:05:59 ----A---- C:\Windows\system32\fontsub.dll
2013-02-01 16:05:59 ----A---- C:\Windows\system32\atmlib.dll
2013-02-01 16:05:59 ----A---- C:\Windows\system32\atmfd.dll
2013-02-01 15:57:19 ----N---- C:\Windows\system32\MpSigStub.exe
2013-02-01 15:49:19 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2013-02-01 15:49:19 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-02-01 15:49:18 ----A---- C:\Windows\system32\Wdfres.dll
2013-02-01 15:48:55 ----A---- C:\Windows\system32\WUDFSvc.dll
2013-02-01 15:48:55 ----A---- C:\Windows\system32\WUDFPlatform.dll
2013-02-01 15:48:55 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2013-02-01 15:48:55 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2013-02-01 15:48:54 ----A---- C:\Windows\system32\WUDFx.dll
2013-02-01 15:48:54 ----A---- C:\Windows\system32\WUDFHost.exe
2013-02-01 15:48:54 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2013-02-01 15:48:35 ----A---- C:\Windows\system32\wmi.dll
2013-02-01 15:48:35 ----A---- C:\Windows\system32\imagehlp.dll
2013-02-01 15:48:35 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2013-02-01 15:47:58 ----A---- C:\Windows\system32\wininet.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\wextract.exe
2013-02-01 15:47:58 ----A---- C:\Windows\system32\webcheck.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\vbscript.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\urlmon.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\url.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-02-01 15:47:58 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-02-01 15:47:58 ----A---- C:\Windows\system32\pngfilt.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\occache.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\msrating.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\msls31.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\mshtmler.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\mshtmled.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\mshtml.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\mshta.exe
2013-02-01 15:47:58 ----A---- C:\Windows\system32\msfeedssync.exe
2013-02-01 15:47:58 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\msfeeds.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\licmgr10.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\jsproxy.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\jscript9.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\jscript.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\inseng.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\imgutil.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\iexpress.exe
2013-02-01 15:47:58 ----A---- C:\Windows\system32\ieUnatt.exe
2013-02-01 15:47:58 ----A---- C:\Windows\system32\ieui.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\iesysprep.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\iesetup.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\iertutil.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\iernonce.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\iepeers.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\ieframe.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\iedkcs32.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\ieapfltr.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\ieapfltr.dat
2013-02-01 15:47:58 ----A---- C:\Windows\system32\ieakui.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\ieaksie.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\ieakeng.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\ie4uinit.exe
2013-02-01 15:47:58 ----A---- C:\Windows\system32\icardie.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\dxtrans.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\dxtmsft.dll
2013-02-01 15:47:58 ----A---- C:\Windows\system32\admparse.dll
2013-02-01 15:47:10 ----A---- C:\Windows\system32\browserchoice.exe
2013-02-01 15:42:21 ----A---- C:\Windows\system32\MRT.exe
2013-02-01 15:39:43 ----A---- C:\Windows\system32\rdpcorets.dll
