Zdravim,
chcem Vas poziadat o kontrolu, ci na uvedenom laptope sa nachadza legalny windows, skusal som rozne overovania pravosti, ale nepotvrdilo sa mi ani jedno ani druhe.
Dik
widnLogfile of random's system information tool 1.09 (written by random/random)
Run by Peťo at 2013-07-07 19:40:03
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 48 GB (46%) free of 103 GB
Total RAM: 3767 MB (57% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:40:09, on 7. 7. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16618)
Boot mode: Normal
Running processes:
C:\ProgramData\Browser Manager\2.6.1339.144\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
C:\Users\Peťo\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Peťo.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?affID=116987 ... 004e508934
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O3 - Toolbar: (no name) - {D0F4A166-B8D4-48b8-9D63-80849FE137CB} - (no file)
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Peťo\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [EPSON SX125 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGGE.EXE /FU "C:\Windows\TEMP\E_SEC0.tmp" /EF "HKCU"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2887541682-2867663812-2470780387-1002\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2887541682-2867663812-2470780387-1002\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: Dropbox.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - AppInit_DLLs: c:\progra~3\browse~1\261339~1.144\{16cdf~1\browse~1.dll
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Acronis OS Selector Reinstall Service (AcronisOSSReinstallSvc) - Unknown owner - C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe (file missing)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Browser Manager - Unknown owner - C:\ProgramData\Browser Manager\2.6.1339.144\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Wlan Agent - Atheros - C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe
--
End of file - 10867 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe" -service
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\ProgramData\Browser Manager\2.6.1339.144\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Windows\system32\schtasks.exe" /create /tn "Browser Manager" /ru "SYSTEM" /sc minute /mo 1 /tr "C:\Windows\system32\sc.exe start Browser Manager" /st 00:00:00
\??\C:\Windows\system32\conhost.exe "3361371032096554679-9147413623241373591897736793622122964919304144-1491697748
"C:\ProgramData\Browser Manager\2.6.1339.144\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe" /PROTECT
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
"C:\Windows\System32\spool\drivers\x64\3\E_IATIGGE.EXE" /FU "C:\Windows\TEMP\E_SEC0.tmp" /EF "HKCU"
"C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Users\Peťo\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Windows\system32\schtasks.exe" /create /tn "AdobeFlashPlayerUpdate" /ru "SYSTEM" /sc hourly /mo 1 /tr "C:\Windows\SysWOW64\FlashPlayerUpdateService.exe /w" /st 00:00:00
\??\C:\Windows\system32\conhost.exe "-1185882519186087983-462874509-16779506845843459992566534321904891962-2089888972
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Windows\system32\wuauclt.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Microsoft Security Client\MpCmdRun.exe" SignatureUpdate -ScheduleJob -RestrictPrivileges -Reinvoke
"C:\Program Files\Microsoft Security Client\MpCmdRun.exe" SignaturesUpdateService -ScheduleJob -UnmanagedUpdate
\??\C:\Windows\system32\conhost.exe "-9471349799470613641796392843-1867378664856876257-2030381191933966402-732659508
"C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2004.0.238034415\511532934" --supports-dual-gpus=false --gpu-vendor-id=0x8086 --gpu-device-id=0x0046 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2622 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_1/DefaultControl/ForceCompositingMode/thread/InfiniteCache/No/InstantDummy/DummyGroup10 channel:stable mods:100/InstantExtended/Padding1 channel:stable/OmniboxHQPReplaceHUPProhibitTrumpingInlineableResult/Standard/OmniboxSearchSuggestTrialStarted2013Q1/11/OneClickSignIn/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/SpdyCwnd/cwndMin10/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_14/UMA-Uniformity-Trial-1-Percent/group_47/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --channel="2004.2.2140571609\1333083343" /prefetch:673131151
"C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="2004.3.165789015\6546992" --lang=sk --ignored=" --type=renderer " /prefetch:-632637702
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\Peťo\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2887541682-2867663812-2470780387-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2887541682-2867663812-2470780387-1000UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-01-20 60576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{98889811-442D-49dd-99D7-DC866BE87DBC}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-01-10 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-01-10 392984]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-01-10 417560]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-01-27 1281512]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"Google Update"=C:\Users\Peťo\AppData\Local\Google\Update\GoogleUpdate.exe [2012-11-03 116648]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-08-02 4910912]
"Sony PC Companion"=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2013-05-29 449248]
"EPSON SX125 Series"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGGE.EXE [2009-09-14 224768]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-20 379552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-01-20 615584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAStorIcon]
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-04-13 284696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IntelWireless]
C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2010-03-05 1928976]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-06-22 10920552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-12-10 1890088]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"EEventManager"=C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2009-12-03 976320]
C:\Users\Peťo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Peťo\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-01-10 390656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-07-07 19:40:03 ----D---- C:\rsit
2013-07-07 19:40:03 ----D---- C:\Program Files\trend micro
2013-07-01 20:18:43 ----A---- C:\Windows\SYSWOW64\FlashPlayerUpdateService.exe
2013-07-01 20:18:42 ----D---- C:\Users\Peťo\AppData\Roaming\File Scout
2013-06-30 19:44:50 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-06-30 19:44:49 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-06-28 12:15:37 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-06-28 12:15:37 ----A---- C:\Windows\system32\elshyph.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\url.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\wininet.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\urlmon.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-06-28 12:15:35 ----A---- C:\Windows\system32\msrating.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\msls31.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\jsproxy.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\iertutil.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\ieapfltr.dat
2013-06-28 12:15:35 ----A---- C:\Windows\system32\dxtrans.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\dxtmsft.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\wextract.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\webcheck.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\vbscript.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\url.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\pngfilt.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\occache.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtmler.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtmled.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtml.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshta.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\msfeedssync.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\msfeeds.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\licmgr10.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\jscript9.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\jscript.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\inseng.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\imgutil.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iexpress.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\ieUnatt.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iesetup.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iernonce.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iepeers.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iedkcs32.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\ieapfltr.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\ie4uinit.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\icardie.dll
2013-06-28 12:15:33 ----A---- C:\Windows\system32\ieui.dll
2013-06-28 12:15:33 ----A---- C:\Windows\system32\iesysprep.dll
2013-06-28 12:15:33 ----A---- C:\Windows\system32\ieframe.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\XpsPrint.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\WMPhoto.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\FntCache.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\dxgi.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\DWrite.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\d3d10warp.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\d2d1.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\UIAnimation.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10level9.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10core.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10_1.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10.dll
2013-06-28 10:10:14 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-06-28 10:10:14 ----A---- C:\Windows\system32\d3d11.dll
2013-06-28 10:09:57 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-06-28 10:09:56 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-06-28 10:09:56 ----A---- C:\Windows\system32\win32spl.dll
2013-06-28 10:09:53 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2013-06-28 10:09:53 ----A---- C:\Windows\system32\cryptdlg.dll
2013-06-28 10:09:47 ----A---- C:\Windows\SYSWOW64\certutil.exe
2013-06-28 10:09:47 ----A---- C:\Windows\system32\certutil.exe
2013-06-28 10:09:46 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-06-28 10:09:46 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-06-28 10:09:46 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-06-28 10:09:46 ----A---- C:\Windows\system32\cryptsvc.dll
2013-06-28 10:09:46 ----A---- C:\Windows\system32\cryptnet.dll
2013-06-28 10:09:46 ----A---- C:\Windows\system32\crypt32.dll
2013-06-28 10:09:45 ----A---- C:\Windows\SYSWOW64\certenc.dll
2013-06-28 10:09:45 ----A---- C:\Windows\system32\certenc.dll
======List of files/folders modified in the last 1 month======
2013-07-07 19:40:09 ----D---- C:\Windows\Prefetch
