Avast našel hrozbu Win32:Malware-gen

[misel01]

Dnes jsem kontrolovala počítač antivirem Avast a našel mi dvakrát tento malware - Win32:Malware-gen

oba v souborech autochk.exe , jeden ve složce windows/System32 , druhý ve windows/winsxs
oba jsem dávala na analýzu na virustotal.com ...s výsledkem 0/47 u obou ...

Mohli byste mi někdo poradit zda soubor mám nějak odstraňovat nebo je to planý poplach či co... Děkuji

[misel01]

Logfile of random's system information tool 1.09 (written by random/random)
Run by Mišulka at 2013-06-05 15:59:34
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 70 GB (58%) free of 122 GB
Total RAM: 3690 MB (23% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:59:39, on 5.6.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16576)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe
C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Users\Mišulka\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\BlueStacks\HD-Agent.exe
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
C:\Program Files (x86)\Opera\opera.exe
C:\Program Files\trend micro\Mišulka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=12
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: TrueSuite Browser Helper Object - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\ADVANC~1\BROWER~1\ASCPLU~1.DLL
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
O4 - HKLM\..\Run: [RotateImage] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [PWMTRV] rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [icq] C:\Users\Mišulka\AppData\Roaming\ICQM\icq.exe -CU
O4 - HKCU\..\Run: [Advanced SystemCare 6] "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Mišulka\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Mišulka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-3709180981-2826725630-1473268690-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-3709180981-2826725630-1473268690-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Startup: OpenOffice.org 3.4.1.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat do Bluetooth - C:\Program Files (x86)\Intel\Bluetooth\btSendToObject.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Mišulka\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra 'Tools' menuitem: ICQ - {086C8477-4F71-4550-87FB-AF0AE8DF3E98} - C:\Users\Mišulka\AppData\Roaming\ICQM\icq.exe (HKCU)
O9 - Extra button: Odeslat do Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O9 - Extra 'Tools' menuitem: Odeslat do Bluetooth - {2F56DCAA-153B-4479-B4E2-547405B34FB9} - C:\Program Files (x86)\Intel\Bluetooth\btSendToPage.htm (HKCU)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{AB3BCD87-4765-4CDB-B282-F853E3AF0DAB}: NameServer = 212.96.161.6,212.96.160.7
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-Service.exe
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\Windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: TrueSuiteService (FPLService) - AuthenTec, Inc - C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: ThinkPad PM Service (IBMPMSVC) - Unknown owner - C:\Windows\system32\ibmpmsvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo Camera Mute (LENOVO.CAMMUTE) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Lenovo Keyboard Noise Reduction (LENOVO.TPKNRSVC) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
O23 - Service: ThinkVantage Virtual Camera Controller (LENOVO.TVTVCAM) - Lenovo Group Limited - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Power Manager DBC Service - Lenovo - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cisco EnergyWise Enabler (PwmEWSvc) - Lenovo Group Limited - C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\Windows\system32\SAsrv.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: TrueAPI Service component (TrueService) - AuthenTec, Inc. - C:\Program Files\Common Files\AuthenTec\TrueService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 14181 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe"
"C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe"
C:\Windows\system32\ibmpmsvc.exe
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-a4e8f21f-04ea-4c04-865f-081ed61e8d58 -SystemEventPortName:HostProcess-6445bfa9-9e74-4e42-b3e2-356c619b0ad1 -IoCancelEventPortName:HostProcess-e54b32bd-9d2f-44ce-a437-bb4b02e8882c -NonStateChangingEventPortName:HostProcess-1af6b5d6-3404-4e2a-8af6-da10b852f4b4 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:1d00c77e-0903-4a1b-95a9-63323ce693c0 -DeviceGroupId:
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 3930080
\??\C:\Windows\system32\conhost.exe "-1571291169-1968358774-4794919492136977857-1071229607715026063-2044893549-1142042712
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k WbioSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe"
C:\Windows\system32\CxAudMsg64.exe
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe"
"C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe"
"C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\SysWOW64\SAsrv.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\BlueStacks\HD-Service.exe" BstHdAndroidSvc Android
C:\PROGRA~1\LENOVO\HOTKEY\tpnumlk.exe
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
"C:\Program Files (x86)\BlueStacks\HD-Network.exe"
\??\C:\Windows\system32\conhost.exe "-12995842911524027662-652300346-5415048371320997936-1077679130-1201778225267391713
"C:\Program Files (x86)\BlueStacks\HD-BlockDevice.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
\??\C:\Windows\system32\conhost.exe "-15549353082013189030-1747672229-1677324380-10830255651285501589-1226494120-1086655589
"C:\Program Files (x86)\BlueStacks\HD-SharedFolder.exe"
\??\C:\Windows\system32\conhost.exe "-1419538148691196041725373832-14485425508729051916535803741428950136640215213
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
C:\Windows\Explorer.EXE
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe"
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
"C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe"
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart
"C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTray.exe"
"C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" -quickstart
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
"C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" "-quickstart" "-env:OOO_CWD=2C:\\Program Files (x86)\\OpenOffice.org 3\\program"
szndesktop.exe default start
"C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
"C:\Program Files (x86)\BlueStacks\HD-Agent.exe"
"C:\Users\Mišulka\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
\??\C:\Windows\system32\conhost.exe "-657306205141431640-1549467524-117187795-620618333-1122004213-11374720051913916290
"C:\Program Files\Common Files\AuthenTec\TrueService.exe"
/ChildServer
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.ShortcutKey
C:\PROGRA~1\LENOVO\HOTKEY\tpnumlkd.exe
taskeng.exe {539354E6-1437-4F56-BEDC-110D766B56C1}
"C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe" -Embedding
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE"
"C:\Program Files (x86)\Opera\opera.exe"
C:\Windows\system32\AUDIODG.EXE 0xa64
"C:\Program Files\Lenovo Fingerprint Reader\TouchControl.exe"
"F:\Users\Administrator\Misa\Programy\RSITx64.exe"
"c:\program files\windows defender\MpCmdRun.exe" SpyNetService -RestrictPrivileges -AccessKey D94A5465-84FB-E146-ACC1-3ECA1A3D1DDB -Reinvoke
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-03-07 1497560]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Browser Helper Object - C:\Program Files\Lenovo Fingerprint Reader\IEBHO.DLL [2012-11-30 2517864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8590886E-EC8C-43C1-A32C-E4C2B0B6395B}]
TrueSuite Browser Helper Object - C:\Program Files\Lenovo Fingerprint Reader\x86\IEBHO.dll [2012-11-30 2352488]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-03-07 1224568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}]
Advanced SystemCare Browser Protection - C:\PROGRA~2\IObit\ADVANC~1\BROWER~1\ASCPLU~1.DLL [2013-04-24 659264]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-03-07 1497560]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-03-07 1224568]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2012-06-14 887968]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
""= []
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-06-20 2881336]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-06-25 170304]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-06-25 398656]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-06-25 440128]
"BLEServicesCtrl"=C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [2012-05-31 184112]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2012-06-18 11586944]
"LENOVO.TPKNRRES"=C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [2013-01-28 293672]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"icq"=C:\Users\Mišulka\AppData\Roaming\ICQM\icq.exe [2013-04-15 27598184]
"Advanced SystemCare 6"=C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe [2013-04-18 491840]
"Zoner Photo Studio Autoupdate"=C:\Program Files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE [2013-03-11 773496]
"cz.seznam.software.autoupdate"=C:\Users\Mišulka\AppData\Roaming\Seznam.cz\szninstall.exe [2013-03-21 1061960]
"cz.seznam.software.szndesktop"=C:\Users\Mišulka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Dolby Advanced Audio v2"=C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2012-08-31 508144]
"RotateImage"=C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [2008-10-30 55808]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-04-14 291608]
"PWMTRV"=rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor []
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-03-07 4767304]
"BlueStacks Agent"=C:\Program Files (x86)\BlueStacks\HD-Agent.exe [2013-05-13 601928]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-03-21 1061960]

