Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

qvo6 a rouge killer

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Nemonilka
Návštěvník
Návštěvník
Příspěvky: 4
Registrován: 24 zář 2013 20:21

qvo6 a rouge killer

#1 Příspěvek od Nemonilka »

Ahojky všem, měla jsem v pc nějaký vir, při scanu mě natvrdo vypnul.HP podpora poradila vrátit vše zpět na tovární nastavení.Kamarád mi poradil Rouge Killera toto mi to napíše, pc se mi zdá pomalej, nejsem moc technickej tip :( a ještě ke všemu blond :D ale byl by tu někdo tak hodný a poradil mi co se dá dělat, jak tomuto předejít apod.?To co jsem tam měla za šmejdíka bylo něco jako vir qvo6 snad mi ještě paměť slouží.
Moc děkuji Nemonilka :turned:

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: TOSHIBA MK1059GSM +++++
--- User ---
[MBR] 76af5787a75257ac6f882cd9ac39d222
[BSP] ab5d448162905023c07365af0e6dce2e : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 20480 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 41945088 | Size: 100 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 42149888 | Size: 933287 Mo

33 c0 8e d0 bc 00 7c 8e c0 8e d8 be 00 7c bf 00 06
b9 00 02 fc f3 a4 50 68 1c 06 cb fb b9 04 00 bd be
07 80 7e 00 00 7c 0b 0f 85 0e 01 83 c5 10 e2 f1 cd
18 88 56 00 55 c6 46 11 05 c6 46 10 00 b4 41 bb aa
55 cd 13 5d 72 0f 81 fb 55 aa 75 09 f7 c1 01 00 74
03 fe 46 10 66 60 80 7e 10 00 74 26 66 68 00 00 00
00 66 ff 76 08 68 00 00 68 00 7c 68 01 00 68 10 00
b4 42 8a 56 00 8b f4 cd 13 9f 83 c4 10 9e eb 14 b8
01 02 bb 00 7c 8a 56 00 8a 76 01 8a 4e 02 8a 6e 03
cd 13 66 61 73 1c fe 4e 11 75 0c 80 7e 00 80 0f 84
8a 00 b2 80 eb 84 55 32 e4 8a 56 00 cd 13 5d eb 9e
81 3e fe 7d 55 aa 75 6e ff 76 00 e8 8d 00 75 17 fa
b0 d1 e6 64 e8 83 00 b0 df e6 60 e8 7c 00 b0 ff e6
64 e8 75 00 fb b8 00 bb cd 1a 66 23 c0 75 3b 66 81
fb 54 43 50 41 75 32 81 f9 02 01 72 2c 66 68 07 bb
00 00 66 68 00 02 00 00 66 68 08 00 00 00 66 53 66
53 66 55 66 68 00 00 00 00 66 68 00 7c 00 00 66 61
68 00 00 07 cd 1a 5a 32 f6 ea 00 7c 00 00 cd 18 a0
b7 07 eb 08 a0 b6 07 eb 03 a0 b5 07 32 e4 05 00 07
8b f0 ac 3c 00 74 09 bb 07 00 b4 0e cd 10 eb f2 f4
eb fd 2b c9 e4 64 eb 00 24 02 e0 f8 24 02 c3 49 6e
76 61 6c 69 64 20 70 61 72 74 69 74 69 6f 6e 20 74
61 62 6c 65 00 45 72 72 6f 72 20 6c 6f 61 64 69 6e
67 20 6f 70 65 72 61 74 69 6e 67 20 73 79 73 74 65
6d 00 4d 69 73 73 69 6e 67 20 6f 70 65 72 61 74 69
6e 67 20 73 79 73 74 65 6d 00 00 00 63 7b 9a 6f 54
d3 78 00 00

3.....|......|.........Ph...........~..|.............V.U.F...F...A..U..]r...U.u.....t..F.f`.~..t&fh....f.v.h..h.|h..h...B.V.................|.V..v..N..n...fas..N.u..~..........U2..V...]...>.}U.un.v....u.....d......`.|....d.u.......f#.u;f..TCPAu2....r,fh....fh....fh....fSfSfUfh....fh.|..fah.....Z2...|.................2.......<.t.............+..d..$...$..Invalid partition table.Error loading operating system.Missing operating system...c{.oT.x..

User = LL1 ... OK!
User = LL2 ... OK!
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: qvo6 a rouge killer

#2 Příspěvek od vyosek »

Zdravim :)

:arrow: Zacneme spise tim, ze mi sem dejte prosim log z RSIT http://forum.viry.cz/viewtopic.php?f=24&t=130784
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Nemonilka
Návštěvník
Návštěvník
Příspěvky: 4
Registrován: 24 zář 2013 20:21

Re: qvo6 a rouge killer

#3 Příspěvek od Nemonilka »