2013-07-07 19:40:03 ----RD---- C:\Program Files
2013-07-07 19:39:57 ----D---- C:\Windows\Temp
2013-07-07 19:27:49 ----SD---- C:\ProgramData\Microsoft
2013-07-07 19:26:56 ----D---- C:\Windows\System32
2013-07-07 19:26:56 ----D---- C:\Windows\inf
2013-07-07 19:26:56 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-07-07 19:26:19 ----D---- C:\Users\Peťo\AppData\Roaming\Dropbox
2013-07-07 19:22:00 ----D---- C:\Windows\system32\Tasks
2013-07-07 19:22:00 ----A---- C:\Windows\SYSWOW64\log.txt
2013-07-07 14:35:46 ----D---- C:\Windows\system32\config
2013-07-03 00:51:58 ----RD---- C:\Program Files (x86)
2013-07-03 00:51:14 ----SHD---- C:\Windows\Installer
2013-07-03 00:28:04 ----D---- C:\Windows\Microsoft.NET
2013-07-03 00:27:42 ----RSD---- C:\Windows\assembly
2013-07-02 02:33:54 ----D---- C:\Windows\winsxs
2013-07-01 20:18:43 ----D---- C:\Windows\SysWOW64
2013-06-30 22:43:35 ----D---- C:\Windows\system32\catroot2
2013-06-30 22:43:35 ----D---- C:\Windows\system32\catroot
2013-06-28 21:25:28 ----D---- C:\Windows\rescache
2013-06-28 16:06:47 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-06-28 16:06:47 ----D---- C:\Windows\system32\sk-SK
2013-06-28 16:06:47 ----D---- C:\Windows\system32\drivers
2013-06-28 16:06:47 ----D---- C:\Program Files\Internet Explorer
2013-06-28 16:06:47 ----D---- C:\Program Files (x86)\Internet Explorer
2013-06-28 16:06:45 ----D---- C:\Windows\SYSWOW64\migration
2013-06-28 16:06:45 ----D---- C:\Windows\SYSWOW64\en-US
2013-06-28 16:06:43 ----D---- C:\Windows\system32\migration
2013-06-28 16:06:43 ----D---- C:\Windows\system32\en-US
2013-06-28 16:06:43 ----D---- C:\Windows\PolicyDefinitions
2013-06-28 16:06:41 ----D---- C:\Windows\SYSWOW64\pt-BR
2013-06-28 16:06:41 ----D---- C:\Windows\SYSWOW64\it-IT
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\zh-TW
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\zh-HK
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\zh-CN
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\tr-TR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\sv-SE
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\ru-RU
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\pt-PT
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\pl-PL
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\nl-NL
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\nb-NO
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\ko-KR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\ja-JP
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\hu-HU
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\fr-FR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\fi-FI
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\es-ES
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\el-GR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\de-DE
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\da-DK
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-06-28 16:06:38 ----D---- C:\Windows\system32\zh-TW
2013-06-28 16:06:38 ----D---- C:\Windows\system32\zh-HK
2013-06-28 16:06:38 ----D---- C:\Windows\system32\zh-CN
2013-06-28 16:06:38 ----D---- C:\Windows\system32\tr-TR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\sv-SE
2013-06-28 16:06:38 ----D---- C:\Windows\system32\ru-RU
2013-06-28 16:06:38 ----D---- C:\Windows\system32\pt-PT
2013-06-28 16:06:38 ----D---- C:\Windows\system32\pt-BR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\pl-PL
2013-06-28 16:06:38 ----D---- C:\Windows\system32\nl-NL
2013-06-28 16:06:38 ----D---- C:\Windows\system32\ko-KR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\ja-JP
2013-06-28 16:06:38 ----D---- C:\Windows\system32\it-IT
2013-06-28 16:06:38 ----D---- C:\Windows\system32\hu-HU
2013-06-28 16:06:38 ----D---- C:\Windows\system32\fr-FR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\fi-FI
2013-06-28 16:06:38 ----D---- C:\Windows\system32\es-ES
2013-06-28 16:06:38 ----D---- C:\Windows\system32\el-GR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\de-DE
2013-06-28 16:06:38 ----D---- C:\Windows\system32\cs-CZ
2013-06-28 16:06:37 ----D---- C:\Windows\system32\nb-NO
2013-06-28 16:06:37 ----D---- C:\Windows\system32\da-DK
2013-06-28 12:20:09 ----D---- C:\ProgramData\Microsoft Help
2013-06-28 12:18:17 ----D---- C:\Windows\Logs
2013-06-28 12:12:58 ----D---- C:\Windows
2013-06-28 10:55:29 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-06-28 10:07:38 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-04-13 540696]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-01-20 230320]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2011-11-26 28992]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-11-03 270912]
R1 ISODrive;ISO CD-ROM Device Driver; \??\C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [2006-11-25 104152]
R1 VWiFiFlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-01-20 130008]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-08-05 2768384]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-01-20 28832]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-01-10 12311904]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-06-22 2399848]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2010-05-15 384040]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-12-10 301104]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-01-20 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-01-20 298144]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-01-20 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-01-20 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-01-20 154272]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-01-20 279200]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 20992]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-06-17 246376]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
R2 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-28 163328]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-01-20 76448]
R2 Browser Manager;Browser Manager; C:\ProgramData\Browser Manager\2.6.1339.144\{16cdff19-861d-48e3-a751-d99a27784753}\browsemngr.exe [2013-06-03 3085264]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2010-03-05 1425168]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-04-13 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-18 268824]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-01-27 22056]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-11-26 1640768]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-11-26 2253120]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-12-29 75136]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2010-03-05 831760]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
R2 ZAtheros Wlan Agent;ZAtheros Wlan Agent; C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe [2011-08-10 57344]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-01-27 379360]
S2 AcronisOSSReinstallSvc;Acronis OS Selector Reinstall Service; C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-03-05 340240]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-03 1255736]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Overenie pravosti Windows
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Overenie pravosti Windows
Klingoln
-
Rudy
- Site Admin
- Příspěvky: 119527
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Overenie pravosti Windows
Zdravím!
Systém vykazuje několik znaků nelegálního systému. Ověření legality: http://www.microsoft.com/cze/legalnisoftware/overeni/ .
Systém vykazuje několik znaků nelegálního systému. Ověření legality: http://www.microsoft.com/cze/legalnisoftware/overeni/ .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Overenie pravosti Windows
Zdravim,
preveril som to cez Vas link a vypisalo mi, ze Windows je pravy. Mozem Vas teda poziadat o kontrolu logu, laptop casto zamrza...
preveril som to cez Vas link a vypisalo mi, ze Windows je pravy. Mozem Vas teda poziadat o kontrolu logu, laptop casto zamrza...
Klingoln
-
Rudy
- Site Admin
- Příspěvky: 119527
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Overenie pravosti Windows
Pak je to OK. Markanty někdy klamou. Spusťte nejprve tuto utilitu:
Stáhněte AdwCleaner http://www.stahuj.centrum.cz/utility_a_ ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte na Search (hledat)
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Overenie pravosti Windows
Zdravim,
tu je log z ADW:
# AdwCleaner v2.304 - Log vytvorený 07/07/2013 o 20:34:46
# Aktualizované 03/07/2013 Xplode
# Operaený systém : Windows 7 Ultimate Service Pack 1 (64 bits)
# Uživateľ : Peťo - PEŤO-PC
# Spustený systém : Normálny
# Spustené z : C:\Users\Peťo\Downloads\adwcleaner (1).exe
# Voľba [Prehľada?]
***** [Služby] *****
Nájdené : Browser Manager
***** [Súbory / Adresáre] *****
Adresár Nájdené : C:\ProgramData\Babylon
Adresár Nájdené : C:\ProgramData\Browser Manager
Adresár Nájdené : C:\Users\Peťo\AppData\LocalLow\BabylonToolbar
Adresár Nájdené : C:\Users\Peťo\AppData\Roaming\BabSolution
Adresár Nájdené : C:\Users\Peťo\AppData\Roaming\Babylon
Adresár Nájdené : C:\Users\Peťo\AppData\Roaming\file scout
Súbor Nájdené : C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
Súbor Nájdené : C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Súbor Nájdené : C:\Users\Peťo\AppData\Roaming\BabMaint.exe
***** [Registre] *****
Dáta Nájdené : HKLM\..\Windows [AppInit_DLLs] = c:\progra~3\browse~1\261339~1.144\{16cdf~1\browse~1.dll
Hodnota Nájdené : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Hodnota Nájdené : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Hodnota Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Hodnota Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D0F4A166-B8D4-48B8-9D63-80849FE137CB}]
Kľúe Nájdené : HKCU\Software\BabSolution
Kľúe Nájdené : HKCU\Software\DataMngr
Kľúe Nájdené : HKCU\Software\DataMngr_Toolbar
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Kľúe Nájdené : HKCU\Software\Softonic
Kľúe Nájdené : HKCU\Software\5a4db8bb034e914
Kľúe Nájdené : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Kľúe Nájdené : HKLM\Software\Babylon
Kľúe Nájdené : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Prod.cap
Kľúe Nájdené : HKLM\Software\DataMngr
Kľúe Nájdené : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Kľúe Nájdené : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\5a4db8bb034e914
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
Kľúe Nájdené : HKU\S-1-5-21-2887541682-2867663812-2470780387-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
***** [Internetové prehliadaee] *****
-\\ Internet Explorer v10.0.9200.16618
[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.babylon.com/?affID=116987&tt=4412_1&babsrc=HP_ss&mntrId=125b485e000000000000b2004e508934
[HKCU\Software\Microsoft\Internet Explorer\Main - bProtector Start Page] = hxxp://search.babylon.com/?affID=116987&tt=4412_1&babsrc=HP_ss&mntrId=125b485e000000000000b2004e508934
-\\ Google Chrome v27.0.1453.116
Súbor : C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\Preferences
Nájdené [l.2500] : urls_to_restore_on_startup = [ "hxxp://search.babylon.com/?affID=116987&tt=4412_1&babsrc=HP_ss&mntrId=125b485e000000000000b2004e508934" ]
-\\ Opera v12.14.1738.0
Súbor : C:\Users\Peťo\AppData\Roaming\Opera\Opera\operaprefs.ini
[OK] Súbor je eistý.
*************************
AdwCleaner[R1].txt - [5202 octets] - [07/07/2013 20:34:46]
########## EOF - C:\AdwCleaner[R1].txt - [5262 octets] ##########
tu je log z ADW:
