Rudy- zase mi to nějak blbne

[ccc]

2x explorer.exe v procesech, IE nenačte link

Logfile of random's system information tool 1.09 (written by random/random)
Run by Ctibor at 2013-08-28 07:07:23
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 13 GB (13%) free of 100 GB
Total RAM: 3547 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:31:58, on
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16660)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTuner.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\IncrediMail\Bin\IncMail.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\IncrediMail\Bin\ImApp.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Windows\explorer.exe
C:\Users\Ctibor\Desktop\RSIT.exe
C:\Program Files\trend micro\Ctibor.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Nvtmru] "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [Ashampoo WinOptimizer Live-Tuner] "C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTuner.exe" -TRAY
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKUS\S-1-5-21-1221677159-1799410114-737550883-1004\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1221677159-1799410114-737550883-1004\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1221677159-1799410114-737550883-1004\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\NVIDIA~1\NVSTRE~1\rxinput.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: ABBYY FineReader 11 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.11.0) - ABBYY - D:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: JMB36X - Unknown owner - C:\Windows\System32\XSrvSetup.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PDAgent - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDAgent.exe
O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files\Common Files\Raxco\Shared\PDEngine.exe
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Ashampoo LiveTuner Service (WO_LiveService) - Unknown owner - C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerService.exe

--
End of file - 7871 bytes

=========Mozilla firefox=========

ProfilePath - C:\Users\Ctibor\AppData\Roaming\Mozilla\Firefox\Profiles\gncvivsw.default-1370692840368

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "keyword.URL" - "http://search.conduit.com/ResultsExt.as ... 04&UM=1&q="

"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
"{F003DA68-8256-4b37-A6C4-350FA04494DF}"=C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.8.800.94 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw_1203133.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Plus Web Player Plug-In,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@veetle.com/vbp;version=0.9.18]
"Description"=Veetle Broadcaster Plugin
"Path"=C:\Program Files\Veetle\VLCBroadcast\npvbp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


C:\Users\Ctibor\AppData\Roaming\Mozilla\Firefox\Profiles\gncvivsw.default-1370692840368\extensions\
{942cd1d4-9cc1-4d31-876a-ea8f489f7a59}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2013-05-06 194912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-07-05 463272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2013-07-31 364824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-07-05 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2013-07-01 345144]
"Nvtmru"=C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-07-27 1028896]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-07 36352]
"NUSB3MON"=C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2011-09-16 115048]
"Ashampoo WinOptimizer Live-Tuner"=C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTuner.exe [2013-03-08 2949480]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"IncrediMail"=C:\Program Files\IncrediMail\bin\IncMail.exe [2012-12-07 366576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~1\NVIDIA~1\NVSTRE~1\rxinput.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2011-05-04 551296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2013-06-13 64280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2013-03-13 204800]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\Windows\system32\wpdshserviceobj.dll [2010-11-20 105984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=153
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"EnableShellExecuteHooks"=1
"NoDrives"=0
"NoDriveTypeAutoRun"=153

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"VIDC.FFDS"=ff_vfw.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux6"=wdmaud.drv
"msacm.l3codec"=l3codecp.acm
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"MSVideo"=vfwwdm32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux3"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"aux4"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"aux7"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"aux8"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"aux"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2013-08-28 07:05:18 ----D---- C:\Program Files\trend micro
2013-08-28 07:05:17 ----D---- C:\rsit
2013-08-27 20:24:19 ----SHD---- C:\$RECYCLE.BIN
2013-08-27 19:49:46 ----D---- C:\Windows\temp
2013-08-26 08:06:35 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2013-08-25 12:00:37 ----D---- C:\Program Files\Unlocker
2013-08-24 20:25:36 ----D---- C:\ProgramData\SecTaskMan
2013-08-22 19:20:20 ----A---- C:\Windows\system32\drivers\avgtpx86.sys
2013-08-22 18:13:50 ----A---- C:\Windows\system32\Wdfres.dll
2013-08-22 18:13:50 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2013-08-22 18:13:50 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-08-22 18:13:28 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2013-08-22 18:13:28 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2013-08-22 18:13:27 ----A---- C:\Windows\system32\WUDFx.dll
2013-08-22 18:13:27 ----A---- C:\Windows\system32\WUDFSvc.dll
2013-08-22 18:13:27 ----A---- C:\Windows\system32\WUDFPlatform.dll
2013-08-22 18:13:27 ----A---- C:\Windows\system32\WUDFHost.exe
2013-08-22 18:13:27 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2013-08-22 18:05:48 ----A---- C:\Windows\system32\KernelBase.dll
2013-08-22 18:05:48 ----A---- C:\Windows\system32\kernel32.dll
2013-08-22 18:05:48 ----A---- C:\Windows\system32\conhost.exe
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-08-22 18:05:43 ----A---- C:\Windows\explorer.exe
2013-08-22 18:05:42 ----A---- C:\Windows\system32\cryptdlg.dll
2013-08-22 18:05:37 ----A---- C:\Windows\system32\d3d11.dll
2013-08-22 18:05:35 ----A---- C:\Windows\system32\ncsi.dll
2013-08-22 18:05:34 ----A---- C:\Windows\system32\nlasvc.dll
2013-08-22 18:05:34 ----A---- C:\Windows\system32\nlaapi.dll
2013-08-22 18:05:34 ----A---- C:\Windows\system32\netevent.dll
2013-08-22 18:05:34 ----A---- C:\Windows\system32\netcorehc.dll
2013-08-22 18:05:34 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-08-22 18:05:34 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2013-08-22 18:05:26 ----A---- C:\Windows\system32\Wpc.dll
2013-08-22 18:05:26 ----A---- C:\Windows\system32\gameux.dll
2013-08-22 18:05:17 ----A---- C:\Windows\system32\OxpsConverter.exe
2013-08-22 18:05:15 ----A---- C:\Windows\system32\profsvc.dll
2013-08-22 18:05:14 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2013-08-22 18:05:14 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-08-22 18:05:13 ----A---- C:\Windows\system32\spoolsv.exe
2013-08-22 18:05:10 ----A---- C:\Windows\system32\tquery.dll
2013-08-22 18:05:10 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2013-08-22 18:05:10 ----A---- C:\Windows\system32\SearchIndexer.exe
2013-08-22 18:05:10 ----A---- C:\Windows\system32\SearchFilterHost.exe
2013-08-22 18:05:10 ----A---- C:\Windows\system32\mssvp.dll
2013-08-22 18:05:10 ----A---- C:\Windows\system32\mssrch.dll
2013-08-22 18:05:10 ----A---- C:\Windows\system32\mssphtb.dll
2013-08-22 18:05:10 ----A---- C:\Windows\system32\mssph.dll
2013-08-22 18:05:10 ----A---- C:\Windows\system32\msscntrs.dll
2013-08-22 18:05:09 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-08-22 18:05:08 ----A---- C:\Windows\system32\usp10.dll
2013-08-22 18:05:07 ----A---- C:\Windows\system32\wwansvc.dll
2013-08-22 18:05:07 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-08-22 18:05:07 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-08-22 18:05:05 ----A---- C:\Windows\system32\ntshrui.dll
2013-08-22 18:05:03 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-08-22 18:05:03 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-08-22 18:05:03 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-08-22 18:05:03 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-08-22 18:05:03 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-08-22 18:05:03 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-08-22 18:05:03 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-08-22 18:05:02 ----A---- C:\Windows\system32\xmllite.dll
2013-08-22 18:05:02 ----A---- C:\Windows\system32\srcore.dll
2013-08-22 18:05:01 ----A---- C:\Windows\system32\prevhost.exe
2013-08-22 18:05:01 ----A---- C:\Windows\system32\msi.dll
2013-08-22 18:02:31 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-08-22 18:02:31 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-08-22 18:01:12 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2013-08-17 23:06:03 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-08-16 17:22:47 ----D---- C:\Windows\system32\RTCOM
2013-08-16 17:22:22 ----A---- C:\Windows\system32\WavesLib.dll
2013-08-16 17:22:22 ----A---- C:\Windows\system32\WavesGUILib.dll
2013-08-16 17:22:22 ----A---- C:\Windows\system32\tosade.dll
2013-08-16 17:22:22 ----A---- C:\Windows\system32\TepeqAPO.dll
2013-08-16 17:22:22 ----A---- C:\Windows\system32\tadefxapo2.dll
2013-08-16 17:22:21 ----A---- C:\Windows\system32\tadefxapo.dll
2013-08-16 17:22:21 ----A---- C:\Windows\system32\SRSWOW.dll
2013-08-16 17:22:21 ----A---- C:\Windows\system32\SRSTSXT.dll
2013-08-16 17:22:21 ----A---- C:\Windows\system32\SRSTSHD.dll
2013-08-16 17:22:21 ----A---- C:\Windows\system32\SRSHP360.dll
2013-08-16 17:22:21 ----A---- C:\Windows\system32\sltech32.dll
2013-08-16 17:22:21 ----A---- C:\Windows\system32\slprp32.dll
2013-08-16 17:22:21 ----A---- C:\Windows\system32\slcnt32.dll
2013-08-16 17:22:20 ----A---- C:\Windows\system32\sl3apo32.dll
2013-08-16 17:22:20 ----A---- C:\Windows\system32\SFSS_APO.dll
2013-08-16 17:22:20 ----A---- C:\Windows\system32\SFNHK.dll
2013-08-16 17:22:20 ----A---- C:\Windows\system32\SFCOM.dll
2013-08-16 17:22:20 ----A---- C:\Windows\system32\SFAPO.dll
2013-08-16 17:22:20 ----A---- C:\Windows\system32\drivers\rtvienna.dat
2013-08-16 17:22:20 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2013-08-16 17:22:19 ----A---- C:\Windows\system32\RTKSMSettingsIPC.dll
2013-08-16 17:22:19 ----A---- C:\Windows\system32\RTKSMlfx.dll
2013-08-16 17:22:18 ----A---- C:\Windows\system32\RtkPgExt.dll
2013-08-16 17:22:16 ----A---- C:\Windows\system32\RtkCoLDR.dll
2013-08-16 17:22:16 ----A---- C:\Windows\system32\RtkCoInstII.dll
2013-08-16 17:22:15 ----A---- C:\Windows\system32\RtkApoApi.dll
2013-08-16 17:22:14 ----A---- C:\Windows\system32\RtkAPO.dll
2013-08-16 17:22:08 ----A---- C:\Windows\system32\RTEEP32A.dll
2013-08-16 17:22:08 ----A---- C:\Windows\system32\RTEEL32A.dll
2013-08-16 17:22:08 ----A---- C:\Windows\system32\RTEEG32A.dll
2013-08-16 17:22:08 ----A---- C:\Windows\system32\RTEED32A.dll
2013-08-16 17:22:07 ----A---- C:\Windows\system32\RP3DHT32.dll
2013-08-16 17:22:07 ----A---- C:\Windows\system32\RP3DAA32.dll
2013-08-16 17:22:07 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2013-08-16 17:22:00 ----A---- C:\Windows\system32\RCoRes.dat
2013-08-16 17:22:00 ----A---- C:\Windows\system32\R4EEP32A.dll
2013-08-16 17:21:59 ----A---- C:\Windows\system32\R4EEL32A.dll
2013-08-16 17:21:59 ----A---- C:\Windows\system32\R4EEG32A.dll
2013-08-16 17:21:59 ----A---- C:\Windows\system32\R4EED32A.dll
2013-08-16 17:21:59 ----A---- C:\Windows\system32\R4EEA32A.dll
2013-08-16 17:21:59 ----A---- C:\Windows\system32\MISS_APO.dll
2013-08-16 17:21:55 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2013-08-16 17:21:52 ----A---- C:\Windows\system32\MaxxAudioVnA.dll
2013-08-16 17:21:49 ----A---- C:\Windows\system32\MaxxAudioRealtek2.dll
2013-08-16 17:21:46 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2013-08-16 17:21:40 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2013-08-16 17:21:37 ----A---- C:\Windows\system32\MaxxAudioAPOShell.dll
2013-08-16 17:21:35 ----A---- C:\Windows\system32\MaxxAudioAPO50.dll
2013-08-16 17:21:34 ----A---- C:\Windows\system32\MaxxAudioAPO40.dll
2013-08-16 17:21:33 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2013-08-16 17:21:32 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2013-08-16 17:21:32 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2013-08-16 17:21:30 ----A---- C:\Windows\system32\KAAPORT.dll
2013-08-16 17:21:06 ----A---- C:\Windows\system32\FMAPO.dll
2013-08-16 17:21:06 ----A---- C:\Windows\system32\DTSVoiceClarityDLL.dll
2013-08-16 17:21:04 ----A---- C:\Windows\system32\DTSU2PREC32.dll
2013-08-16 17:21:02 ----A---- C:\Windows\system32\DTSU2PLFX32.dll
2013-08-16 17:21:02 ----A---- C:\Windows\system32\DTSU2PGFX32.dll
2013-08-16 17:20:57 ----A---- C:\Windows\system32\DTSSymmetryDLL.dll
2013-08-16 17:20:57 ----A---- C:\Windows\system32\DTSS2SpeakerDLL.dll
2013-08-16 17:20:56 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL.dll
2013-08-16 17:20:56 ----A---- C:\Windows\system32\DTSNeoPCDLL.dll
2013-08-16 17:20:55 ----A---- C:\Windows\system32\DTSLimiterDLL.dll
2013-08-16 17:20:55 ----A---- C:\Windows\system32\DTSLFXAPO.dll
2013-08-16 17:20:54 ----A---- C:\Windows\system32\DTSGFXAPONS.dll
2013-08-16 17:20:54 ----A---- C:\Windows\system32\DTSGFXAPO.dll
2013-08-16 17:20:54 ----A---- C:\Windows\system32\DTSGainCompensatorDLL.dll
2013-08-16 17:20:53 ----A---- C:\Windows\system32\DTSBoostDLL.dll
2013-08-16 17:20:53 ----A---- C:\Windows\system32\DTSBassEnhancementDLL.dll
2013-08-16 17:20:50 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-08-16 17:20:49 ----A---- C:\Windows\system32\AERTARen.dll
2013-08-16 17:20:49 ----A---- C:\Windows\system32\AERTACap.dll
2013-08-16 17:12:41 ----D---- C:\ProgramData\Intel
2013-08-16 17:06:01 ----D---- C:\Program Files\Logitech
2013-08-14 21:53:08 ----A---- C:\Windows\system32\jscript9.dll
2013-08-14 21:53:08 ----A---- C:\Windows\system32\jscript.dll
2013-08-14 21:53:07 ----A---- C:\Windows\system32\urlmon.dll
2013-08-14 21:53:07 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-14 21:53:07 ----A---- C:\Windows\system32\msfeeds.dll
2013-08-14 21:53:07 ----A---- C:\Windows\system32\jsproxy.dll
2013-08-14 21:53:07 ----A---- C:\Windows\system32\ieui.dll
2013-08-14 21:53:07 ----A---- C:\Windows\system32\iesysprep.dll
2013-08-14 21:53:07 ----A---- C:\Windows\system32\iesetup.dll
2013-08-14 21:53:07 ----A---- C:\Windows\system32\iernonce.dll
2013-08-14 21:53:07 ----A---- C:\Windows\system32\ie4uinit.exe
2013-08-14 21:53:06 ----A---- C:\Windows\system32\iertutil.dll
2013-08-14 21:53:05 ----A---- C:\Windows\system32\wininet.dll
2013-08-14 21:53:04 ----A---- C:\Windows\system32\ieframe.dll
2013-08-14 21:53:03 ----A---- C:\Windows\system32\mshtml.dll
2013-08-14 21:51:53 ----A---- C:\Windows\system32\rpcrt4.dll
2013-08-14 21:51:51 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-08-14 21:51:50 ----A---- C:\Windows\system32\ntkrnlpa.exe
2013-08-14 21:51:50 ----A---- C:\Windows\system32\ntdll.dll
2013-08-14 21:51:47 ----A---- C:\Windows\system32\wintrust.dll
2013-08-14 21:51:47 ----A---- C:\Windows\system32\cryptsvc.dll
2013-08-14 21:51:47 ----A---- C:\Windows\system32\cryptnet.dll
2013-08-14 21:51:47 ----A---- C:\Windows\system32\crypt32.dll
2013-08-14 21:51:46 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-08-14 21:51:45 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-08-14 21:51:32 ----A---- C:\Windows\system32\tzres.dll
2013-08-14 21:51:12 ----A---- C:\Windows\system32\rdpcorets.dll
2013-08-14 21:51:12 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2013-08-07 14:23:46 ----A---- C:\Windows\system32\drivers\iaStorF.sys
2013-08-07 14:23:44 ----A---- C:\Windows\system32\drivers\iaStorA.sys
2013-07-31 15:59:07 ----D---- C:\NvidiaLogging
2013-07-31 15:58:26 ----A---- C:\Windows\system32\nvaudcap32v.dll
2013-07-31 15:58:26 ----A---- C:\Windows\system32\drivers\nvvad32v.sys