Logfile of random's system information tool 1.09 (written by random/random)
Run by Luciášek z Klacíkova at 2013-09-24 21:54:02
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 898 GB (96%) free of 933 GB
Total RAM: 3948 MB (41% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:54:17, on 24.9.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Norton Internet Security\Engine\18.5.0.125\ccSvcHst.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\NTI\Packard Bell MyBackup\BackupManagerTray.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Microsoft\BingBar\BingBar.exe
C:\Program Files (x86)\Microsoft\BingBar\BingApp.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10p_ActiveX.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
c:\program files (x86)\mozilla firefox\firefox.exe
C:\Program Files (x86)\Overwolf\Overwolf.exe
C:\Program Files (x86)\Common Files\Overwolf\OverwolfHelper.exe
C:\Program Files (x86)\Microsoft Office\Options14\MSOO.EXE
C:\Program Files (x86)\Microsoft Office\Options14\OOBEStub.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\setup.exe
C:\Program Files\trend micro\Luciášek z Klacíkova.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://packardbell.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://packardbell.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://packardbell.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://packardbell.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\18.5.0.125\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\18.5.0.125\IPS\IPSBHO.DLL
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\18.5.0.125\coIEPlg.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files (x86)\NTI\Packard Bell MyBackup\BackupManagerTray.exe" -h -k
O4 - HKLM\..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKCU\..\Run: [Overwolf] C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1277751443-1338792073-4282178787-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1277751443-1338792073-4282178787-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Active File Monitor V9 (AdobeActiveFileMonitor9.0) - Adobe Systems Incorporated - c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\18.5.0.125\ccSvcHst.exe
O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Packard Bell MyBackup\IScheduleSvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: Overwolf Updater Service (OverwolfUpdaterService) - Overwolf Ltd - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Intel(R) Turbo Boost Technology Monitor 2.0 (TurboBoost) - Intel(R) Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12704 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\nvvsvc.exe
"C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe"
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}"
"C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe"
"C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe"
"C:\Program Files (x86)\Norton Internet Security\Engine\18.5.0.125\ccSvcHst.exe" /s "NIS" /m "C:\Program Files (x86)\Norton Internet Security\Engine\18.5.0.125\diMaster.dll" /prefetch:1
"C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe" SERVICE
"C:\Program Files (x86)\NTI\Packard Bell MyBackup\IScheduleSvc.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 1292
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\servicing\TrustedInstaller.exe
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Norton Internet Security\Engine\18.5.0.125\ccSvcHst.exe" /c /a /s UserSession
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
taskeng.exe {7F6BFBCA-D8D6-4AE5-8C3D-E622372E7C56}
"C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\NTI\Packard Bell MyBackup\BackupManagerTray.exe" -h -k
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
C:\Windows\system32\igfxext.exe -Embedding
C:\Windows\system32\igfxsrvc.exe -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe"
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:3328 CREDAT:203009
"C:\Program Files (x86)\Microsoft\BingBar\BingBar.exe" -Embedding
"C:\Program Files (x86)\Microsoft\BingBar\BingApp.exe" -Embedding
"C:\Windows\system32\wuauclt.exe"
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10p_ActiveX.exe -Embedding
"taskhost.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe"
"c:\program files (x86)\mozilla firefox\firefox.exe" http://ui.skype.com/ui/0/6.7.0.102/cs/a ... age=tsMain
"C:\Program Files (x86)\Overwolf\Overwolf.exe" -silent
"C:\Program Files (x86)\Common Files\Overwolf\OverwolfHelper.exe" "path=C:\Program Files (x86)\Overwolf"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Common Files\Overwolf\OverwolfHelper64.exe" "path=C:\Program Files (x86)\Overwolf\x64\OWExplorerLauncher.dll
"C:\Program Files (x86)\Microsoft Office\Options14\MSOO.EXE"
"C:\Program Files (x86)\Microsoft Office\Options14\OOBEStub.exe" C:\Users\LUCIEK~1\AppData\Local\Temp\Commands.xml
C:\Windows\system32\msiexec.exe /V
"C:\Windows\system32\calc.exe"
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528
"C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\setup.exe" /repair SINGLEIMAGE /config C:\Users\LUCIEK~1\AppData\Local\Temp\repair_config.xml
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
"C:\Users\Luciášek z Klacíkova\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\rundll32.exe" "C:\Windows\system32\WININET.dll",DispatchAPICall 1
"C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
"C:\Windows\system32\rundll32.exe" "C:\Windows\syswow64\WININET.dll",DispatchAPICall 1
C:\Windows\syswow64\MsiExec.exe -Embedding 4FD384D4DFC80227C42AD27570988CD9

=========Mozilla firefox=========

ProfilePath - C:\Users\Luciášek z Klacíkova\AppData\Roaming\Mozilla\Firefox\Profiles\oqj2lqwi.default