C:\Users\Mišulka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OpenOffice.org 3.4.1.lnk - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-06-25 436224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-06-05 15:59:34 ----D---- C:\rsit
2013-06-05 15:59:34 ----D---- C:\Program Files\trend micro
2013-05-31 00:13:51 ----D---- C:\Program Files (x86)\Seznam.cz
2013-05-31 00:13:25 ----D---- C:\Users\Mišulka\AppData\Roaming\Seznam.cz
2013-05-28 00:02:47 ----D---- C:\Users\Mišulka\AppData\Roaming\OpenOffice.org
2013-05-27 22:02:47 ----D---- C:\Program Files (x86)\OpenOffice.org 3
2013-05-27 13:47:40 ----D---- C:\Program Files (x86)\BlueStacks
2013-05-27 13:47:18 ----D---- C:\ProgramData\BlueStacksSetup
2013-05-27 13:47:18 ----D---- C:\ProgramData\BlueStacks
2013-05-23 05:32:55 ----D---- C:\Users\Mišulka\AppData\Roaming\Zoner
2013-05-23 05:32:52 ----D---- C:\ProgramData\Zoner
2013-05-23 05:32:35 ----D---- C:\Program Files\Zoner
2013-05-21 11:59:36 ----D---- C:\Program Files (x86)\XdN Software
2013-05-16 02:59:09 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-05-16 02:59:09 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-05-16 02:59:09 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-05-16 02:59:09 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-05-16 02:59:09 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-05-16 02:59:09 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-05-16 02:59:09 ----A---- C:\Windows\system32\ieui.dll
2013-05-16 02:59:09 ----A---- C:\Windows\system32\iesysprep.dll
2013-05-16 02:59:09 ----A---- C:\Windows\system32\iesetup.dll
2013-05-16 02:59:09 ----A---- C:\Windows\system32\iernonce.dll
2013-05-16 02:59:09 ----A---- C:\Windows\system32\ie4uinit.exe
2013-05-16 02:59:08 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-05-16 02:59:08 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-05-16 02:59:08 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-05-16 02:59:08 ----A---- C:\Windows\system32\msfeeds.dll
2013-05-16 02:59:08 ----A---- C:\Windows\system32\iertutil.dll
2013-05-16 02:59:07 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-05-16 02:59:07 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-05-16 02:59:07 ----A---- C:\Windows\system32\urlmon.dll
2013-05-16 02:59:07 ----A---- C:\Windows\system32\jscript9.dll
2013-05-16 02:59:07 ----A---- C:\Windows\system32\jscript.dll
2013-05-16 02:59:06 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-05-16 02:59:06 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-05-16 02:59:06 ----A---- C:\Windows\system32\wininet.dll
2013-05-16 02:59:06 ----A---- C:\Windows\system32\jsproxy.dll
2013-05-16 02:59:05 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-05-16 02:59:04 ----A---- C:\Windows\system32\mshtml.dll
2013-05-16 02:59:03 ----A---- C:\Windows\system32\ieframe.dll
2013-05-16 02:59:02 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-05-15 22:34:56 ----A---- C:\Windows\system32\win32k.sys
2013-05-15 22:34:55 ----A---- C:\Windows\system32\wwansvc.dll
2013-05-15 22:34:55 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-05-15 22:34:55 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-05-15 22:34:55 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-05-15 22:34:55 ----A---- C:\Windows\system32\cdd.dll
2013-05-15 22:34:53 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-05-15 22:34:53 ----A---- C:\Windows\system32\shell32.dll
2013-05-15 22:34:53 ----A---- C:\Windows\system32\shdocvw.dll
2013-05-15 22:34:53 ----A---- C:\Windows\system32\authui.dll
2013-05-15 22:34:52 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-05-15 22:34:52 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-05-15 22:34:52 ----A---- C:\Windows\system32\consent.exe
2013-05-15 22:34:52 ----A---- C:\Windows\system32\appinfo.dll
2013-05-15 20:14:29 ----D---- C:\Program Files (x86)\Google
2013-05-13 01:11:14 ----D---- C:\Users\Mišulka\AppData\Roaming\PhotoFiltre 7
2013-05-13 01:11:11 ----D---- C:\Program Files (x86)\PhotoFiltre 7
2013-05-13 00:58:32 ----D---- C:\Users\Mišulka\AppData\Roaming\Malwarebytes
2013-05-13 00:58:24 ----D---- C:\ProgramData\Malwarebytes
2013-05-13 00:58:23 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-05-13 00:58:23 ----A---- C:\Windows\system32\drivers\mbam.sys
2013-05-13 00:16:05 ----A---- C:\Windows\system32\drivers\tvtvcamd.sys
2013-05-13 00:11:39 ----D---- C:\Program Files\Common Files\Lenovo
2013-05-13 00:11:32 ----D---- C:\Program Files (x86)\Lenovo
2013-05-11 00:57:53 ----D---- C:\Users\Mišulka\AppData\Roaming\DVDVideoSoft
2013-05-11 00:57:53 ----D---- C:\Program Files (x86)\DVDVideoSoft
2013-05-09 19:50:21 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-05-09 19:50:21 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-05-09 19:50:21 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-05-09 19:50:21 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-05-09 19:50:21 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-05-09 19:50:21 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-05-09 19:50:21 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-05-09 19:50:21 ----A---- C:\Windows\system32\wksprtPS.dll
2013-05-09 19:50:21 ----A---- C:\Windows\system32\wksprt.exe
2013-05-09 19:50:21 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-05-09 19:50:21 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-05-09 19:50:21 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-05-09 19:50:21 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-05-09 19:50:21 ----A---- C:\Windows\system32\tsgqec.dll
2013-05-09 19:50:21 ----A---- C:\Windows\system32\rdpudd.dll
2013-05-09 19:50:21 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-05-09 19:50:21 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-05-09 19:50:21 ----A---- C:\Windows\system32\rdpcorets.dll
2013-05-09 19:50:21 ----A---- C:\Windows\system32\mstscax.dll
2013-05-09 19:50:21 ----A---- C:\Windows\system32\mstsc.exe
2013-05-09 19:50:21 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-05-09 19:50:21 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2013-05-09 19:50:21 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-05-09 19:50:21 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-05-09 19:50:21 ----A---- C:\Windows\system32\aaclient.dll
2013-05-09 19:50:08 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-05-09 19:50:08 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-05-09 19:50:08 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-05-09 19:50:08 ----A---- C:\Windows\system32\schannel.dll
2013-05-09 19:50:08 ----A---- C:\Windows\system32\lsasrv.dll
2013-05-09 19:50:08 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-05-09 19:50:08 ----A---- C:\Windows\system32\drivers\cng.sys
2013-05-09 19:49:55 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-05-09 19:49:55 ----A---- C:\Windows\system32\qdvd.dll
2013-05-09 19:49:39 ----A---- C:\Windows\system32\RegistryDefragBootTime.exe
2013-05-09 19:11:52 ----D---- C:\ProgramData\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-05-09 19:11:51 ----D---- C:\Users\Mišulka\AppData\Roaming\Apple Computer
2013-05-09 19:11:50 ----D---- C:\Users\Mišulka\AppData\Roaming\IObit
2013-05-09 19:11:50 ----D---- C:\ProgramData\IObit
2013-05-09 19:11:46 ----D---- C:\Program Files (x86)\IObit