======List of files/folders modified in the last 1 month======

2013-08-28 07:31:58 ----D---- C:\Windows\Prefetch
2013-08-28 07:05:18 ----D---- C:\Program Files
2013-08-28 06:54:17 ----D---- C:\Windows\system32\config
2013-08-28 06:42:58 ----A---- C:\Windows\system32\log.txt
2013-08-28 06:39:28 ----D---- C:\Windows
2013-08-28 06:39:28 ----D---- C:\ProgramData\NVIDIA
2013-08-28 00:45:06 ----D---- C:\Users\Ctibor\AppData\Roaming\Skype
2013-08-27 22:11:44 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2013-08-27 20:50:39 ----D---- C:\Program Files\CCleaner
2013-08-27 20:49:44 ----D---- C:\Windows\Minidump
2013-08-27 20:30:10 ----D---- C:\Windows\system32\NDF
2013-08-27 20:20:15 ----SHD---- C:\System Volume Information
2013-08-27 20:19:22 ----D---- C:\Windows\system32\drivers
2013-08-27 20:08:00 ----D---- C:\Windows\SoftwareDistribution
2013-08-27 19:55:27 ----D---- C:\Windows\inf
2013-08-27 19:48:40 ----A---- C:\Windows\system.ini
2013-08-27 19:46:37 ----D---- C:\Windows\System32
2013-08-27 19:46:37 ----D---- C:\Windows\AppPatch
2013-08-27 19:46:36 ----D---- C:\Program Files\Common Files
2013-08-27 00:14:03 ----D---- C:\ProgramData
2013-08-26 16:32:21 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2013-08-26 00:07:26 ----D---- C:\Windows\system32\wfp
2013-08-26 00:07:26 ----D---- C:\Windows\system32\wbem
2013-08-26 00:07:26 ----D---- C:\Windows\system32\DriverStore
2013-08-26 00:07:26 ----D---- C:\Windows\system32\catroot2
2013-08-26 00:07:25 ----D---- C:\Users\Ctibor\AppData\Roaming\IrfanView
2013-08-26 00:07:20 ----D---- C:\Windows\registration
2013-08-25 23:44:41 ----SHD---- C:\Windows\Installer
2013-08-25 23:44:41 ----D---- C:\Config.Msi
2013-08-25 17:07:46 ----D---- C:\Windows\Tasks
2013-08-25 16:57:18 ----D---- C:\Windows\system32\drivers\etc
2013-08-25 16:44:25 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-08-25 14:48:59 ----D---- C:\Users\Ctibor\AppData\Roaming\vlc
2013-08-25 11:32:59 ----D---- C:\Program Files\Mozilla Firefox
2013-08-24 21:28:18 ----SD---- C:\Users\Ctibor\AppData\Roaming\Microsoft
2013-08-24 19:03:41 ----D---- C:\Windows\system32\catroot
2013-08-24 19:02:59 ----D---- C:\ProgramData\YTD Video Downloader
2013-08-22 23:12:00 ----HD---- C:\Program Files\InstallShield Installation Information
2013-08-22 23:11:59 ----D---- C:\Windows\Options
2013-08-22 23:11:59 ----D---- C:\Program Files\Realtek
2013-08-22 20:30:42 ----D---- C:\Program Files\WebcamMax
2013-08-22 18:53:50 ----RSD---- C:\Windows\assembly
2013-08-22 18:53:50 ----D---- C:\Windows\Microsoft.NET
2013-08-22 18:45:10 ----D---- C:\Windows\winsxs
2013-08-22 18:22:28 ----RSD---- C:\Windows\Fonts
2013-08-22 18:22:28 ----D---- C:\Windows\system32\migration
2013-08-22 18:22:28 ----D---- C:\Windows\system32\en-US
2013-08-22 18:22:28 ----D---- C:\Windows\system32\cs-CZ
2013-08-22 18:22:28 ----D---- C:\Windows\PolicyDefinitions
2013-08-22 18:22:27 ----D---- C:\Windows\system32\drivers\en-US
2013-08-22 18:22:27 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-08-22 18:15:13 ----D---- C:\ProgramData\Microsoft Help
2013-08-21 05:47:46 ----A---- C:\Windows\win.ini
2013-08-20 23:02:51 ----D---- C:\Windows\system32\Tasks
2013-08-18 23:31:12 ----D---- C:\Program Files\VideoLAN
2013-08-18 07:56:24 ----D---- C:\Windows\PCHEALTH
2013-08-16 23:37:06 ----D---- C:\Program Files\Google
2013-08-16 23:24:33 ----D---- C:\ProgramData\Google
2013-08-16 23:22:46 ----D---- C:\Program Files\Adobe
2013-08-16 23:09:19 ----D---- C:\ProgramData\VSO
2013-08-16 23:08:44 ----D---- C:\Windows\Panther
2013-08-16 23:08:44 ----D---- C:\Windows\debug
2013-08-16 23:03:45 ----D---- C:\Program Files\SUPERAntiSpyware
2013-08-16 17:38:11 ----D---- C:\ProgramData\DriverGenius
2013-08-16 17:07:16 ----D---- C:\Program Files\Common Files\Logishrd
2013-08-16 17:06:05 ----D---- C:\ProgramData\Logishrd
2013-08-16 17:05:57 ----D---- C:\ProgramData\Logitech
2013-08-15 18:00:39 ----D---- C:\Windows\rescache
2013-08-15 07:06:21 ----AD---- C:\ProgramData\TEMP
2013-08-14 23:10:47 ----D---- C:\Program Files\Internet Explorer
2013-08-14 21:59:50 ----D---- C:\Windows\system32\MRT
2013-08-14 21:57:17 ----A---- C:\Windows\system32\MRT.exe
2013-08-01 21:43:25 ----D---- C:\Program Files\IncrediMail
2013-07-31 15:58:45 ----D---- C:\Program Files\NVIDIA Corporation