prefs.js - "browser.startup.homepage" - "www.seznam.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App Presence Detector Plugin
"Path"=C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 688528]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files (x86)\Norton Internet Security\Engine\18.5.0.125\coIEPlg.dll [2010-12-04 433080]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files (x86)\Norton Internet Security\Engine\18.5.0.125\IPS\IPSBHO.DLL [2010-12-01 210360]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-01-20 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-03-01 1089288]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton Internet Security\Engine\18.5.0.125\coIEPlg.dll [2010-12-04 433080]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-03-01 1089288]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-05-09 168216]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-05-09 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-05-09 416024]
"IntelTBRunOnce"=wscript.exe //b //nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs []
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2010-11-12 2588968]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-03-10 11785832]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-01-20 615584]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-01-20 379552]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-07-29 497648]
"Power Management"=C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [2011-05-10 1831528]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Overwolf"=C:\Program Files (x86)\Overwolf\Overwolf.exe [2013-08-22 35256]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-09-14 283160]
"BackupManagerTray"=C:\Program Files (x86)\NTI\Packard Bell MyBackup\BackupManagerTray.exe [2011-03-09 295744]
"Norton Online Backup"=C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [2010-06-02 1155928]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2011-03-14 1081424]
"NUSB3MON"=C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-04-27 113288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-04-15 385024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-09-25 03:07:21 ----A---- C:\Windows\system32\perfi005.dat
2013-09-25 03:07:21 ----A---- C:\Windows\system32\perfh005.dat
2013-09-25 03:07:21 ----A---- C:\Windows\system32\perfd005.dat
2013-09-25 03:07:21 ----A---- C:\Windows\system32\perfc005.dat
2013-09-25 03:06:55 ----D---- C:\Windows\SYSWOW64\cs
2013-09-25 03:06:54 ----D---- C:\Windows\SYSWOW64\XPSViewer
2013-09-25 03:06:54 ----D---- C:\Windows\SYSWOW64\drivers\cs-CZ
2013-09-25 03:06:54 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-09-25 03:06:54 ----D---- C:\Windows\system32\cs
2013-09-25 03:06:54 ----D---- C:\Windows\cs-CZ
2013-09-25 03:00:25 ----D---- C:\Windows\NAPP_Dism_Log
2013-09-24 21:54:03 ----D---- C:\Program Files\trend micro
2013-09-24 21:54:02 ----D---- C:\rsit
2013-09-24 21:53:49 ----SHD---- C:\Config.Msi
2013-09-24 21:46:07 ----D---- C:\Program Files (x86)\Microsoft.NET
2013-09-24 21:44:20 ----D---- C:\Program Files\Microsoft Office
2013-09-24 21:44:10 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2013-09-24 21:43:38 ----D---- C:\ProgramData\Microsoft Help
2013-09-24 21:43:24 ----RHD---- C:\MSOCache
2013-09-24 20:31:36 ----D---- C:\Program Files\TeamSpeak 3 Client
2013-09-24 19:47:27 ----D---- C:\Program Files (x86)\Overwolf
2013-09-24 19:46:00 ----D---- C:\Users\Luciášek z Klacíkova\AppData\Roaming\TS3Client
2013-09-24 18:42:32 ----D---- C:\Users\Luciášek z Klacíkova\AppData\Roaming\Mozilla
2013-09-24 18:38:46 ----RD---- C:\Program Files (x86)\Skype
2013-09-24 18:38:46 ----D---- C:\Users\Luciášek z Klacíkova\AppData\Roaming\Skype
2013-09-24 18:26:47 ----D---- C:\ProgramData\Mozilla
2013-09-24 18:26:47 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-24 18:26:46 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-09-24 18:24:41 ----D---- C:\Users\Luciášek z Klacíkova\AppData\Roaming\Adobe
2013-09-24 18:21:53 ----D---- C:\Users\Luciášek z Klacíkova\AppData\Roaming\Intel Corporation
2013-09-24 18:21:18 ----D---- C:\Users\Luciášek z Klacíkova\AppData\Roaming\Identities
2013-09-24 18:20:27 ----A---- C:\Windows\system32\wups2.dll
2013-09-24 18:20:27 ----A---- C:\Windows\system32\wucltux.dll
2013-09-24 18:20:27 ----A---- C:\Windows\system32\wuaueng.dll
2013-09-24 18:20:27 ----A---- C:\Windows\system32\wuauclt.exe
2013-09-24 18:20:18 ----A---- C:\Windows\system32\wups.dll
2013-09-24 18:20:18 ----A---- C:\Windows\system32\wudriver.dll
2013-09-24 18:20:18 ----A---- C:\Windows\system32\wuapi.dll
2013-09-24 18:19:51 ----A---- C:\Windows\system32\wuwebv.dll
2013-09-24 18:19:51 ----A---- C:\Windows\system32\wuapp.exe
2013-09-24 18:19:21 ----SD---- C:\Users\Luciášek z Klacíkova\AppData\Roaming\Microsoft
2013-09-24 18:19:21 ----D---- C:\Users\Luciášek z Klacíkova\AppData\Roaming\Media Center Programs
2013-09-24 18:19:21 ----D---- C:\Users\Luciášek z Klacíkova\AppData\Roaming\Macromedia
2013-09-24 18:19:06 ----SHD---- C:\Recovery
2013-09-24 18:19:06 ----SHD---- C:\ProgramData\Šablony
2013-09-24 18:19:06 ----SHD---- C:\ProgramData\Plocha
2013-09-24 18:19:06 ----SHD---- C:\ProgramData\Oblíbené položky
2013-09-24 18:19:06 ----SHD---- C:\ProgramData\Nabídka Start
2013-09-24 18:19:06 ----SHD---- C:\ProgramData\Dokumenty
2013-09-24 18:19:06 ----SHD---- C:\ProgramData\Data aplikací
2013-09-24 17:43:20 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-09-24 17:43:20 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-09-24 17:43:20 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-09-24 17:43:20 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-09-24 17:43:20 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\url.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\ieakeng.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\ie4uinit.exe