2013-02-01 15:39:43 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2013-02-01 15:39:43 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2013-02-01 15:39:43 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-02-01 15:39:41 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-02-01 15:39:41 ----A---- C:\Windows\system32\winsrv.dll
2013-02-01 15:39:41 ----A---- C:\Windows\system32\KernelBase.dll
2013-02-01 15:39:41 ----A---- C:\Windows\system32\kernel32.dll
2013-02-01 15:39:41 ----A---- C:\Windows\system32\conhost.exe
2013-02-01 15:39:39 ----A---- C:\Windows\system32\usp10.dll
2013-02-01 15:39:37 ----A---- C:\Windows\system32\Wpc.dll
2013-02-01 15:39:37 ----A---- C:\Windows\system32\gameux.dll
2013-02-01 15:39:35 ----A---- C:\Windows\system32\dpnet.dll
2013-02-01 15:39:27 ----A---- C:\Windows\system32\spoolsv.exe
2013-02-01 15:39:13 ----A---- C:\Windows\system32\nlasvc.dll
2013-02-01 15:39:13 ----A---- C:\Windows\system32\nlaapi.dll
2013-02-01 15:39:13 ----A---- C:\Windows\system32\netevent.dll
2013-02-01 15:39:13 ----A---- C:\Windows\system32\netcorehc.dll
2013-02-01 15:39:13 ----A---- C:\Windows\system32\ncsi.dll
2013-02-01 15:39:13 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-02-01 15:39:13 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2013-02-01 15:39:13 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-02-01 15:39:13 ----A---- C:\Windows\system32\drivers\netio.sys
2013-02-01 15:39:13 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-02-01 15:39:11 ----A---- C:\Windows\system32\OxpsConverter.exe
2013-02-01 15:39:10 ----A---- C:\Windows\system32\kerberos.dll
2013-02-01 15:39:04 ----A---- C:\Windows\system32\tquery.dll
2013-02-01 15:39:04 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2013-02-01 15:39:04 ----A---- C:\Windows\system32\SearchIndexer.exe
2013-02-01 15:39:04 ----A---- C:\Windows\system32\SearchFilterHost.exe
2013-02-01 15:39:04 ----A---- C:\Windows\system32\mssvp.dll
2013-02-01 15:39:04 ----A---- C:\Windows\system32\mssrch.dll
2013-02-01 15:39:04 ----A---- C:\Windows\system32\mssphtb.dll
2013-02-01 15:39:04 ----A---- C:\Windows\system32\mssph.dll
2013-02-01 15:39:04 ----A---- C:\Windows\system32\msscntrs.dll
2013-02-01 15:39:03 ----A---- C:\Windows\system32\sbe.dll
2013-02-01 15:39:03 ----A---- C:\Windows\system32\CPFilters.dll
2013-02-01 15:39:01 ----A---- C:\Windows\system32\cdosys.dll
2013-02-01 15:38:59 ----A---- C:\Windows\system32\cryptsvc.dll
2013-02-01 15:38:59 ----A---- C:\Windows\system32\cryptnet.dll
2013-02-01 15:38:59 ----A---- C:\Windows\system32\crypt32.dll
2013-02-01 15:38:57 ----A---- C:\Windows\system32\schannel.dll
2013-02-01 15:38:57 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-02-01 15:38:57 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-02-01 15:38:57 ----A---- C:\Windows\system32\drivers\cng.sys
2013-02-01 15:38:56 ----A---- C:\Windows\system32\win32k.sys
2013-02-01 15:38:56 ----A---- C:\Windows\system32\oleaut32.dll
2013-02-01 15:38:56 ----A---- C:\Windows\system32\oleacc.dll
2013-02-01 15:38:55 ----D---- C:\Users\PC\AppData\Roaming\GHISLER
2013-02-01 15:38:55 ----D---- C:\totalcmd
2013-02-01 15:38:55 ----A---- C:\Windows\UC.PIF
2013-02-01 15:38:55 ----A---- C:\Windows\system32\drivers\afd.sys
2013-02-01 15:38:55 ----A---- C:\Windows\system32\dnsrslvr.dll
2013-02-01 15:38:55 ----A---- C:\Windows\system32\dnscacheugc.exe
2013-02-01 15:38:55 ----A---- C:\Windows\system32\dnsapi.dll
2013-02-01 15:38:55 ----A---- C:\Windows\RAR.PIF
2013-02-01 15:38:55 ----A---- C:\Windows\PKZIP.PIF
2013-02-01 15:38:55 ----A---- C:\Windows\PKUNZIP.PIF
2013-02-01 15:38:55 ----A---- C:\Windows\NOCLOSE.PIF
2013-02-01 15:38:55 ----A---- C:\Windows\LHA.PIF
2013-02-01 15:38:55 ----A---- C:\Windows\ARJ.PIF
2013-02-01 15:38:54 ----A---- C:\Windows\system32\ntdll.dll
2013-02-01 15:38:54 ----A---- C:\Windows\system32\msxml3r.dll
2013-02-01 15:38:54 ----A---- C:\Windows\system32\msxml3.dll
2013-02-01 15:38:52 ----A---- C:\Windows\system32\psisdecd.dll
2013-02-01 15:38:52 ----A---- C:\Windows\system32\msi.dll
2013-02-01 15:38:52 ----A---- C:\Windows\system32\drivers\srvnet.sys
2013-02-01 15:38:52 ----A---- C:\Windows\system32\drivers\srv2.sys
2013-02-01 15:38:52 ----A---- C:\Windows\system32\drivers\srv.sys