======List of files/folders modified in the last 1 month======

2013-06-05 15:59:35 ----D---- C:\Windows\Temp
2013-06-05 15:59:34 ----RD---- C:\Program Files
2013-06-05 12:44:41 ----D---- C:\Windows
2013-06-05 11:41:35 ----D---- C:\Windows\system32\config
2013-06-05 11:38:04 ----SD---- C:\Users\Mišulka\AppData\Roaming\Microsoft
2013-06-05 11:35:18 ----D---- C:\Windows\System32
2013-06-05 11:35:18 ----D---- C:\Windows\inf
2013-06-05 11:35:18 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-06-05 11:28:01 ----D---- C:\Windows\debug
2013-06-04 10:46:06 ----SHD---- C:\System Volume Information
2013-05-31 20:52:50 ----D---- C:\Windows\system32\catroot2
2013-05-31 02:44:26 ----D---- C:\Windows\system32\wdi
2013-05-31 00:13:51 ----RD---- C:\Program Files (x86)
2013-05-27 22:03:06 ----SHD---- C:\Windows\Installer
2013-05-27 22:03:06 ----RSD---- C:\Windows\assembly
2013-05-27 22:02:50 ----RSD---- C:\Windows\Fonts
2013-05-27 22:01:58 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-05-27 13:57:28 ----D---- C:\Windows\Microsoft.NET
2013-05-27 13:47:18 ----HD---- C:\ProgramData
2013-05-25 11:58:22 ----D---- C:\Windows\system32\drivers
2013-05-18 21:47:37 ----D---- C:\Windows\rescache
2013-05-16 03:03:35 ----D---- C:\Windows\winsxs
2013-05-16 03:02:58 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-05-16 03:02:58 ----D---- C:\Windows\SysWOW64
2013-05-16 03:02:58 ----D---- C:\Windows\system32\cs-CZ
2013-05-16 03:02:58 ----D---- C:\Windows\AppPatch
2013-05-16 03:02:58 ----D---- C:\Program Files\Internet Explorer
2013-05-16 03:02:58 ----D---- C:\Program Files (x86)\Internet Explorer
2013-05-16 03:01:12 ----A---- C:\Windows\system32\MRT.exe
2013-05-16 03:01:09 ----D---- C:\ProgramData\Microsoft Help
2013-05-16 02:59:20 ----D---- C:\Windows\system32\catroot
2013-05-15 20:14:30 ----D---- C:\Windows\Tasks
2013-05-15 20:14:30 ----D---- C:\Windows\system32\Tasks
2013-05-15 17:31:09 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-05-13 00:16:13 ----D---- C:\Windows\system32\DriverStore
2013-05-13 00:16:05 ----D---- C:\Program Files\Lenovo
2013-05-13 00:11:39 ----D---- C:\Program Files\Common Files
2013-05-13 00:11:38 ----D---- C:\Program Files (x86)\Common Files
2013-05-13 00:11:19 ----D---- C:\DRIVERS
2013-05-10 03:36:28 ----D---- C:\Windows\SYSWOW64\wbem
2013-05-10 03:36:28 ----D---- C:\Windows\SYSWOW64\en-US
2013-05-10 03:36:28 ----D---- C:\Windows\PolicyDefinitions
2013-05-10 03:36:27 ----D---- C:\Windows\system32\wbem
2013-05-10 03:36:27 ----D---- C:\Windows\system32\en-US
2013-05-10 03:36:27 ----D---- C:\Windows\system32\drivers\en-US