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-09-24 17:43:19 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-09-24 17:43:18 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-09-24 17:43:18 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-09-24 17:43:18 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-09-24 17:43:18 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-09-24 17:43:18 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-09-24 17:43:18 ----A---- C:\Windows\SYSWOW64\ieakui.dll
2013-09-24 17:43:18 ----A---- C:\Windows\SYSWOW64\ieaksie.dll
2013-09-24 17:43:18 ----A---- C:\Windows\SYSWOW64\admparse.dll
2013-09-24 17:43:18 ----A---- C:\Windows\system32\wininet.dll
2013-09-24 17:43:18 ----A---- C:\Windows\system32\urlmon.dll
2013-09-24 17:43:18 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-24 17:43:18 ----A---- C:\Windows\system32\msrating.dll
2013-09-24 17:43:18 ----A---- C:\Windows\system32\msls31.dll
2013-09-24 17:43:18 ----A---- C:\Windows\system32\jsproxy.dll
2013-09-24 17:43:18 ----A---- C:\Windows\system32\iertutil.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\wextract.exe
2013-09-24 17:43:17 ----A---- C:\Windows\system32\webcheck.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\vbscript.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\url.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-09-24 17:43:17 ----A---- C:\Windows\system32\pngfilt.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\occache.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\mshtmler.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\mshtmled.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\mshtml.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\mshta.exe
2013-09-24 17:43:17 ----A---- C:\Windows\system32\msfeedssync.exe
2013-09-24 17:43:17 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\msfeeds.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\licmgr10.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\jscript9.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\jscript.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\inseng.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\imgutil.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\iexpress.exe
2013-09-24 17:43:17 ----A---- C:\Windows\system32\ieUnatt.exe
2013-09-24 17:43:17 ----A---- C:\Windows\system32\ieui.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\iesysprep.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\iesetup.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\iernonce.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\iepeers.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\ieframe.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\iedkcs32.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\ieapfltr.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\ieapfltr.dat
2013-09-24 17:43:17 ----A---- C:\Windows\system32\ieakui.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\ieaksie.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\ieakeng.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\ie4uinit.exe
2013-09-24 17:43:17 ----A---- C:\Windows\system32\icardie.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\dxtrans.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\dxtmsft.dll
2013-09-24 17:43:17 ----A---- C:\Windows\system32\admparse.dll
2013-09-24 17:41:31 ----D---- C:\Program Files (x86)\Video Web Camera
2013-09-24 17:40:47 ----D---- C:\Program Files (x86)\Microsoft Office
2013-09-24 17:36:16 ----N---- C:\Windows\system32\drivers\PxHlpa64.sys
2013-09-24 17:36:16 ----N---- C:\Windows\system32\drivers\cdralw2k.sys
2013-09-24 17:36:16 ----N---- C:\Windows\system32\drivers\cdr4_xp.sys
2013-09-24 17:34:33 ----D---- C:\Program Files (x86)\Microsoft
2013-09-24 17:34:13 ----D---- C:\Windows\SYSWOW64\NV
2013-09-24 17:34:13 ----D---- C:\Windows\system32\NV
2013-09-24 17:28:37 ----D---- C:\Program Files (x86)\Bluetooth Suite
2013-09-24 17:26:40 ----A---- C:\Windows\system32\drivers\IntelMEFWVer.dll
2013-09-24 17:26:38 ----A---- C:\Windows\SYSWOW64\log.txt
2013-09-24 17:25:55 ----D---- C:\Windows\SYSWOW64\RTCOM
2013-09-24 17:25:44 ----D---- C:\Program Files\Realtek
2013-09-24 17:25:44 ----A---- C:\Windows\system32\drivers\RtPCEE4.DAT
2013-09-24 17:25:44 ----A---- C:\Windows\system32\drivers\RtPCEE3.DAT
2013-09-24 17:25:44 ----A---- C:\Windows\system32\drivers\rtkhdaud.dat
2013-09-24 17:25:44 ----A---- C:\Windows\system32\drivers\RtHdatEx.dat
2013-09-24 17:25:44 ----A---- C:\Windows\system32\drivers\RTHDAEQ1.dat
2013-09-24 17:25:44 ----A---- C:\Windows\system32\drivers\RTEQEX3.dat
2013-09-24 17:25:44 ----A---- C:\Windows\system32\drivers\RTEQEX2.dat
2013-09-24 17:25:44 ----A---- C:\Windows\system32\drivers\RTEQEX1.dat
2013-09-24 17:25:44 ----A---- C:\Windows\system32\drivers\RTEQEX0.dat
2013-09-24 17:25:44 ----A---- C:\Windows\system32\drivers\RTConvEQ.dat