2013-02-01 15:38:51 ----A---- C:\Windows\system32\wintrust.dll
2013-02-01 15:38:51 ----A---- C:\Windows\system32\win32spl.dll
2013-02-01 15:38:51 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-02-01 15:38:50 ----A---- C:\Windows\system32\srcore.dll
2013-02-01 15:38:50 ----A---- C:\Windows\system32\ntkrnlpa.exe
2013-02-01 15:38:49 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-02-01 15:38:48 ----A---- C:\Windows\system32\xmllite.dll
2013-02-01 15:38:48 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2013-02-01 15:38:48 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2013-02-01 15:38:48 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2013-02-01 15:38:47 ----A---- C:\Windows\system32\umpnpmgr.dll
2013-02-01 15:38:47 ----A---- C:\Windows\system32\msxml6.dll
2013-02-01 15:38:47 ----A---- C:\Windows\system32\csrsrv.dll
2013-02-01 15:38:46 ----A---- C:\Windows\system32\rdrmemptylst.exe
2013-02-01 15:38:46 ----A---- C:\Windows\system32\prevhost.exe
2013-02-01 15:38:46 ----A---- C:\Windows\system32\inetcomm.dll
2013-02-01 15:38:46 ----A---- C:\Windows\explorer.exe
2013-02-01 15:38:45 ----A---- C:\Windows\system32\rdpwsx.dll
2013-02-01 15:38:45 ----A---- C:\Windows\system32\rdpcorekmts.dll
2013-02-01 15:38:45 ----A---- C:\Windows\system32\FXSCOVER.exe
2013-02-01 15:38:45 ----A---- C:\Windows\system32\EncDec.dll
2013-02-01 15:38:45 ----A---- C:\Windows\system32\browser.dll
2013-02-01 15:38:44 ----A---- C:\Windows\system32\netapi32.dll
2013-02-01 15:38:44 ----A---- C:\Windows\system32\localspl.dll
2013-02-01 15:38:44 ----A---- C:\Windows\system32\browcli.dll
2013-02-01 15:38:43 ----A---- C:\Windows\system32\XpsPrint.dll
2013-02-01 15:38:43 ----A---- C:\Windows\system32\quartz.dll
2013-02-01 15:38:43 ----A---- C:\Windows\system32\qdvd.dll
2013-02-01 15:38:42 ----A---- C:\Windows\system32\taskhost.exe
2013-02-01 15:38:42 ----A---- C:\Windows\system32\packager.dll
2013-02-01 15:38:42 ----A---- C:\Windows\system32\drivers\partmgr.sys
2013-02-01 15:38:42 ----A---- C:\Windows\system32\d3d10_1.dll
2013-02-01 15:38:41 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-02-01 15:38:41 ----A---- C:\Windows\system32\webio.dll
2013-02-01 15:38:41 ----A---- C:\Windows\system32\sspisrv.dll
2013-02-01 15:38:41 ----A---- C:\Windows\system32\sspicli.dll
2013-02-01 15:38:41 ----A---- C:\Windows\system32\secur32.dll
2013-02-01 15:38:41 ----A---- C:\Windows\system32\lsass.exe
2013-02-01 15:38:41 ----A---- C:\Windows\system32\lsasrv.dll
2013-02-01 15:38:41 ----A---- C:\Windows\system32\d3d10level9.dll
2013-02-01 15:38:40 ----A---- C:\Windows\system32\ntshrui.dll
2013-02-01 15:38:39 ----A---- C:\Windows\system32\synceng.dll
2013-02-01 15:38:39 ----A---- C:\Windows\system32\profsvc.dll
2013-02-01 15:38:39 ----A---- C:\Windows\system32\msvcrt.dll
2013-02-01 15:38:38 ----A---- C:\Windows\system32\odbctrac.dll
2013-02-01 15:38:38 ----A---- C:\Windows\system32\odbcjt32.dll
2013-02-01 15:38:38 ----A---- C:\Windows\system32\odbccu32.dll
2013-02-01 15:38:38 ----A---- C:\Windows\system32\odbccr32.dll
2013-02-01 15:38:38 ----A---- C:\Windows\system32\odbccp32.dll
2013-02-01 15:38:38 ----A---- C:\Windows\system32\ncrypt.dll
2013-02-01 15:38:37 ----A---- C:\Windows\system32\shell32.dll
2013-02-01 15:38:32 ----A---- C:\Windows\system32\tzres.dll
2013-02-01 15:38:12 ----A---- C:\Windows\system32\DWrite.dll
2013-02-01 15:38:11 ----A---- C:\Windows\system32\poqexec.exe
2013-02-01 15:38:10 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-02-01 15:38:10 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-02-01 15:38:09 ----A---- C:\Windows\system32\mfc42u.dll
2013-02-01 15:38:09 ----A---- C:\Windows\system32\mfc42.dll
2013-02-01 15:38:09 ----A---- C:\Windows\system32\drivers\bowser.sys
2013-02-01 15:38:08 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2013-02-01 15:35:23 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-02-01 15:34:34 ----A---- C:\Windows\system32\rdpcore.dll
2013-02-01 15:34:34 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2013-02-01 15:34:03 ----A---- C:\Windows\etdrv.sys
2013-02-01 15:32:06 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2013-02-01 15:32:05 ----D---- C:\Windows\system32\Macromed