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-10-17 462104]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-08-07 505192]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-08-07 25448]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2012-09-17 106296]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx86.sys [2013-08-22 37664]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2013-03-28 135136]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2013-03-28 37352]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2013-07-22 113336]
R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2012-08-27 28520]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2013-03-28 84744]
R2 DefragFS;DefragFS; C:\Windows\system32\drivers\DefragFS.sys [2012-09-11 104088]
R2 LiveTunerPM;Ashampoo LiveTuner ProcessMonitor Driver; \??\C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerProcessMonitor32.sys [2011-03-08 12696]
R2 PDFSfilter;PDFsFilter; C:\Windows\system32\DRIVERS\PDFsFilter.sys [2012-08-23 69016]
R2 WCMVCAM;WebcamMax, WDM Video Capture; C:\Windows\system32\DRIVERS\wcmvcam.sys [2011-06-13 1066808]
R3 HECI;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECI.sys [2009-09-17 41088]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2013-03-29 2646088]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2013-05-23 43800]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2013-05-23 37528]
R3 MarvinBus;Pinnacle Marvin Bus; C:\Windows\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2012-08-27 86408]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2012-08-27 178568]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2013-02-25 154400]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad32v.sys [2013-05-14 34592]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2013-04-10 651848]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 DrvAgent32;DrvAgent32; \??\C:\Windows\system32\Drivers\DrvAgent32.sys [2013-01-16 23456]
S3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2010-02-10 132352]
S3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2013-04-04 22856]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\mbamswissarmy.sys [2013-08-26 40776]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2011-05-18 18176]
S3 ovt519;TRUST 320 SPACEC@M; C:\Windows\System32\Drivers\ov519vid.sys [2003-05-06 163072]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2010-12-20 47360]
S3 PSI;PSI; C:\Windows\system32\DRIVERS\psi_mf_x86.sys [2013-02-07 16024]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-07-14 27648]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirService;Avira Real-Time Protection; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2013-07-01 108088]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2013-07-01 84024]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
R2 JMB36X;JMB36X; C:\Windows\System32\XSrvSetup.exe [2000-01-01 72280]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2000-01-01 325656]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-07-27 14592288]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-06-21 640288]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-07-27 1889568]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-06-21 413472]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2000-01-01 2533400]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2012-10-15 116608]
S3 ABBYY.Licensing.FineReader.Professional.11.0;ABBYY FineReader 11 PE Licensing Service; D:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe [2011-08-18 819976]
S3 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-10-05 136176]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-10-05 136176]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-14 194032]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2013-06-13 293144]
S3 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S3 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-08-16 119208]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PDAgent;PDAgent; C:\Program Files\Raxco\PerfectDisk\PDAgent.exe [2012-10-04 1415032]
S3 PDEngine;PDEngine; C:\Program Files\Common Files\Raxco\Shared\PDEngine.exe [2012-10-04 2166648]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [2013-02-07 1223704]
S3 Secunia Update Agent;Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [2013-02-07 660504]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S3 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-06-21 162408]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 TeamViewer8;TeamViewer 8; C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe [2013-08-07 4308320]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 AntiVirWebService;Avira Web Protection; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [2013-07-01 589368]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[Rudy]

Zdravím!
Jak to vypadá s legalitou vašeho oper. systému?

[ccc]

jak jsem již psal asi před 2ma roky měla by být doufám vpořádku -http://forum.viry.cz/viewtopic.php?f=28&t=116743

[Rudy]

OK. Já to porovnával s posledním řešení a tam šlo o jinou verzi. Dejte log ComboFix:

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware.

[ccc]

