Poprosil bych o kontrolu logu, stáhnul jsem nějakého šmejda co mi shodil antivir, blokoval připojení k netu a dalších pár problémů. Musel jsem nakonec přez bod obnovení, a obnovit spouštění disku "C:"
Logfile of random's system information tool 1.09 (written by random/random)
Run by Tomáš at 2013-09-27 19:37:44
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 116 GB (16%) free of 703 GB
Total RAM: 8171 MB (73% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:37:54, on 27.9.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe
C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\TouchPortalLauncher.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe
C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe
C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerApp.exe
C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Microsoft\BingBar\BingBar.exe
C:\Program Files (x86)\Microsoft\BingBar\BingApp.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10m_ActiveX.exe
C:\Program Files\trend micro\Tomáš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~1\mcafee\msk\mskapbho.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20111225023815.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
O4 - HKLM\..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [MDS_Menu] "C:\Program Files (x86)\Acer\Acer TouchPortal\MediaShow Espresso\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Acer\Acer TouchPortal\MediaShow Espresso" UpdateWithCreateOnce "Software\CyberLink\MediaShow Espresso\5.6"
O4 - HKLM\..\Run: [TouchSuiteMovieService] "C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe"
O4 - HKLM\..\Run: [ArcadeMovieService] "C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"
O4 - HKLM\..\Run: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\progra~2\mcafee\msc\mcsniepl.dll
O23 - Service: McAfee Application Installer Cleanup (0137231380220478) (0137231380220478mcinstcleanup) - McAfee, Inc. - C:\Windows\TEMP\013723~1.EXE
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: CyberLink Product - 2011/09/26 22:11:41 (CLKMSVC10_34E30CCC) - CyberLink - C:\Program Files (x86)\Acer\clear.fi\Movie\NavFilter\kmsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Personal Firewall (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: USBS3S4Detection - Unknown owner - C:\OEM\USBDECTION\USBS3S4Detection.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12993 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
/QuitInfo:0000000000000574;0000000000000578; /AddRef;
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\TEMP\013723~1.EXE C:\PROGRA~2\COMMON~1\McAfee\INSTAL~1\cleanup.ini -cleanup -nolog -service
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Acer\Registration\GREGsvc.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe"
"C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe" SERVICE
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\x64\saHook.dll", saHooker_Initialize_and_Wait
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait
"C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe"
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
C:\OEM\USBDECTION\USBS3S4Detection.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2420
"C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
C:\Windows\system32\vssvc.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\rundll32.exe" "C:\Program Files\Common Files\McAfee\VSCore\vscver.dll",DllCheckMcShieldStartup
"C:\Windows\system32\rundll32.exe" "C:\Program Files\Common Files\McAfee\VSCore\vscver.dll",DllCheckMcShieldStartup
"taskhost.exe"
/QuitInfo:0000000000000854;0000000000000858; /AddRef;
/QuitInfo:000000000000081C;0000000000000860;
"C:\Windows\system32\Dwm.exe"
/loadhooks /Parent:0000000000000D6C
C:\Windows\system32\UI0Detect.exe
C:\Windows\Explorer.EXE
taskeng.exe {D6CAA988-B0AD-42CA-B2EA-542C372610AC}
"C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe"
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-35c4f2da-b55b-49e4-9325-3fe45966a415 -SystemEventPortName:HostProcess-857eddf9-6ea4-4c96-a25c-175dfa48b28c -IoCancelEventPortName:HostProcess-ea6ef8a6-b8ad-4bd2-b16d-95951aae9c24 -NonStateChangingEventPortName:HostProcess-777dabd9-d33e-4640-bdf2-96f363baeecd -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:86567df1-d715-4e67-be79-f9ca85fbd54f
"C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe"
C:\Windows\System32\svchost.exe -k swprv
"C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files (x86)\Acer\Acer TouchPortal\TouchPortalLauncher.exe" na
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\mcafee.com\agent\mcagent.exe" /runkey
"C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
"C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe"
"C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe" /s
"C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe"
"C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"
"C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe"
"C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
C:\Windows\system32\svchost.exe -k SDRSVC
C:\OEM\USBDECTION\FixIt.exe
/QuitInfo:000000000000080C;0000000000000BF8; /AddRef;
"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc
UI0Detect.exe 244
"taskhost.exe"
"C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerApp.exe" lng=1029
"C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe" "/base-dir=C:\Program Files (x86)\ESET\ESET Online Scanner" /lang=1029 /as
\??\C:\Windows\system32\conhost.exe
"C:\Program Files (x86)\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:5572 CREDAT:71937
"C:\Program Files (x86)\Microsoft\BingBar\BingBar.exe" -Embedding
"C:\Program Files (x86)\Microsoft\BingBar\BingApp.exe" -Embedding
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10m_ActiveX.exe -Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe12_ Global\UsGthrCtrlFltPipeMssGthrPipe12 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540
"C:\Users\Tomáš\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
======Scheduled tasks folder======
C:\Windows\tasks\Acer Registration - Data Sending task.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB}]
McAfee Phishing Filter - c:\PROGRA~1\mcafee\msk\MSKAPB~1.DLL []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20111225023815.dll [2011-12-06 94688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2012-06-21 322344]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB}]
McAfee Phishing Filter - c:\progra~1\mcafee\msk\mskapbho.dll [2009-12-22 245272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20111225023815.dll [2011-12-06 79744]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\progra~2\mcafee\sitead~1\mcieplg.dll [2012-06-21 261568]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-03-02 1089288]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2012-06-21 322344]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\progra~2\mcafee\sitead~1\mcieplg.dll [2012-06-21 261568]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-03-02 1089288]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TouchORB"=C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe [2010-05-06 153416]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-03-24 11786344]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-03-21 2207848]
"TouchPortal"=C:\Program Files (x86)\Acer\Acer TouchPortal\TouchPortalLauncher.exe [2010-07-08 436256]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-11-06 283160]
"mcui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2010-02-04 1465304]
"SuiteTray"=C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2010-09-28 340336]
"EgisTecPMMUpdate"=C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [2010-09-18 407920]
"EgisUpdate"=C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [2010-09-18 201584]
"Norton Online Backup"=C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [2010-06-01 1155928]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]
"YouCam Mirage"=C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe [2011-03-01 136488]
"YouCam Tray"=C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe [2011-03-01 162912]
"MDS_Menu"=C:\Program Files (x86)\Acer\Acer TouchPortal\MediaShow Espresso\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"TouchSuiteMovieService"=C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe [2010-10-30 124136]
"ArcadeMovieService"=C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [2011-02-19 177448]
"Hotkey Utility"=C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [2011-01-19 620136]
"Dolby Home Theater v4"=C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [2011-02-03 506712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-09-27 19:37:45 ----D---- C:\Program Files\trend micro
2013-09-27 19:37:44 ----D---- C:\rsit
2013-09-27 19:18:42 ----D---- C:\Program Files (x86)\ESET
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wups2.dll
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wucltux.dll