# AdwCleaner v2.304 - Log vytvorený 07/07/2013 o 20:34:46
# Aktualizované 03/07/2013 Xplode
# Operaený systém : Windows 7 Ultimate Service Pack 1 (64 bits)
# Uživateľ : Peťo - PEŤO-PC
# Spustený systém : Normálny
# Spustené z : C:\Users\Peťo\Downloads\adwcleaner (1).exe
# Voľba [Prehľada?]
***** [Služby] *****
Nájdené : Browser Manager
***** [Súbory / Adresáre] *****
Adresár Nájdené : C:\ProgramData\Babylon
Adresár Nájdené : C:\ProgramData\Browser Manager
Adresár Nájdené : C:\Users\Peťo\AppData\LocalLow\BabylonToolbar
Adresár Nájdené : C:\Users\Peťo\AppData\Roaming\BabSolution
Adresár Nájdené : C:\Users\Peťo\AppData\Roaming\Babylon
Adresár Nájdené : C:\Users\Peťo\AppData\Roaming\file scout
Súbor Nájdené : C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
Súbor Nájdené : C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Súbor Nájdené : C:\Users\Peťo\AppData\Roaming\BabMaint.exe
***** [Registre] *****
Dáta Nájdené : HKLM\..\Windows [AppInit_DLLs] = c:\progra~3\browse~1\261339~1.144\{16cdf~1\browse~1.dll
Hodnota Nájdené : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Hodnota Nájdené : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Hodnota Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Hodnota Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D0F4A166-B8D4-48B8-9D63-80849FE137CB}]
Kľúe Nájdené : HKCU\Software\BabSolution
Kľúe Nájdené : HKCU\Software\DataMngr
Kľúe Nájdené : HKCU\Software\DataMngr_Toolbar
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Kľúe Nájdené : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Kľúe Nájdené : HKCU\Software\Softonic
Kľúe Nájdené : HKCU\Software\5a4db8bb034e914
Kľúe Nájdené : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Kľúe Nájdené : HKLM\Software\Babylon
Kľúe Nájdené : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Prod.cap
Kľúe Nájdené : HKLM\Software\DataMngr
Kľúe Nájdené : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Kľúe Nájdené : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\5a4db8bb034e914
Kľúe Nájdené : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Kľúe Nájdené : HKLM\SOFTWARE\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
Kľúe Nájdené : HKU\S-1-5-21-2887541682-2867663812-2470780387-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
***** [Internetové prehliadaee] *****
-\\ Internet Explorer v10.0.9200.16618
[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.babylon.com/?affID=116987&tt=4412_1&babsrc=HP_ss&mntrId=125b485e000000000000b2004e508934
[HKCU\Software\Microsoft\Internet Explorer\Main - bProtector Start Page] = hxxp://search.babylon.com/?affID=116987&tt=4412_1&babsrc=HP_ss&mntrId=125b485e000000000000b2004e508934
-\\ Google Chrome v27.0.1453.116
Súbor : C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\Preferences
Nájdené [l.2500] : urls_to_restore_on_startup = [ "hxxp://search.babylon.com/?affID=116987&tt=4412_1&babsrc=HP_ss&mntrId=125b485e000000000000b2004e508934" ]
-\\ Opera v12.14.1738.0
Súbor : C:\Users\Peťo\AppData\Roaming\Opera\Opera\operaprefs.ini
[OK] Súbor je eistý.
*************************
AdwCleaner[R1].txt - [5202 octets] - [07/07/2013 20:34:46]
########## EOF - C:\AdwCleaner[R1].txt - [5262 octets] ##########
Klingoln
-
Rudy
- Site Admin
- Příspěvky: 119527
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Overenie pravosti Windows
Spusťte znovu ADWCleaner a klikněte na >Delete< (smazat). Vložte nový log.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Overenie pravosti Windows
Tu je log po vymaze:
# AdwCleaner v2.304 - Log vytvorený 07/07/2013 o 21:26:48
# Aktualizované 03/07/2013 Xplode
# Operaený systém : Windows 7 Ultimate Service Pack 1 (64 bits)
# Uživateľ : Peťo - PEŤO-PC
# Spustený systém : Normálny
# Spustené z : C:\Users\Peťo\Downloads\adwcleaner (1).exe
# Voľba [Vymaza?]
***** [Služby] *****
Zastavené & vymazané : Browser Manager
***** [Súbory / Adresáre] *****
Adresár Vymazané : C:\ProgramData\Babylon
Adresár Vymazané : C:\Users\Peťo\AppData\LocalLow\BabylonToolbar
Adresár Vymazané : C:\Users\Peťo\AppData\Roaming\BabSolution
Adresár Vymazané : C:\Users\Peťo\AppData\Roaming\Babylon
Adresár Vymazané : C:\Users\Peťo\AppData\Roaming\file scout
Súbor Vymazané : C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
Súbor Vymazané : C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Súbor Vymazané : C:\Users\Peťo\AppData\Roaming\BabMaint.exe
Vymazané pri reštarte : C:\ProgramData\Browser Manager
***** [Registre] *****
Dáta Vymazané : HKLM\..\Windows [AppInit_DLLs] = c:\progra~3\browse~1\261339~1.144\{16cdf~1\browse~1.dll
Hodnota Vymazané : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Hodnota Vymazané : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Hodnota Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Kľúe Vymazané : HKCU\Software\BabSolution
Kľúe Vymazané : HKCU\Software\DataMngr
Kľúe Vymazané : HKCU\Software\DataMngr_Toolbar
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Kľúe Vymazané : HKCU\Software\Softonic
Kľúe Vymazané : HKCU\Software\5a4db8bb034e914
Kľúe Vymazané : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Kľúe Vymazané : HKLM\Software\Babylon
Kľúe Vymazané : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Prod.cap
Kľúe Vymazané : HKLM\Software\DataMngr
Kľúe Vymazané : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Kľúe Vymazané : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\5a4db8bb034e914
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
Kľúe Vymazané : HKU\S-1-5-21-2887541682-2867663812-2470780387-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
***** [Internetové prehliadaee] *****
-\\ Internet Explorer v10.0.9200.16618
Zamenené : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.babylon.com/?affID=116987&tt=4412_1&babsrc=HP_ss&mntrId=125b485e000000000000b2004e508934 --> hxxp://www.google.com
-\\ Google Chrome v27.0.1453.116
Súbor : C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\Preferences
Vymazané [l.2512] : urls_to_restore_on_startup = [ "hxxp://search.babylon.com/?affID=116987&tt=4412_1&babsrc=HP_s[...]
-\\ Opera v12.14.1738.0
Súbor : C:\Users\Peťo\AppData\Roaming\Opera\Opera\operaprefs.ini
[OK] Súbor je eistý.
*************************
AdwCleaner[R1].txt - [5299 octets] - [07/07/2013 20:34:46]
AdwCleaner[R2].txt - [5359 octets] - [07/07/2013 21:26:32]
AdwCleaner[S1].txt - [5083 octets] - [07/07/2013 21:26:48]
########## EOF - C:\AdwCleaner[S1].txt - [5143 octets] ##########
# AdwCleaner v2.304 - Log vytvorený 07/07/2013 o 21:26:48
# Aktualizované 03/07/2013 Xplode
# Operaený systém : Windows 7 Ultimate Service Pack 1 (64 bits)
# Uživateľ : Peťo - PEŤO-PC
# Spustený systém : Normálny
# Spustené z : C:\Users\Peťo\Downloads\adwcleaner (1).exe
# Voľba [Vymaza?]
***** [Služby] *****
Zastavené & vymazané : Browser Manager
***** [Súbory / Adresáre] *****
Adresár Vymazané : C:\ProgramData\Babylon
Adresár Vymazané : C:\Users\Peťo\AppData\LocalLow\BabylonToolbar
Adresár Vymazané : C:\Users\Peťo\AppData\Roaming\BabSolution
Adresár Vymazané : C:\Users\Peťo\AppData\Roaming\Babylon
Adresár Vymazané : C:\Users\Peťo\AppData\Roaming\file scout
Súbor Vymazané : C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
Súbor Vymazané : C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Súbor Vymazané : C:\Users\Peťo\AppData\Roaming\BabMaint.exe
Vymazané pri reštarte : C:\ProgramData\Browser Manager
***** [Registre] *****
Dáta Vymazané : HKLM\..\Windows [AppInit_DLLs] = c:\progra~3\browse~1\261339~1.144\{16cdf~1\browse~1.dll
Hodnota Vymazané : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Hodnota Vymazané : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Hodnota Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Kľúe Vymazané : HKCU\Software\BabSolution
Kľúe Vymazané : HKCU\Software\DataMngr
Kľúe Vymazané : HKCU\Software\DataMngr_Toolbar
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Kľúe Vymazané : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Kľúe Vymazané : HKCU\Software\Softonic
Kľúe Vymazané : HKCU\Software\5a4db8bb034e914
Kľúe Vymazané : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Kľúe Vymazané : HKLM\Software\Babylon
Kľúe Vymazané : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Prod.cap
Kľúe Vymazané : HKLM\Software\DataMngr
Kľúe Vymazané : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Kľúe Vymazané : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\5a4db8bb034e914
Kľúe Vymazané : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Kľúe Vymazané : HKLM\SOFTWARE\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
Kľúe Vymazané : HKU\S-1-5-21-2887541682-2867663812-2470780387-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
***** [Internetové prehliadaee] *****
-\\ Internet Explorer v10.0.9200.16618
Zamenené : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.babylon.com/?affID=116987&tt=4412_1&babsrc=HP_ss&mntrId=125b485e000000000000b2004e508934 --> hxxp://www.google.com
-\\ Google Chrome v27.0.1453.116
Súbor : C:\Users\Peťo\AppData\Local\Google\Chrome\User Data\Default\Preferences
Vymazané [l.2512] : urls_to_restore_on_startup = [ "hxxp://search.babylon.com/?affID=116987&tt=4412_1&babsrc=HP_s[...]
-\\ Opera v12.14.1738.0
Súbor : C:\Users\Peťo\AppData\Roaming\Opera\Opera\operaprefs.ini
[OK] Súbor je eistý.