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-03-07 65336]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-04-14 19224]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2013-03-15 30496]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-03-07 70992]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-03-07 1025808]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-03-07 377920]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-03-07 68920]
R1 TPPWRIF;TPPWRIF; C:\Windows\System32\drivers\Tppwr64v.sys [2013-01-10 20328]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-03-07 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-03-07 80816]
R2 BstHdDrv;BlueStacks Hypervisor; \??\C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [2013-05-13 70984]
R3 5U877;5U877; C:\Windows\system32\DRIVERS\5U877.sys [2012-03-28 216704]
R3 AMPPAL;Virtuální adaptér Intel® Centrino® Wireless Bluetooth® + High Speed; C:\Windows\system32\DRIVERS\AMPPAL.sys [2012-01-09 195584]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2012-09-20 1609376]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2011-02-01 39024]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-06-25 14760096]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-06-21 331264]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-04-14 356632]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-04-14 789272]
R3 iwdbus;IWD Bus Enumerator; C:\Windows\system32\DRIVERS\iwdbus.sys [2011-12-20 25496]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2013-04-04 25928]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\Netwsw00.sys [2012-02-21 11471872]
R3 RSP2STOR;Realtek PCIE CardReader Driver - P2; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [2011-10-27 259688]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-08-23 565352]
R3 SmbDrvIntel;SmbDrvIntel; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [2012-06-20 27448]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2012-06-20 431928]
R3 tvtvcamd;Camera Plus (VGA Resolution Maximum); C:\Windows\system32\DRIVERS\tvtvcamd.sys [2011-12-08 27432]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
R3 WinUsb;WinUSB Driver; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-21 41984]
S3 AMPPALP;Protokol Intel® Centrino® Wireless Bluetooth® + High Speed; C:\Windows\system32\DRIVERS\amppal.sys [2012-01-09 195584]
S3 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-03-07 178624]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btmaux;Intel Bluetooth Auxiliary Service; C:\Windows\system32\DRIVERS\btmaux.sys [2012-05-21 111104]
S3 btmhsf;btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [2012-06-09 849408]
S3 ibtfltcoex;ibtfltcoex; C:\Windows\system32\DRIVERS\iBtFltCoex.sys [2012-07-09 60928]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys [2011-12-20 34200]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 nmwcdnsucx64;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsucx64.sys [2011-08-17 12800]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsux64.sys [2011-08-17 171008]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2013-05-09 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-05-09 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2013-05-09 30208]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-21 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]
R2 AdvancedSystemCareService6;Advanced SystemCare Service 6; C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [2013-04-18 574272]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-01-09 659968]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-03-07 45248]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-06-18 1095616]
R2 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2012-06-18 1333184]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-06-18 1124288]
R2 BstHdAndroidSvc;BlueStacks Android Service; C:\Program Files (x86)\BlueStacks\HD-Service.exe [2013-05-13 393032]
R2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [2013-05-13 384840]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-01-17 135952]
R2 CxAudMsg;@C:\Windows\system32\CxAudMsg64.exe,-100; C:\Windows\system32\CxAudMsg64.exe [2012-06-08 201376]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2012-02-26 626960]
R2 FPLService;TrueSuiteService; C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe [2012-11-30 2139496]
R2 IBMPMSVC;ThinkPad PM Service; C:\Windows\system32\ibmpmsvc.exe [2011-02-01 45928]
R2 LENOVO.CAMMUTE;Lenovo Camera Mute; C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe [2013-01-28 58664]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2012-08-25 127072]
R2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction; C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2013-01-28 61736]
R2 LENOVO.TVTVCAM;ThinkVantage Virtual Camera Controller; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [2013-01-28 188200]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-03-15 877856]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-03-15 1266464]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2012-02-26 148752]
R2 SAService;Conexant SmartAudio service; C:\Windows\system32\SAsrv.exe []
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2012-09-08 145808]
R2 TPHKSVC;On Screen Display; C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe [2012-12-05 125504]
R3 Power Manager DBC Service;Power Manager DBC Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2013-01-10 1665832]
R3 TrueService;TrueAPI Service component; C:\Program Files\Common Files\AuthenTec\TrueService.exe [2012-07-16 401256]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-05-15 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-15 256904]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-06-25 276288]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-05-15 116648]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-02-26 273168]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 PwmEWSvc;Cisco EnergyWise Enabler; C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2013-01-10 1664296]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-04-08 1255736]

-----------------EOF-----------------

[misel01]

ComboFix :