2013-09-24 17:25:42 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\WavesGUILib.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\SRSWOW64.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\SRSTSX64.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\SRSTSH64.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\SRSHP64.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\SFSS_APO.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\SFNHK64.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\SFCOM64.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\SFAPO64.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\RtPgEx64.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\RtkCfg64.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\RtkAPO64.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\RtkApi64.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\RTEEP64A.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\RTEEL64A.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\RTEEG64A.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\RTEED64A.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\RTCOM64.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\RP3DHT64.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\RP3DAA64.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\RCoRes64.dat
2013-09-24 17:25:42 ----A---- C:\Windows\system32\RCoInst64.dll
2013-09-24 17:25:42 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2013-09-24 17:25:41 ----A---- C:\Windows\system32\R4EEP64A.dll
2013-09-24 17:25:41 ----A---- C:\Windows\system32\R4EEL64A.dll
2013-09-24 17:25:41 ----A---- C:\Windows\system32\R4EEG64A.dll
2013-09-24 17:25:41 ----A---- C:\Windows\system32\R4EED64A.dll
2013-09-24 17:25:41 ----A---- C:\Windows\system32\R4EEA64A.dll
2013-09-24 17:25:41 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2013-09-24 17:25:41 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2013-09-24 17:25:40 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2013-09-24 17:25:40 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2013-09-24 17:25:40 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2013-09-24 17:25:40 ----A---- C:\Windows\system32\FMAPO64.dll
2013-09-24 17:25:40 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2013-09-24 17:25:40 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2013-09-24 17:25:40 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2013-09-24 17:25:40 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2013-09-24 17:25:40 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2013-09-24 17:25:40 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2013-09-24 17:25:40 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2013-09-24 17:25:40 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2013-09-24 17:25:40 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2013-09-24 17:25:40 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2013-09-24 17:25:40 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2013-09-24 17:25:40 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2013-09-24 17:25:40 ----A---- C:\Windows\system32\AERTAR64.dll
2013-09-24 17:25:39 ----HD---- C:\Program Files (x86)\Temp
2013-09-24 17:25:39 ----D---- C:\Program Files (x86)\Realtek
2013-09-24 17:25:39 ----A---- C:\Windows\system32\AERTAC64.dll
2013-09-24 17:25:39 ----A---- C:\Windows\RtlExUpd.dll
2013-09-24 17:25:00 ----D---- C:\Program Files\Elantech
2013-09-24 17:24:00 ----D---- C:\Program Files (x86)\Renesas Electronics
2013-09-24 17:23:03 ----D---- C:\Program Files\Intel
2013-09-24 17:21:41 ----D---- C:\Program Files (x86)\Launch Manager
2013-09-24 17:19:55 ----D---- C:\ProgramData\NVIDIA
2013-09-24 17:19:22 ----D---- C:\ProgramData\NVIDIA Corporation
2013-09-24 17:19:20 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-09-24 17:19:04 ----A---- C:\Windows\system32\nvgenco642040.dll
2013-09-24 17:19:04 ----A---- C:\Windows\system32\nvdispco6420100.dll
2013-09-24 17:19:02 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2013-09-24 17:19:02 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2013-09-24 17:19:02 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2013-09-24 17:19:02 ----A---- C:\Windows\SYSWOW64\nvoptimusmft.dll
2013-09-24 17:19:02 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2013-09-24 17:19:02 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2013-09-24 17:19:02 ----A---- C:\Windows\SYSWOW64\nvdecodemft.dll
2013-09-24 17:19:02 ----A---- C:\Windows\system32\OpenCL.dll
2013-09-24 17:19:02 ----A---- C:\Windows\system32\nvwgf2umx.dll
2013-09-24 17:19:02 ----A---- C:\Windows\system32\nvumdshimx.dll
2013-09-24 17:19:02 ----A---- C:\Windows\system32\nvoptimusmft.dll
2013-09-24 17:19:02 ----A---- C:\Windows\system32\nvoglv64.dll
2013-09-24 17:19:02 ----A---- C:\Windows\system32\nvinitx.dll
2013-09-24 17:19:02 ----A---- C:\Windows\system32\nvdecodemft.dll
2013-09-24 17:19:02 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2013-09-24 17:19:02 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2013-09-24 17:19:01 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2013-09-24 17:19:01 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2013-09-24 17:19:01 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2013-09-24 17:19:01 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2013-09-24 17:19:01 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2013-09-24 17:19:01 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2013-09-24 17:19:01 ----A---- C:\Windows\system32\nvd3dumx.dll
2013-09-24 17:19:01 ----A---- C:\Windows\system32\nvcuvid.dll
2013-09-24 17:19:01 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-09-24 17:19:01 ----A---- C:\Windows\system32\nvcuda.dll
2013-09-24 17:19:01 ----A---- C:\Windows\system32\nvcompiler.dll
2013-09-24 17:19:01 ----A---- C:\Windows\system32\nvapi64.dll
2013-09-24 17:18:38 ----D---- C:\Program Files\NVIDIA Corporation
2013-09-24 17:16:57 ----AD---- C:\book
2013-09-24 17:16:49 ----D---- C:\ProgramData\Intel
2013-09-24 17:14:14 ----D---- C:\Windows\SoftwareDistribution
2013-09-24 17:13:53 ----D---- C:\Program Files\Common Files\Intel
2013-09-24 17:11:19 ----SHD---- C:\System Volume Information
2013-09-24 17:11:19 ----ASH---- C:\pagefile.sys
2013-09-24 17:11:19 ----ASH---- C:\hiberfil.sys