jj, minule jsem pomáhal kámošce

ComboFix 13-08-28.02 - Ctibor 28.08.2013 193533.9.4 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1033.18.3547.2352 [GMT 2:00]
Spuštěný z: c:\users\Ctibor\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-07-28 do 2013-08-28 )))))))))))))))))))))))))))))))
.
.
2013-08-28 05:05 . 2013-08-28 05:31 -------- d-----w- c:\program files\trend micro
2013-08-28 05:05 . 2013-08-28 05:32 -------- d-----w- C:\rsit
2013-08-27 18:17 . 2013-08-06 07:28 7166848 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E005AE13-BD06-484E-A77F-187819BFD472}\mpengine.dll
2013-08-26 06:06 . 2013-08-26 06:07 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2013-08-25 10:00 . 2013-08-25 10:00 -------- d-----w- c:\program files\Unlocker
2013-08-24 18:25 . 2013-08-24 18:25 -------- d-----w- c:\programdata\SecTaskMan
2013-08-22 17:20 . 2013-08-22 17:20 37664 ----a-w- c:\windows\system32\drivers\avgtpx86.sys
2013-08-22 16:13 . 2012-07-26 03:39 526952 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2013-08-22 16:13 . 2012-07-26 03:39 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2013-08-22 16:13 . 2012-07-26 02:46 9728 ----a-w- c:\windows\system32\Wdfres.dll
2013-08-22 16:13 . 2012-07-26 02:33 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2013-08-22 16:13 . 2012-07-26 02:32 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2013-08-22 16:13 . 2012-07-26 03:21 196608 ----a-w- c:\windows\system32\WUDFHost.exe
2013-08-22 16:13 . 2012-07-26 03:20 73216 ----a-w- c:\windows\system32\WUDFSvc.dll
2013-08-22 16:13 . 2012-07-26 03:20 613888 ----a-w- c:\windows\system32\WUDFx.dll
2013-08-22 16:13 . 2012-07-26 03:20 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2013-08-22 16:13 . 2012-07-26 03:20 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll
2013-08-22 16:02 . 2012-10-09 17:40 44032 ----a-w- c:\windows\system32\dhcpcsvc6.dll
2013-08-22 16:02 . 2012-10-09 17:40 193536 ----a-w- c:\windows\system32\dhcpcore6.dll
2013-08-22 16:01 . 2011-04-22 19:14 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2013-08-22 14:09 . 2013-08-22 14:09 -------- d-----w- c:\users\Ctibor\AppData\Local\Radiocom
2013-08-22 14:07 . 2013-03-12 08:27 93976 ----a-w- c:\program files\Mozilla Firefox\plugins\nppluginrichmediaplayer.dll
2013-08-17 21:06 . 2013-08-18 05:56 -------- d-----w- c:\program files\Mozilla Maintenance Service
2013-08-16 15:21 . 2013-03-08 10:51 849968 ----a-w- c:\windows\system32\MISS_APO.dll
2013-08-16 15:20 . 2011-05-31 07:42 631400 ----a-w- c:\windows\system32\DTSSymmetryDLL.dll
2013-08-16 15:12 . 2013-08-16 15:12 -------- d-----w- c:\programdata\Intel
2013-08-16 15:06 . 2013-08-16 15:06 -------- d-----w- c:\program files\Logitech
2013-08-14 19:51 . 2013-07-09 04:50 652800 ----a-w- c:\windows\system32\rpcrt4.dll
2013-08-14 19:51 . 2013-07-09 05:03 3913664 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-08-14 19:51 . 2013-07-09 05:03 3968960 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-08-14 19:51 . 2013-07-09 04:53 1289096 ----a-w- c:\windows\system32\ntdll.dll
2013-08-14 19:51 . 2013-07-09 04:52 175104 ----a-w- c:\windows\system32\wintrust.dll
2013-08-14 19:51 . 2013-07-09 04:46 140288 ----a-w- c:\windows\system32\cryptsvc.dll
2013-08-14 19:51 . 2013-07-09 04:46 1166848 ----a-w- c:\windows\system32\crypt32.dll
2013-08-14 19:51 . 2013-07-09 04:46 103936 ----a-w- c:\windows\system32\cryptnet.dll
2013-08-14 19:51 . 2013-07-25 08:57 1620992 ----a-w- c:\windows\system32\WMVDECOD.DLL
2013-08-14 19:51 . 2013-07-06 05:05 1293760 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-08-14 19:51 . 2013-07-19 01:41 2048 ----a-w- c:\windows\system32\tzres.dll
2013-08-14 19:51 . 2013-06-15 03:40 918528 ----a-w- c:\windows\system32\rdpcorets.dll
2013-08-14 19:51 . 2013-06-15 03:38 31232 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
2013-08-07 12:23 . 2013-08-07 12:23 25448 ----a-w- c:\windows\system32\drivers\iaStorF.sys
2013-08-07 12:23 . 2013-08-07 12:23 505192 ----a-w- c:\windows\system32\drivers\iaStorA.sys
2013-07-31 13:59 . 2013-07-31 13:59 -------- d-----w- C:\NvidiaLogging
2013-07-31 13:58 . 2013-05-14 19:28 34592 ----a-w- c:\windows\system32\drivers\nvvad32v.sys
2013-07-31 13:58 . 2013-05-14 19:27 28448 ----a-w- c:\windows\system32\nvaudcap32v.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-08-27 20:11 . 2012-04-01 15:10 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-08-27 20:11 . 2011-05-15 21:58 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-08-16 15:06 . 2011-11-03 22:08 16400 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2013-08-15 05:09 . 2010-10-08 21:29 483952 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2013-07-22 02:19 . 2013-07-22 02:19 113336 ----a-w- c:\windows\system32\drivers\scdemu.sys
2013-07-05 16:26 . 2013-07-05 16:27 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-07-05 16:26 . 2012-05-04 21:33 867240 ----a-w- c:\windows\system32\npdeployJava1.dll
2013-07-05 16:26 . 2010-09-28 15:48 789416 ----a-w- c:\windows\system32\deployJava1.dll
2013-07-05 16:04 . 2010-12-20 15:32 47360 ----a-w- c:\users\Ctibor\AppData\Roaming\pcouffin.sys
2013-07-01 13:19 . 2013-05-07 13:54 67168 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2013-06-21 12:02 . 2013-07-02 13:56 9069344 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2013-06-21 12:02 . 2013-07-02 13:56 893728 ----a-w- c:\windows\system32\nvdispgenco3232049.dll
2013-06-21 12:02 . 2013-07-02 13:56 7687592 ----a-w- c:\windows\system32\nvcuda.dll
2013-06-21 12:02 . 2013-07-02 13:56 6324360 ----a-w- c:\windows\system32\nvopencl.dll
2013-06-21 12:02 . 2013-07-02 13:56 467232 ----a-w- c:\windows\system32\NvIFR.dll
2013-06-21 12:02 . 2013-07-02 13:56 465184 ----a-w- c:\windows\system32\NvFBC.dll
2013-06-21 12:02 . 2013-07-02 13:56 2777888 ----a-w- c:\windows\system32\nvcuvid.dll
2013-06-21 12:02 . 2013-07-02 13:56 214448 ----a-w- c:\windows\system32\nvinit.dll
2013-06-21 12:02 . 2013-07-02 13:56 21102368 ----a-w- c:\windows\system32\nvoglv32.dll
2013-06-21 12:02 . 2013-07-02 13:56 2002720 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-06-21 12:02 . 2013-07-02 13:56 181488 ----a-w- c:\windows\system32\nvoglshim32.dll
2013-06-21 12:02 . 2013-07-02 13:56 1024288 ----a-w- c:\windows\system32\nvdispco3232049.dll
2013-06-21 12:02 . 2013-07-02 13:56 17560352 ----a-w- c:\windows\system32\nvcompiler.dll
2013-06-21 12:02 . 2012-03-02 19:25 925648 ----a-w- c:\windows\system32\nvumdshim.dll
2013-06-21 12:02 . 2011-05-21 04:01 13411896 ----a-w- c:\windows\system32\nvwgf2um.dll
2013-06-21 12:02 . 2011-05-21 04:01 12427240 ----a-w- c:\windows\system32\nvd3dum.dll
2013-06-21 12:02 . 2010-07-10 03:37 2597856 ----a-w- c:\windows\system32\nvapi.dll
2013-06-21 09:52 . 2011-01-07 20:06 4192544 ----a-w- c:\windows\system32\nvcpl.dll
2013-06-21 09:52 . 2011-01-07 20:06 3045664 ----a-w- c:\windows\system32\nvsvc.dll
2013-06-21 09:52 . 2011-01-07 20:06 640288 ----a-w- c:\windows\system32\nvvsvc.exe
2013-06-21 09:52 . 2011-01-07 20:06 2555168 ----a-w- c:\windows\system32\nvsvcr.dll
2013-06-21 09:52 . 2010-07-09 14:20 62752 ----a-w- c:\windows\system32\nvshext.dll
2013-06-21 09:52 . 2011-01-07 20:06 223008 ----a-w- c:\windows\system32\nvmctray.dll
2013-06-21 03:16 . 2013-06-21 03:16 566048 ----a-w- c:\windows\system32\nvStreaming.exe
2013-06-05 03:05 . 2013-07-11 13:27 2347520 ----a-w- c:\windows\system32\win32k.sys
2013-06-04 04:53 . 2013-07-11 13:27 509440 ----a-w- c:\windows\system32\qedit.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"IncrediMail"="c:\program files\IncrediMail\bin\IncMail.exe" [2012-12-07 366576]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2013-07-01 345144]
"Nvtmru"="c:\program files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-07-27 1028896]
"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2013-08-07 36352]
"NUSB3MON"="c:\program files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2011-09-16 115048]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2011-05-04 17:54 551296 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2013-06-13 19:31 64280 ----a-w- c:\program files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\NVIDIA~1\NVSTRE~1\rxinput.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ PDBoot.exe\0autocheck autochk *
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"RTHDVCPL"=c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe -s
"JMB36X IDE Setup"=c:\windows\RaidTool\xInsIDE.exe
.
R3 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [2012-10-15 116608]
R3 ABBYY.Licensing.FineReader.Professional.11.0;ABBYY FineReader 11 PE Licensing Service;d:\program files\ABBYY FineReader 11\NetworkLicenseServer.exe [2011-08-18 819976]
R3 DrvAgent32;DrvAgent32;c:\windows\system32\Drivers\DrvAgent32.sys [2013-01-16 23456]
R3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2010-02-10 132352]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 22856]
R3 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2013-08-26 40776]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [2010-12-20 47360]
R3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf_x86.sys [2013-02-07 16024]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
R3 Secunia PSI Agent;Secunia PSI Agent;c:\program files\Secunia\PSI\PSIA.exe [2013-02-07 1223704]
R3 Secunia Update Agent;Secunia Update Agent;c:\program files\Secunia\PSI\sua.exe [2013-02-07 660504]
R3 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-06-21 162408]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 TeamViewer8;TeamViewer 8;c:\program files\TeamViewer\Version8\TeamViewer_Service.exe [2013-08-07 4308320]
R3 TsUsbFlt;TsUsbFlt; [x]
R4 AntiVirWebService;Avira Web Protection;c:\program files\Avira\AntiVir Desktop\AVWEBGRD.EXE [2013-07-01 589368]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys [2013-08-07 505192]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys [2013-08-07 25448]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2013-08-22 37664]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2013-03-28 37352]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2013-07-01 84024]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
S2 JMB36X;JMB36X;c:\windows\System32\XSrvSetup.exe [2000-01-01 72280]
S2 LiveTunerPM;Ashampoo LiveTuner ProcessMonitor Driver;c:\program files\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerProcessMonitor32.sys [2011-03-08 12696]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-07-27 14592288]
S2 PDFSfilter;PDFsFilter;c:\windows\system32\DRIVERS\PDFsFilter.sys [2012-08-23 69016]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-06-21 413472]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2012-08-27 86408]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2012-08-27 178568]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2013-05-14 34592]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2013-04-10 651848]
.
.
Obsah adresáře 'Naplánované úlohy'
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Převést cíl vazby do Adobe PDF
IE: Převést do Adobe PDF
IE: Připojit cíl vazby k existujícímu PDF
IE: Připojit k existujícímu PDF
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{EAED83F9-4986-4B9F-8464-0447ED07AC89}: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Ctibor\AppData\Roaming\Mozilla\Firefox\Profiles\gncvivsw.default-1370692840368\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2832595&SearchSource=2&CUI=UN62176560412819404&UM=1&q=
FF - ExtSQL: 2013-08-19 10:38; langpack-cs@firefox.mozilla.org; c:\users\Ctibor\AppData\Roaming\Mozilla\Firefox\Profiles\gncvivsw.default-1370692840368\extensions\langpack-cs@firefox.mozilla.org.xpi
FF - ExtSQL: 2013-08-27 21:24; {942cd1d4-9cc1-4d31-876a-ea8f489f7a59}; c:\users\Ctibor\AppData\Roaming\Mozilla\Firefox\Profiles\gncvivsw.default-1370692840368\extensions\{942cd1d4-9cc1-4d31-876a-ea8f489f7a59}
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl"
.
Celkový čas: 2013-08-28 19:42:41
ComboFix-quarantined-files.txt 2013-08-28 17:42
.
Před spuštěním: Volných bajtů: 13 499 736 064
Po spuštění: Volných bajtů: 13 398 982 656
.
- - End Of File - - E3D12594062A9A2E429668ECCFBB9F67
A36C5E4F47E84449FF07ED3517B43A31

[ccc]

to bude asi jak jsem aktualizoval drivery - C:\WINDOWS\SYSTEM32\DRIVERS\TCPIP.SYS , né?

[Rudy]

Dočistíme. Otevřte poznámkový blok a zkopírujte do něj:

KillAll::

Firefox::
FF - ProfilePath - c:\users\Ctibor\AppData\Roaming\Mozilla\Firefox\Profiles\gncvivsw.default-1370692840368\
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.as ... 04&UM=1&q=

Reboot::

Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

[ccc]

mám to stopnout a zkusit znova v nouzáku? přes hodinu to stojí na "vyhledávám nakaž. soubory" a nic

[Rudy]

Ano, zkuste to v NR.