ComboFix 13-06-05.01 - Mišulka 05.06.2013 16:32:35.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3690.2183 [GMT 2:00]
Spuštěný z: c:\users\MiÜulka\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Roaming
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-05-05 do 2013-06-05 )))))))))))))))))))))))))))))))
.
.
2013-06-05 13:59 . 2013-06-05 13:59 -------- d-----w- C:\rsit
2013-06-05 13:59 . 2013-06-05 13:59 -------- d-----w- c:\program files\trend micro
2013-06-04 08:46 . 2013-05-13 06:37 9460464 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B2FCA56F-8406-46CD-94B6-747576B11050}\mpengine.dll
2013-06-02 23:04 . 2013-06-02 23:06 -------- d-----w- c:\users\Mišulka\AppData\Local\Microsoft Games
2013-05-30 23:19 . 2013-06-03 14:41 -------- d-----w- c:\users\Mišulka\AppData\Local\CrashDumps
2013-05-30 22:13 . 2013-05-30 22:13 -------- d-----w- c:\program files (x86)\Seznam.cz
2013-05-30 22:13 . 2013-06-05 09:33 -------- d-----w- c:\users\Mišulka\AppData\Roaming\Seznam.cz
2013-05-27 22:02 . 2013-05-27 22:02 -------- d-----w- c:\users\Mišulka\AppData\Roaming\OpenOffice.org
2013-05-27 20:02 . 2013-05-27 20:02 -------- d-----w- c:\program files (x86)\OpenOffice.org 3
2013-05-27 11:47 . 2013-05-27 11:47 -------- d-----w- c:\program files (x86)\BlueStacks
2013-05-27 11:47 . 2013-05-27 11:47 -------- d-----w- c:\programdata\BlueStacks
2013-05-23 03:32 . 2013-05-23 03:32 -------- d-----w- c:\users\Mišulka\AppData\Roaming\Zoner
2013-05-23 03:32 . 2013-05-23 03:32 -------- d-----w- c:\users\Mišulka\AppData\Local\Zoner
2013-05-23 03:32 . 2013-05-23 03:32 -------- d-----w- c:\programdata\Zoner
2013-05-23 03:32 . 2013-05-23 03:32 -------- d-----w- c:\program files\Zoner
2013-05-21 09:59 . 2013-05-21 09:59 -------- d-----w- c:\program files (x86)\XdN Software
2013-05-15 20:34 . 2013-04-10 03:30 3153920 ----a-w- c:\windows\system32\win32k.sys
2013-05-15 18:14 . 2013-05-15 18:15 -------- d-----w- c:\program files (x86)\Google
2013-05-15 18:14 . 2013-05-15 18:15 -------- d-----w- c:\users\Mišulka\AppData\Local\Google
2013-05-12 23:11 . 2013-05-12 23:44 -------- d-----w- c:\users\Mišulka\AppData\Roaming\PhotoFiltre 7
2013-05-12 23:11 . 2013-05-12 23:11 -------- d-----w- c:\program files (x86)\PhotoFiltre 7
2013-05-12 22:58 . 2013-05-12 22:58 -------- d-----w- c:\users\Mišulka\AppData\Roaming\Malwarebytes
2013-05-12 22:58 . 2013-05-12 22:58 -------- d-----w- c:\programdata\Malwarebytes
2013-05-12 22:58 . 2013-05-12 22:58 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-05-12 22:58 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-05-12 22:58 . 2013-05-12 22:58 -------- d-----w- c:\users\Mišulka\AppData\Local\Programs
2013-05-12 22:16 . 2011-12-08 08:59 27432 ----a-w- c:\windows\system32\drivers\tvtvcamd.sys
2013-05-12 22:11 . 2013-05-12 22:11 53248 ----a-r- c:\users\Mišulka\AppData\Roaming\Microsoft\Installer\{ABE4638D-D208-4061-9F26-E3E11E3A1E0C}\ARPPRODUCTICON.exe
2013-05-12 22:11 . 2013-05-12 22:11 -------- d-----w- c:\program files\Common Files\Lenovo
2013-05-12 22:11 . 2013-05-12 22:11 53248 ----a-r- c:\users\Mišulka\AppData\Roaming\Microsoft\Installer\{AD32F5E9-6BDD-480A-8B7B-95571D04691C}\ARPPRODUCTICON.exe
2013-05-12 22:11 . 2013-05-12 22:11 -------- d-----w- c:\program files (x86)\Common Files\Lenovo
2013-05-12 22:11 . 2013-05-12 22:11 -------- d-----w- c:\program files (x86)\Lenovo
2013-05-10 22:57 . 2013-05-23 23:59 -------- d-----w- c:\users\Mišulka\AppData\Roaming\DVDVideoSoft
2013-05-10 22:57 . 2013-05-10 22:58 -------- d-----w- c:\program files (x86)\DVDVideoSoft
2013-05-10 22:57 . 2013-05-10 22:57 -------- d-----w- c:\program files (x86)\Common Files\DVDVideoSoft
2013-05-09 17:49 . 2013-05-09 17:49 514560 ----a-w- c:\windows\SysWow64\qdvd.dll
2013-05-09 17:49 . 2013-05-09 17:49 366592 ----a-w- c:\windows\system32\qdvd.dll
2013-05-09 17:49 . 2013-04-17 18:20 26432 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
2013-05-09 17:11 . 2013-05-09 17:11 -------- d-----w- c:\programdata\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-05-09 17:11 . 2013-05-09 17:11 -------- d-----w- c:\users\Mišulka\AppData\Roaming\Apple Computer
2013-05-09 17:11 . 2013-05-09 17:12 -------- d-----w- c:\programdata\IObit
2013-05-09 17:11 . 2013-05-09 17:11 -------- d-----w- c:\users\Mišulka\AppData\Roaming\IObit
2013-05-09 17:11 . 2013-05-09 17:11 -------- d-----w- c:\program files (x86)\IObit
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-16 01:01 . 2013-04-13 23:11 75016696 ----a-w- c:\windows\system32\MRT.exe
2013-05-15 15:31 . 2013-04-11 10:19 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-15 15:31 . 2013-04-11 10:19 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-05-12 22:11 . 2013-05-12 22:11 53248 ----a-r- c:\users\Mišulka\AppData\Roaming\Microsoft\Installer\{ABE4638D-D208-4061-9F26-E3E11E3A1E0C}\ARPPRODUCTICON.exe
2013-05-12 22:11 . 2013-05-12 22:11 53248 ----a-r- c:\users\Mišulka\AppData\Roaming\Microsoft\Installer\{ABE4638D-D208-4061-9F26-E3E11E3A1E0C}\ARPPRODUCTICON.exe
2013-05-12 22:11 . 2013-05-12 22:11 53248 ----a-r- c:\users\Mišulka\AppData\Roaming\Microsoft\Installer\{AD32F5E9-6BDD-480A-8B7B-95571D04691C}\ARPPRODUCTICON.exe
2013-05-12 22:11 . 2013-05-12 22:11 53248 ----a-r- c:\users\Mišulka\AppData\Roaming\Microsoft\Installer\{AD32F5E9-6BDD-480A-8B7B-95571D04691C}\ARPPRODUCTICON.exe
2013-05-09 17:50 . 2013-05-09 17:50 340992 ----a-w- c:\windows\system32\schannel.dll