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wuaueng.dll
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wuauclt.exe
2013-09-27 15:12:53 ----A---- C:\Windows\system32\wuwebv.dll
2013-09-27 15:12:53 ----A---- C:\Windows\system32\wuapp.exe
2013-09-26 16:10:27 ----D---- C:\ProgramData\MFAData
2013-09-23 16:03:10 ----D---- C:\ProgramData\SummerSoft
2013-09-23 15:52:22 ----D---- C:\ProgramData\SearchNewTab
2013-09-23 15:52:13 ----A---- C:\Users\Tomáš\AppData\Roaming\regsvr32.exe_log.txt
2013-09-23 15:52:13 ----A---- C:\Users\Tomáš\AppData\Roaming\LiveSupport.exe_log.txt
2013-09-23 15:51:43 ----D---- C:\Program Files (x86)\Ss.Helper
2013-09-23 15:51:39 ----D---- C:\ProgramData\saveenshare
2013-09-23 15:50:40 ----D---- C:\ProgramData\InstallMate
2013-09-22 20:59:16 ----D---- C:\Program Files (x86)\Westward IV - All Aboard
2013-09-22 20:45:31 ----D---- C:\ProgramData\Big Fish
2013-09-22 20:43:50 ----D---- C:\BigFishCache
2013-09-14 20:36:00 ----D---- C:\Users\Tomáš\AppData\Roaming\Ubisoft
======List of files/folders modified in the last 1 month======
2013-09-27 19:37:45 ----RD---- C:\Program Files
2013-09-27 19:20:59 ----D---- C:\Windows\system32\catroot2
2013-09-27 19:20:59 ----D---- C:\Windows\system32\catroot
2013-09-27 19:20:51 ----D---- C:\Windows\winsxs
2013-09-27 19:18:42 ----RD---- C:\Program Files (x86)
2013-09-27 19:18:40 ----HD---- C:\Windows\Temp
2013-09-27 19:10:22 ----D---- C:\Windows\system32\config
2013-09-27 19:09:06 ----D---- C:\Windows\Prefetch
2013-09-27 15:13:45 ----D---- C:\Windows\System32
2013-09-27 15:13:45 ----D---- C:\Windows\inf
2013-09-27 15:13:45 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-09-27 15:13:32 ----D---- C:\Windows\system32\sk-SK
2013-09-27 15:13:32 ----D---- C:\Windows\system32\en-US
2013-09-27 15:13:32 ----D---- C:\Windows\system32\cs-CZ
2013-09-27 15:12:44 ----SHD---- C:\System Volume Information
2013-09-27 15:11:20 ----A---- C:\Windows\SYSWOW64\log.txt
2013-09-27 15:10:40 ----D---- C:\ProgramData\clear.fi
2013-09-27 15:08:35 ----D---- C:\Windows\system32\drivers
2013-09-27 15:00:29 ----D---- C:\ProgramData\McAfee
2013-09-27 14:57:24 ----SD---- C:\ProgramData\Microsoft
2013-09-27 03:06:52 ----D---- C:\Windows\system32\LogFiles
2013-09-26 19:39:22 ----D---- C:\Windows\Microsoft.NET
2013-09-26 19:38:54 ----RSD---- C:\Windows\assembly
2013-09-26 19:31:34 ----D---- C:\Windows\SysWOW64
2013-09-26 19:30:35 ----D---- C:\Windows\Tasks
2013-09-26 19:30:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-09-26 19:30:35 ----D---- C:\Windows\system32\wfp
2013-09-26 19:30:34 ----RSD---- C:\Windows\Fonts
2013-09-26 19:30:34 ----D---- C:\Windows\system32\drivers\UMDF
2013-09-26 19:30:33 ----D---- C:\Program Files\Internet Explorer
2013-09-26 19:30:28 ----D---- C:\Program Files (x86)\Microsoft Application Virtualization Client
2013-09-26 19:30:21 ----D---- C:\Windows\system32\wbem
2013-09-26 19:30:21 ----D---- C:\Windows
2013-09-26 19:27:39 ----D---- C:\Windows\ShellNew
2013-09-26 19:27:39 ----D---- C:\Windows\AppPatch
2013-09-26 19:27:39 ----D---- C:\Program Files\Windows Journal
2013-09-26 19:27:39 ----D---- C:\Program Files\Windows Defender
2013-09-26 19:27:39 ----D---- C:\Program Files\Common Files\System
2013-09-26 19:27:39 ----D---- C:\Program Files (x86)\Windows Defender
2013-09-26 19:27:39 ----D---- C:\Program Files (x86)\Internet Explorer
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\wbem
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\migration
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\en-US
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\en
2013-09-26 19:27:33 ----D---- C:\Windows\SYSWOW64\drivers\sk-SK
2013-09-26 19:27:33 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2013-09-26 19:27:33 ----D---- C:\Windows\system32\migration
2013-09-26 19:27:33 ----D---- C:\Windows\system32\en
2013-09-26 19:27:24 ----SHD---- C:\Windows\Installer
2013-09-26 19:27:24 ----RSD---- C:\Windows\Media
2013-09-26 19:27:24 ----D---- C:\Windows\system32\DriverStore
2013-09-26 19:27:24 ----D---- C:\Windows\system32\drivers\sk-SK
2013-09-26 19:27:24 ----D---- C:\Windows\system32\drivers\en-US
2013-09-26 19:27:24 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-09-26 19:27:24 ----D---- C:\Windows\system32\Boot
2013-09-26 19:27:24 ----D---- C:\Windows\sk-SK
2013-09-26 19:27:24 ----D---- C:\Windows\rescache
2013-09-26 19:27:24 ----D---- C:\Windows\PolicyDefinitions
2013-09-26 19:27:24 ----D---- C:\Windows\Offline Web Pages
2013-09-26 19:27:24 ----D---- C:\Windows\L2Schemas
2013-09-26 19:27:23 ----D---- C:\Windows\en-US
2013-09-26 19:27:23 ----D---- C:\Windows\ehome
2013-09-26 19:27:23 ----D---- C:\Windows\Downloaded Program Files
2013-09-26 19:27:22 ----D---- C:\Program Files\Windows Mail
2013-09-26 19:27:20 ----D---- C:\Program Files (x86)\Windows Mail
2013-09-26 19:27:19 ----D---- C:\Windows\zh-tw
2013-09-26 19:25:16 ----D---- C:\Windows\tr
2013-09-26 19:25:16 ----D---- C:\Windows\th
2013-09-26 19:25:16 ----D---- C:\Windows\SYSWOW64\winrm
2013-09-26 19:25:16 ----D---- C:\Windows\SYSWOW64\WCN
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\slmgr
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\migwiz
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\Macromed
2013-09-26 19:25:14 ----D---- C:\Windows\SYSWOW64\DriverStore
2013-09-26 19:25:14 ----D---- C:\Windows\SYSWOW64\drivers
2013-09-26 19:25:14 ----D---- C:\Windows\SYSWOW64\Dism
2013-09-26 19:25:13 ----D---- C:\Windows\system32\winrm
2013-09-26 19:25:13 ----D---- C:\Windows\system32\WCN
2013-09-26 19:25:13 ----D---- C:\Windows\system32\Tasks
2013-09-26 19:25:13 ----D---- C:\Windows\system32\sysprep
2013-09-26 19:25:13 ----D---- C:\Windows\system32\slmgr
2013-09-26 19:25:12 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2013-09-26 19:25:12 ----D---- C:\Windows\system32\oobe
2013-09-26 19:25:12 ----D---- C:\Windows\system32\migwiz
2013-09-26 19:25:10 ----D---- C:\Windows\system32\Dism
2013-09-26 19:25:10 ----D---- C:\Windows\system32\CodeIntegrity
2013-09-26 19:25:09 ----D---- C:\Windows\sv
2013-09-26 19:25:09 ----D---- C:\Windows\Speech
2013-09-26 19:25:09 ----D---- C:\Windows\sl
2013-09-26 19:25:09 ----D---- C:\Windows\sk
2013-09-26 19:25:08 ----D---- C:\Windows\servicing
2013-09-26 19:25:04 ----D---- C:\Windows\security
2013-09-26 19:25:04 ----D---- C:\Windows\ru
2013-09-26 19:25:04 ----D---- C:\Windows\ro
2013-09-26 19:25:04 ----D---- C:\Windows\pt-pt
2013-09-26 19:25:04 ----D---- C:\Windows\pt-br
2013-09-26 19:25:04 ----D---- C:\Windows\pl
2013-09-26 19:25:04 ----D---- C:\Windows\no
2013-09-26 19:25:04 ----D---- C:\Windows\nl
2013-09-26 19:25:03 ----D---- C:\Windows\it
2013-09-26 19:25:01 ----D---- C:\Windows\hu
2013-09-26 19:25:01 ----D---- C:\Windows\hr
2013-09-26 19:25:00 ----D---- C:\Windows\he
2013-09-26 19:25:00 ----D---- C:\Windows\fr
2013-09-26 19:25:00 ----D---- C:\Windows\fi
2013-09-26 19:25:00 ----D---- C:\Windows\eu
2013-09-26 19:25:00 ----D---- C:\Windows\es
2013-09-26 19:25:00 ----D---- C:\Windows\en
2013-09-26 19:25:00 ----D---- C:\Windows\el
2013-09-26 19:24:59 ----D---- C:\Windows\de
2013-09-26 19:24:59 ----D---- C:\Windows\da
2013-09-26 19:24:59 ----D---- C:\Windows\cs
2013-09-26 19:24:59 ----D---- C:\Windows\ca
2013-09-26 19:24:59 ----D---- C:\Windows\bg
2013-09-26 19:24:54 ----D---- C:\Windows\ar
2013-09-26 19:24:54 ----D---- C:\Windows\AppCompat
2013-09-26 19:24:54 ----D---- C:\Users\Tomáš\AppData\Roaming\TouchSuite
2013-09-26 19:24:54 ----D---- C:\Users\Tomáš\AppData\Roaming\TouchGadget
2013-09-26 19:24:53 ----SD---- C:\Users\Tomáš\AppData\Roaming\Microsoft
2013-09-26 19:24:46 ----D---- C:\Program Files\Windows Sidebar
2013-09-26 19:24:45 ----D---- C:\Program Files\Windows Photo Viewer
2013-09-26 19:24:45 ----D---- C:\Program Files\Windows Media Player
2013-09-26 19:24:45 ----D---- C:\Program Files\Windows Live
2013-09-26 19:24:45 ----D---- C:\Program Files\NVIDIA Corporation
2013-09-26 19:24:44 ----D---- C:\Program Files\mcafee
2013-09-26 19:24:41 ----D---- C:\Program Files\mcafee.com
2013-09-26 19:24:41 ----D---- C:\Program Files\DVD Maker
2013-09-26 19:24:41 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-09-26 19:24:40 ----D---- C:\Program Files\Common Files\mcafee
2013-09-26 19:24:40 ----D---- C:\Program Files (x86)\Windows Sidebar
2013-09-26 19:24:39 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-09-26 19:24:39 ----D---- C:\Program Files (x86)\Windows Media Player
2013-09-26 19:24:36 ----D---- C:\Program Files (x86)\Windows Live
2013-09-26 19:24:19 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-09-26 19:24:17 ----D---- C:\Program Files (x86)\mcafee.com
2013-09-26 19:24:17 ----D---- C:\Program Files (x86)\McAfee
2013-09-26 19:24:13 ----D---- C:\Program Files (x86)\Common Files
2013-09-26 19:24:12 ----D---- C:\Program Files (x86)\Adobe
2013-09-26 19:24:09 ----D---- C:\Program Files (x86)\Acer GameZone
2013-09-26 19:24:06 ----SHD---- C:\Config.Msi
2013-09-26 19:24:06 ----HD---- C:\OEM
2013-09-26 19:24:05 ----D---- C:\Program Files (x86)\BitLord