2013-02-01 15:30:21 ----A---- C:\Windows\system32\unrar.dll
2013-02-01 15:30:18 ----D---- C:\Program Files\K-Lite Codec Pack
2013-02-01 15:25:52 ----D---- C:\Users\PC\AppData\Roaming\Mozilla
2013-02-01 15:25:50 ----D---- C:\ProgramData\Mozilla
2013-02-01 15:25:49 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-02-01 15:23:00 ----D---- C:\ProgramData\NVIDIA
2013-02-01 15:22:40 ----A---- C:\Windows\system32\nvhdap32.dll
2013-02-01 15:22:40 ----A---- C:\Windows\system32\nvhdagenco3220103.dll
2013-02-01 15:22:40 ----A---- C:\Windows\system32\drivers\nvhda32v.sys
2013-02-01 15:22:35 ----A---- C:\Windows\system32\nvvsvc.exe
2013-02-01 15:22:35 ----A---- C:\Windows\system32\nvsvcr.dll
2013-02-01 15:22:35 ----A---- C:\Windows\system32\nvsvc.dll
2013-02-01 15:22:35 ----A---- C:\Windows\system32\nvshext.dll
2013-02-01 15:22:35 ----A---- C:\Windows\system32\nvmctray.dll
2013-02-01 15:22:35 ----A---- C:\Windows\system32\nvcpl.dll
2013-02-01 15:22:26 ----D---- C:\temp
2013-02-01 15:22:24 ----A---- C:\Windows\system32\OpenCL.dll
2013-02-01 15:22:22 ----D---- C:\ProgramData\NVIDIA Corporation
2013-02-01 15:22:04 ----A---- C:\Windows\system32\nvdispco32.dll
2013-02-01 15:22:03 ----A---- C:\Windows\system32\nvdispgenco32.dll
2013-02-01 15:21:37 ----A---- C:\Windows\system32\nvumdshim.dll
2013-02-01 15:21:09 ----A---- C:\Windows\system32\nvapi.dll
2013-02-01 15:20:56 ----D---- C:\Program Files\NVIDIA Corporation
2013-02-01 15:20:30 ----A---- C:\Windows\system32\drivers\GVTDrv.sys
2013-02-01 15:20:12 ----A---- C:\Windows\gdrv.sys
2013-02-01 15:18:46 ----A---- C:\Windows\system32\drivers\aswSP.sys
2013-02-01 15:18:46 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2013-02-01 15:18:45 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2013-02-01 15:18:45 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2013-02-01 15:18:45 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2013-02-01 15:18:45 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2013-02-01 15:18:34 ----A---- C:\Windows\system32\aswBoot.exe
2013-02-01 15:18:34 ----A---- C:\Windows\avastSS.scr
2013-02-01 15:18:27 ----D---- C:\ProgramData\AVAST Software
2013-02-01 15:18:27 ----D---- C:\Program Files\AVAST Software
2013-02-01 15:18:09 ----A---- C:\Windows\system32\wups2.dll
2013-02-01 15:18:09 ----A---- C:\Windows\system32\wucltux.dll
2013-02-01 15:18:09 ----A---- C:\Windows\system32\wuaueng.dll
2013-02-01 15:18:09 ----A---- C:\Windows\system32\wuauclt.exe
2013-02-01 15:18:08 ----A---- C:\Windows\system32\wups.dll
2013-02-01 15:18:08 ----A---- C:\Windows\system32\wudriver.dll
2013-02-01 15:18:08 ----A---- C:\Windows\system32\wuapi.dll
2013-02-01 15:18:07 ----A---- C:\Windows\system32\wuwebv.dll
2013-02-01 15:18:07 ----A---- C:\Windows\system32\wuapp.exe

======List of files/folders modified in the last 1 month======

2013-02-08 22:48:06 ----D---- C:\Windows\Temp
2013-02-08 22:37:50 ----D---- C:\Windows\System32
2013-02-08 22:35:26 ----D---- C:\Windows\system32\config
2013-02-08 22:26:54 ----D---- C:\Windows\inf
2013-02-08 22:26:54 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-02-08 22:22:19 ----RD---- C:\Program Files
2013-02-08 22:21:47 ----HD---- C:\ProgramData
2013-02-08 22:21:47 ----D---- C:\Program Files\Common Files
2013-02-07 22:40:36 ----D---- C:\Windows\system32\Tasks
2013-02-07 21:05:35 ----D---- C:\Windows\Tasks
2013-02-06 19:16:48 ----D---- C:\Windows
2013-02-06 19:16:29 ----D---- C:\Windows\system32\DriverStore
2013-02-06 19:16:29 ----D---- C:\Windows\system32\catroot
2013-02-06 19:12:53 ----D---- C:\Windows\system32\FxsTmp
2013-02-06 17:59:13 ----D---- C:\Windows\system32\drivers
2013-02-06 16:47:49 ----D---- C:\Windows\winsxs
2013-02-06 16:46:24 ----D---- C:\Windows\twain_32
2013-02-05 20:23:09 ----D---- C:\Windows\rescache
2013-02-05 18:08:08 ----D---- C:\Windows\system32\cs-CZ
2013-02-04 21:23:20 ----D---- C:\Windows\system32\wdi
2013-02-04 20:41:02 ----D---- C:\Windows\Logs
2013-02-04 20:25:58 ----D---- C:\Windows\Microsoft.NET
2013-02-04 20:25:52 ----RSD---- C:\Windows\assembly
2013-02-04 19:21:26 ----D---- C:\Windows\system32\catroot2
2013-02-04 18:34:43 ----SD---- C:\ProgramData\Microsoft