[ccc]

ComboFix 13-08-28.02 - Ctibor 28.08.2013 223919.10.4 - x86 NETWORK
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1033.18.3547.2891 [GMT 2:00]
Spuštěný z: c:\users\Ctibor\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Ctibor\Desktop\CFScript.txt
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-07-28 do 2013-08-28 )))))))))))))))))))))))))))))))
.
.
2013-08-28 20:46 . 2013-08-28 20:48 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-08-28 05:05 . 2013-08-28 05:31 -------- d-----w- c:\program files\trend micro
2013-08-28 05:05 . 2013-08-28 05:32 -------- d-----w- C:\rsit
2013-08-27 18:17 . 2013-08-06 07:28 7166848 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E005AE13-BD06-484E-A77F-187819BFD472}\mpengine.dll
2013-08-26 06:06 . 2013-08-26 06:07 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2013-08-25 10:00 . 2013-08-25 10:00 -------- d-----w- c:\program files\Unlocker
2013-08-24 18:25 . 2013-08-24 18:25 -------- d-----w- c:\programdata\SecTaskMan
2013-08-22 17:20 . 2013-08-22 17:20 37664 ----a-w- c:\windows\system32\drivers\avgtpx86.sys
2013-08-22 16:13 . 2012-07-26 03:39 526952 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2013-08-22 16:13 . 2012-07-26 03:39 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2013-08-22 16:13 . 2012-07-26 02:46 9728 ----a-w- c:\windows\system32\Wdfres.dll
2013-08-22 16:13 . 2012-07-26 02:33 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2013-08-22 16:13 . 2012-07-26 02:32 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2013-08-22 16:13 . 2012-07-26 03:21 196608 ----a-w- c:\windows\system32\WUDFHost.exe
2013-08-22 16:13 . 2012-07-26 03:20 73216 ----a-w- c:\windows\system32\WUDFSvc.dll
2013-08-22 16:13 . 2012-07-26 03:20 613888 ----a-w- c:\windows\system32\WUDFx.dll
2013-08-22 16:13 . 2012-07-26 03:20 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2013-08-22 16:13 . 2012-07-26 03:20 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll
2013-08-22 16:02 . 2012-10-09 17:40 44032 ----a-w- c:\windows\system32\dhcpcsvc6.dll
2013-08-22 16:02 . 2012-10-09 17:40 193536 ----a-w- c:\windows\system32\dhcpcore6.dll
2013-08-22 16:01 . 2011-04-22 19:14 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2013-08-22 14:09 . 2013-08-22 14:09 -------- d-----w- c:\users\Ctibor\AppData\Local\Radiocom
2013-08-22 14:07 . 2013-03-12 08:27 93976 ----a-w- c:\program files\Mozilla Firefox\plugins\nppluginrichmediaplayer.dll
2013-08-17 21:06 . 2013-08-18 05:56 -------- d-----w- c:\program files\Mozilla Maintenance Service
2013-08-16 15:21 . 2013-03-08 10:51 849968 ----a-w- c:\windows\system32\MISS_APO.dll
2013-08-16 15:20 . 2011-05-31 07:42 631400 ----a-w- c:\windows\system32\DTSSymmetryDLL.dll
2013-08-16 15:12 . 2013-08-16 15:12 -------- d-----w- c:\programdata\Intel
2013-08-16 15:06 . 2013-08-16 15:06 -------- d-----w- c:\program files\Logitech
2013-08-14 19:51 . 2013-07-09 04:50 652800 ----a-w- c:\windows\system32\rpcrt4.dll
2013-08-14 19:51 . 2013-07-09 05:03 3913664 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-08-14 19:51 . 2013-07-09 05:03 3968960 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-08-14 19:51 . 2013-07-09 04:53 1289096 ----a-w- c:\windows\system32\ntdll.dll
2013-08-14 19:51 . 2013-07-09 04:52 175104 ----a-w- c:\windows\system32\wintrust.dll
2013-08-14 19:51 . 2013-07-09 04:46 140288 ----a-w- c:\windows\system32\cryptsvc.dll
2013-08-14 19:51 . 2013-07-09 04:46 1166848 ----a-w- c:\windows\system32\crypt32.dll
2013-08-14 19:51 . 2013-07-09 04:46 103936 ----a-w- c:\windows\system32\cryptnet.dll
2013-08-14 19:51 . 2013-07-25 08:57 1620992 ----a-w- c:\windows\system32\WMVDECOD.DLL
2013-08-14 19:51 . 2013-07-06 05:05 1293760 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-08-14 19:51 . 2013-07-19 01:41 2048 ----a-w- c:\windows\system32\tzres.dll
2013-08-14 19:51 . 2013-06-15 03:40 918528 ----a-w- c:\windows\system32\rdpcorets.dll
2013-08-14 19:51 . 2013-06-15 03:38 31232 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
2013-08-07 12:23 . 2013-08-07 12:23 25448 ----a-w- c:\windows\system32\drivers\iaStorF.sys
2013-08-07 12:23 . 2013-08-07 12:23 505192 ----a-w- c:\windows\system32\drivers\iaStorA.sys
2013-07-31 13:59 . 2013-07-31 13:59 -------- d-----w- C:\NvidiaLogging
2013-07-31 13:58 . 2013-05-14 19:28 34592 ----a-w- c:\windows\system32\drivers\nvvad32v.sys
2013-07-31 13:58 . 2013-05-14 19:27 28448 ----a-w- c:\windows\system32\nvaudcap32v.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-08-27 20:11 . 2012-04-01 15:10 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-08-27 20:11 . 2011-05-15 21:58 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-08-16 15:06 . 2011-11-03 22:08 16400 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2013-08-15 05:09 . 2010-10-08 21:29 483952 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2013-07-22 02:19 . 2013-07-22 02:19 113336 ----a-w- c:\windows\system32\drivers\scdemu.sys
2013-07-05 16:26 . 2013-07-05 16:27 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-07-05 16:26 . 2012-05-04 21:33 867240 ----a-w- c:\windows\system32\npdeployJava1.dll
2013-07-05 16:26 . 2010-09-28 15:48 789416 ----a-w- c:\windows\system32\deployJava1.dll
2013-07-05 16:04 . 2010-12-20 15:32 47360 ----a-w- c:\users\Ctibor\AppData\Roaming\pcouffin.sys
2013-07-01 13:19 . 2013-05-07 13:54 67168 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2013-06-21 12:02 . 2013-07-02 13:56 9069344 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2013-06-21 12:02 . 2013-07-02 13:56 893728 ----a-w- c:\windows\system32\nvdispgenco3232049.dll
2013-06-21 12:02 . 2013-07-02 13:56 7687592 ----a-w- c:\windows\system32\nvcuda.dll
2013-06-21 12:02 . 2013-07-02 13:56 6324360 ----a-w- c:\windows\system32\nvopencl.dll
2013-06-21 12:02 . 2013-07-02 13:56 467232 ----a-w- c:\windows\system32\NvIFR.dll
2013-06-21 12:02 . 2013-07-02 13:56 465184 ----a-w- c:\windows\system32\NvFBC.dll
2013-06-21 12:02 . 2013-07-02 13:56 2777888 ----a-w- c:\windows\system32\nvcuvid.dll
2013-06-21 12:02 . 2013-07-02 13:56 214448 ----a-w- c:\windows\system32\nvinit.dll
2013-06-21 12:02 . 2013-07-02 13:56 21102368 ----a-w- c:\windows\system32\nvoglv32.dll
2013-06-21 12:02 . 2013-07-02 13:56 2002720 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-06-21 12:02 . 2013-07-02 13:56 181488 ----a-w- c:\windows\system32\nvoglshim32.dll
2013-06-21 12:02 . 2013-07-02 13:56 1024288 ----a-w- c:\windows\system32\nvdispco3232049.dll
2013-06-21 12:02 . 2013-07-02 13:56 17560352 ----a-w- c:\windows\system32\nvcompiler.dll
2013-06-21 12:02 . 2012-03-02 19:25 925648 ----a-w- c:\windows\system32\nvumdshim.dll
2013-06-21 12:02 . 2011-05-21 04:01 13411896 ----a-w- c:\windows\system32\nvwgf2um.dll
2013-06-21 12:02 . 2011-05-21 04:01 12427240 ----a-w- c:\windows\system32\nvd3dum.dll
2013-06-21 12:02 . 2010-07-10 03:37 2597856 ----a-w- c:\windows\system32\nvapi.dll
2013-06-21 09:52 . 2011-01-07 20:06 4192544 ----a-w- c:\windows\system32\nvcpl.dll
2013-06-21 09:52 . 2011-01-07 20:06 3045664 ----a-w- c:\windows\system32\nvsvc.dll
2013-06-21 09:52 . 2011-01-07 20:06 640288 ----a-w- c:\windows\system32\nvvsvc.exe
2013-06-21 09:52 . 2011-01-07 20:06 2555168 ----a-w- c:\windows\system32\nvsvcr.dll
2013-06-21 09:52 . 2010-07-09 14:20 62752 ----a-w- c:\windows\system32\nvshext.dll
2013-06-21 09:52 . 2011-01-07 20:06 223008 ----a-w- c:\windows\system32\nvmctray.dll
2013-06-21 03:16 . 2013-06-21 03:16 566048 ----a-w- c:\windows\system32\nvStreaming.exe
2013-06-05 03:05 . 2013-07-11 13:27 2347520 ----a-w- c:\windows\system32\win32k.sys
2013-06-04 04:53 . 2013-07-11 13:27 509440 ----a-w- c:\windows\system32\qedit.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"IncrediMail"="c:\program files\IncrediMail\bin\IncMail.exe" [2012-12-07 366576]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2013-07-01 345144]
"Nvtmru"="c:\program files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-07-27 1028896]
"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2013-08-07 36352]
"NUSB3MON"="c:\program files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2011-09-16 115048]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2011-05-04 17:54 551296 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2013-06-13 19:31 64280 ----a-w- c:\program files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\NVIDIA~1\NVSTRE~1\rxinput.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ PDBoot.exe\0autocheck autochk *
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"RTHDVCPL"=c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe -s
"JMB36X IDE Setup"=c:\windows\RaidTool\xInsIDE.exe
.
R3 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [2012-10-15 116608]
R3 ABBYY.Licensing.FineReader.Professional.11.0;ABBYY FineReader 11 PE Licensing Service;d:\program files\ABBYY FineReader 11\NetworkLicenseServer.exe [2011-08-18 819976]
R3 DrvAgent32;DrvAgent32;c:\windows\system32\Drivers\DrvAgent32.sys [2013-01-16 23456]
R3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2010-02-10 132352]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 22856]
R3 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2013-08-26 40776]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [2010-12-20 47360]
R3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf_x86.sys [2013-02-07 16024]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
R3 Secunia PSI Agent;Secunia PSI Agent;c:\program files\Secunia\PSI\PSIA.exe [2013-02-07 1223704]
R3 Secunia Update Agent;Secunia Update Agent;c:\program files\Secunia\PSI\sua.exe [2013-02-07 660504]
R3 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-06-21 162408]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 TeamViewer8;TeamViewer 8;c:\program files\TeamViewer\Version8\TeamViewer_Service.exe [2013-08-07 4308320]
R3 TsUsbFlt;TsUsbFlt; [x]
R4 AntiVirWebService;Avira Web Protection;c:\program files\Avira\AntiVir Desktop\AVWEBGRD.EXE [2013-07-01 589368]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys [2013-08-07 505192]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys [2013-08-07 25448]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2013-08-22 37664]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2013-03-28 37352]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2013-07-01 84024]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
S2 JMB36X;JMB36X;c:\windows\System32\XSrvSetup.exe [2000-01-01 72280]
S2 LiveTunerPM;Ashampoo LiveTuner ProcessMonitor Driver;c:\program files\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerProcessMonitor32.sys [2011-03-08 12696]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-07-27 14592288]
S2 PDFSfilter;PDFsFilter;c:\windows\system32\DRIVERS\PDFsFilter.sys [2012-08-23 69016]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-06-21 413472]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2012-08-27 86408]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2012-08-27 178568]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2013-05-14 34592]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2013-04-10 651848]
.
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Převést cíl vazby do Adobe PDF
IE: Převést do Adobe PDF
IE: Připojit cíl vazby k existujícímu PDF
IE: Připojit k existujícímu PDF
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{EAED83F9-4986-4B9F-8464-0447ED07AC89}: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Ctibor\AppData\Roaming\Mozilla\Firefox\Profiles\gncvivsw.default-1370692840368\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - ExtSQL: 2013-08-19 10:38; langpack-cs@firefox.mozilla.org; c:\users\Ctibor\AppData\Roaming\Mozilla\Firefox\Profiles\gncvivsw.default-1370692840368\extensions\langpack-cs@firefox.mozilla.org.xpi
FF - ExtSQL: 2013-08-27 21:24; {942cd1d4-9cc1-4d31-876a-ea8f489f7a59}; c:\users\Ctibor\AppData\Roaming\Mozilla\Firefox\Profiles\gncvivsw.default-1370692840368\extensions\{942cd1d4-9cc1-4d31-876a-ea8f489f7a59}
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(2204)
c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\windows\system32\sppsvc.exe
c:\windows\system32\conhost.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\windows\System32\rundll32.exe
c:\windows\System32\WUDFHost.exe
c:\windows\system32\conhost.exe
c:\program files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
.
**************************************************************************
.
Celkový čas: 2013-08-28 22:52:24 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-08-28 20:52
ComboFix2.txt 2013-08-28 17:42
.
Před spuštěním: Volných bajtů: 13 695 127 552
Po spuštění: Volných bajtů: 13 522 960 384
.
- - End Of File - - A91C29F8DD0E3123A2D6D8967735184F
A36C5E4F47E84449FF07ED3517B43A31