2013-09-26 19:24:02 ----D---- C:\Program Files (x86)\DVDVideoSoft
2013-09-26 19:24:02 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2013-09-26 19:24:02 ----D---- C:\Program Files (x86)\CygniCon
2013-09-26 19:23:58 ----D---- C:\Program Files (x86)\HP Photo Creations
2013-09-26 19:23:58 ----D---- C:\Program Files (x86)\HP
2013-09-26 19:23:57 ----D---- C:\Program Files (x86)\Java
2013-09-26 19:23:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-09-26 19:23:53 ----D---- C:\Program Files (x86)\PDF Editor 3
2013-09-26 19:23:51 ----D---- C:\Program Files (x86)\Skype
2013-09-26 19:23:49 ----D---- C:\Program Files\Eraser
2013-09-26 19:23:48 ----D---- C:\Program Files\Intel
2013-09-26 19:23:41 ----D---- C:\Program Files\Microsoft Security Client
2013-09-26 19:23:40 ----D---- C:\ProgramData\HP Photo Creations
2013-09-26 19:23:40 ----D---- C:\ProgramData\HP
2013-09-26 19:23:40 ----D---- C:\Program Files\WinRAR
2013-09-26 19:23:35 ----D---- C:\totalcmd
2013-09-26 19:23:35 ----D---- C:\ProgramData\Skype
2013-09-26 19:23:33 ----D---- C:\Users\Tomáš\AppData\Roaming\DAEMON Tools Lite
2013-09-26 19:23:32 ----D---- C:\Users\Tomáš\AppData\Roaming\Skype
2013-09-26 19:23:32 ----D---- C:\Users\Tomáš\AppData\Roaming\PowerCinema
2013-09-26 19:23:06 ----D---- C:\Windows\Minidump
2013-09-26 19:22:01 ----D---- C:\Windows\registration
2013-09-26 19:15:37 ----D---- C:\Windows\system32\wdi
2013-09-26 19:09:44 ----D---- C:\Windows\Help
2013-09-26 19:07:45 ----RD---- C:\Users
2013-09-26 19:07:44 ----HD---- C:\ProgramData
2013-09-26 19:07:44 ----D---- C:\ProgramData\Symantec
2013-09-26 19:06:45 ----D---- C:\Program Files\Common Files
2013-09-26 19:06:28 ----D---- C:\Program Files\Acer
2013-09-26 19:05:29 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-09-26 19:05:16 ----D---- C:\Program Files (x86)\Microsoft
2013-09-26 19:05:05 ----D---- C:\Program Files (x86)\Microsoft Office
2013-09-26 19:04:52 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-09-26 19:02:42 ----SHD---- C:\$Recycle.Bin
2013-09-26 18:54:20 ----D---- C:\ProgramData\NVIDIA
2013-09-26 18:18:34 ----D---- C:\Program Files\SUPERAntiSpyware
2013-09-26 17:00:53 ----D---- C:\MDTQILBR
2013-09-26 17:00:50 ----D---- C:\Program Files (x86)\AviSynth 2.5
2013-09-26 17:00:50 ----D---- C:\Program Files (x86)\AVI ReComp
2013-09-26 17:00:50 ----D---- C:\Program Files (x86)\Apple Software Update
2013-09-26 17:00:43 ----D---- C:\Program Files (x86)\DivX
2013-09-26 17:00:43 ----D---- C:\Program Files (x86)\DC++
2013-09-26 17:00:41 ----D---- C:\Program Files (x86)\ISO Creator
2013-09-26 17:00:34 ----D---- C:\Program Files (x86)\Microsoft Security Client
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\NeoTracePro
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\mpPhotobook
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2013-09-26 17:00:31 ----D---- C:\Program Files (x86)\QuickTime
2013-09-26 17:00:29 ----D---- C:\Program Files (x86)\VSO
2013-09-26 17:00:29 ----D---- C:\Program Files (x86)\StrongDC++
2013-09-26 17:00:29 ----D---- C:\Program Files (x86)\Steam
2013-09-26 17:00:29 ----D---- C:\Program Files (x86)\SlideShowStudio
2013-09-26 17:00:18 ----D---- C:\Program Files (x86)\Youtube to MP3 Converter
2013-09-26 17:00:18 ----D---- C:\Program Files (x86)\Xvid
2013-09-26 17:00:16 ----D---- C:\Program Files\Microsoft Silverlight
2013-09-26 17:00:11 ----D---- C:\ProgramData\Microsoft Help
2013-09-26 17:00:11 ----D---- C:\ProgramData\DAEMON Tools Lite
2013-09-26 17:00:11 ----D---- C:\ProgramData\Apple Computer
2013-09-26 16:59:34 ----D---- C:\Users\Tomáš\AppData\Roaming\OpenCandy
2013-09-26 16:59:33 ----D---- C:\Users\Tomáš\AppData\Roaming\TOMI3
2013-09-26 16:58:01 ----D---- C:\Windows\softwaredistribution.bak
2013-09-26 16:57:37 ----D---- C:\Windows\SYSWOW64\Adobe
2013-09-26 16:57:37 ----D---- C:\Windows\system
2013-09-26 16:48:52 ----D---- C:\Users\Tomáš\AppData\Roaming\SoftGrid Client
2013-09-26 16:48:42 ----D---- C:\Users\Tomáš\AppData\Roaming\Adobe
2013-09-26 16:45:44 ----D---- C:\Program Files (x86)\Samsung
2013-09-26 16:43:29 ----D---- C:\NVIDIA
2013-09-23 16:18:54 ----D---- C:\Windows\Panther
2013-09-23 16:18:53 ----D---- C:\Windows\Logs
2013-09-23 16:18:53 ----D---- C:\Windows\debug
2013-09-23 15:48:19 ----D---- C:\Users\Tomáš\AppData\Roaming\Samsung
2013-09-23 15:48:18 ----D---- C:\ProgramData\Samsung
2013-09-22 20:45:30 ----D---- C:\ProgramData\Big Fish Games
2013-09-19 23:41:36 ----D---- C:\Users\Tomáš\AppData\Roaming\AVI ReComp
2013-09-12 06:20:14 ----D---- C:\Windows\system32\MRT
2013-08-30 18:03:55 ----D---- C:\Users\Tomáš\AppData\Roaming\AlawarEntertainment
2013-08-30 18:03:47 ----D---- C:\ProgramData\AlawarWrapper
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2010-11-06 438808]
R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2011-10-15 647080]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2011-10-15 284648]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 mfenlfk;McAfee NDIS Light Filter; C:\Windows\system32\DRIVERS\mfenlfk.sys [2011-10-15 75808]
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2011-03-29 22912]
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2011-03-29 20328]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2011-03-29 62584]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 {31E9B156-F8C3-4B9A-BB45-D41BAA6B4400};Power Control [2011/09/26 22:08:54]; \??\C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\000.fcl [2010-10-26 146928]
R3 AVer7231_x64;AVerMedia 7231 capture service; C:\Windows\system32\DRIVERS\AVer7231_x64.sys [2010-04-08 1757952]
R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2010-11-21 80384]
R3 clwvd;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2011-03-01 31088]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\Windows\system32\DRIVERS\e1c62x64.sys [2010-09-21 313520]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-03-24 2817768]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2011-10-15 160280]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2011-10-15 229528]
R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2011-10-15 481768]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2010-11-12 155752]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter; C:\Windows\system32\DRIVERS\RTL8192su.sys [2010-07-08 694888]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2010-11-21 552448]
S3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2011-10-15 65264]
S3 mfeavfk01;McAfee Inc.; C:\Windows\system32\drivers\mfeavfk01.sys []
S3 mferkdet;McAfee Inc. mferkdet; C:\Windows\system32\drivers\mferkdet.sys [2011-10-15 100912]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 0137231380220478mcinstcleanup;McAfee Application Installer Cleanup (0137231380220478); C:\Windows\TEMP\013723~1.EXE [2012-06-14 828032]
R2 GREGService;GREGService; C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-06 13336]
R2 Live Updater Service;Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2011-01-31 244624]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-02-01 326168]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 McShield;McAfee McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2011-12-06 199272]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2011-12-06 208536]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe [2011-12-06 161168]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
R2 NOBU;Norton Online Backup; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2010-06-01 2804568]
R2 NVSvc;NVIDIA Driver Helper Service; C:\Windows\system32\nvvsvc.exe [2011-02-09 1005160]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [2010-02-25 244904]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-02-25 249648]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-01 2656280]
R2 USBS3S4Detection;USBS3S4Detection; C:\OEM\USBDECTION\USBS3S4Detection.exe [2009-12-09 76320]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 CLKMSVC10_34E30CCC;CyberLink Product - 2011/09/26 22:11:41; C:\Program Files (x86)\Acer\clear.fi\Movie\NavFilter\kmsvc.exe [2011-02-19 238576]
S2 McMPFSvc;McAfee Personal Firewall; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2009-12-15 355440]
S2 mcmscsvc;McAfee Services; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
S2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
S2 McNASvc;McAfee Network Agent; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
S2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
S2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2009-12-15 355440]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-03-02 183560]
S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2010-09-28 172912]
S3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2011-10-18 502032]
S4 McOobeSv;McAfee OOBE Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Virus nebo nejaka jina hovadina
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119531
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Virus nebo nejaka jina hovadina
Zdravím!