2013-02-01 22:14:28 ----D---- C:\Windows\system32\CodeIntegrity
2013-02-01 22:14:18 ----D---- C:\Program Files\Common Files\microsoft shared
2013-02-01 22:14:17 ----D---- C:\Program Files\MSBuild
2013-02-01 22:14:14 ----D---- C:\Windows\ShellNew
2013-02-01 22:13:18 ----A---- C:\Windows\win.ini
2013-02-01 22:07:07 ----D---- C:\Windows\system32\restore
2013-02-01 22:04:35 ----SHD---- C:\$Recycle.Bin
2013-02-01 22:03:53 ----D---- C:\Program Files\Windows NT
2013-02-01 22:02:34 ----D---- C:\Windows\system32\sysprep
2013-02-01 22:01:47 ----D---- C:\Windows\system32\drivers\UMDF
2013-02-01 22:01:21 ----D---- C:\Windows\CSC
2013-02-01 22:00:23 ----D---- C:\Windows\Setup
2013-02-01 16:06:38 ----RSD---- C:\Windows\Fonts
2013-02-01 16:06:38 ----D---- C:\Windows\system32\migration
2013-02-01 16:06:38 ----D---- C:\Windows\PolicyDefinitions
2013-02-01 16:06:38 ----D---- C:\Windows\ehome
2013-02-01 16:06:38 ----D---- C:\Windows\AppPatch
2013-02-01 16:06:38 ----D---- C:\Program Files\Windows Journal
2013-02-01 16:06:38 ----D---- C:\Program Files\Common Files\System
2013-02-01 16:06:37 ----D---- C:\Windows\system32\wbem
2013-02-01 16:06:37 ----D---- C:\Windows\system32\en-US
2013-02-01 16:06:37 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-02-01 16:06:37 ----D---- C:\Program Files\Internet Explorer
2013-02-01 15:42:22 ----D---- C:\Windows\debug
2013-02-01 15:22:59 ----RD---- C:\Users
2013-02-01 15:22:34 ----D---- C:\Windows\Help

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-05-20 15680]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2011-11-02 19056]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2012-10-15 44784]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-10-30 738504]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-10-30 361032]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-10-30 54232]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-02-04 242240]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-10-30 21256]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-10-30 58680]
R3 athur;Atheros AR9271 Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\athur.sys [2011-04-20 1570304]
R3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2013-02-08 17488]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2012-06-19 3240400]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-05-20 350016]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-05-20 793920]
R3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x86.sys [2012-07-19 99992]
R3 MEI;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECI.sys [2012-07-02 55104]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2012-07-03 149352]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [2012-09-19 10088]
S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
S3 etdrv;etdrv; \??\C:\Windows\etdrv.sys [2013-02-01 17488]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-20 77184]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2010-11-20 25600]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%; C:\Windows\system32\DRIVERS\TsUsbGD.sys [2010-11-20 27264]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-10-30 44808]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 EpsonScanSvc;Epson Scanner Service; C:\Windows\system32\EscSvc.exe [2011-12-12 122000]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 462048]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-10-02 645992]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-08-04 1258856]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-02 382824]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [2012-11-02 1699168]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-17 365376]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2011-08-30 160256]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-07 251248]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-06 31272]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-02-06 115608]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-02-01 1343400]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[Rudy]

Log již vypadá čistý. Nastala nějaká změna?