*************************
AdwCleaner[R1].txt - [5299 octets] - [07/07/2013 20:34:46]
AdwCleaner[R2].txt - [5359 octets] - [07/07/2013 21:26:32]
AdwCleaner[S1].txt - [5083 octets] - [07/07/2013 21:26:48]
########## EOF - C:\AdwCleaner[S1].txt - [5143 octets] ##########
Klingoln
-
Rudy
- Site Admin
- Příspěvky: 119527
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Overenie pravosti Windows
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Overenie pravosti Windows
Tu je novy log:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Peťo at 2013-07-07 21:40:42
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 48 GB (46%) free of 103 GB
Total RAM: 3767 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:40:45, on 7. 7. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16618)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
C:\Users\Peťo\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Peťo.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Peťo\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [EPSON SX125 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGGE.EXE /FU "C:\Windows\TEMP\E_SEC0.tmp" /EF "HKCU"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2887541682-2867663812-2470780387-1002\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2887541682-2867663812-2470780387-1002\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: Dropbox.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - AppInit_DLLs: c:\progra~3\browse~1\261339~1.144\{16cdf~1\browse~1.dll
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Acronis OS Selector Reinstall Service (AcronisOSSReinstallSvc) - Unknown owner - C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe (file missing)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Wlan Agent - Atheros - C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe
--
End of file - 10436 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
winlogon.exe
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe" -service
C:\Windows\Explorer.EXE
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
"C:\Windows\System32\spool\drivers\x64\3\E_IATIGGE.EXE" /FU "C:\Windows\TEMP\E_SEC0.tmp" /EF "HKCU"
"C:\Users\Peťo\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\system32\schtasks.exe" /create /tn "AdobeFlashPlayerUpdate" /ru "SYSTEM" /sc hourly /mo 1 /tr "C:\Windows\SysWOW64\FlashPlayerUpdateService.exe /w" /st 00:00:00
\??\C:\Windows\system32\conhost.exe "132368515119831454-1451187946116712690-1706160269-140388113214954540171135169944
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\servicing\TrustedInstaller.exe
"C:\Windows\system32\wuauclt.exe"
"C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4184.0.1551128272\7814533" --supports-dual-gpus=false --gpu-vendor-id=0x8086 --gpu-device-id=0x0046 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2622 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_1/DefaultControl/ForceCompositingMode/thread/InfiniteCache/No/InstantDummy/DummyGroup10 channel:stable mods:100/InstantExtended/Padding1 channel:stable/OmniboxHQPReplaceHUPProhibitTrumpingInlineableResult/Standard/OmniboxSearchSuggestTrialStarted2013Q1/11/OneClickSignIn/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/SpdyCwnd/cwndMin16/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_47/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --channel="4184.2.1828906727\1959755758" /prefetch:673131151
"C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="4184.4.772363171\1526440982" --lang=sk --ignored=" --type=renderer " /prefetch:-632637702
"C:\Users\Peťo\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2887541682-2867663812-2470780387-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2887541682-2867663812-2470780387-1000UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-01-20 60576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-01-10 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-01-10 392984]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-01-10 417560]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-01-27 1281512]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"Google Update"=C:\Users\Peťo\AppData\Local\Google\Update\GoogleUpdate.exe [2012-11-03 116648]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-08-02 4910912]
"Sony PC Companion"=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2013-05-29 449248]
"EPSON SX125 Series"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGGE.EXE [2009-09-14 224768]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-20 379552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-01-20 615584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAStorIcon]
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-04-13 284696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IntelWireless]
C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2010-03-05 1928976]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-06-22 10920552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-12-10 1890088]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"EEventManager"=C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2009-12-03 976320]
C:\Users\Peťo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Peťo\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-01-10 390656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-07-07 21:26:48 ----A---- C:\AdwCleaner[S1].txt
2013-07-07 21:26:32 ----A---- C:\AdwCleaner[R2].txt
2013-07-07 20:34:46 ----A---- C:\AdwCleaner[R1].txt
2013-07-07 19:43:00 ----D---- C:\ProgramData\Windows Genuine Advantage
2013-07-07 19:40:03 ----D---- C:\rsit
2013-07-07 19:40:03 ----D---- C:\Program Files\trend micro
2013-07-01 20:18:43 ----A---- C:\Windows\SYSWOW64\FlashPlayerUpdateService.exe
2013-06-30 19:44:50 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-06-30 19:44:49 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-06-28 12:15:37 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-06-28 12:15:37 ----A---- C:\Windows\system32\elshyph.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\url.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\wininet.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\urlmon.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-06-28 12:15:35 ----A---- C:\Windows\system32\msrating.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\msls31.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\jsproxy.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\iertutil.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\ieapfltr.dat
2013-06-28 12:15:35 ----A---- C:\Windows\system32\dxtrans.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\dxtmsft.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\wextract.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\webcheck.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\vbscript.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\url.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\pngfilt.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\occache.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtmler.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtmled.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtml.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshta.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\msfeedssync.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\msfeeds.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\licmgr10.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\jscript9.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\jscript.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\inseng.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\imgutil.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iexpress.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\ieUnatt.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iesetup.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iernonce.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iepeers.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iedkcs32.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\ieapfltr.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\ie4uinit.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\icardie.dll
2013-06-28 12:15:33 ----A---- C:\Windows\system32\ieui.dll
2013-06-28 12:15:33 ----A---- C:\Windows\system32\iesysprep.dll
2013-06-28 12:15:33 ----A---- C:\Windows\system32\ieframe.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\XpsPrint.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\WMPhoto.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\FntCache.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\dxgi.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\DWrite.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\d3d10warp.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\d2d1.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\UIAnimation.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10level9.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10core.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10_1.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10.dll
2013-06-28 10:10:14 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-06-28 10:10:14 ----A---- C:\Windows\system32\d3d11.dll
2013-06-28 10:09:57 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-06-28 10:09:56 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-06-28 10:09:56 ----A---- C:\Windows\system32\win32spl.dll
2013-06-28 10:09:53 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2013-06-28 10:09:53 ----A---- C:\Windows\system32\cryptdlg.dll
2013-06-28 10:09:47 ----A---- C:\Windows\SYSWOW64\certutil.exe
2013-06-28 10:09:47 ----A---- C:\Windows\system32\certutil.exe
2013-06-28 10:09:46 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-06-28 10:09:46 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-06-28 10:09:46 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-06-28 10:09:46 ----A---- C:\Windows\system32\cryptsvc.dll
2013-06-28 10:09:46 ----A---- C:\Windows\system32\cryptnet.dll
2013-06-28 10:09:46 ----A---- C:\Windows\system32\crypt32.dll
2013-06-28 10:09:45 ----A---- C:\Windows\SYSWOW64\certenc.dll
2013-06-28 10:09:45 ----A---- C:\Windows\system32\certenc.dll
======List of files/folders modified in the last 1 month======
2013-07-07 21:33:16 ----D---- C:\Windows\System32
2013-07-07 21:33:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-07-07 21:33:15 ----D---- C:\Windows\inf
2013-07-07 21:32:13 ----D---- C:\Windows\system32\config
2013-07-07 21:31:25 ----D---- C:\Windows\Temp
2013-07-07 21:29:36 ----D---- C:\Users\Peťo\AppData\Roaming\Dropbox
2013-07-07 21:29:06 ----HD---- C:\ProgramData
2013-07-07 21:29:06 ----D---- C:\Windows
2013-07-07 21:28:16 ----A---- C:\Windows\SYSWOW64\log.txt
2013-07-07 20:34:42 ----D---- C:\Windows\Prefetch
2013-07-07 19:40:03 ----RD---- C:\Program Files
2013-07-07 19:27:49 ----SD---- C:\ProgramData\Microsoft
2013-07-07 19:22:00 ----D---- C:\Windows\system32\Tasks
2013-07-03 00:51:58 ----RD---- C:\Program Files (x86)
2013-07-03 00:51:14 ----SHD---- C:\Windows\Installer
2013-07-03 00:28:04 ----D---- C:\Windows\Microsoft.NET
2013-07-03 00:27:42 ----RSD---- C:\Windows\assembly
2013-07-02 02:33:54 ----D---- C:\Windows\winsxs
2013-07-01 20:18:43 ----D---- C:\Windows\SysWOW64
2013-06-30 22:43:35 ----D---- C:\Windows\system32\catroot2
2013-06-30 22:43:35 ----D---- C:\Windows\system32\catroot
2013-06-28 21:25:28 ----D---- C:\Windows\rescache
2013-06-28 16:06:47 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-06-28 16:06:47 ----D---- C:\Windows\system32\sk-SK
2013-06-28 16:06:47 ----D---- C:\Windows\system32\drivers
2013-06-28 16:06:47 ----D---- C:\Program Files\Internet Explorer
2013-06-28 16:06:47 ----D---- C:\Program Files (x86)\Internet Explorer
2013-06-28 16:06:45 ----D---- C:\Windows\SYSWOW64\migration
2013-06-28 16:06:45 ----D---- C:\Windows\SYSWOW64\en-US
2013-06-28 16:06:43 ----D---- C:\Windows\system32\migration
2013-06-28 16:06:43 ----D---- C:\Windows\system32\en-US
2013-06-28 16:06:43 ----D---- C:\Windows\PolicyDefinitions
2013-06-28 16:06:41 ----D---- C:\Windows\SYSWOW64\pt-BR
2013-06-28 16:06:41 ----D---- C:\Windows\SYSWOW64\it-IT
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\zh-TW
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\zh-HK
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\zh-CN
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\tr-TR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\sv-SE
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\ru-RU
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\pt-PT
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\pl-PL
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\nl-NL
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\nb-NO
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\ko-KR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\ja-JP
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\hu-HU
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\fr-FR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\fi-FI
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\es-ES
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\el-GR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\de-DE
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\da-DK
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-06-28 16:06:38 ----D---- C:\Windows\system32\zh-TW
2013-06-28 16:06:38 ----D---- C:\Windows\system32\zh-HK
2013-06-28 16:06:38 ----D---- C:\Windows\system32\zh-CN
2013-06-28 16:06:38 ----D---- C:\Windows\system32\tr-TR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\sv-SE
2013-06-28 16:06:38 ----D---- C:\Windows\system32\ru-RU
2013-06-28 16:06:38 ----D---- C:\Windows\system32\pt-PT
2013-06-28 16:06:38 ----D---- C:\Windows\system32\pt-BR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\pl-PL
2013-06-28 16:06:38 ----D---- C:\Windows\system32\nl-NL