Spusťte nejprve tuto utilitu:
Spusťte nejprve tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Virus nebo nejaka jina hovadina
Něco smazáno, btw. ještě když šel net tak to blokovalo i Firefox..
# AdwCleaner v3.005 - Report created 27/09/2013 at 20:09:34
# Updated 22/09/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Tomáš - TOMAS-PC
# Running from : C:\Users\Tomáš\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Alawar Stargaze
Folder Deleted : C:\ProgramData\AlawarEntertainment
Folder Deleted : C:\ProgramData\AlawarWrapper
Folder Deleted : C:\ProgramData\saveenshare
Folder Deleted : C:\ProgramData\SearchNewTab
Folder Deleted : C:\Program Files (x86)\BitLord
Folder Deleted : C:\Users\Tomáš\AppData\Local\Conduit
Folder Deleted : C:\Users\Tomáš\AppData\Local\DownTango
Folder Deleted : C:\Users\Tomáš\AppData\Local\AlawarWrapper
Folder Deleted : C:\Users\Tomáš\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Tomáš\AppData\Roaming\dvdvideosoftiehelpers
Folder Deleted : C:\Users\Tomáš\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\Tomáš\AppData\Roaming\Alawar Stargaze
Folder Deleted : C:\Users\Tomáš\AppData\Roaming\AlawarEntertainment
Folder Deleted : C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitLord
File Deleted : C:\END
File Deleted : C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\71a1u7if.default-1367698760540\searchplugins\WebSearch.xml
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.7601.17514
-\\ Mozilla Firefox v
-\\ Google Chrome v
[ File : C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [1824 octets] - [27/09/2013 20:08:53]
AdwCleaner[S0].txt - [1817 octets] - [27/09/2013 20:09:34]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1877 octets] ##########
# AdwCleaner v3.005 - Report created 27/09/2013 at 20:09:34
# Updated 22/09/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Tomáš - TOMAS-PC
# Running from : C:\Users\Tomáš\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Alawar Stargaze
Folder Deleted : C:\ProgramData\AlawarEntertainment
Folder Deleted : C:\ProgramData\AlawarWrapper
Folder Deleted : C:\ProgramData\saveenshare
Folder Deleted : C:\ProgramData\SearchNewTab
Folder Deleted : C:\Program Files (x86)\BitLord
Folder Deleted : C:\Users\Tomáš\AppData\Local\Conduit
Folder Deleted : C:\Users\Tomáš\AppData\Local\DownTango
Folder Deleted : C:\Users\Tomáš\AppData\Local\AlawarWrapper
Folder Deleted : C:\Users\Tomáš\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Tomáš\AppData\Roaming\dvdvideosoftiehelpers
Folder Deleted : C:\Users\Tomáš\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\Tomáš\AppData\Roaming\Alawar Stargaze
Folder Deleted : C:\Users\Tomáš\AppData\Roaming\AlawarEntertainment
Folder Deleted : C:\Users\Tomáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitLord
File Deleted : C:\END
File Deleted : C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\71a1u7if.default-1367698760540\searchplugins\WebSearch.xml
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v8.0.7601.17514
-\\ Mozilla Firefox v
-\\ Google Chrome v
[ File : C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [1824 octets] - [27/09/2013 20:08:53]
AdwCleaner[S0].txt - [1817 octets] - [27/09/2013 20:09:34]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1877 octets] ##########
Re: Virus nebo nejaka jina hovadina
Jo a odinstaluju McAfee, stejně je z bodu obnovení a už není aktuální a placený.. 
Re: Virus nebo nejaka jina hovadina
A to stejné s Norton Online BackupProti píše:Jo a odinstaluju McAfee, stejně je z bodu obnovení a už není aktuální a placený..
-
Rudy
- Site Admin
- Příspěvky: 119531
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Virus nebo nejaka jina hovadina
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Virus nebo nejaka jina hovadina
Logfile of random's system information tool 1.09 (written by random/random)
Run by Tomáš at 2013-09-27 20:58:06
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 118 GB (17%) free of 703 GB
Total RAM: 8171 MB (81% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:58:19, on 27.9.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\TouchPortalLauncher.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe
C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe
C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe
C:\Program Files\trend micro\Tomáš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~1\mcafee\msk\mskapbho.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20111225023815.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [MDS_Menu] "C:\Program Files (x86)\Acer\Acer TouchPortal\MediaShow Espresso\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Acer\Acer TouchPortal\MediaShow Espresso" UpdateWithCreateOnce "Software\CyberLink\MediaShow Espresso\5.6"
O4 - HKLM\..\Run: [TouchSuiteMovieService] "C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe"
O4 - HKLM\..\Run: [ArcadeMovieService] "C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"
O4 - HKLM\..\Run: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\progra~2\mcafee\msc\mcsniepl.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: CyberLink Product - 2011/09/26 22:11:41 (CLKMSVC10_34E30CCC) - CyberLink - C:\Program Files (x86)\Acer\clear.fi\Movie\NavFilter\kmsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Personal Firewall (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: USBS3S4Detection - Unknown owner - C:\OEM\USBDECTION\USBS3S4Detection.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11813 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
/QuitInfo:000000000000024C;0000000000000254; /AddRef;
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Acer\Registration\GREGsvc.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc
"C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe"
"C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe"
C:\OEM\USBDECTION\USBS3S4Detection.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
WLIDSvcM.exe 1516
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\x64\saHook.dll", saHooker_Initialize_and_Wait
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-5a67f4b8-dfe4-433f-a24c-b714282893ad -SystemEventPortName:HostProcess-299c24e8-480f-4bec-bacd-f67afb726731 -IoCancelEventPortName:HostProcess-85a35fa9-2c87-4fbf-b70b-d0821d2d866b -NonStateChangingEventPortName:HostProcess-c59b6f12-7134-42e9-83a1-5e5d4d0ddfd9 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:9b58d06a-8e4b-4b31-93eb-f7f04f956821
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
/QuitInfo:0000000000000898;000000000000089C; /AddRef;
/QuitInfo:0000000000000878;00000000000008A4;
/loadhooks /Parent:0000000000000620
"C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files (x86)\Acer\Acer TouchPortal\TouchPortalLauncher.exe" na
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
"C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
"C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe" /s
"C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe"
"C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"
"C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe"
"C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
taskeng.exe {BA5903C3-49BF-45DC-A3D8-89E93A5A2912}
"C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe"
"C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe"
"C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe"
"C:\Program Files (x86)\Acer\clear.fi Client\ExtractDeviceIcon.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Users\Tomáš\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
======Scheduled tasks folder======
C:\Windows\tasks\Acer Registration - Data Sending task.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20111225023815.dll [2011-12-06 94688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2012-06-21 322344]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB}]