[denyn]

Dělá to pořád. Od toho restartu.

[Rudy]

ADW maže jen zbytešné toolbary (lišty v prohlížeči), které zpomalují systém. Není možné už z principu, aby způsobil tento problém. Dejte log ComboFix:

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware

[denyn]

ComboFix 13-02-07.02 - PC 09.02.2013 12:30:09.1.4 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.3561.2559 [GMT 1:00]
Spuštěný z: d:\sta×enú soubory\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-01-09 do 2013-02-09 )))))))))))))))))))))))))))))))
.
.
2013-02-09 11:33 . 2013-02-09 11:33 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-02-09 10:11 . 2013-02-09 10:11 60872 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{97C36279-94E1-4DF5-BE4A-9EFB458A2EBA}\offreg.dll
2013-02-08 15:35 . 2013-01-18 11:17 6991832 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{97C36279-94E1-4DF5-BE4A-9EFB458A2EBA}\mpengine.dll
2013-02-08 12:16 . 2013-02-08 21:48 -------- d-----w- c:\program files\trend micro
2013-02-08 12:16 . 2013-02-08 12:16 -------- d-----w- C:\rsit
2013-02-06 21:09 . 2013-02-06 21:09 -------- d-----w- c:\program files\BrowseToSave
2013-02-06 15:49 . 2013-02-06 18:17 -------- d-----w- c:\program files\ABBYY FineReader 9.0 Sprint
2013-02-06 15:49 . 2013-02-06 15:49 -------- d-----w- c:\programdata\ABBYY
2013-02-06 15:49 . 2013-02-06 15:49 -------- d-----w- c:\program files\Common Files\ABBYY
2013-02-06 15:48 . 2013-02-06 15:48 -------- d-----w- c:\programdata\UDL
2013-02-06 15:47 . 2013-02-06 15:47 -------- d-----w- c:\program files\EpsonNet
2013-02-06 15:47 . 2011-08-30 12:39 457780 ----a-w- c:\windows\system32\ensppui.dll
2013-02-06 15:47 . 2011-08-30 12:39 457780 ----a-w- c:\windows\system32\enppui.dll
2013-02-04 18:37 . 2013-02-09 09:51 -------- d-----w- c:\program files\The KMPlayer
2013-02-04 18:34 . 2009-09-04 16:29 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll
2013-02-04 18:34 . 2006-09-28 15:05 2414360 ----a-w- c:\windows\system32\d3dx9_31.dll
2013-02-04 18:34 . 2013-02-04 18:34 -------- d-----w- c:\program files\Common Files\PX Storage Engine
2013-02-04 18:31 . 2013-02-04 18:31 -------- d-----w- c:\programdata\TuneUp Software
2013-02-04 18:31 . 2013-02-04 18:31 -------- d-sh--w- c:\programdata\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-02-04 18:31 . 2013-02-04 18:31 -------- d--h--w- c:\programdata\Common Files
2013-02-04 18:30 . 2013-02-04 18:30 163056 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10142.bin
2013-02-04 18:30 . 2013-02-04 18:30 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-02-04 18:30 . 2013-02-04 18:30 -------- d-----w- c:\program files\DAEMON Tools Lite
2013-02-04 18:27 . 2013-02-04 18:27 -------- d-----w- c:\programdata\DAEMON Tools Lite
2013-02-04 17:32 . 2011-04-20 02:06 1570304 ----a-w- c:\windows\system32\drivers\athur.sys
2013-02-04 17:32 . 2011-04-20 02:06 1570304 ----a-w- c:\windows\system32\athur.sys
2013-02-04 17:31 . 2013-02-04 17:33 -------- d-----w- c:\programdata\TP-LINK
2013-02-01 21:14 . 2006-10-26 18:56 33104 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\msonpppr.dll
2013-02-01 21:14 . 2006-10-26 18:56 32592 ----a-w- c:\windows\system32\msonpmon.dll
2013-02-01 21:14 . 2013-02-01 21:14 -------- d-----w- c:\program files\Microsoft Works
2013-02-01 21:14 . 2013-02-01 21:14 -------- d-----w- c:\windows\PCHEALTH
2013-02-01 21:13 . 2013-02-01 21:13 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2013-02-01 21:13 . 2013-02-01 21:14 -------- d-----w- c:\programdata\Microsoft Help
2013-02-01 21:13 . 2013-02-01 21:13 -------- d-----r- C:\MSOCache
2013-02-01 21:11 . 2013-02-01 21:13 -------- d-----w- c:\program files\GIGABYTE