2013-06-28 16:06:38 ----D---- C:\Windows\system32\ko-KR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\ja-JP
2013-06-28 16:06:38 ----D---- C:\Windows\system32\it-IT
2013-06-28 16:06:38 ----D---- C:\Windows\system32\hu-HU
2013-06-28 16:06:38 ----D---- C:\Windows\system32\fr-FR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\fi-FI
2013-06-28 16:06:38 ----D---- C:\Windows\system32\es-ES
2013-06-28 16:06:38 ----D---- C:\Windows\system32\el-GR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\de-DE
2013-06-28 16:06:38 ----D---- C:\Windows\system32\cs-CZ
2013-06-28 16:06:37 ----D---- C:\Windows\system32\nb-NO
2013-06-28 16:06:37 ----D---- C:\Windows\system32\da-DK
2013-06-28 12:20:09 ----D---- C:\ProgramData\Microsoft Help
2013-06-28 12:18:17 ----D---- C:\Windows\Logs
2013-06-28 10:55:29 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-06-28 10:07:38 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-04-13 540696]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-01-20 230320]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2011-11-26 28992]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-11-03 270912]
R1 ISODrive;ISO CD-ROM Device Driver; \??\C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [2006-11-25 104152]
R1 VWiFiFlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-01-20 130008]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-08-05 2768384]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-01-20 28832]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-01-10 12311904]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-06-22 2399848]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2010-05-15 384040]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-12-10 301104]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-01-20 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-01-20 298144]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-01-20 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-01-20 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-01-20 154272]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-01-20 279200]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 20992]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-06-17 246376]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
R2 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-28 163328]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-01-20 76448]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2010-03-05 1425168]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-04-13 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-18 268824]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-01-27 22056]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-11-26 1640768]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-11-26 2253120]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-12-29 75136]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2010-03-05 831760]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
R2 ZAtheros Wlan Agent;ZAtheros Wlan Agent; C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe [2011-08-10 57344]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-01-27 379360]
S2 AcronisOSSReinstallSvc;Acronis OS Selector Reinstall Service; C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-03-05 340240]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-03 1255736]
-----------------EOF-----------------
Logfile of random's system information tool 1.09 (written by random/random)
Run by Peťo at 2013-07-07 21:40:42
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 48 GB (46%) free of 103 GB
Total RAM: 3767 MB (59% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:40:45, on 7. 7. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16618)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
C:\Users\Peťo\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Peťo.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Peťo\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [EPSON SX125 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGGE.EXE /FU "C:\Windows\TEMP\E_SEC0.tmp" /EF "HKCU"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2887541682-2867663812-2470780387-1002\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2887541682-2867663812-2470780387-1002\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: Dropbox.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - AppInit_DLLs: c:\progra~3\browse~1\261339~1.144\{16cdf~1\browse~1.dll
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Acronis OS Selector Reinstall Service (AcronisOSSReinstallSvc) - Unknown owner - C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe (file missing)
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Wlan Agent - Atheros - C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe
--
End of file - 10436 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
winlogon.exe
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe" -service
C:\Windows\Explorer.EXE
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
"C:\Windows\System32\spool\drivers\x64\3\E_IATIGGE.EXE" /FU "C:\Windows\TEMP\E_SEC0.tmp" /EF "HKCU"
"C:\Users\Peťo\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Windows\system32\schtasks.exe" /create /tn "AdobeFlashPlayerUpdate" /ru "SYSTEM" /sc hourly /mo 1 /tr "C:\Windows\SysWOW64\FlashPlayerUpdateService.exe /w" /st 00:00:00
\??\C:\Windows\system32\conhost.exe "132368515119831454-1451187946116712690-1706160269-140388113214954540171135169944
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\servicing\TrustedInstaller.exe
"C:\Windows\system32\wuauclt.exe"
"C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4184.0.1551128272\7814533" --supports-dual-gpus=false --gpu-vendor-id=0x8086 --gpu-device-id=0x0046 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2622 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials="AutocompleteDynamicTrial_1/DefaultControl/ForceCompositingMode/thread/InfiniteCache/No/InstantDummy/DummyGroup10 channel:stable mods:100/InstantExtended/Padding1 channel:stable/OmniboxHQPReplaceHUPProhibitTrumpingInlineableResult/Standard/OmniboxSearchSuggestTrialStarted2013Q1/11/OneClickSignIn/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/SpdyCwnd/cwndMin16/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_47/UMA-Uniformity-Trial-10-Percent/default/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/default/UMA-Uniformity-Trial-50-Percent/default/" --renderer-print-preview --enable-threaded-compositing --channel="4184.2.1828906727\1959755758" /prefetch:673131151
"C:\Users\Peťo\AppData\Local\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="4184.4.772363171\1526440982" --lang=sk --ignored=" --type=renderer " /prefetch:-632637702
"C:\Users\Peťo\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2887541682-2867663812-2470780387-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2887541682-2867663812-2470780387-1000UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-01-20 60576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-01-10 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-01-10 392984]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-01-10 417560]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-01-27 1281512]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"Google Update"=C:\Users\Peťo\AppData\Local\Google\Update\GoogleUpdate.exe [2012-11-03 116648]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-08-02 4910912]
"Sony PC Companion"=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2013-05-29 449248]
"EPSON SX125 Series"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGGE.EXE [2009-09-14 224768]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-20 379552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-01-20 615584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAStorIcon]
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-04-13 284696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IntelWireless]
C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2010-03-05 1928976]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-06-22 10920552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-12-10 1890088]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"EEventManager"=C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2009-12-03 976320]
C:\Users\Peťo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Peťo\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-01-10 390656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-07-07 21:26:48 ----A---- C:\AdwCleaner[S1].txt
2013-07-07 21:26:32 ----A---- C:\AdwCleaner[R2].txt
2013-07-07 20:34:46 ----A---- C:\AdwCleaner[R1].txt
2013-07-07 19:43:00 ----D---- C:\ProgramData\Windows Genuine Advantage
2013-07-07 19:40:03 ----D---- C:\rsit
2013-07-07 19:40:03 ----D---- C:\Program Files\trend micro
2013-07-01 20:18:43 ----A---- C:\Windows\SYSWOW64\FlashPlayerUpdateService.exe
2013-06-30 19:44:50 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-06-30 19:44:49 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-06-28 12:15:37 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-06-28 12:15:37 ----A---- C:\Windows\system32\elshyph.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\url.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\wininet.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\urlmon.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-06-28 12:15:35 ----A---- C:\Windows\system32\msrating.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\msls31.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\jsproxy.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\iertutil.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\ieapfltr.dat
2013-06-28 12:15:35 ----A---- C:\Windows\system32\dxtrans.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\dxtmsft.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\wextract.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\webcheck.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\vbscript.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\url.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\pngfilt.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\occache.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtmler.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtmled.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtml.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshta.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\msfeedssync.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\msfeeds.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\licmgr10.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\jscript9.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\jscript.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\inseng.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\imgutil.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iexpress.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\ieUnatt.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iesetup.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iernonce.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iepeers.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iedkcs32.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\ieapfltr.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\ie4uinit.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\icardie.dll
2013-06-28 12:15:33 ----A---- C:\Windows\system32\ieui.dll
2013-06-28 12:15:33 ----A---- C:\Windows\system32\iesysprep.dll
2013-06-28 12:15:33 ----A---- C:\Windows\system32\ieframe.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\XpsPrint.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\WMPhoto.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\FntCache.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\dxgi.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\DWrite.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\d3d10warp.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\d2d1.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\UIAnimation.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10level9.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10core.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10_1.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10.dll
2013-06-28 10:10:14 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-06-28 10:10:14 ----A---- C:\Windows\system32\d3d11.dll
2013-06-28 10:09:57 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-06-28 10:09:56 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-06-28 10:09:56 ----A---- C:\Windows\system32\win32spl.dll
2013-06-28 10:09:53 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2013-06-28 10:09:53 ----A---- C:\Windows\system32\cryptdlg.dll
2013-06-28 10:09:47 ----A---- C:\Windows\SYSWOW64\certutil.exe
2013-06-28 10:09:47 ----A---- C:\Windows\system32\certutil.exe
2013-06-28 10:09:46 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-06-28 10:09:46 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-06-28 10:09:46 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-06-28 10:09:46 ----A---- C:\Windows\system32\cryptsvc.dll
2013-06-28 10:09:46 ----A---- C:\Windows\system32\cryptnet.dll
2013-06-28 10:09:46 ----A---- C:\Windows\system32\crypt32.dll
2013-06-28 10:09:45 ----A---- C:\Windows\SYSWOW64\certenc.dll
2013-06-28 10:09:45 ----A---- C:\Windows\system32\certenc.dll
======List of files/folders modified in the last 1 month======
2013-07-07 21:33:16 ----D---- C:\Windows\System32
2013-07-07 21:33:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-07-07 21:33:15 ----D---- C:\Windows\inf
2013-07-07 21:32:13 ----D---- C:\Windows\system32\config
2013-07-07 21:31:25 ----D---- C:\Windows\Temp
2013-07-07 21:29:36 ----D---- C:\Users\Peťo\AppData\Roaming\Dropbox
2013-07-07 21:29:06 ----HD---- C:\ProgramData