2013-05-09 17:50 . 2013-05-09 17:50 247808 ----a-w- c:\windows\SysWow64\schannel.dll
2013-05-02 00:06 . 2010-11-21 03:27 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-04-13 05:49 . 2013-05-15 20:34 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-15 20:34 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-15 20:34 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-15 20:34 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-15 20:34 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-15 20:34 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-12 14:45 . 2013-04-24 06:17 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-08 08:02 . 2013-04-08 08:02 97280 ----a-w- c:\windows\system32\mshtmled.dll
2013-04-08 08:02 . 2013-04-08 08:02 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-04-08 08:02 . 2013-04-08 08:02 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-04-08 08:02 . 2013-04-08 08:02 81408 ----a-w- c:\windows\system32\icardie.dll
2013-04-08 08:02 . 2013-04-08 08:02 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-04-08 08:02 . 2013-04-08 08:02 762368 ----a-w- c:\windows\system32\ieapfltr.dll
2013-04-08 08:02 . 2013-04-08 08:02 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-04-08 08:02 . 2013-04-08 08:02 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-04-08 08:02 . 2013-04-08 08:02 62976 ----a-w- c:\windows\system32\pngfilt.dll
2013-04-08 08:02 . 2013-04-08 08:02 61952 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-04-08 08:02 . 2013-04-08 08:02 599552 ----a-w- c:\windows\system32\vbscript.dll
2013-04-08 08:02 . 2013-04-08 08:02 523264 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-04-08 08:02 . 2013-04-08 08:02 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-04-08 08:02 . 2013-04-08 08:02 51200 ----a-w- c:\windows\system32\imgutil.dll
2013-04-08 08:02 . 2013-04-08 08:02 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-04-08 08:02 . 2013-04-08 08:02 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-04-08 08:02 . 2013-04-08 08:02 452096 ----a-w- c:\windows\system32\dxtmsft.dll
2013-04-08 08:02 . 2013-04-08 08:02 441856 ----a-w- c:\windows\system32\html.iec
2013-04-08 08:02 . 2013-04-08 08:02 38400 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-04-08 08:02 . 2013-04-08 08:02 361984 ----a-w- c:\windows\SysWow64\html.iec
2013-04-08 08:02 . 2013-04-08 08:02 281600 ----a-w- c:\windows\system32\dxtrans.dll
2013-04-08 08:02 . 2013-04-08 08:02 27648 ----a-w- c:\windows\system32\licmgr10.dll
2013-04-08 08:02 . 2013-04-08 08:02 270848 ----a-w- c:\windows\system32\iedkcs32.dll
2013-04-08 08:02 . 2013-04-08 08:02 247296 ----a-w- c:\windows\system32\webcheck.dll
2013-04-08 08:02 . 2013-04-08 08:02 235008 ----a-w- c:\windows\system32\url.dll
2013-04-08 08:02 . 2013-04-08 08:02 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-04-08 08:02 . 2013-04-08 08:02 226304 ----a-w- c:\windows\system32\elshyph.dll
2013-04-08 08:02 . 2013-04-08 08:02 216064 ----a-w- c:\windows\system32\msls31.dll
2013-04-08 08:02 . 2013-04-08 08:02 197120 ----a-w- c:\windows\system32\msrating.dll
2013-04-08 08:02 . 2013-04-08 08:02 185344 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-04-08 08:02 . 2013-04-08 08:02 173568 ----a-w- c:\windows\system32\ieUnatt.exe
2013-04-08 08:02 . 2013-04-08 08:02 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-04-08 08:02 . 2013-04-08 08:02 158720 ----a-w- c:\windows\SysWow64\msls31.dll
2013-04-08 08:02 . 2013-04-08 08:02 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2013-04-08 08:02 . 2013-04-08 08:02 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-04-08 08:02 . 2013-04-08 08:02 149504 ----a-w- c:\windows\system32\occache.dll
2013-04-08 08:02 . 2013-04-08 08:02 144896 ----a-w- c:\windows\system32\wextract.exe
2013-04-08 08:02 . 2013-04-08 08:02 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-04-08 08:02 . 2013-04-08 08:02 1400416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-04-08 08:02 . 2013-04-08 08:02 138752 ----a-w- c:\windows\SysWow64\wextract.exe
2013-04-08 08:02 . 2013-04-08 08:02 13824 ----a-w- c:\windows\system32\mshta.exe
2013-04-08 08:02 . 2013-04-08 08:02 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-04-08 08:02 . 2013-04-08 08:02 136192 ----a-w- c:\windows\system32\iepeers.dll
2013-04-08 08:02 . 2013-04-08 08:02 135680 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-04-08 08:02 . 2013-04-08 08:02 12800 ----a-w- c:\windows\SysWow64\mshta.exe
2013-04-08 08:02 . 2013-04-08 08:02 12800 ----a-w- c:\windows\system32\msfeedssync.exe
2013-04-08 08:02 . 2013-04-08 08:02 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-04-08 08:02 . 2013-04-08 08:02 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-04-08 08:02 . 2013-04-08 08:02 102912 ----a-w- c:\windows\system32\inseng.dll
2013-04-08 08:02 . 2013-04-08 08:02 68608 ----a-w- c:\windows\system32\taskhost.exe
2013-04-08 08:00 . 2013-04-08 08:00 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-04-08 08:00 . 2013-04-08 08:00 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-04-08 08:00 . 2013-04-08 08:00 648192 ----a-w- c:\windows\system32\d3d10level9.dll