2013-02-01 21:11 . 2011-11-02 09:48 19056 ----a-w- c:\windows\system32\drivers\AppleCharger.sys
2013-02-01 21:11 . 2010-04-06 15:30 31272 ----a-w- c:\windows\system32\AppleChargerSrv.exe
2013-02-01 21:10 . 2013-02-01 21:10 -------- d-----w- c:\windows\system32\RTCOM
2013-02-01 21:10 . 2012-05-20 16:25 15680 ----a-w- c:\windows\system32\drivers\iusb3hcs.sys
2013-02-01 21:10 . 2009-07-14 04:27 1461992 ----a-w- c:\windows\system32\WdfCoInstaller01009.dll
2013-02-01 21:10 . 2012-07-19 09:22 99992 ----a-w- c:\windows\system32\drivers\L1C62x86.sys
2013-02-01 21:10 . 2012-05-20 16:25 793920 ----a-w- c:\windows\system32\drivers\iusb3xhc.sys
2013-02-01 21:10 . 2009-11-24 01:55 140528 ----a-w- c:\windows\system32\SRSWOW.dll
2013-02-01 21:10 . 2009-11-18 10:42 1783056 ----a-w- c:\windows\system32\WavesLib.dll
2013-02-01 21:10 . 2009-11-24 01:55 345328 ----a-w- c:\windows\system32\SRSTSXT.dll
2013-02-01 21:10 . 2009-11-24 01:55 185584 ----a-w- c:\windows\system32\SRSTSHD.dll
2013-02-01 21:10 . 2009-11-24 01:55 173296 ----a-w- c:\windows\system32\SRSHP360.dll
2013-02-01 21:10 . 2012-06-01 01:37 2417808 ----a-w- c:\windows\system32\RtkPgExt.dll
2013-02-01 21:08 . 2013-02-01 21:08 -------- d-----w- c:\program files\Realtek
2013-02-01 21:07 . 2013-02-01 21:14 -------- d-----w- c:\program files\Microsoft.NET
2013-02-01 21:07 . 2013-02-09 09:58 -------- d-sh--w- c:\windows\Installer
2013-02-01 21:04 . 2013-02-01 21:04 -------- d-----w- c:\users\PC
2013-02-01 21:00 . 2013-02-09 10:02 -------- d-----w- c:\windows\Panther
2013-02-01 15:10 . 2011-02-19 06:30 805376 ----a-w- c:\windows\system32\FntCache.dll
2013-02-01 15:10 . 2011-02-19 06:30 739840 ----a-w- c:\windows\system32\d2d1.dll
2013-02-01 15:09 . 2013-02-01 15:09 -------- d-----w- c:\windows\system32\Wat
2013-02-01 15:05 . 2012-12-16 14:13 295424 ----a-w- c:\windows\system32\atmfd.dll
2013-02-01 15:05 . 2012-12-16 14:13 34304 ----a-w- c:\windows\system32\atmlib.dll
2013-02-01 15:05 . 2010-09-30 06:47 70656 ----a-w- c:\windows\system32\fontsub.dll
2013-02-01 14:57 . 2013-01-17 00:28 232336 ------w- c:\windows\system32\MpSigStub.exe
2013-02-01 14:49 . 2012-07-26 03:39 526952 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2013-02-01 14:49 . 2012-07-26 03:39 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2013-02-01 14:49 . 2012-07-26 02:46 9728 ----a-w- c:\windows\system32\Wdfres.dll
2013-02-01 14:48 . 2012-07-26 03:20 73216 ----a-w- c:\windows\system32\WUDFSvc.dll
2013-02-01 14:48 . 2012-07-26 03:20 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll
2013-02-01 14:48 . 2012-07-26 02:33 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2013-02-01 14:48 . 2012-07-26 02:32 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2013-02-01 14:48 . 2012-07-26 03:21 196608 ----a-w- c:\windows\system32\WUDFHost.exe
2013-02-01 14:48 . 2012-07-26 03:20 613888 ----a-w- c:\windows\system32\WUDFx.dll
2013-02-01 14:48 . 2012-07-26 03:20 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2013-02-01 14:48 . 2012-03-01 05:46 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2013-02-01 14:48 . 2012-03-01 05:33 159232 ----a-w- c:\windows\system32\imagehlp.dll
2013-02-01 14:48 . 2012-03-01 05:29 5120 ----a-w- c:\windows\system32\wmi.dll
2013-02-01 14:38 . 2012-06-02 04:36 140288 ----a-w- c:\windows\system32\cryptsvc.dll
2013-02-01 14:35 . 2011-02-03 05:54 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2013-02-01 14:34 . 2012-02-17 05:34 826880 ----a-w- c:\windows\system32\rdpcore.dll
2013-02-01 14:34 . 2012-02-17 04:13 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2013-02-01 14:34 . 2013-02-09 10:03 17488 ----a-w- c:\windows\etdrv.sys