2013-07-07 21:29:06 ----D---- C:\Windows
2013-07-07 21:28:16 ----A---- C:\Windows\SYSWOW64\log.txt
2013-07-07 20:34:42 ----D---- C:\Windows\Prefetch
2013-07-07 19:40:03 ----RD---- C:\Program Files
2013-07-07 19:27:49 ----SD---- C:\ProgramData\Microsoft
2013-07-07 19:22:00 ----D---- C:\Windows\system32\Tasks
2013-07-03 00:51:58 ----RD---- C:\Program Files (x86)
2013-07-03 00:51:14 ----SHD---- C:\Windows\Installer
2013-07-03 00:28:04 ----D---- C:\Windows\Microsoft.NET
2013-07-03 00:27:42 ----RSD---- C:\Windows\assembly
2013-07-02 02:33:54 ----D---- C:\Windows\winsxs
2013-07-01 20:18:43 ----D---- C:\Windows\SysWOW64
2013-06-30 22:43:35 ----D---- C:\Windows\system32\catroot2
2013-06-30 22:43:35 ----D---- C:\Windows\system32\catroot
2013-06-28 21:25:28 ----D---- C:\Windows\rescache
2013-06-28 16:06:47 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-06-28 16:06:47 ----D---- C:\Windows\system32\sk-SK
2013-06-28 16:06:47 ----D---- C:\Windows\system32\drivers
2013-06-28 16:06:47 ----D---- C:\Program Files\Internet Explorer
2013-06-28 16:06:47 ----D---- C:\Program Files (x86)\Internet Explorer
2013-06-28 16:06:45 ----D---- C:\Windows\SYSWOW64\migration
2013-06-28 16:06:45 ----D---- C:\Windows\SYSWOW64\en-US
2013-06-28 16:06:43 ----D---- C:\Windows\system32\migration
2013-06-28 16:06:43 ----D---- C:\Windows\system32\en-US
2013-06-28 16:06:43 ----D---- C:\Windows\PolicyDefinitions
2013-06-28 16:06:41 ----D---- C:\Windows\SYSWOW64\pt-BR
2013-06-28 16:06:41 ----D---- C:\Windows\SYSWOW64\it-IT
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\zh-TW
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\zh-HK
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\zh-CN
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\tr-TR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\sv-SE
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\ru-RU
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\pt-PT
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\pl-PL
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\nl-NL
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\nb-NO
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\ko-KR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\ja-JP
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\hu-HU
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\fr-FR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\fi-FI
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\es-ES
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\el-GR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\de-DE
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\da-DK
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-06-28 16:06:38 ----D---- C:\Windows\system32\zh-TW
2013-06-28 16:06:38 ----D---- C:\Windows\system32\zh-HK
2013-06-28 16:06:38 ----D---- C:\Windows\system32\zh-CN
2013-06-28 16:06:38 ----D---- C:\Windows\system32\tr-TR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\sv-SE
2013-06-28 16:06:38 ----D---- C:\Windows\system32\ru-RU
2013-06-28 16:06:38 ----D---- C:\Windows\system32\pt-PT
2013-06-28 16:06:38 ----D---- C:\Windows\system32\pt-BR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\pl-PL
2013-06-28 16:06:38 ----D---- C:\Windows\system32\nl-NL
2013-06-28 16:06:38 ----D---- C:\Windows\system32\ko-KR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\ja-JP
2013-06-28 16:06:38 ----D---- C:\Windows\system32\it-IT
2013-06-28 16:06:38 ----D---- C:\Windows\system32\hu-HU
2013-06-28 16:06:38 ----D---- C:\Windows\system32\fr-FR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\fi-FI
2013-06-28 16:06:38 ----D---- C:\Windows\system32\es-ES
2013-06-28 16:06:38 ----D---- C:\Windows\system32\el-GR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\de-DE
2013-06-28 16:06:38 ----D---- C:\Windows\system32\cs-CZ
2013-06-28 16:06:37 ----D---- C:\Windows\system32\nb-NO
2013-06-28 16:06:37 ----D---- C:\Windows\system32\da-DK
2013-06-28 12:20:09 ----D---- C:\ProgramData\Microsoft Help
2013-06-28 12:18:17 ----D---- C:\Windows\Logs
2013-06-28 10:55:29 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-06-28 10:07:38 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-04-13 540696]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-01-20 230320]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2011-11-26 28992]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-11-03 270912]
R1 ISODrive;ISO CD-ROM Device Driver; \??\C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [2006-11-25 104152]
R1 VWiFiFlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-01-20 130008]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-08-05 2768384]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-01-20 28832]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-01-10 12311904]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-06-22 2399848]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2010-05-15 384040]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-12-10 301104]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-01-20 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-01-20 298144]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-01-20 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-01-20 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-01-20 154272]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-01-20 279200]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 20992]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-06-17 246376]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
R2 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-28 163328]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-01-20 76448]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2010-03-05 1425168]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-04-13 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-18 268824]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-01-27 22056]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-11-26 1640768]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-11-26 2253120]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-12-29 75136]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2010-03-05 831760]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
R2 ZAtheros Wlan Agent;ZAtheros Wlan Agent; C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe [2011-08-10 57344]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-01-27 379360]
S2 AcronisOSSReinstallSvc;Acronis OS Selector Reinstall Service; C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-03-05 340240]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-03 1255736]
-----------------EOF-----------------
Klingoln
-
Rudy
- Site Admin
- Příspěvky: 119527
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Overenie pravosti Windows
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2887541682-2867663812-2470780387-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2887541682-2867663812-2470780387-1000UA.job
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Overenie pravosti Windows
Zdravim,
tu je novy log z RSIT:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Peťo at 2013-07-08 11:53:18
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 50 GB (48%) free of 103 GB
Total RAM: 3767 MB (68% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:53:22, on 8. 7. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16618)
Boot mode: Normal
Running processes:
C:\Users\Peťo\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
C:\Users\Peťo\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
C:\Program Files\trend micro\Peťo.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Peťo\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [EPSON SX125 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGGE.EXE /FU "C:\Windows\TEMP\E_SEC0.tmp" /EF "HKCU"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2887541682-2867663812-2470780387-1002\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2887541682-2867663812-2470780387-1002\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: Dropbox.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - AppInit_DLLs: c:\progra~3\browse~1\261339~1.144\{16cdf~1\browse~1.dll
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Acronis OS Selector Reinstall Service (AcronisOSSReinstallSvc) - Unknown owner - C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Wlan Agent - Atheros - C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe
--
End of file - 10211 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Windows\system32\Dwm.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\notepad.exe" C:\_OTM\MovedFiles\07082013_114819.log
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Users\Peťo\AppData\Local\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
"C:\Users\Peťo\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe"
"C:\Windows\system32\schtasks.exe" /create /tn "AdobeFlashPlayerUpdate" /ru "SYSTEM" /sc hourly /mo 1 /tr "C:\Windows\SysWOW64\FlashPlayerUpdateService.exe /w" /st 00:00:00
\??\C:\Windows\system32\conhost.exe "-21358863891671756799217023118-91842238314655449561904469658-20600810051497059456
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Users\Peťo\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-04-04 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-01-20 60576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-01-10 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-01-10 392984]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-01-10 417560]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-01-27 1281512]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"Google Update"=C:\Users\Peťo\AppData\Local\Google\Update\GoogleUpdate.exe [2012-11-03 116648]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-08-02 4910912]
"Sony PC Companion"=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2013-05-29 449248]
"EPSON SX125 Series"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGGE.EXE [2009-09-14 224768]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-20 379552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-01-20 615584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAStorIcon]
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-04-13 284696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IntelWireless]
C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2010-03-05 1928976]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-06-22 10920552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-12-10 1890088]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"EEventManager"=C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2009-12-03 976320]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-04-04 843712]
C:\Users\Peťo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Peťo\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-01-10 390656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-07-08 11:48:19 ----D---- C:\_OTM
2013-07-08 11:42:18 ----A---- C:\Windows\system32\MRT.exe
2013-07-08 11:40:27 ----SHD---- C:\Config.Msi
2013-07-07 21:26:48 ----A---- C:\AdwCleaner[S1].txt
2013-07-07 21:26:32 ----A---- C:\AdwCleaner[R2].txt
2013-07-07 20:34:46 ----A---- C:\AdwCleaner[R1].txt
2013-07-07 19:43:00 ----D---- C:\ProgramData\Windows Genuine Advantage
2013-07-07 19:40:03 ----D---- C:\rsit
2013-07-07 19:40:03 ----D---- C:\Program Files\trend micro
2013-07-01 20:18:43 ----A---- C:\Windows\SYSWOW64\FlashPlayerUpdateService.exe
2013-06-30 19:44:50 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-06-30 19:44:49 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-06-28 12:15:37 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-06-28 12:15:37 ----A---- C:\Windows\system32\elshyph.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\url.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\wininet.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\urlmon.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-06-28 12:15:35 ----A---- C:\Windows\system32\msrating.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\msls31.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\jsproxy.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\iertutil.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\ieapfltr.dat
2013-06-28 12:15:35 ----A---- C:\Windows\system32\dxtrans.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\dxtmsft.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\wextract.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\webcheck.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\vbscript.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\url.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\pngfilt.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\occache.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtmler.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtmled.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtml.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshta.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\msfeedssync.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\msfeeds.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\licmgr10.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\jscript9.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\jscript.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\inseng.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\imgutil.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iexpress.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\ieUnatt.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iesetup.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iernonce.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iepeers.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iedkcs32.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\ieapfltr.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\ie4uinit.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\icardie.dll