McAfee Phishing Filter - c:\progra~1\mcafee\msk\mskapbho.dll [2009-12-22 245272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20111225023815.dll [2011-12-06 79744]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\progra~2\mcafee\sitead~1\mcieplg.dll [2012-06-21 261568]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2012-06-21 322344]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\progra~2\mcafee\sitead~1\mcieplg.dll [2012-06-21 261568]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TouchORB"=C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe [2010-05-06 153416]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-03-24 11786344]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-03-21 2207848]
"TouchPortal"=C:\Program Files (x86)\Acer\Acer TouchPortal\TouchPortalLauncher.exe [2010-07-08 436256]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcui_exe]
C:\Program Files\McAfee.com\Agent\mcagent.exe [2010-02-04 1465304]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-11-06 283160]
"SuiteTray"=C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2010-09-28 340336]
"EgisTecPMMUpdate"=C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [2010-09-18 407920]
"EgisUpdate"=C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [2010-09-18 201584]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]
"YouCam Mirage"=C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe [2011-03-01 136488]
"YouCam Tray"=C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe [2011-03-01 162912]
"MDS_Menu"=C:\Program Files (x86)\Acer\Acer TouchPortal\MediaShow Espresso\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"TouchSuiteMovieService"=C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe [2010-10-30 124136]
"ArcadeMovieService"=C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [2011-02-19 177448]
"Hotkey Utility"=C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [2011-01-19 620136]
"Dolby Home Theater v4"=C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [2011-02-03 506712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-09-27 20:41:41 ----D---- C:\Program Files\CCleaner
2013-09-27 20:08:50 ----D---- C:\AdwCleaner
2013-09-27 19:37:45 ----D---- C:\Program Files\trend micro
2013-09-27 19:37:44 ----D---- C:\rsit
2013-09-27 19:18:42 ----D---- C:\Program Files (x86)\ESET
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wups2.dll
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wucltux.dll
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wuaueng.dll
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wuauclt.exe
2013-09-27 15:13:02 ----A---- C:\Windows\system32\wups.dll
2013-09-27 15:13:02 ----A---- C:\Windows\system32\wudriver.dll
2013-09-27 15:13:02 ----A---- C:\Windows\system32\wuapi.dll
2013-09-27 15:12:53 ----A---- C:\Windows\system32\wuwebv.dll
2013-09-27 15:12:53 ----A---- C:\Windows\system32\wuapp.exe
2013-09-26 16:10:27 ----D---- C:\ProgramData\MFAData
2013-09-23 16:03:10 ----D---- C:\ProgramData\SummerSoft
2013-09-23 15:52:13 ----A---- C:\Users\Tomáš\AppData\Roaming\regsvr32.exe_log.txt
2013-09-23 15:52:13 ----A---- C:\Users\Tomáš\AppData\Roaming\LiveSupport.exe_log.txt
2013-09-23 15:51:43 ----D---- C:\Program Files (x86)\Ss.Helper
2013-09-23 15:50:40 ----D---- C:\ProgramData\InstallMate
2013-09-22 20:45:31 ----D---- C:\ProgramData\Big Fish
2013-09-22 20:43:50 ----D---- C:\BigFishCache
2013-09-14 20:36:00 ----D---- C:\Users\Tomáš\AppData\Roaming\Ubisoft
======List of files/folders modified in the last 1 month======
2013-09-27 20:58:18 ----HD---- C:\Windows\Temp
2013-09-27 20:58:04 ----D---- C:\ProgramData\clear.fi
2013-09-27 20:57:11 ----D---- C:\Windows\system32\drivers
2013-09-27 20:57:11 ----D---- C:\Windows
2013-09-27 20:56:47 ----SHD---- C:\Config.Msi
2013-09-27 20:56:02 ----A---- C:\Windows\SYSWOW64\log.txt
2013-09-27 20:53:31 ----D---- C:\Windows\inf
2013-09-27 20:51:57 ----SHD---- C:\Windows\Installer
2013-09-27 20:51:55 ----SD---- C:\ProgramData\Microsoft
2013-09-27 20:50:02 ----SHD---- C:\System Volume Information
2013-09-27 20:49:32 ----RD---- C:\Program Files (x86)
2013-09-27 20:49:11 ----D---- C:\Users\Tomáš\AppData\Roaming\PowerCinema
2013-09-27 20:46:32 ----D---- C:\Windows\system32\Tasks
2013-09-27 20:41:41 ----RD---- C:\Program Files
2013-09-27 20:32:15 ----D---- C:\Windows\system32\config
2013-09-27 20:21:37 ----HD---- C:\ProgramData
2013-09-27 20:16:19 ----D---- C:\Windows\System32
2013-09-27 20:16:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-09-27 20:12:02 ----D---- C:\Windows\winsxs
2013-09-27 20:11:32 ----D---- C:\Windows\system32\sk-SK
2013-09-27 20:11:32 ----D---- C:\Windows\system32\en-US
2013-09-27 20:11:32 ----D---- C:\Windows\system32\cs-CZ
2013-09-27 19:20:59 ----D---- C:\Windows\system32\catroot2
2013-09-27 19:20:59 ----D---- C:\Windows\system32\catroot
2013-09-27 19:09:06 ----D---- C:\Windows\Prefetch
2013-09-27 15:00:29 ----D---- C:\ProgramData\McAfee
2013-09-27 03:06:52 ----D---- C:\Windows\system32\LogFiles
2013-09-26 19:39:22 ----D---- C:\Windows\Microsoft.NET
2013-09-26 19:38:54 ----RSD---- C:\Windows\assembly
2013-09-26 19:31:34 ----D---- C:\Windows\SysWOW64
2013-09-26 19:30:35 ----D---- C:\Windows\Tasks
2013-09-26 19:30:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-09-26 19:30:35 ----D---- C:\Windows\system32\wfp
2013-09-26 19:30:34 ----RSD---- C:\Windows\Fonts
2013-09-26 19:30:34 ----D---- C:\Windows\system32\drivers\UMDF
2013-09-26 19:30:33 ----D---- C:\Program Files\Internet Explorer
2013-09-26 19:30:28 ----D---- C:\Program Files (x86)\Microsoft Application Virtualization Client
2013-09-26 19:30:21 ----D---- C:\Windows\system32\wbem
2013-09-26 19:27:39 ----D---- C:\Windows\ShellNew
2013-09-26 19:27:39 ----D---- C:\Windows\AppPatch
2013-09-26 19:27:39 ----D---- C:\Program Files\Windows Journal
2013-09-26 19:27:39 ----D---- C:\Program Files\Windows Defender
2013-09-26 19:27:39 ----D---- C:\Program Files\Common Files\System
2013-09-26 19:27:39 ----D---- C:\Program Files (x86)\Windows Defender
2013-09-26 19:27:39 ----D---- C:\Program Files (x86)\Internet Explorer
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\wbem
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\migration
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\en-US
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\en
2013-09-26 19:27:33 ----D---- C:\Windows\SYSWOW64\drivers\sk-SK
2013-09-26 19:27:33 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2013-09-26 19:27:33 ----D---- C:\Windows\system32\migration
2013-09-26 19:27:33 ----D---- C:\Windows\system32\en
2013-09-26 19:27:24 ----RSD---- C:\Windows\Media
2013-09-26 19:27:24 ----D---- C:\Windows\system32\DriverStore
2013-09-26 19:27:24 ----D---- C:\Windows\system32\drivers\sk-SK
2013-09-26 19:27:24 ----D---- C:\Windows\system32\drivers\en-US
2013-09-26 19:27:24 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-09-26 19:27:24 ----D---- C:\Windows\system32\Boot
2013-09-26 19:27:24 ----D---- C:\Windows\sk-SK
2013-09-26 19:27:24 ----D---- C:\Windows\rescache
2013-09-26 19:27:24 ----D---- C:\Windows\PolicyDefinitions
2013-09-26 19:27:24 ----D---- C:\Windows\Offline Web Pages
2013-09-26 19:27:24 ----D---- C:\Windows\L2Schemas
2013-09-26 19:27:23 ----D---- C:\Windows\en-US
2013-09-26 19:27:23 ----D---- C:\Windows\ehome
2013-09-26 19:27:23 ----D---- C:\Windows\Downloaded Program Files
2013-09-26 19:27:22 ----D---- C:\Program Files\Windows Mail
2013-09-26 19:27:20 ----D---- C:\Program Files (x86)\Windows Mail
2013-09-26 19:27:19 ----D---- C:\Windows\zh-tw
2013-09-26 19:25:16 ----D---- C:\Windows\tr
2013-09-26 19:25:16 ----D---- C:\Windows\th
2013-09-26 19:25:16 ----D---- C:\Windows\SYSWOW64\winrm
2013-09-26 19:25:16 ----D---- C:\Windows\SYSWOW64\WCN
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\slmgr
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\migwiz
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\Macromed
2013-09-26 19:25:14 ----D---- C:\Windows\SYSWOW64\DriverStore
2013-09-26 19:25:14 ----D---- C:\Windows\SYSWOW64\drivers
2013-09-26 19:25:14 ----D---- C:\Windows\SYSWOW64\Dism
2013-09-26 19:25:13 ----D---- C:\Windows\system32\winrm
2013-09-26 19:25:13 ----D---- C:\Windows\system32\WCN
2013-09-26 19:25:13 ----D---- C:\Windows\system32\sysprep
2013-09-26 19:25:13 ----D---- C:\Windows\system32\slmgr
2013-09-26 19:25:12 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2013-09-26 19:25:12 ----D---- C:\Windows\system32\oobe
2013-09-26 19:25:12 ----D---- C:\Windows\system32\migwiz