[Rudy]

Čisto. Nastala nějaká změna?

[ccc]

po restartu po CF šel IE normálně spustit, ale ale udělal jsem ještě jeden restart, aby se načetly ikony v systray a už se opět jen otevře, ale stránky nenačte. Ve spráci procesů je ImLpp.exe spuštený asi 25x

[ccc]

Po víc jak hodinovém skenu nový RSIT:

Logfile of random's system information tool 1.09 (written by random/random)
Run by Ctibor at 2013-08-28 23:30:50
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 13 GB (13%) free of 100 GB
Total RAM: 3547 MB (71% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:54:48, on
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16660)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\IncrediMail\Bin\IncMail.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\IncrediMail\Bin\ImApp.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Windows\system32\Ctfmon.exe
C:\Users\Ctibor\Desktop\RSIT.exe
C:\Program Files\trend micro\Ctibor.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Nvtmru] "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKUS\S-1-5-21-1221677159-1799410114-737550883-1004\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1221677159-1799410114-737550883-1004\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1221677159-1799410114-737550883-1004\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\NVIDIA~1\NVSTRE~1\rxinput.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: ABBYY FineReader 11 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.11.0) - ABBYY - D:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: JMB36X - Unknown owner - C:\Windows\System32\XSrvSetup.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PDAgent - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDAgent.exe
O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files\Common Files\Raxco\Shared\PDEngine.exe
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Ashampoo LiveTuner Service (WO_LiveService) - Unknown owner - C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerService.exe

--
End of file - 7686 bytes

=========Mozilla firefox=========

ProfilePath - C:\Users\Ctibor\AppData\Roaming\Mozilla\Firefox\Profiles\gncvivsw.default-1370692840368

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"

"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
"{F003DA68-8256-4b37-A6C4-350FA04494DF}"=C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.8.800.94 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw_1203133.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Plus Web Player Plug-In,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@veetle.com/vbp;version=0.9.18]
"Description"=Veetle Broadcaster Plugin
"Path"=C:\Program Files\Veetle\VLCBroadcast\npvbp.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


C:\Users\Ctibor\AppData\Roaming\Mozilla\Firefox\Profiles\gncvivsw.default-1370692840368\extensions\
{942cd1d4-9cc1-4d31-876a-ea8f489f7a59}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2013-05-06 194912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-07-05 463272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF949550-9094-4807-95EC-D1C317803333}]
Logitech SetPoint - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2013-07-31 364824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-07-05 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2013-07-01 345144]
"Nvtmru"=C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-07-27 1028896]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2013-08-07 36352]
"NUSB3MON"=C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2011-09-16 115048]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"IncrediMail"=C:\Program Files\IncrediMail\bin\IncMail.exe [2012-12-07 366576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~1\NVIDIA~1\NVSTRE~1\rxinput.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2011-05-04 551296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2013-06-13 64280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2013-03-13 204800]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\Windows\system32\wpdshserviceobj.dll [2010-11-20 105984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=153
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"EnableShellExecuteHooks"=1
"NoDrives"=0
"NoDriveTypeAutoRun"=153