2013-06-28 12:15:33 ----A---- C:\Windows\system32\ieui.dll
2013-06-28 12:15:33 ----A---- C:\Windows\system32\iesysprep.dll
2013-06-28 12:15:33 ----A---- C:\Windows\system32\ieframe.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\XpsPrint.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\WMPhoto.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\FntCache.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\dxgi.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\DWrite.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\d3d10warp.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\d2d1.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\UIAnimation.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10level9.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10core.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10_1.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10.dll
2013-06-28 10:10:14 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-06-28 10:10:14 ----A---- C:\Windows\system32\d3d11.dll
2013-06-28 10:09:57 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-06-28 10:09:56 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-06-28 10:09:56 ----A---- C:\Windows\system32\win32spl.dll
2013-06-28 10:09:53 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2013-06-28 10:09:53 ----A---- C:\Windows\system32\cryptdlg.dll
2013-06-28 10:09:47 ----A---- C:\Windows\SYSWOW64\certutil.exe
2013-06-28 10:09:47 ----A---- C:\Windows\system32\certutil.exe
2013-06-28 10:09:46 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-06-28 10:09:46 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-06-28 10:09:46 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-06-28 10:09:46 ----A---- C:\Windows\system32\cryptsvc.dll
2013-06-28 10:09:46 ----A---- C:\Windows\system32\cryptnet.dll
2013-06-28 10:09:46 ----A---- C:\Windows\system32\crypt32.dll
2013-06-28 10:09:45 ----A---- C:\Windows\SYSWOW64\certenc.dll
2013-06-28 10:09:45 ----A---- C:\Windows\system32\certenc.dll
======List of files/folders modified in the last 1 month======
2013-07-08 11:51:04 ----D---- C:\Windows\Temp
2013-07-08 11:50:38 ----D---- C:\Users\Peťo\AppData\Roaming\Dropbox
2013-07-08 11:50:02 ----A---- C:\Windows\SYSWOW64\log.txt
2013-07-08 11:49:06 ----D---- C:\Windows\system32\config
2013-07-08 11:48:19 ----D---- C:\Windows\Tasks
2013-07-08 11:48:07 ----D---- C:\Windows\Prefetch
2013-07-08 11:44:37 ----SHD---- C:\Windows\Installer
2013-07-08 11:44:36 ----D---- C:\Program Files (x86)\Microsoft Office
2013-07-08 11:42:20 ----D---- C:\Windows\debug
2013-07-08 11:42:18 ----D---- C:\Windows\System32
2013-07-08 11:41:49 ----D---- C:\Windows\inf
2013-07-08 11:41:49 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-07-08 11:41:14 ----D---- C:\Windows\SysWOW64
2013-07-08 11:41:09 ----D---- C:\Windows\winsxs
2013-07-08 11:40:50 ----D---- C:\ProgramData\Adobe
2013-07-08 11:40:46 ----D---- C:\Program Files (x86)\Adobe
2013-07-07 21:29:06 ----HD---- C:\ProgramData
2013-07-07 21:29:06 ----D---- C:\Windows
2013-07-07 19:40:03 ----RD---- C:\Program Files
2013-07-07 19:27:49 ----SD---- C:\ProgramData\Microsoft
2013-07-07 19:22:00 ----D---- C:\Windows\system32\Tasks
2013-07-03 00:51:58 ----RD---- C:\Program Files (x86)
2013-07-03 00:28:04 ----D---- C:\Windows\Microsoft.NET
2013-07-03 00:27:42 ----RSD---- C:\Windows\assembly
2013-06-30 22:43:35 ----D---- C:\Windows\system32\catroot2
2013-06-30 22:43:35 ----D---- C:\Windows\system32\catroot
2013-06-28 21:25:28 ----D---- C:\Windows\rescache
2013-06-28 16:06:47 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-06-28 16:06:47 ----D---- C:\Windows\system32\sk-SK
2013-06-28 16:06:47 ----D---- C:\Windows\system32\drivers
2013-06-28 16:06:47 ----D---- C:\Program Files\Internet Explorer
2013-06-28 16:06:47 ----D---- C:\Program Files (x86)\Internet Explorer
2013-06-28 16:06:45 ----D---- C:\Windows\SYSWOW64\migration
2013-06-28 16:06:45 ----D---- C:\Windows\SYSWOW64\en-US
2013-06-28 16:06:43 ----D---- C:\Windows\system32\migration
2013-06-28 16:06:43 ----D---- C:\Windows\system32\en-US
2013-06-28 16:06:43 ----D---- C:\Windows\PolicyDefinitions
2013-06-28 16:06:41 ----D---- C:\Windows\SYSWOW64\pt-BR
2013-06-28 16:06:41 ----D---- C:\Windows\SYSWOW64\it-IT
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\zh-TW
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\zh-HK
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\zh-CN
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\tr-TR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\sv-SE
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\ru-RU
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\pt-PT
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\pl-PL
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\nl-NL
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\nb-NO
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\ko-KR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\ja-JP
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\hu-HU
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\fr-FR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\fi-FI
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\es-ES
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\el-GR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\de-DE
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\da-DK
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-06-28 16:06:38 ----D---- C:\Windows\system32\zh-TW
2013-06-28 16:06:38 ----D---- C:\Windows\system32\zh-HK
2013-06-28 16:06:38 ----D---- C:\Windows\system32\zh-CN
2013-06-28 16:06:38 ----D---- C:\Windows\system32\tr-TR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\sv-SE
2013-06-28 16:06:38 ----D---- C:\Windows\system32\ru-RU
2013-06-28 16:06:38 ----D---- C:\Windows\system32\pt-PT
2013-06-28 16:06:38 ----D---- C:\Windows\system32\pt-BR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\pl-PL
2013-06-28 16:06:38 ----D---- C:\Windows\system32\nl-NL
2013-06-28 16:06:38 ----D---- C:\Windows\system32\ko-KR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\ja-JP
2013-06-28 16:06:38 ----D---- C:\Windows\system32\it-IT
2013-06-28 16:06:38 ----D---- C:\Windows\system32\hu-HU
2013-06-28 16:06:38 ----D---- C:\Windows\system32\fr-FR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\fi-FI
2013-06-28 16:06:38 ----D---- C:\Windows\system32\es-ES
2013-06-28 16:06:38 ----D---- C:\Windows\system32\el-GR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\de-DE
2013-06-28 16:06:38 ----D---- C:\Windows\system32\cs-CZ
2013-06-28 16:06:37 ----D---- C:\Windows\system32\nb-NO
2013-06-28 16:06:37 ----D---- C:\Windows\system32\da-DK
2013-06-28 12:20:09 ----D---- C:\ProgramData\Microsoft Help
2013-06-28 12:18:17 ----D---- C:\Windows\Logs
2013-06-28 10:55:29 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-06-28 10:07:38 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-04-13 540696]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-01-20 230320]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2011-11-26 28992]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-11-03 270912]
R1 ISODrive;ISO CD-ROM Device Driver; \??\C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [2006-11-25 104152]
R1 VWiFiFlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-01-20 130008]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-08-05 2768384]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-01-20 28832]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-01-10 12311904]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-06-22 2399848]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2010-05-15 384040]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-12-10 301104]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-01-20 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-01-20 298144]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-01-20 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-01-20 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-01-20 154272]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-01-20 279200]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 20992]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-06-17 246376]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-04-04 63928]
R2 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-28 163328]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-01-20 76448]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2010-03-05 1425168]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-04-13 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-18 268824]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-01-27 22056]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-11-26 1640768]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-11-26 2253120]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-12-29 75136]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2010-03-05 831760]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
R2 ZAtheros Wlan Agent;ZAtheros Wlan Agent; C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe [2011-08-10 57344]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-01-27 379360]
S2 AcronisOSSReinstallSvc;Acronis OS Selector Reinstall Service; C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-03-05 340240]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-03 1255736]
-----------------EOF-----------------
tu je novy log z RSIT:
Logfile of random's system information tool 1.09 (written by random/random)
Run by Peťo at 2013-07-08 11:53:18
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 50 GB (48%) free of 103 GB
Total RAM: 3767 MB (68% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:53:22, on 8. 7. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16618)
Boot mode: Normal
Running processes:
C:\Users\Peťo\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
C:\Users\Peťo\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
C:\Program Files\trend micro\Peťo.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Peťo\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [EPSON SX125 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGGE.EXE /FU "C:\Windows\TEMP\E_SEC0.tmp" /EF "HKCU"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2887541682-2867663812-2470780387-1002\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2887541682-2867663812-2470780387-1002\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: Dropbox.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - AppInit_DLLs: c:\progra~3\browse~1\261339~1.144\{16cdf~1\browse~1.dll
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Acronis OS Selector Reinstall Service (AcronisOSSReinstallSvc) - Unknown owner - C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Wlan Agent - Atheros - C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe
--
End of file - 10211 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
"C:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Windows\system32\Dwm.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Microsoft Security Client\NisSrv.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\notepad.exe" C:\_OTM\MovedFiles\07082013_114819.log
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Users\Peťo\AppData\Local\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
"C:\Users\Peťo\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe"
"C:\Windows\system32\schtasks.exe" /create /tn "AdobeFlashPlayerUpdate" /ru "SYSTEM" /sc hourly /mo 1 /tr "C:\Windows\SysWOW64\FlashPlayerUpdateService.exe /w" /st 00:00:00
\??\C:\Windows\system32\conhost.exe "-21358863891671756799217023118-91842238314655449561904469658-20600810051497059456
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Users\Peťo\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-04-04 63912]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-01-20 60576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-01-10 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-01-10 392984]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-01-10 417560]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2013-01-27 1281512]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"Google Update"=C:\Users\Peťo\AppData\Local\Google\Update\GoogleUpdate.exe [2012-11-03 116648]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-08-02 4910912]
"Sony PC Companion"=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2013-05-29 449248]
"EPSON SX125 Series"=C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGGE.EXE [2009-09-14 224768]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-20 379552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-01-20 615584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAStorIcon]
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-04-13 284696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IntelWireless]
C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2010-03-05 1928976]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-06-22 10920552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-12-10 1890088]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"EEventManager"=C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2009-12-03 976320]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-04-04 843712]
C:\Users\Peťo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Peťo\AppData\Roaming\Dropbox\bin\Dropbox.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-01-10 390656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"LogonHoursAction"=2
"DontDisplayLogonHoursWarnings"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-07-08 11:48:19 ----D---- C:\_OTM
2013-07-08 11:42:18 ----A---- C:\Windows\system32\MRT.exe
2013-07-08 11:40:27 ----SHD---- C:\Config.Msi
2013-07-07 21:26:48 ----A---- C:\AdwCleaner[S1].txt
2013-07-07 21:26:32 ----A---- C:\AdwCleaner[R2].txt
2013-07-07 20:34:46 ----A---- C:\AdwCleaner[R1].txt