2013-02-01 14:32 . 2013-02-07 21:46 74096 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-02-01 14:32 . 2013-02-07 21:46 697712 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-02-01 14:32 . 2013-02-01 14:32 -------- d-----w- c:\windows\system32\Macromed
2013-02-01 14:30 . 2012-06-09 18:21 178688 ----a-w- c:\windows\system32\unrar.dll
2013-02-01 14:30 . 2013-02-01 14:30 -------- d-----w- c:\program files\K-Lite Codec Pack
2013-02-01 14:25 . 2013-02-07 17:32 -------- d-----w- c:\program files\Mozilla Maintenance Service
2013-02-01 14:23 . 2013-02-09 09:49 -------- d-----w- c:\programdata\NVIDIA
2013-02-01 14:21 . 2012-10-10 20:15 831848 ----a-w- c:\windows\system32\nvumdshim.dll
2013-02-01 14:21 . 2012-10-10 20:14 2428776 ----a-w- c:\windows\system32\nvapi.dll
2013-02-01 14:20 . 2013-02-01 14:43 -------- d-----w- c:\program files\NVIDIA Corporation
2013-02-01 14:20 . 2013-02-09 09:49 24944 ----a-w- c:\windows\system32\drivers\GVTDrv.sys
2013-02-01 14:20 . 2013-02-09 09:49 17488 ----a-w- c:\windows\gdrv.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-02-06 15:26 . 2013-02-06 15:26 262552 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2012-11-06 3673728]
"uTorrent"="d:\programy\utorrent\uTorrent.exe" [2013-02-04 969104]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2012-06-11 10996368]
"USB3MON"="c:\program files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-05-20 291648]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
"WinampAgent"="d:\programy\winnamp\Winamp\winampa.exe" [2012-06-28 74752]
"EEventManager"="c:\program files\Epson Software\Event Manager\EEventManager.exe" [2011-10-31 1058400]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"EasyTuneVI"="c:\program files\GIGABYTE\ET6\ETCall.exe" [2012-07-09 40960]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
TP-LINK Wireless Configuration Utility.lnk - d:\wifi\TWCU.exe [2013-2-4 788992]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
R0 GVTDrv;GVTDrv; [x]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%;c:\windows\system32\DRIVERS\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys [x]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 EpsonScanSvc;Epson Scanner Service;c:\windows\system32\EscSvc.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 athur;Atheros AR9271 Wireless Network Adapter Service;c:\windows\system32\DRIVERS\athur.sys [x]
S3 etdrv;etdrv;c:\windows\etdrv.sys [x]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys [x]
S3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [x]
S3 MEI;Intel(R) Management Engine Interface ;c:\windows\system32\DRIVERS\HECI.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*Deregistered* - TuneUpUtilitiesDrv
.
Obsah adresáře 'Naplánované úlohy'
.
2013-02-09 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-01 21:46]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
mStart Page = hxxp://www.google.com
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\y25epvkb.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - ExtSQL: 2013-02-01 15:26; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-CCleaner - d:\programy\uninst.exe
AddRemove-{45889770-B6FD-2114-2D85-BD5E4143C3EC} - c:\progra~2\INSTAL~1\{7B030~1\Setup.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2013-02-09 12:34:43
ComboFix-quarantined-files.txt 2013-02-09 11:34
.
Před spuštěním: Volných bajtů: 38 374 010 880
Po spuštění: Volných bajtů: 38 330 114 048
.
- - End Of File - - BA90112BA65F790C1C7C714F80D5FE14

[Rudy]

Něco CF smazal, zbytek logu vypadá čistý. Nastala nějaká změna?