2013-09-26 19:25:10 ----D---- C:\Windows\system32\Dism
2013-09-26 19:25:10 ----D---- C:\Windows\system32\CodeIntegrity
2013-09-26 19:25:09 ----D---- C:\Windows\sv
2013-09-26 19:25:09 ----D---- C:\Windows\Speech
2013-09-26 19:25:09 ----D---- C:\Windows\sl
2013-09-26 19:25:09 ----D---- C:\Windows\sk
2013-09-26 19:25:08 ----D---- C:\Windows\servicing
2013-09-26 19:25:04 ----D---- C:\Windows\security
2013-09-26 19:25:04 ----D---- C:\Windows\ru
2013-09-26 19:25:04 ----D---- C:\Windows\ro
2013-09-26 19:25:04 ----D---- C:\Windows\pt-pt
2013-09-26 19:25:04 ----D---- C:\Windows\pt-br
2013-09-26 19:25:04 ----D---- C:\Windows\pl
2013-09-26 19:25:04 ----D---- C:\Windows\no
2013-09-26 19:25:04 ----D---- C:\Windows\nl
2013-09-26 19:25:03 ----D---- C:\Windows\it
2013-09-26 19:25:01 ----D---- C:\Windows\hu
2013-09-26 19:25:01 ----D---- C:\Windows\hr
2013-09-26 19:25:00 ----D---- C:\Windows\he
2013-09-26 19:25:00 ----D---- C:\Windows\fr
2013-09-26 19:25:00 ----D---- C:\Windows\fi
2013-09-26 19:25:00 ----D---- C:\Windows\eu
2013-09-26 19:25:00 ----D---- C:\Windows\es
2013-09-26 19:25:00 ----D---- C:\Windows\en
2013-09-26 19:25:00 ----D---- C:\Windows\el
2013-09-26 19:24:59 ----D---- C:\Windows\de
2013-09-26 19:24:59 ----D---- C:\Windows\da
2013-09-26 19:24:59 ----D---- C:\Windows\cs
2013-09-26 19:24:59 ----D---- C:\Windows\ca
2013-09-26 19:24:59 ----D---- C:\Windows\bg
2013-09-26 19:24:54 ----D---- C:\Windows\ar
2013-09-26 19:24:54 ----D---- C:\Windows\AppCompat
2013-09-26 19:24:54 ----D---- C:\Users\Tomáš\AppData\Roaming\TouchSuite
2013-09-26 19:24:54 ----D---- C:\Users\Tomáš\AppData\Roaming\TouchGadget
2013-09-26 19:24:53 ----SD---- C:\Users\Tomáš\AppData\Roaming\Microsoft
2013-09-26 19:24:46 ----D---- C:\Program Files\Windows Sidebar
2013-09-26 19:24:45 ----D---- C:\Program Files\Windows Photo Viewer
2013-09-26 19:24:45 ----D---- C:\Program Files\Windows Media Player
2013-09-26 19:24:45 ----D---- C:\Program Files\Windows Live
2013-09-26 19:24:45 ----D---- C:\Program Files\NVIDIA Corporation
2013-09-26 19:24:44 ----D---- C:\Program Files\mcafee
2013-09-26 19:24:41 ----D---- C:\Program Files\mcafee.com
2013-09-26 19:24:41 ----D---- C:\Program Files\DVD Maker
2013-09-26 19:24:41 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-09-26 19:24:40 ----D---- C:\Program Files\Common Files\mcafee
2013-09-26 19:24:40 ----D---- C:\Program Files (x86)\Windows Sidebar
2013-09-26 19:24:39 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-09-26 19:24:39 ----D---- C:\Program Files (x86)\Windows Media Player
2013-09-26 19:24:36 ----D---- C:\Program Files (x86)\Windows Live
2013-09-26 19:24:19 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-09-26 19:24:17 ----D---- C:\Program Files (x86)\mcafee.com
2013-09-26 19:24:17 ----D---- C:\Program Files (x86)\McAfee
2013-09-26 19:24:13 ----D---- C:\Program Files (x86)\Common Files
2013-09-26 19:24:12 ----D---- C:\Program Files (x86)\Adobe
2013-09-26 19:24:09 ----D---- C:\Program Files (x86)\Acer GameZone
2013-09-26 19:24:06 ----HD---- C:\OEM
2013-09-26 19:24:02 ----D---- C:\Program Files (x86)\DVDVideoSoft
2013-09-26 19:24:02 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2013-09-26 19:24:02 ----D---- C:\Program Files (x86)\CygniCon
2013-09-26 19:23:58 ----D---- C:\Program Files (x86)\HP Photo Creations
2013-09-26 19:23:58 ----D---- C:\Program Files (x86)\HP
2013-09-26 19:23:57 ----D---- C:\Program Files (x86)\Java
2013-09-26 19:23:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-09-26 19:23:53 ----D---- C:\Program Files (x86)\PDF Editor 3
2013-09-26 19:23:51 ----D---- C:\Program Files (x86)\Skype
2013-09-26 19:23:49 ----D---- C:\Program Files\Eraser
2013-09-26 19:23:48 ----D---- C:\Program Files\Intel
2013-09-26 19:23:41 ----D---- C:\Program Files\Microsoft Security Client
2013-09-26 19:23:40 ----D---- C:\ProgramData\HP Photo Creations
2013-09-26 19:23:40 ----D---- C:\ProgramData\HP
2013-09-26 19:23:40 ----D---- C:\Program Files\WinRAR
2013-09-26 19:23:35 ----D---- C:\totalcmd
2013-09-26 19:23:35 ----D---- C:\ProgramData\Skype
2013-09-26 19:23:33 ----D---- C:\Users\Tomáš\AppData\Roaming\DAEMON Tools Lite
2013-09-26 19:23:32 ----D---- C:\Users\Tomáš\AppData\Roaming\Skype
2013-09-26 19:23:06 ----D---- C:\Windows\Minidump
2013-09-26 19:22:01 ----D---- C:\Windows\registration
2013-09-26 19:15:37 ----D---- C:\Windows\system32\wdi
2013-09-26 19:09:44 ----D---- C:\Windows\Help
2013-09-26 19:07:45 ----RD---- C:\Users
2013-09-26 19:06:45 ----D---- C:\Program Files\Common Files
2013-09-26 19:06:28 ----D---- C:\Program Files\Acer
2013-09-26 19:05:29 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-09-26 19:05:16 ----D---- C:\Program Files (x86)\Microsoft
2013-09-26 19:05:05 ----D---- C:\Program Files (x86)\Microsoft Office
2013-09-26 19:04:52 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-09-26 19:02:42 ----SHD---- C:\$Recycle.Bin
2013-09-26 18:54:20 ----D---- C:\ProgramData\NVIDIA
2013-09-26 18:18:34 ----D---- C:\Program Files\SUPERAntiSpyware
2013-09-26 17:00:53 ----D---- C:\MDTQILBR
2013-09-26 17:00:50 ----D---- C:\Program Files (x86)\AviSynth 2.5
2013-09-26 17:00:50 ----D---- C:\Program Files (x86)\AVI ReComp
2013-09-26 17:00:50 ----D---- C:\Program Files (x86)\Apple Software Update
2013-09-26 17:00:43 ----D---- C:\Program Files (x86)\DivX
2013-09-26 17:00:43 ----D---- C:\Program Files (x86)\DC++
2013-09-26 17:00:41 ----D---- C:\Program Files (x86)\ISO Creator
2013-09-26 17:00:34 ----D---- C:\Program Files (x86)\Microsoft Security Client
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\NeoTracePro
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\mpPhotobook
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2013-09-26 17:00:31 ----D---- C:\Program Files (x86)\QuickTime
2013-09-26 17:00:29 ----D---- C:\Program Files (x86)\VSO
2013-09-26 17:00:29 ----D---- C:\Program Files (x86)\Steam
2013-09-26 17:00:29 ----D---- C:\Program Files (x86)\SlideShowStudio
2013-09-26 17:00:18 ----D---- C:\Program Files (x86)\Youtube to MP3 Converter
2013-09-26 17:00:18 ----D---- C:\Program Files (x86)\Xvid
2013-09-26 17:00:16 ----D---- C:\Program Files\Microsoft Silverlight
2013-09-26 17:00:11 ----D---- C:\ProgramData\Microsoft Help
2013-09-26 17:00:11 ----D---- C:\ProgramData\DAEMON Tools Lite
2013-09-26 17:00:11 ----D---- C:\ProgramData\Apple Computer
2013-09-26 16:59:33 ----D---- C:\Users\Tomáš\AppData\Roaming\TOMI3
2013-09-26 16:58:01 ----D---- C:\Windows\softwaredistribution.bak
2013-09-26 16:57:37 ----D---- C:\Windows\SYSWOW64\Adobe
2013-09-26 16:57:37 ----D---- C:\Windows\system
2013-09-26 16:48:52 ----D---- C:\Users\Tomáš\AppData\Roaming\SoftGrid Client
2013-09-26 16:48:42 ----D---- C:\Users\Tomáš\AppData\Roaming\Adobe
2013-09-26 16:45:44 ----D---- C:\Program Files (x86)\Samsung
2013-09-23 16:18:54 ----D---- C:\Windows\Panther
2013-09-23 16:18:53 ----D---- C:\Windows\Logs
2013-09-23 16:18:53 ----D---- C:\Windows\debug
2013-09-23 15:48:19 ----D---- C:\Users\Tomáš\AppData\Roaming\Samsung
2013-09-23 15:48:18 ----D---- C:\ProgramData\Samsung
2013-09-22 20:45:30 ----D---- C:\ProgramData\Big Fish Games
2013-09-19 23:41:36 ----D---- C:\Users\Tomáš\AppData\Roaming\AVI ReComp
2013-09-12 06:20:14 ----D---- C:\Windows\system32\MRT
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2010-11-06 438808]
R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2011-10-15 647080]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2011-10-15 284648]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 mfenlfk;McAfee NDIS Light Filter; C:\Windows\system32\DRIVERS\mfenlfk.sys [2011-10-15 75808]
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2011-03-29 22912]
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2011-03-29 20328]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2011-03-29 62584]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 {31E9B156-F8C3-4B9A-BB45-D41BAA6B4400};Power Control [2011/09/26 22:08:54]; \??\C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\000.fcl [2010-10-26 146928]
R3 AVer7231_x64;AVerMedia 7231 capture service; C:\Windows\system32\DRIVERS\AVer7231_x64.sys [2010-04-08 1757952]
R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2010-11-21 80384]