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"VIDC.FFDS"=ff_vfw.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux6"=wdmaud.drv
"msacm.l3codec"=l3codecp.acm
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"MSVideo"=vfwwdm32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux3"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"aux4"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"aux7"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"aux8"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"aux"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2013-08-28 22:52:27 ----D---- C:\Windows\temp
2013-08-28 22:52:25 ----A---- C:\ComboFix.txt
2013-08-28 22:49:00 ----SHD---- C:\$RECYCLE.BIN
2013-08-28 19:33:05 ----A---- C:\Windows\zip.exe
2013-08-28 19:33:05 ----A---- C:\Windows\SWSC.exe
2013-08-28 19:33:05 ----A---- C:\Windows\SWREG.exe
2013-08-28 19:33:05 ----A---- C:\Windows\sed.exe
2013-08-28 19:33:05 ----A---- C:\Windows\PEV.exe
2013-08-28 19:33:05 ----A---- C:\Windows\NIRCMD.exe
2013-08-28 19:33:05 ----A---- C:\Windows\MBR.exe
2013-08-28 19:33:05 ----A---- C:\Windows\grep.exe
2013-08-28 19:33:01 ----D---- C:\Qoobox
2013-08-28 19:32:48 ----D---- C:\Windows\erdnt
2013-08-28 07:05:18 ----D---- C:\Program Files\trend micro
2013-08-28 07:05:17 ----D---- C:\rsit
2013-08-26 08:06:35 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2013-08-25 12:00:37 ----D---- C:\Program Files\Unlocker
2013-08-24 20:25:36 ----D---- C:\ProgramData\SecTaskMan
2013-08-22 19:20:20 ----A---- C:\Windows\system32\drivers\avgtpx86.sys
2013-08-22 18:13:50 ----A---- C:\Windows\system32\Wdfres.dll
2013-08-22 18:13:50 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2013-08-22 18:13:50 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-08-22 18:13:28 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2013-08-22 18:13:28 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2013-08-22 18:13:27 ----A---- C:\Windows\system32\WUDFx.dll
2013-08-22 18:13:27 ----A---- C:\Windows\system32\WUDFSvc.dll
2013-08-22 18:13:27 ----A---- C:\Windows\system32\WUDFPlatform.dll
2013-08-22 18:13:27 ----A---- C:\Windows\system32\WUDFHost.exe
2013-08-22 18:13:27 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2013-08-22 18:05:48 ----A---- C:\Windows\system32\KernelBase.dll
2013-08-22 18:05:48 ----A---- C:\Windows\system32\kernel32.dll
2013-08-22 18:05:48 ----A---- C:\Windows\system32\conhost.exe
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-08-22 18:05:47 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-08-22 18:05:43 ----A---- C:\Windows\explorer.exe
2013-08-22 18:05:42 ----A---- C:\Windows\system32\cryptdlg.dll
2013-08-22 18:05:37 ----A---- C:\Windows\system32\d3d11.dll
2013-08-22 18:05:35 ----A---- C:\Windows\system32\ncsi.dll
2013-08-22 18:05:34 ----A---- C:\Windows\system32\nlasvc.dll
2013-08-22 18:05:34 ----A---- C:\Windows\system32\nlaapi.dll
2013-08-22 18:05:34 ----A---- C:\Windows\system32\netevent.dll
2013-08-22 18:05:34 ----A---- C:\Windows\system32\netcorehc.dll
2013-08-22 18:05:34 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-08-22 18:05:34 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2013-08-22 18:05:26 ----A---- C:\Windows\system32\Wpc.dll
2013-08-22 18:05:26 ----A---- C:\Windows\system32\gameux.dll
2013-08-22 18:05:17 ----A---- C:\Windows\system32\OxpsConverter.exe
2013-08-22 18:05:15 ----A---- C:\Windows\system32\profsvc.dll
2013-08-22 18:05:14 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2013-08-22 18:05:14 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-08-22 18:05:13 ----A---- C:\Windows\system32\spoolsv.exe
2013-08-22 18:05:10 ----A---- C:\Windows\system32\tquery.dll
2013-08-22 18:05:10 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2013-08-22 18:05:10 ----A---- C:\Windows\system32\SearchIndexer.exe
2013-08-22 18:05:10 ----A---- C:\Windows\system32\SearchFilterHost.exe
2013-08-22 18:05:10 ----A---- C:\Windows\system32\mssvp.dll
2013-08-22 18:05:10 ----A---- C:\Windows\system32\mssrch.dll
2013-08-22 18:05:10 ----A---- C:\Windows\system32\mssphtb.dll
2013-08-22 18:05:10 ----A---- C:\Windows\system32\mssph.dll
2013-08-22 18:05:10 ----A---- C:\Windows\system32\msscntrs.dll
2013-08-22 18:05:09 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-08-22 18:05:08 ----A---- C:\Windows\system32\usp10.dll
2013-08-22 18:05:07 ----A---- C:\Windows\system32\wwansvc.dll
2013-08-22 18:05:07 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-08-22 18:05:07 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-08-22 18:05:05 ----A---- C:\Windows\system32\ntshrui.dll
2013-08-22 18:05:03 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-08-22 18:05:03 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-08-22 18:05:03 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-08-22 18:05:03 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-08-22 18:05:03 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-08-22 18:05:03 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-08-22 18:05:03 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-08-22 18:05:02 ----A---- C:\Windows\system32\xmllite.dll
2013-08-22 18:05:02 ----A---- C:\Windows\system32\srcore.dll
2013-08-22 18:05:01 ----A---- C:\Windows\system32\prevhost.exe
2013-08-22 18:05:01 ----A---- C:\Windows\system32\msi.dll
2013-08-22 18:02:31 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-08-22 18:02:31 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-08-22 18:01:12 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2013-08-17 23:06:03 ----D---- C:\Program Files\Mozilla Maintenance Service
2013-08-16 17:22:47 ----D---- C:\Windows\system32\RTCOM
2013-08-16 17:22:22 ----A---- C:\Windows\system32\WavesLib.dll
2013-08-16 17:22:22 ----A---- C:\Windows\system32\WavesGUILib.dll
2013-08-16 17:22:22 ----A---- C:\Windows\system32\tosade.dll
2013-08-16 17:22:22 ----A---- C:\Windows\system32\TepeqAPO.dll
2013-08-16 17:22:22 ----A---- C:\Windows\system32\tadefxapo2.dll
2013-08-16 17:22:21 ----A---- C:\Windows\system32\tadefxapo.dll
2013-08-16 17:22:21 ----A---- C:\Windows\system32\SRSWOW.dll
2013-08-16 17:22:21 ----A---- C:\Windows\system32\SRSTSXT.dll
2013-08-16 17:22:21 ----A---- C:\Windows\system32\SRSTSHD.dll
2013-08-16 17:22:21 ----A---- C:\Windows\system32\SRSHP360.dll
2013-08-16 17:22:21 ----A---- C:\Windows\system32\sltech32.dll
2013-08-16 17:22:21 ----A---- C:\Windows\system32\slprp32.dll
2013-08-16 17:22:21 ----A---- C:\Windows\system32\slcnt32.dll
2013-08-16 17:22:20 ----A---- C:\Windows\system32\sl3apo32.dll
2013-08-16 17:22:20 ----A---- C:\Windows\system32\SFSS_APO.dll
2013-08-16 17:22:20 ----A---- C:\Windows\system32\SFNHK.dll
2013-08-16 17:22:20 ----A---- C:\Windows\system32\SFCOM.dll
2013-08-16 17:22:20 ----A---- C:\Windows\system32\SFAPO.dll
2013-08-16 17:22:20 ----A---- C:\Windows\system32\drivers\rtvienna.dat
2013-08-16 17:22:20 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2013-08-16 17:22:19 ----A---- C:\Windows\system32\RTKSMSettingsIPC.dll
2013-08-16 17:22:19 ----A---- C:\Windows\system32\RTKSMlfx.dll
2013-08-16 17:22:18 ----A---- C:\Windows\system32\RtkPgExt.dll
2013-08-16 17:22:16 ----A---- C:\Windows\system32\RtkCoLDR.dll
2013-08-16 17:22:16 ----A---- C:\Windows\system32\RtkCoInstII.dll
2013-08-16 17:22:15 ----A---- C:\Windows\system32\RtkApoApi.dll
2013-08-16 17:22:14 ----A---- C:\Windows\system32\RtkAPO.dll
2013-08-16 17:22:08 ----A---- C:\Windows\system32\RTEEP32A.dll
2013-08-16 17:22:08 ----A---- C:\Windows\system32\RTEEL32A.dll
2013-08-16 17:22:08 ----A---- C:\Windows\system32\RTEEG32A.dll
2013-08-16 17:22:08 ----A---- C:\Windows\system32\RTEED32A.dll
2013-08-16 17:22:07 ----A---- C:\Windows\system32\RP3DHT32.dll
2013-08-16 17:22:07 ----A---- C:\Windows\system32\RP3DAA32.dll
2013-08-16 17:22:07 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2013-08-16 17:22:00 ----A---- C:\Windows\system32\RCoRes.dat
2013-08-16 17:22:00 ----A---- C:\Windows\system32\R4EEP32A.dll
2013-08-16 17:21:59 ----A---- C:\Windows\system32\R4EEL32A.dll
2013-08-16 17:21:59 ----A---- C:\Windows\system32\R4EEG32A.dll
2013-08-16 17:21:59 ----A---- C:\Windows\system32\R4EED32A.dll
2013-08-16 17:21:59 ----A---- C:\Windows\system32\R4EEA32A.dll
2013-08-16 17:21:59 ----A---- C:\Windows\system32\MISS_APO.dll
2013-08-16 17:21:55 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2013-08-16 17:21:52 ----A---- C:\Windows\system32\MaxxAudioVnA.dll
2013-08-16 17:21:49 ----A---- C:\Windows\system32\MaxxAudioRealtek2.dll
2013-08-16 17:21:46 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2013-08-16 17:21:40 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2013-08-16 17:21:37 ----A---- C:\Windows\system32\MaxxAudioAPOShell.dll
2013-08-16 17:21:35 ----A---- C:\Windows\system32\MaxxAudioAPO50.dll
2013-08-16 17:21:34 ----A---- C:\Windows\system32\MaxxAudioAPO40.dll
2013-08-16 17:21:33 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2013-08-16 17:21:32 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2013-08-16 17:21:32 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2013-08-16 17:21:30 ----A---- C:\Windows\system32\KAAPORT.dll
2013-08-16 17:21:06 ----A---- C:\Windows\system32\FMAPO.dll
2013-08-16 17:21:06 ----A---- C:\Windows\system32\DTSVoiceClarityDLL.dll
2013-08-16 17:21:04 ----A---- C:\Windows\system32\DTSU2PREC32.dll
2013-08-16 17:21:02 ----A---- C:\Windows\system32\DTSU2PLFX32.dll
2013-08-16 17:21:02 ----A---- C:\Windows\system32\DTSU2PGFX32.dll
2013-08-16 17:20:57 ----A---- C:\Windows\system32\DTSSymmetryDLL.dll
2013-08-16 17:20:57 ----A---- C:\Windows\system32\DTSS2SpeakerDLL.dll
2013-08-16 17:20:56 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL.dll
2013-08-16 17:20:56 ----A---- C:\Windows\system32\DTSNeoPCDLL.dll
2013-08-16 17:20:55 ----A---- C:\Windows\system32\DTSLimiterDLL.dll
2013-08-16 17:20:55 ----A---- C:\Windows\system32\DTSLFXAPO.dll
2013-08-16 17:20:54 ----A---- C:\Windows\system32\DTSGFXAPONS.dll
2013-08-16 17:20:54 ----A---- C:\Windows\system32\DTSGFXAPO.dll
2013-08-16 17:20:54 ----A---- C:\Windows\system32\DTSGainCompensatorDLL.dll
2013-08-16 17:20:53 ----A---- C:\Windows\system32\DTSBoostDLL.dll
2013-08-16 17:20:53 ----A---- C:\Windows\system32\DTSBassEnhancementDLL.dll
2013-08-16 17:20:50 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-08-16 17:20:49 ----A---- C:\Windows\system32\AERTARen.dll
2013-08-16 17:20:49 ----A---- C:\Windows\system32\AERTACap.dll
2013-08-16 17:12:41 ----D---- C:\ProgramData\Intel
2013-08-16 17:06:01 ----D---- C:\Program Files\Logitech
2013-08-14 21:53:08 ----A---- C:\Windows\system32\jscript9.dll
2013-08-14 21:53:08 ----A---- C:\Windows\system32\jscript.dll
2013-08-14 21:53:07 ----A---- C:\Windows\system32\urlmon.dll
2013-08-14 21:53:07 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-14 21:53:07 ----A---- C:\Windows\system32\msfeeds.dll
2013-08-14 21:53:07 ----A---- C:\Windows\system32\jsproxy.dll
2013-08-14 21:53:07 ----A---- C:\Windows\system32\ieui.dll
2013-08-14 21:53:07 ----A---- C:\Windows\system32\iesysprep.dll
2013-08-14 21:53:07 ----A---- C:\Windows\system32\iesetup.dll
2013-08-14 21:53:07 ----A---- C:\Windows\system32\iernonce.dll
2013-08-14 21:53:07 ----A---- C:\Windows\system32\ie4uinit.exe
2013-08-14 21:53:06 ----A---- C:\Windows\system32\iertutil.dll
2013-08-14 21:53:05 ----A---- C:\Windows\system32\wininet.dll
2013-08-14 21:53:04 ----A---- C:\Windows\system32\ieframe.dll
2013-08-14 21:53:03 ----A---- C:\Windows\system32\mshtml.dll
2013-08-14 21:51:53 ----A---- C:\Windows\system32\rpcrt4.dll
2013-08-14 21:51:51 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-08-14 21:51:50 ----A---- C:\Windows\system32\ntkrnlpa.exe
2013-08-14 21:51:50 ----A---- C:\Windows\system32\ntdll.dll
2013-08-14 21:51:47 ----A---- C:\Windows\system32\wintrust.dll
2013-08-14 21:51:47 ----A---- C:\Windows\system32\cryptsvc.dll
2013-08-14 21:51:47 ----A---- C:\Windows\system32\cryptnet.dll
2013-08-14 21:51:47 ----A---- C:\Windows\system32\crypt32.dll
2013-08-14 21:51:46 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-08-14 21:51:45 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-08-14 21:51:32 ----A---- C:\Windows\system32\tzres.dll
2013-08-14 21:51:12 ----A---- C:\Windows\system32\rdpcorets.dll
2013-08-14 21:51:12 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2013-08-07 14:23:46 ----A---- C:\Windows\system32\drivers\iaStorF.sys
2013-08-07 14:23:44 ----A---- C:\Windows\system32\drivers\iaStorA.sys
2013-07-31 15:59:07 ----D---- C:\NvidiaLogging
2013-07-31 15:58:26 ----A---- C:\Windows\system32\nvaudcap32v.dll
2013-07-31 15:58:26 ----A---- C:\Windows\system32\drivers\nvvad32v.sys