======List of files/folders modified in the last 1 month======

2013-09-25 03:09:30 ----D---- C:\Windows\SYSWOW64\winrm
2013-09-25 03:09:30 ----D---- C:\Windows\SYSWOW64\WCN
2013-09-25 03:09:30 ----D---- C:\Windows\SYSWOW64\slmgr
2013-09-25 03:09:30 ----D---- C:\Windows\SYSWOW64\en
2013-09-25 03:09:30 ----D---- C:\Windows\SYSWOW64\DriverStore
2013-09-25 03:09:30 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2013-09-25 03:09:30 ----D---- C:\Windows\system32\winrm
2013-09-25 03:09:30 ----D---- C:\Windows\system32\WCN
2013-09-25 03:09:30 ----D---- C:\Windows\system32\slmgr
2013-09-25 03:09:30 ----D---- C:\Windows\system32\en
2013-09-25 03:09:30 ----D---- C:\Windows\system32\drivers\en-US
2013-09-25 03:09:30 ----D---- C:\Windows\system32\Dism
2013-09-25 03:09:30 ----D---- C:\Windows\system32\Boot
2013-09-25 03:09:30 ----D---- C:\Windows\servicing
2013-09-25 03:09:30 ----D---- C:\Windows\en-US
2013-09-25 03:09:29 ----D---- C:\Windows\Speech
2013-09-25 03:06:56 ----D---- C:\Program Files\Windows Sidebar
2013-09-25 03:06:56 ----D---- C:\Program Files\Windows Photo Viewer
2013-09-25 03:06:56 ----D---- C:\Program Files\Windows Media Player
2013-09-25 03:06:56 ----D---- C:\Program Files\Windows Mail
2013-09-25 03:06:56 ----D---- C:\Program Files\Windows Journal
2013-09-25 03:06:56 ----D---- C:\Program Files\Windows Defender
2013-09-25 03:06:56 ----D---- C:\Program Files\DVD Maker
2013-09-25 03:06:56 ----D---- C:\Program Files\Common Files\System
2013-09-25 03:06:56 ----D---- C:\Program Files (x86)\Windows Sidebar
2013-09-25 03:06:56 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-09-25 03:06:56 ----D---- C:\Program Files (x86)\Windows Media Player
2013-09-25 03:06:56 ----D---- C:\Program Files (x86)\Windows Mail
2013-09-25 03:06:56 ----D---- C:\Program Files (x86)\Windows Defender
2013-09-25 03:06:55 ----D---- C:\Windows\SYSWOW64\migwiz
2013-09-25 03:06:55 ----D---- C:\Windows\ehome
2013-09-25 03:06:54 ----D---- C:\Windows\SYSWOW64\wbem
2013-09-25 03:06:54 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2013-09-25 03:06:54 ----D---- C:\Windows\SYSWOW64\MUI
2013-09-25 03:06:54 ----D---- C:\Windows\SYSWOW64\drivers
2013-09-25 03:06:54 ----D---- C:\Windows\SYSWOW64\Dism
2013-09-25 03:06:54 ----D---- C:\Windows\SYSWOW64\com
2013-09-25 03:06:54 ----D---- C:\Windows\system32\oobe
2013-09-25 03:06:54 ----D---- C:\Windows\system32\MUI
2013-09-25 03:06:54 ----D---- C:\Windows\system32\migwiz
2013-09-25 03:06:54 ----D---- C:\Windows\IME
2013-09-25 03:06:53 ----D---- C:\Windows\system32\wbem
2013-09-25 03:06:53 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2013-09-25 03:06:53 ----D---- C:\Windows\system32\com
2013-09-25 03:06:53 ----D---- C:\Windows\AppPatch
2013-09-24 21:54:17 ----SHD---- C:\Windows\Installer
2013-09-24 21:54:03 ----RD---- C:\Program Files
2013-09-24 21:53:51 ----SD---- C:\ProgramData\Microsoft
2013-09-24 21:53:51 ----D---- C:\Windows\Temp
2013-09-24 21:47:32 ----RSD---- C:\Windows\assembly
2013-09-24 21:46:30 ----RSD---- C:\Windows\Fonts
2013-09-24 21:46:29 ----D---- C:\Windows\SysWOW64
2013-09-24 21:46:13 ----D---- C:\Program Files (x86)\Common Files
2013-09-24 21:46:07 ----RD---- C:\Program Files (x86)
2013-09-24 21:45:10 ----D---- C:\Windows\system32\Tasks
2013-09-24 21:45:01 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-09-24 21:44:25 ----A---- C:\Windows\win.ini
2013-09-24 21:44:18 ----D---- C:\Windows\ShellNew
2013-09-24 21:43:38 ----HD---- C:\ProgramData
2013-09-24 21:19:24 ----D---- C:\Windows\system32\drivers
2013-09-24 21:01:40 ----D---- C:\Windows\System32
2013-09-24 21:01:40 ----D---- C:\Windows\inf
2013-09-24 21:01:40 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-09-24 20:59:50 ----D---- C:\Windows\system32\drivers\UMDF
2013-09-24 19:27:46 ----D---- C:\Windows\Prefetch
2013-09-24 18:38:42 ----D---- C:\ProgramData\Skype
2013-09-24 18:33:16 ----D---- C:\Windows\Microsoft.NET
2013-09-24 18:30:03 ----D---- C:\Windows\Tasks
2013-09-24 18:25:30 ----D---- C:\Windows\winsxs
2013-09-24 18:24:14 ----D---- C:\Windows\system32\catroot
2013-09-24 18:21:53 ----D---- C:\Windows\system32\OEM
2013-09-24 18:21:46 ----D---- C:\ProgramData\oem
2013-09-24 18:21:14 ----SHD---- C:\$Recycle.Bin
2013-09-24 18:21:08 ----HD---- C:\OEM
2013-09-24 18:20:50 ----D---- C:\Windows\system32\cs-CZ
2013-09-24 18:19:32 ----D---- C:\ProgramData\Norton
2013-09-24 18:19:24 ----D---- C:\Windows\system32\restore
2013-09-24 18:19:16 ----RD---- C:\Users
2013-09-24 18:19:15 ----D---- C:\Windows\system32\config
2013-09-24 18:19:06 ----D---- C:\Windows\system32\Recovery
2013-09-24 18:19:06 ----D---- C:\Program Files\Windows NT
2013-09-24 18:17:51 ----D---- C:\Windows\rescache
2013-09-24 18:17:22 ----D---- C:\Windows\debug
2013-09-24 18:02:04 ----D---- C:\Windows\system32\sysprep
2013-09-24 18:02:04 ----D---- C:\Windows\Panther
2013-09-24 17:55:41 ----D---- C:\Windows
2013-09-24 17:49:46 ----D---- C:\Windows\Help
2013-09-24 17:48:05 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-09-24 17:48:05 ----D---- C:\Program Files\Internet Explorer
2013-09-24 17:48:05 ----D---- C:\Program Files (x86)\Internet Explorer
2013-09-24 17:48:04 ----D---- C:\Windows\SYSWOW64\migration
2013-09-24 17:48:04 ----D---- C:\Windows\SYSWOW64\en-US
2013-09-24 17:48:03 ----D---- C:\Windows\system32\migration
2013-09-24 17:48:03 ----D---- C:\Windows\PolicyDefinitions
2013-09-24 17:48:02 ----D---- C:\Windows\system32\en-US
2013-09-24 17:45:15 ----D---- C:\Program Files (x86)\Windows Live
2013-09-24 17:44:02 ----D---- C:\Windows\Logs
2013-09-24 17:43:50 ----D---- C:\Windows\system32\catroot2
2013-09-24 17:41:55 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-09-24 17:41:55 ----D---- C:\Program Files\Packard Bell
2013-09-24 17:41:14 ----D---- C:\ProgramData\Temp
2013-09-24 17:38:31 ----D---- C:\Program Files (x86)\Adobe
2013-09-24 17:38:27 ----D---- C:\ProgramData\Adobe
2013-09-24 17:29:50 ----D---- C:\Windows\system32\DriverStore
2013-09-24 17:26:36 ----D---- C:\Program Files (x86)\Intel
2013-09-24 17:17:14 ----AD---- C:\Windows\DeployWinRE2
2013-09-24 17:13:53 ----D---- C:\Program Files\Common Files
2013-09-24 17:13:25 ----D---- C:\Intel