R3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2011-10-15 65264]
R3 clwvd;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2011-03-01 31088]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\Windows\system32\DRIVERS\e1c62x64.sys [2010-09-21 313520]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-03-24 2817768]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2011-10-15 160280]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2011-10-15 229528]
R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2011-10-15 481768]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2010-11-12 155752]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter; C:\Windows\system32\DRIVERS\RTL8192su.sys [2010-07-08 694888]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2010-11-21 552448]
S3 mfeavfk01;McAfee Inc.; C:\Windows\system32\drivers\mfeavfk01.sys []
S3 mferkdet;McAfee Inc. mferkdet; C:\Windows\system32\drivers\mferkdet.sys [2011-10-15 100912]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 GREGService;GREGService; C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584]
R2 Live Updater Service;Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2011-01-31 244624]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 McMPFSvc;McAfee Personal Firewall; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 mcmscsvc;McAfee Services; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 McShield;McAfee McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2011-12-06 199272]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2011-12-06 208536]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe [2011-12-06 161168]
R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 NVSvc;NVIDIA Driver Helper Service; C:\Windows\system32\nvvsvc.exe [2011-02-09 1005160]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [2010-02-25 244904]
R2 USBS3S4Detection;USBS3S4Detection; C:\OEM\USBDECTION\USBS3S4Detection.exe [2009-12-09 76320]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 CLKMSVC10_34E30CCC;CyberLink Product - 2011/09/26 22:11:41; C:\Program Files (x86)\Acer\clear.fi\Movie\NavFilter\kmsvc.exe [2011-02-19 238576]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-06 13336]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-02-01 326168]
S2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
S2 McNASvc;McAfee Network Agent; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
S2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-01 2656280]
S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2010-09-28 172912]
S3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2011-10-18 502032]
S4 McOobeSv;McAfee OOBE Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
-----------------EOF-----------------
Run by Tomáš at 2013-09-27 20:58:06
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 118 GB (17%) free of 703 GB
Total RAM: 8171 MB (81% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:58:19, on 27.9.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\TouchPortalLauncher.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe
C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe
C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe
C:\Program Files\trend micro\Tomáš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~1\mcafee\msk\mskapbho.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20111225023815.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [MDS_Menu] "C:\Program Files (x86)\Acer\Acer TouchPortal\MediaShow Espresso\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Acer\Acer TouchPortal\MediaShow Espresso" UpdateWithCreateOnce "Software\CyberLink\MediaShow Espresso\5.6"
O4 - HKLM\..\Run: [TouchSuiteMovieService] "C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe"
O4 - HKLM\..\Run: [ArcadeMovieService] "C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"
O4 - HKLM\..\Run: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\progra~2\mcafee\msc\mcsniepl.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: CyberLink Product - 2011/09/26 22:11:41 (CLKMSVC10_34E30CCC) - CyberLink - C:\Program Files (x86)\Acer\clear.fi\Movie\NavFilter\kmsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Personal Firewall (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: USBS3S4Detection - Unknown owner - C:\OEM\USBDECTION\USBS3S4Detection.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11813 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
/QuitInfo:000000000000024C;0000000000000254; /AddRef;
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Acer\Registration\GREGsvc.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc
"C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe"
"C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe"
C:\OEM\USBDECTION\USBS3S4Detection.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
WLIDSvcM.exe 1516
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\x64\saHook.dll", saHooker_Initialize_and_Wait
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-5a67f4b8-dfe4-433f-a24c-b714282893ad -SystemEventPortName:HostProcess-299c24e8-480f-4bec-bacd-f67afb726731 -IoCancelEventPortName:HostProcess-85a35fa9-2c87-4fbf-b70b-d0821d2d866b -NonStateChangingEventPortName:HostProcess-c59b6f12-7134-42e9-83a1-5e5d4d0ddfd9 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:9b58d06a-8e4b-4b31-93eb-f7f04f956821
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
/QuitInfo:0000000000000898;000000000000089C; /AddRef;
/QuitInfo:0000000000000878;00000000000008A4;
/loadhooks /Parent:0000000000000620
"C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files (x86)\Acer\Acer TouchPortal\TouchPortalLauncher.exe" na
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
"C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
"C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe" /s
"C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe"
"C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"
"C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe"
"C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
taskeng.exe {BA5903C3-49BF-45DC-A3D8-89E93A5A2912}
"C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe"
"C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe"
"C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe"
"C:\Program Files (x86)\Acer\clear.fi Client\ExtractDeviceIcon.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Users\Tomáš\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
======Scheduled tasks folder======
C:\Windows\tasks\Acer Registration - Data Sending task.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20111225023815.dll [2011-12-06 94688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2012-06-21 322344]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB}]
McAfee Phishing Filter - c:\progra~1\mcafee\msk\mskapbho.dll [2009-12-22 245272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20111225023815.dll [2011-12-06 79744]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\progra~2\mcafee\sitead~1\mcieplg.dll [2012-06-21 261568]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2012-06-21 322344]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\progra~2\mcafee\sitead~1\mcieplg.dll [2012-06-21 261568]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TouchORB"=C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe [2010-05-06 153416]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-03-24 11786344]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-03-21 2207848]
"TouchPortal"=C:\Program Files (x86)\Acer\Acer TouchPortal\TouchPortalLauncher.exe [2010-07-08 436256]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcui_exe]
C:\Program Files\McAfee.com\Agent\mcagent.exe [2010-02-04 1465304]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-11-06 283160]
"SuiteTray"=C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2010-09-28 340336]
"EgisTecPMMUpdate"=C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [2010-09-18 407920]
"EgisUpdate"=C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [2010-09-18 201584]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]
"YouCam Mirage"=C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe [2011-03-01 136488]