2013-07-07 19:43:00 ----D---- C:\ProgramData\Windows Genuine Advantage
2013-07-07 19:40:03 ----D---- C:\rsit
2013-07-07 19:40:03 ----D---- C:\Program Files\trend micro
2013-07-01 20:18:43 ----A---- C:\Windows\SYSWOW64\FlashPlayerUpdateService.exe
2013-06-30 19:44:50 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-06-30 19:44:49 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-06-28 12:15:37 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-06-28 12:15:37 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-06-28 12:15:37 ----A---- C:\Windows\system32\elshyph.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\url.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-06-28 12:15:36 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\wininet.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\urlmon.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-06-28 12:15:35 ----A---- C:\Windows\system32\msrating.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\msls31.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\jsproxy.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\iertutil.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\ieapfltr.dat
2013-06-28 12:15:35 ----A---- C:\Windows\system32\dxtrans.dll
2013-06-28 12:15:35 ----A---- C:\Windows\system32\dxtmsft.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\wextract.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\webcheck.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\vbscript.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\url.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\pngfilt.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\occache.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtmler.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtmled.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshtml.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\mshta.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\msfeedssync.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\msfeeds.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\licmgr10.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\jscript9.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\jscript.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\inseng.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\imgutil.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iexpress.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\ieUnatt.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iesetup.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iernonce.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iepeers.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\iedkcs32.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\ieapfltr.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-06-28 12:15:34 ----A---- C:\Windows\system32\ie4uinit.exe
2013-06-28 12:15:34 ----A---- C:\Windows\system32\icardie.dll
2013-06-28 12:15:33 ----A---- C:\Windows\system32\ieui.dll
2013-06-28 12:15:33 ----A---- C:\Windows\system32\iesysprep.dll
2013-06-28 12:15:33 ----A---- C:\Windows\system32\ieframe.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-06-28 12:14:07 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2013-06-28 12:14:07 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\XpsPrint.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\WMPhoto.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\FntCache.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\dxgi.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\DWrite.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\d3d10warp.dll
2013-06-28 12:14:07 ----A---- C:\Windows\system32\d2d1.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2013-06-28 12:14:06 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\UIAnimation.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10level9.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10core.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10_1.dll
2013-06-28 12:14:06 ----A---- C:\Windows\system32\d3d10.dll
2013-06-28 10:10:14 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-06-28 10:10:14 ----A---- C:\Windows\system32\d3d11.dll
2013-06-28 10:09:57 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-06-28 10:09:56 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-06-28 10:09:56 ----A---- C:\Windows\system32\win32spl.dll
2013-06-28 10:09:53 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2013-06-28 10:09:53 ----A---- C:\Windows\system32\cryptdlg.dll
2013-06-28 10:09:47 ----A---- C:\Windows\SYSWOW64\certutil.exe
2013-06-28 10:09:47 ----A---- C:\Windows\system32\certutil.exe
2013-06-28 10:09:46 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-06-28 10:09:46 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-06-28 10:09:46 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-06-28 10:09:46 ----A---- C:\Windows\system32\cryptsvc.dll
2013-06-28 10:09:46 ----A---- C:\Windows\system32\cryptnet.dll
2013-06-28 10:09:46 ----A---- C:\Windows\system32\crypt32.dll
2013-06-28 10:09:45 ----A---- C:\Windows\SYSWOW64\certenc.dll
2013-06-28 10:09:45 ----A---- C:\Windows\system32\certenc.dll
======List of files/folders modified in the last 1 month======
2013-07-08 11:51:04 ----D---- C:\Windows\Temp
2013-07-08 11:50:38 ----D---- C:\Users\Peťo\AppData\Roaming\Dropbox
2013-07-08 11:50:02 ----A---- C:\Windows\SYSWOW64\log.txt
2013-07-08 11:49:06 ----D---- C:\Windows\system32\config
2013-07-08 11:48:19 ----D---- C:\Windows\Tasks
2013-07-08 11:48:07 ----D---- C:\Windows\Prefetch
2013-07-08 11:44:37 ----SHD---- C:\Windows\Installer
2013-07-08 11:44:36 ----D---- C:\Program Files (x86)\Microsoft Office
2013-07-08 11:42:20 ----D---- C:\Windows\debug
2013-07-08 11:42:18 ----D---- C:\Windows\System32
2013-07-08 11:41:49 ----D---- C:\Windows\inf
2013-07-08 11:41:49 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-07-08 11:41:14 ----D---- C:\Windows\SysWOW64
2013-07-08 11:41:09 ----D---- C:\Windows\winsxs
2013-07-08 11:40:50 ----D---- C:\ProgramData\Adobe
2013-07-08 11:40:46 ----D---- C:\Program Files (x86)\Adobe
2013-07-07 21:29:06 ----HD---- C:\ProgramData
2013-07-07 21:29:06 ----D---- C:\Windows
2013-07-07 19:40:03 ----RD---- C:\Program Files
2013-07-07 19:27:49 ----SD---- C:\ProgramData\Microsoft
2013-07-07 19:22:00 ----D---- C:\Windows\system32\Tasks
2013-07-03 00:51:58 ----RD---- C:\Program Files (x86)
2013-07-03 00:28:04 ----D---- C:\Windows\Microsoft.NET
2013-07-03 00:27:42 ----RSD---- C:\Windows\assembly
2013-06-30 22:43:35 ----D---- C:\Windows\system32\catroot2
2013-06-30 22:43:35 ----D---- C:\Windows\system32\catroot
2013-06-28 21:25:28 ----D---- C:\Windows\rescache
2013-06-28 16:06:47 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-06-28 16:06:47 ----D---- C:\Windows\system32\sk-SK
2013-06-28 16:06:47 ----D---- C:\Windows\system32\drivers
2013-06-28 16:06:47 ----D---- C:\Program Files\Internet Explorer
2013-06-28 16:06:47 ----D---- C:\Program Files (x86)\Internet Explorer
2013-06-28 16:06:45 ----D---- C:\Windows\SYSWOW64\migration
2013-06-28 16:06:45 ----D---- C:\Windows\SYSWOW64\en-US
2013-06-28 16:06:43 ----D---- C:\Windows\system32\migration
2013-06-28 16:06:43 ----D---- C:\Windows\system32\en-US
2013-06-28 16:06:43 ----D---- C:\Windows\PolicyDefinitions
2013-06-28 16:06:41 ----D---- C:\Windows\SYSWOW64\pt-BR
2013-06-28 16:06:41 ----D---- C:\Windows\SYSWOW64\it-IT
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\zh-TW
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\zh-HK
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\zh-CN
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\tr-TR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\sv-SE
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\ru-RU
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\pt-PT
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\pl-PL
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\nl-NL
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\nb-NO
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\ko-KR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\ja-JP
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\hu-HU
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\fr-FR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\fi-FI
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\es-ES
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\el-GR
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\de-DE
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\da-DK
2013-06-28 16:06:40 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-06-28 16:06:38 ----D---- C:\Windows\system32\zh-TW
2013-06-28 16:06:38 ----D---- C:\Windows\system32\zh-HK
2013-06-28 16:06:38 ----D---- C:\Windows\system32\zh-CN
2013-06-28 16:06:38 ----D---- C:\Windows\system32\tr-TR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\sv-SE
2013-06-28 16:06:38 ----D---- C:\Windows\system32\ru-RU
2013-06-28 16:06:38 ----D---- C:\Windows\system32\pt-PT
2013-06-28 16:06:38 ----D---- C:\Windows\system32\pt-BR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\pl-PL
2013-06-28 16:06:38 ----D---- C:\Windows\system32\nl-NL
2013-06-28 16:06:38 ----D---- C:\Windows\system32\ko-KR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\ja-JP
2013-06-28 16:06:38 ----D---- C:\Windows\system32\it-IT
2013-06-28 16:06:38 ----D---- C:\Windows\system32\hu-HU
2013-06-28 16:06:38 ----D---- C:\Windows\system32\fr-FR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\fi-FI
2013-06-28 16:06:38 ----D---- C:\Windows\system32\es-ES
2013-06-28 16:06:38 ----D---- C:\Windows\system32\el-GR
2013-06-28 16:06:38 ----D---- C:\Windows\system32\de-DE
2013-06-28 16:06:38 ----D---- C:\Windows\system32\cs-CZ
2013-06-28 16:06:37 ----D---- C:\Windows\system32\nb-NO
2013-06-28 16:06:37 ----D---- C:\Windows\system32\da-DK
2013-06-28 12:20:09 ----D---- C:\ProgramData\Microsoft Help
2013-06-28 12:18:17 ----D---- C:\Windows\Logs
2013-06-28 10:55:29 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-06-28 10:07:38 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-04-13 540696]
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2013-01-20 230320]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2011-11-26 28992]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-11-03 270912]
R1 ISODrive;ISO CD-ROM Device Driver; \??\C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [2006-11-25 104152]
R1 VWiFiFlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2013-01-20 130008]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-08-05 2768384]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-01-20 28832]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-01-10 12311904]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-06-22 2399848]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2010-05-15 384040]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-12-10 301104]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-01-20 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-01-20 298144]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-01-20 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-01-20 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-01-20 154272]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-01-20 279200]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 20992]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-06-17 246376]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-04-04 63928]
R2 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-28 163328]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-01-20 76448]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2010-03-05 1425168]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-04-13 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-18 268824]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-01-27 22056]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-11-26 1640768]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-11-26 2253120]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-12-29 75136]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2010-03-05 831760]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
R2 ZAtheros Wlan Agent;ZAtheros Wlan Agent; C:\Program Files (x86)\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe [2011-08-10 57344]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-01-27 379360]
S2 AcronisOSSReinstallSvc;Acronis OS Selector Reinstall Service; C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe []
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-03-05 340240]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-03 1255736]
-----------------EOF-----------------
Klingoln
-
Rudy
- Site Admin
- Příspěvky: 119527
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Overenie pravosti Windows
Log je již OK. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Overenie pravosti Windows
Hotovo. PC vyzera lepsie, uz tak nezamrza, ale sem tam este zamrzne pri kopirovani. Spustil som este error scan cez HD tune, zatial sa objavili 2 cervene "stvorce". Znamena to, ze su tieto sektory nenavratne poskodene?
Klingoln
-
Rudy
- Site Admin
- Příspěvky: 119527
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Overenie pravosti Windows
Zelené jsou v pořádku, červené vadné. Ještě můžete zkusit defragmentovat disk.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Overenie pravosti Windows
Zdravim,
urobil som teda esta defragmentaciu cez Defraggler, notebook uz vyzera lepsie, nemrzne zatial ani pri kopirovani. Kazdopadne kedze HD Tune nasiel nejake vadne sektory, je mozne, ze je HD uz poskodeny?
Kazdopadne dakujem za pomoc.
urobil som teda esta defragmentaciu cez Defraggler, notebook uz vyzera lepsie, nemrzne zatial ani pri kopirovani. Kazdopadne kedze HD Tune nasiel nejake vadne sektory, je mozne, ze je HD uz poskodeny?
Kazdopadne dakujem za pomoc.
Klingoln
Přispějete na provoz fóra?