2013-04-08 08:00 . 2013-04-08 08:00 604160 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2013-04-08 08:00 . 2013-04-08 08:00 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-04-08 08:00 . 2013-04-08 08:00 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-04-08 08:00 . 2013-04-08 08:00 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-04-08 08:00 . 2013-04-08 08:00 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-04-08 08:00 . 2013-04-08 08:00 522752 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2013-04-08 08:00 . 2013-04-08 08:00 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2013-04-08 08:00 . 2013-04-08 08:00 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2013-04-08 08:00 . 2013-04-08 08:00 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-04-08 08:00 . 2013-04-08 08:00 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-04-08 08:00 . 2013-04-08 08:00 3928064 ----a-w- c:\windows\system32\d2d1.dll
2013-04-08 08:00 . 2013-04-08 08:00 364544 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2013-04-08 08:00 . 2013-04-08 08:00 363008 ----a-w- c:\windows\system32\dxgi.dll
2013-04-08 08:00 . 2013-04-08 08:00 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-04-08 08:00 . 2013-04-08 08:00 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-04-08 08:00 . 2013-04-08 08:00 3419136 ----a-w- c:\windows\SysWow64\d2d1.dll
2013-04-08 08:00 . 2013-04-08 08:00 333312 ----a-w- c:\windows\system32\d3d10_1core.dll
2013-04-08 08:00 . 2013-04-08 08:00 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
2013-04-08 08:00 . 2013-04-08 08:00 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-04-08 08:00 . 2013-04-08 08:00 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-04-08 08:00 . 2013-04-08 08:00 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-04-08 08:00 . 2013-04-08 08:00 296960 ----a-w- c:\windows\system32\d3d10core.dll
2013-04-08 08:00 . 2013-04-08 08:00 293376 ----a-w- c:\windows\SysWow64\dxgi.dll
2013-04-08 08:00 . 2013-04-08 08:00 2776576 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2013-04-08 08:00 . 2013-04-08 08:00 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2013-04-08 08:00 . 2013-04-08 08:00 2560 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-04-08 08:00 . 2013-04-08 08:00 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-04-08 08:00 . 2013-04-08 08:00 249856 ----a-w- c:\windows\SysWow64\d3d10_1core.dll
2013-04-08 08:00 . 2013-04-08 08:00 245248 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2013-04-08 08:00 . 2013-04-08 08:00 2284544 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"icq"="c:\users\Mišulka\AppData\Roaming\ICQM\icq.exe" [2013-04-15 27598184]
"Advanced SystemCare 6"="c:\program files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" [2013-04-18 491840]
"Zoner Photo Studio Autoupdate"="c:\program files\Zoner\Photo Studio 15\Program32\ZPSTRAY.EXE" [2013-03-11 773496]
"cz.seznam.software.autoupdate"="c:\users\Mišulka\AppData\Roaming\Seznam.cz\szninstall.exe" [2013-03-21 1061960]
"cz.seznam.software.szndesktop"="c:\users\Mišulka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" [2013-04-12 92664]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Dolby Advanced Audio v2"="c:\program files (x86)\Dolby Advanced Audio v2\pcee4.exe" [2012-08-31 508144]
"RotateImage"="c:\program files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe" [2008-10-30 55808]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-04-13 291608]
"PWMTRV"="c:\progra~2\ThinkPad\UTILIT~1\PWMTR64V.DLL" [2013-01-10 6000936]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
"BlueStacks Agent"="c:\program files (x86)\BlueStacks\HD-Agent.exe" [2013-05-13 601928]
"seznam-listicka-distribuce"="c:\program files (x86)\Seznam.cz\distribution\szninstall.exe" [2013-03-21 1061960]
.
c:\users\Mišulka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 3.4.1.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2012-8-13 1199104]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 AMPPALP;Protokol Intel® Centrino® Wireless Bluetooth® + High Speed;c:\windows\system32\DRIVERS\amppal.sys;c:\windows\SYSNATIVE\DRIVERS\amppal.sys [x]
R3 aswVmm;aswVmm; [x]
R3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys;c:\windows\SYSNATIVE\DRIVERS\btmaux.sys [x]
R3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys;c:\windows\SYSNATIVE\DRIVERS\btmhsf.sys [x]
R3 ibtfltcoex;ibtfltcoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys;c:\windows\SYSNATIVE\DRIVERS\iBtFltCoex.sys [x]
R3 intaud_WaveExtensible;Intel WiDi Audio Device;c:\windows\system32\drivers\intelaud.sys;c:\windows\SYSNATIVE\drivers\intelaud.sys [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 nmwcdnsucx64;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsucx64.sys;c:\windows\SYSNATIVE\drivers\nmwcdnsucx64.sys [x]
R3 nmwcdnsux64;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsux64.sys;c:\windows\SYSNATIVE\drivers\nmwcdnsux64.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 Power Manager DBC Service;Power Manager DBC Service;c:\program files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE;c:\program files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [x]
R3 PwmEWSvc;Cisco EnergyWise Enabler;c:\program files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE;c:\program files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 TrueService;TrueAPI Service component;c:\program files\Common Files\AuthenTec\TrueService.exe;c:\program files\Common Files\AuthenTec\TrueService.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 aswRvrt;aswRvrt; [x]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [x]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [x]