======List of files/folders modified in the last 1 month======

2013-08-28 23:07:35 ----A---- C:\Windows\system32\log.txt
2013-08-28 23:04:01 ----D---- C:\Windows
2013-08-28 23:04:00 ----D---- C:\ProgramData\NVIDIA
2013-08-28 23:02:59 ----D---- C:\Windows\system32\config
2013-08-28 22:52:28 ----D---- C:\Windows\system32\drivers
2013-08-28 22:48:58 ----A---- C:\Windows\system.ini
2013-08-28 22:44:07 ----D---- C:\Windows\System32
2013-08-28 22:44:07 ----D---- C:\Windows\AppPatch
2013-08-28 22:44:06 ----D---- C:\Program Files\Common Files
2013-08-28 21:01:16 ----SHD---- C:\System Volume Information
2013-08-28 21:01:05 ----D---- C:\Users\Ctibor\AppData\Roaming\Skype
2013-08-28 19:42:03 ----D---- C:\Windows\Tasks
2013-08-28 19:32:54 ----D---- C:\Windows\Prefetch
2013-08-28 18:56:39 ----D---- C:\Program Files
2013-08-27 22:11:44 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2013-08-27 20:50:39 ----D---- C:\Program Files\CCleaner
2013-08-27 20:49:44 ----D---- C:\Windows\Minidump
2013-08-27 20:30:10 ----D---- C:\Windows\system32\NDF
2013-08-27 20:08:00 ----D---- C:\Windows\SoftwareDistribution
2013-08-27 19:55:27 ----D---- C:\Windows\inf
2013-08-27 00:14:03 ----D---- C:\ProgramData
2013-08-26 16:32:21 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2013-08-26 00:07:26 ----D---- C:\Windows\system32\wfp
2013-08-26 00:07:26 ----D---- C:\Windows\system32\wbem
2013-08-26 00:07:26 ----D---- C:\Windows\system32\DriverStore
2013-08-26 00:07:26 ----D---- C:\Windows\system32\catroot2
2013-08-26 00:07:25 ----D---- C:\Users\Ctibor\AppData\Roaming\IrfanView
2013-08-26 00:07:20 ----D---- C:\Windows\registration
2013-08-25 23:44:41 ----SHD---- C:\Windows\Installer
2013-08-25 23:44:41 ----D---- C:\Config.Msi
2013-08-25 16:57:18 ----D---- C:\Windows\system32\drivers\etc
2013-08-25 16:44:25 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-08-25 14:48:59 ----D---- C:\Users\Ctibor\AppData\Roaming\vlc
2013-08-25 11:32:59 ----D---- C:\Program Files\Mozilla Firefox
2013-08-24 21:28:18 ----SD---- C:\Users\Ctibor\AppData\Roaming\Microsoft
2013-08-24 19:03:41 ----D---- C:\Windows\system32\catroot
2013-08-24 19:02:59 ----D---- C:\ProgramData\YTD Video Downloader
2013-08-22 23:12:00 ----HD---- C:\Program Files\InstallShield Installation Information
2013-08-22 23:11:59 ----D---- C:\Windows\Options
2013-08-22 23:11:59 ----D---- C:\Program Files\Realtek
2013-08-22 20:30:42 ----D---- C:\Program Files\WebcamMax
2013-08-22 18:53:50 ----RSD---- C:\Windows\assembly
2013-08-22 18:53:50 ----D---- C:\Windows\Microsoft.NET
2013-08-22 18:45:10 ----D---- C:\Windows\winsxs
2013-08-22 18:22:28 ----RSD---- C:\Windows\Fonts
2013-08-22 18:22:28 ----D---- C:\Windows\system32\migration
2013-08-22 18:22:28 ----D---- C:\Windows\system32\en-US
2013-08-22 18:22:28 ----D---- C:\Windows\system32\cs-CZ
2013-08-22 18:22:28 ----D---- C:\Windows\PolicyDefinitions
2013-08-22 18:22:27 ----D---- C:\Windows\system32\drivers\en-US
2013-08-22 18:22:27 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-08-22 18:15:13 ----D---- C:\ProgramData\Microsoft Help
2013-08-21 05:47:46 ----A---- C:\Windows\win.ini
2013-08-20 23:02:51 ----D---- C:\Windows\system32\Tasks
2013-08-18 23:31:12 ----D---- C:\Program Files\VideoLAN
2013-08-18 07:56:24 ----D---- C:\Windows\PCHEALTH
2013-08-16 23:37:06 ----D---- C:\Program Files\Google
2013-08-16 23:24:33 ----D---- C:\ProgramData\Google
2013-08-16 23:22:46 ----D---- C:\Program Files\Adobe
2013-08-16 23:09:19 ----D---- C:\ProgramData\VSO
2013-08-16 23:08:44 ----D---- C:\Windows\Panther
2013-08-16 23:08:44 ----D---- C:\Windows\debug
2013-08-16 23:03:45 ----D---- C:\Program Files\SUPERAntiSpyware
2013-08-16 17:38:11 ----D---- C:\ProgramData\DriverGenius
2013-08-16 17:07:16 ----D---- C:\Program Files\Common Files\Logishrd
2013-08-16 17:06:05 ----D---- C:\ProgramData\Logishrd
2013-08-16 17:05:57 ----D---- C:\ProgramData\Logitech
2013-08-15 18:00:39 ----D---- C:\Windows\rescache
2013-08-15 07:06:21 ----AD---- C:\ProgramData\TEMP
2013-08-14 23:10:47 ----D---- C:\Program Files\Internet Explorer
2013-08-14 21:59:50 ----D---- C:\Windows\system32\MRT
2013-08-14 21:57:17 ----A---- C:\Windows\system32\MRT.exe
2013-08-01 21:43:25 ----D---- C:\Program Files\IncrediMail
2013-07-31 15:58:45 ----D---- C:\Program Files\NVIDIA Corporation

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-10-17 462104]
R0 iaStorA;iaStorA; C:\Windows\system32\DRIVERS\iaStorA.sys [2013-08-07 505192]
R0 iaStorF;iaStorF; C:\Windows\system32\DRIVERS\iaStorF.sys [2013-08-07 25448]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2012-09-17 106296]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx86.sys [2013-08-22 37664]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2013-03-28 135136]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2013-03-28 37352]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2013-07-22 113336]
R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2012-08-27 28520]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2013-03-28 84744]
R2 DefragFS;DefragFS; C:\Windows\system32\drivers\DefragFS.sys [2012-09-11 104088]
R2 LiveTunerPM;Ashampoo LiveTuner ProcessMonitor Driver; \??\C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerProcessMonitor32.sys [2011-03-08 12696]
R2 PDFSfilter;PDFsFilter; C:\Windows\system32\DRIVERS\PDFsFilter.sys [2012-08-23 69016]
R2 WCMVCAM;WebcamMax, WDM Video Capture; C:\Windows\system32\DRIVERS\wcmvcam.sys [2011-06-13 1066808]
R3 HECI;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECI.sys [2009-09-17 41088]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2013-03-29 2646088]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2013-05-23 43800]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2013-05-23 37528]
R3 MarvinBus;Pinnacle Marvin Bus; C:\Windows\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2012-08-27 86408]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2012-08-27 178568]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2013-02-25 154400]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad32v.sys [2013-05-14 34592]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2013-04-10 651848]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 DrvAgent32;DrvAgent32; \??\C:\Windows\system32\Drivers\DrvAgent32.sys [2013-01-16 23456]
S3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2010-02-10 132352]
S3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2013-04-04 22856]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\mbamswissarmy.sys [2013-08-26 40776]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2011-05-18 18176]
S3 ovt519;TRUST 320 SPACEC@M; C:\Windows\System32\Drivers\ov519vid.sys [2003-05-06 163072]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2010-12-20 47360]
S3 PSI;PSI; C:\Windows\system32\DRIVERS\psi_mf_x86.sys [2013-02-07 16024]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-07-14 27648]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirService;Avira Real-Time Protection; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2013-07-01 108088]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2013-07-01 84024]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2013-08-07 15720]
R2 JMB36X;JMB36X; C:\Windows\System32\XSrvSetup.exe [2000-01-01 72280]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2000-01-01 325656]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-07-27 14592288]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-06-21 640288]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-07-27 1889568]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-06-21 413472]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2000-01-01 2533400]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2012-10-15 116608]
S3 ABBYY.Licensing.FineReader.Professional.11.0;ABBYY FineReader 11 PE Licensing Service; D:\Program Files\ABBYY FineReader 11\NetworkLicenseServer.exe [2011-08-18 819976]
S3 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-10-05 136176]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-10-05 136176]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-14 194032]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2013-06-13 293144]
S3 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S3 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2013-08-16 119208]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PDAgent;PDAgent; C:\Program Files\Raxco\PerfectDisk\PDAgent.exe [2012-10-04 1415032]
S3 PDEngine;PDEngine; C:\Program Files\Common Files\Raxco\Shared\PDEngine.exe [2012-10-04 2166648]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Secunia PSI Agent;Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [2013-02-07 1223704]
S3 Secunia Update Agent;Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [2013-02-07 660504]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2011-06-08 633856]
S3 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-06-21 162408]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 TeamViewer8;TeamViewer 8; C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe [2013-08-07 4308320]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 AntiVirWebService;Avira Web Protection; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [2013-07-01 589368]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[ccc]

To jsem jelen, ted jsem to zapnul a je to zase OK a ImLpp.exe nespuštěno , kdyby byl problém, tak dám zase vědět

[Rudy]

OK, dejte. Nemáte nainstalován IncrediMail?