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2010-09-14 437272]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2011-03-31 25960]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NISx64\1205000.07D\SYMDS64.SYS [2010-10-21 450608]
R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NISx64\1205000.07D\SYMEFA64.SYS [2010-11-18 802864]
R1 BHDrvx64;BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\BASHDefs\20101123.003\BHDrvx64.sys [2010-11-23 953904]
R1 IDSVia64;IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\IPSDefs\20101201.001\IDSVia64.sys [2010-11-11 476792]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\NISx64\1205000.07D\SRTSPX64.SYS [2010-11-23 40568]
R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NISx64\1205000.07D\Ironx64.SYS [2010-11-16 171128]
R1 SymNetS;Symantec Network Security WFP Driver; C:\Windows\system32\drivers\NISx64\1205000.07D\SYMNETS.SYS [2010-12-01 382072]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2010-10-08 19192]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-11-09 2377216]
R3 b57xdbd;Broadcom xD Picture Bus Driver Service; C:\Windows\system32\DRIVERS\b57xdbd.sys [2011-01-21 67624]
R3 b57xdmp;Broadcom xD Picture vstorp client drv; C:\Windows\system32\DRIVERS\b57xdmp.sys [2011-01-21 19496]
R3 bScsiMSa;bScsiMSa; C:\Windows\system32\DRIVERS\bScsiMSa.sys [2011-05-16 51240]
R3 bScsiSDa;bScsiSDa; C:\Windows\system32\DRIVERS\bScsiSDa.sys [2011-05-06 86056]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-01-20 28832]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2010-11-12 138024]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-04-15 12228128]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-03-15 2814952]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2011-01-18 412712]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20110501.002\ENG64.SYS [2011-05-01 117880]
R3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20110501.002\EX64.SYS [2011-05-01 1828984]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-09-30 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-09-30 180736]
R3 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\system32\drivers\NISx64\1205000.07D\SRTSP64.SYS [2010-11-23 735864]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2011-05-31 174640]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-06 16896]
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-01-20 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-01-20 298144]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-01-20 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-01-20 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-01-20 154272]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-01-20 279200]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2010-11-21 552448]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2010-11-21 80384]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeActiveFileMonitor9.0;Adobe Active File Monitor V9; c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [2010-09-30 169408]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-01-20 76448]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2011-03-14 352336]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [2011-05-10 872552]
R2 GREGService;GREGService; C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe [2011-05-26 29696]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-09-14 13336]
R2 Live Updater Service;Live Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2011-04-22 244624]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-22 325656]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
R2 NIS;Norton Internet Security; C:\Program Files (x86)\Norton Internet Security\Engine\18.5.0.125\ccSvcHst.exe [2010-11-24 130000]
R2 NOBU;Norton Online Backup; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2010-06-02 2804568]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Packard Bell MyBackup\IScheduleSvc.exe [2011-03-09 257344]
R2 NVSvc;NVIDIA Driver Helper Service; C:\Windows\system32\nvvsvc.exe [2011-03-31 993896]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-03-31 2009704]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-02-25 249648]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-22 2656280]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-03-01 183560]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-09-11 118680]
S3 OverwolfUpdaterService;Overwolf Updater Service; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2013-08-22 18360]
S3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-10-08 150016]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]