S2 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [x]
S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [x]
S2 BstHdAndroidSvc;BlueStacks Android Service;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android [x]
S2 BstHdDrv;BlueStacks Hypervisor;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [x]
S2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe [x]
S2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [x]
S2 CxAudMsg;Conexant Audio Message Service;c:\windows\system32\CxAudMsg64.exe;c:\windows\SYSNATIVE\CxAudMsg64.exe [x]
S2 FPLService;TrueSuiteService;c:\program files\Lenovo Fingerprint Reader\TrueSuiteService.exe;c:\program files\Lenovo Fingerprint Reader\TrueSuiteService.exe [x]
S2 LENOVO.CAMMUTE;Lenovo Camera Mute;c:\program files\Lenovo\Communications Utility\CAMMUTE.exe;c:\program files\Lenovo\Communications Utility\CAMMUTE.exe [x]
S2 LENOVO.MICMUTE;Lenovo Microphone Mute;c:\program files\LENOVO\HOTKEY\MICMUTE.exe;c:\program files\LENOVO\HOTKEY\MICMUTE.exe [x]
S2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction;c:\program files\Lenovo\Communications Utility\TPKNRSVC.exe;c:\program files\Lenovo\Communications Utility\TPKNRSVC.exe [x]
S2 LENOVO.TVTVCAM;ThinkVantage Virtual Camera Controller;c:\program files\Lenovo\Communications Utility\vcamsvc.exe;c:\program files\Lenovo\Communications Utility\vcamsvc.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 SAService;Conexant SmartAudio service;c:\windows\system32\SAsrv.exe;c:\windows\SYSNATIVE\SAsrv.exe [x]
S2 TPHKLOAD;Lenovo Hotkey Client Loader;c:\program files\LENOVO\HOTKEY\TPHKLOAD.exe;c:\program files\LENOVO\HOTKEY\TPHKLOAD.exe [x]
S2 TPHKSVC;On Screen Display;c:\program files\LENOVO\HOTKEY\TPHKSVC.exe;c:\program files\LENOVO\HOTKEY\TPHKSVC.exe [x]
S2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [x]
S3 5U877;5U877;c:\windows\system32\DRIVERS\5U877.sys;c:\windows\SYSNATIVE\DRIVERS\5U877.sys [x]
S3 AMPPAL;Virtuální adaptér Intel® Centrino® Wireless Bluetooth® + High Speed;c:\windows\system32\DRIVERS\AMPPAL.sys;c:\windows\SYSNATIVE\DRIVERS\AMPPAL.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 iwdbus;IWD Bus Enumerator;c:\windows\system32\DRIVERS\iwdbus.sys;c:\windows\SYSNATIVE\DRIVERS\iwdbus.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 RSP2STOR;Realtek PCIE CardReader Driver - P2;c:\windows\system32\DRIVERS\RtsP2Stor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsP2Stor.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 SmbDrvIntel;SmbDrvIntel;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]
S3 tvtvcamd;Camera Plus (VGA Resolution Maximum);c:\windows\system32\DRIVERS\tvtvcamd.sys;c:\windows\SYSNATIVE\DRIVERS\tvtvcamd.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-05-24 10:19 1165776 ----a-w- c:\program files (x86)\Google\Chrome\Application\27.0.1453.94\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-06-05 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-04-11 15:31]
.
2013-06-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-15 18:14]
.
2013-06-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-15 18:14]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 22:32 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"cAudioFilterAgent"="c:\program files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe" [2012-06-14 887968]
"ForteConfig"="c:\program files\Conexant\ForteConfig\fmapp.exe" [2010-10-26 49056]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-06-25 170304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-06-25 398656]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-06-25 440128]
"BLEServicesCtrl"="c:\program files (x86)\Intel\Bluetooth\BleServicesCtrl.exe" [2012-05-31 184112]
"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2012-06-18 11586944]
"LENOVO.TPKNRRES"="c:\program files\Lenovo\Communications Utility\TPKNRRES.exe" [2013-01-28 293672]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/?clid=12
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Odeslat do Bluetooth - c:\program files (x86)\Intel\Bluetooth\btSendToObject.htm
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{AB3BCD87-4765-4CDB-B282-F853E3AF0DAB}: NameServer = 212.96.161.6,212.96.160.7
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\windows\SysWOW64\SAsrv.exe
c:\program files (x86)\BlueStacks\HD-Service.exe
c:\program files (x86)\BlueStacks\HD-Network.exe
c:\program files (x86)\BlueStacks\HD-BlockDevice.exe
c:\program files (x86)\BlueStacks\HD-SharedFolder.exe
c:\program files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
c:\program files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
.
**************************************************************************
.
Celkový čas: 2013-06-05 16:49:14 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-06-05 14:49
.
Před spuštěním: Volných bajtů: 75 675 897 856
Po spuštění: Volných bajtů: 75 318 120 448
.
- - End Of File - - 63FE83E1CEA8B8FC22DDF0AE43A2DD0B

[misel01]

tdss

[misel01]

diky za rady, akorat jsem z toho jeste nepochopila, zda mi ten program nejak skodi nebo ne ... a taky nevim jak flashnout BIOS :-/ ...a en firewall jaky bys mi napriklad doporucil? diky moc

[misel01]

v tom Avastu to mam teda ignorovat (nemazat /nedavat do truhly ) ok ?
a jaky bys tam dal podobny program misto toho IOBitu ?