-----------------EOF-----------------
Tohle jste měl na mysli?opravdu na techniku nejsem :( a moc děkuji
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: qvo6 a rouge killer

#4 Příspěvek od vyosek »

:arrow: Ano, tohle je ono...Vecer jsem uz vsak sel na kute

:arrow: Technicka podpora sice poradila, ale ono to slo resit daleko jednoduseji...

:arrow: Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
  • Ulozte nejlepe na plochu
  • Ukoncete vsechny programy
  • Kliknete na Scan a nasledne Clean
  • Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Nemonilka
Návštěvník
Návštěvník
Příspěvky: 4
Registrován: 24 zář 2013 20:21

Re: qvo6 a rouge killer

#5 Příspěvek od Nemonilka »

# AdwCleaner v3.005 - Report created 25/09/2013 at 13:34:22
# Updated 22/09/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Luciášek z Klacíkova - BOTIČKA
# Running from : C:\Users\Luciášek z Klacíkova\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Users\Luciášek z Klacíkova\AppData\Local\Max Secure Software

***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16686


-\\ Mozilla Firefox v24.0 (cs)

[ File : C:\Users\Luciášek z Klacíkova\AppData\Roaming\Mozilla\Firefox\Profiles\oqj2lqwi.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [890 octets] - [25/09/2013 13:10:05]
AdwCleaner[S0].txt - [816 octets] - [25/09/2013 13:34:22]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [875 octets] ##########

:roll:
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: qvo6 a rouge killer

#6 Příspěvek od vyosek »

Tak jeste uklidime :James008:

:arrow: T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
  • Stahnete a spustte
  • Pro potvrzeni volby mackejte A, Enter
  • Po pouziti utilitu smazte
  • Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
:arrow: OTC http://oldtimer.geekstogo.com/OTC.exe
  • Stahnete a spustte
  • Kliknete na CleanUp a potvrdte YES
  • Program uklidi a restartuje PC

:arrow: TFC http://oldtimer.geekstogo.com/TFC.exe
  • Stahnete a spustte
  • Kliknete na Start a potvrdte OK
  • Program uklidi a restartuje pc
  • Po pouziti utilitu smazte
:arrow: Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič
  • Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
Panel registry
  • dejte Hledej problémy
  • nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
  • postup opakujte dokud nebude bez problemu - vetsinou cca 3x
Panel nástroje
  • Zde muzete odinstalovat nepotrebne programy
CCleaner doporucuji pouzivat cca jednou za tyden

:arrow: A pokud nejsou problemy ci dotazy, je to z me strany vse :|
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Nemonilka
Návštěvník
Návštěvník
Příspěvky: 4
Registrován: 24 zář 2013 20:21

Re: qvo6 a rouge killer

#7 Příspěvek od Nemonilka »

Strašně moc děkuji, škoda, že jsem na Vás nenarazila dřív možná bych něco zachránila, ale to je osud.Jste strašně hodný, veliký dík :turned:
Nahoru
Uživatelský avatar
vyosek
VIP
VIP
Příspěvky: 56373
Registrován: 07 lis 2006 15:24
Bydliště: Šalingrad - Brno

Re: qvo6 a rouge killer

#8 Příspěvek od vyosek »

:arrow: Priste aspon vite kam zajit :thumbsup:

Nemate zac, rad jsem pomohl :worship: Zase nekdy Obrázek
Na rozloucenou vam zahraje nase kapela :guitar: :150: :151: :152: :153: :154: :196:


A na zaklade Pravidla o zamykani temat :lock:
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen Obrázek od 1. února 2011.
Nahoru
Zamčeno

Zpět na „Preventivní kontroly logů“