"YouCam Tray"=C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe [2011-03-01 162912]
"MDS_Menu"=C:\Program Files (x86)\Acer\Acer TouchPortal\MediaShow Espresso\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"TouchSuiteMovieService"=C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe [2010-10-30 124136]
"ArcadeMovieService"=C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [2011-02-19 177448]
"Hotkey Utility"=C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [2011-01-19 620136]
"Dolby Home Theater v4"=C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [2011-02-03 506712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-09-27 20:41:41 ----D---- C:\Program Files\CCleaner
2013-09-27 20:08:50 ----D---- C:\AdwCleaner
2013-09-27 19:37:45 ----D---- C:\Program Files\trend micro
2013-09-27 19:37:44 ----D---- C:\rsit
2013-09-27 19:18:42 ----D---- C:\Program Files (x86)\ESET
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wups2.dll
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wucltux.dll
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wuaueng.dll
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wuauclt.exe
2013-09-27 15:13:02 ----A---- C:\Windows\system32\wups.dll
2013-09-27 15:13:02 ----A---- C:\Windows\system32\wudriver.dll
2013-09-27 15:13:02 ----A---- C:\Windows\system32\wuapi.dll
2013-09-27 15:12:53 ----A---- C:\Windows\system32\wuwebv.dll
2013-09-27 15:12:53 ----A---- C:\Windows\system32\wuapp.exe
2013-09-26 16:10:27 ----D---- C:\ProgramData\MFAData
2013-09-23 16:03:10 ----D---- C:\ProgramData\SummerSoft
2013-09-23 15:52:13 ----A---- C:\Users\Tomáš\AppData\Roaming\regsvr32.exe_log.txt
2013-09-23 15:52:13 ----A---- C:\Users\Tomáš\AppData\Roaming\LiveSupport.exe_log.txt
2013-09-23 15:51:43 ----D---- C:\Program Files (x86)\Ss.Helper
2013-09-23 15:50:40 ----D---- C:\ProgramData\InstallMate
2013-09-22 20:45:31 ----D---- C:\ProgramData\Big Fish
2013-09-22 20:43:50 ----D---- C:\BigFishCache
2013-09-14 20:36:00 ----D---- C:\Users\Tomáš\AppData\Roaming\Ubisoft
======List of files/folders modified in the last 1 month======
2013-09-27 20:58:18 ----HD---- C:\Windows\Temp
2013-09-27 20:58:04 ----D---- C:\ProgramData\clear.fi
2013-09-27 20:57:11 ----D---- C:\Windows\system32\drivers
2013-09-27 20:57:11 ----D---- C:\Windows
2013-09-27 20:56:47 ----SHD---- C:\Config.Msi
2013-09-27 20:56:02 ----A---- C:\Windows\SYSWOW64\log.txt
2013-09-27 20:53:31 ----D---- C:\Windows\inf
2013-09-27 20:51:57 ----SHD---- C:\Windows\Installer
2013-09-27 20:51:55 ----SD---- C:\ProgramData\Microsoft
2013-09-27 20:50:02 ----SHD---- C:\System Volume Information
2013-09-27 20:49:32 ----RD---- C:\Program Files (x86)
2013-09-27 20:49:11 ----D---- C:\Users\Tomáš\AppData\Roaming\PowerCinema
2013-09-27 20:46:32 ----D---- C:\Windows\system32\Tasks
2013-09-27 20:41:41 ----RD---- C:\Program Files
2013-09-27 20:32:15 ----D---- C:\Windows\system32\config
2013-09-27 20:21:37 ----HD---- C:\ProgramData
2013-09-27 20:16:19 ----D---- C:\Windows\System32
2013-09-27 20:16:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-09-27 20:12:02 ----D---- C:\Windows\winsxs
2013-09-27 20:11:32 ----D---- C:\Windows\system32\sk-SK
2013-09-27 20:11:32 ----D---- C:\Windows\system32\en-US
2013-09-27 20:11:32 ----D---- C:\Windows\system32\cs-CZ
2013-09-27 19:20:59 ----D---- C:\Windows\system32\catroot2
2013-09-27 19:20:59 ----D---- C:\Windows\system32\catroot
2013-09-27 19:09:06 ----D---- C:\Windows\Prefetch
2013-09-27 15:00:29 ----D---- C:\ProgramData\McAfee
2013-09-27 03:06:52 ----D---- C:\Windows\system32\LogFiles
2013-09-26 19:39:22 ----D---- C:\Windows\Microsoft.NET
2013-09-26 19:38:54 ----RSD---- C:\Windows\assembly
2013-09-26 19:31:34 ----D---- C:\Windows\SysWOW64
2013-09-26 19:30:35 ----D---- C:\Windows\Tasks
2013-09-26 19:30:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-09-26 19:30:35 ----D---- C:\Windows\system32\wfp
2013-09-26 19:30:34 ----RSD---- C:\Windows\Fonts
2013-09-26 19:30:34 ----D---- C:\Windows\system32\drivers\UMDF
2013-09-26 19:30:33 ----D---- C:\Program Files\Internet Explorer
2013-09-26 19:30:28 ----D---- C:\Program Files (x86)\Microsoft Application Virtualization Client
2013-09-26 19:30:21 ----D---- C:\Windows\system32\wbem
2013-09-26 19:27:39 ----D---- C:\Windows\ShellNew
2013-09-26 19:27:39 ----D---- C:\Windows\AppPatch
2013-09-26 19:27:39 ----D---- C:\Program Files\Windows Journal
2013-09-26 19:27:39 ----D---- C:\Program Files\Windows Defender
2013-09-26 19:27:39 ----D---- C:\Program Files\Common Files\System
2013-09-26 19:27:39 ----D---- C:\Program Files (x86)\Windows Defender
2013-09-26 19:27:39 ----D---- C:\Program Files (x86)\Internet Explorer
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\wbem
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\migration
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\en-US
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\en
2013-09-26 19:27:33 ----D---- C:\Windows\SYSWOW64\drivers\sk-SK
2013-09-26 19:27:33 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2013-09-26 19:27:33 ----D---- C:\Windows\system32\migration
2013-09-26 19:27:33 ----D---- C:\Windows\system32\en
2013-09-26 19:27:24 ----RSD---- C:\Windows\Media
2013-09-26 19:27:24 ----D---- C:\Windows\system32\DriverStore
2013-09-26 19:27:24 ----D---- C:\Windows\system32\drivers\sk-SK
2013-09-26 19:27:24 ----D---- C:\Windows\system32\drivers\en-US
2013-09-26 19:27:24 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-09-26 19:27:24 ----D---- C:\Windows\system32\Boot
2013-09-26 19:27:24 ----D---- C:\Windows\sk-SK
2013-09-26 19:27:24 ----D---- C:\Windows\rescache
2013-09-26 19:27:24 ----D---- C:\Windows\PolicyDefinitions
2013-09-26 19:27:24 ----D---- C:\Windows\Offline Web Pages
2013-09-26 19:27:24 ----D---- C:\Windows\L2Schemas
2013-09-26 19:27:23 ----D---- C:\Windows\en-US
2013-09-26 19:27:23 ----D---- C:\Windows\ehome
2013-09-26 19:27:23 ----D---- C:\Windows\Downloaded Program Files
2013-09-26 19:27:22 ----D---- C:\Program Files\Windows Mail
2013-09-26 19:27:20 ----D---- C:\Program Files (x86)\Windows Mail
2013-09-26 19:27:19 ----D---- C:\Windows\zh-tw
2013-09-26 19:25:16 ----D---- C:\Windows\tr
2013-09-26 19:25:16 ----D---- C:\Windows\th
2013-09-26 19:25:16 ----D---- C:\Windows\SYSWOW64\winrm
2013-09-26 19:25:16 ----D---- C:\Windows\SYSWOW64\WCN
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\slmgr
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\migwiz
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\Macromed
2013-09-26 19:25:14 ----D---- C:\Windows\SYSWOW64\DriverStore
2013-09-26 19:25:14 ----D---- C:\Windows\SYSWOW64\drivers
2013-09-26 19:25:14 ----D---- C:\Windows\SYSWOW64\Dism
2013-09-26 19:25:13 ----D---- C:\Windows\system32\winrm
2013-09-26 19:25:13 ----D---- C:\Windows\system32\WCN
2013-09-26 19:25:13 ----D---- C:\Windows\system32\sysprep
2013-09-26 19:25:13 ----D---- C:\Windows\system32\slmgr
2013-09-26 19:25:12 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2013-09-26 19:25:12 ----D---- C:\Windows\system32\oobe
2013-09-26 19:25:12 ----D---- C:\Windows\system32\migwiz
2013-09-26 19:25:10 ----D---- C:\Windows\system32\Dism
2013-09-26 19:25:10 ----D---- C:\Windows\system32\CodeIntegrity
2013-09-26 19:25:09 ----D---- C:\Windows\sv
2013-09-26 19:25:09 ----D---- C:\Windows\Speech
2013-09-26 19:25:09 ----D---- C:\Windows\sl
2013-09-26 19:25:09 ----D---- C:\Windows\sk
2013-09-26 19:25:08 ----D---- C:\Windows\servicing
2013-09-26 19:25:04 ----D---- C:\Windows\security
2013-09-26 19:25:04 ----D---- C:\Windows\ru
2013-09-26 19:25:04 ----D---- C:\Windows\ro
2013-09-26 19:25:04 ----D---- C:\Windows\pt-pt
2013-09-26 19:25:04 ----D---- C:\Windows\pt-br
2013-09-26 19:25:04 ----D---- C:\Windows\pl
2013-09-26 19:25:04 ----D---- C:\Windows\no
2013-09-26 19:25:04 ----D---- C:\Windows\nl
2013-09-26 19:25:03 ----D---- C:\Windows\it
2013-09-26 19:25:01 ----D---- C:\Windows\hu
2013-09-26 19:25:01 ----D---- C:\Windows\hr
2013-09-26 19:25:00 ----D---- C:\Windows\he
2013-09-26 19:25:00 ----D---- C:\Windows\fr
2013-09-26 19:25:00 ----D---- C:\Windows\fi
2013-09-26 19:25:00 ----D---- C:\Windows\eu
2013-09-26 19:25:00 ----D---- C:\Windows\es
2013-09-26 19:25:00 ----D---- C:\Windows\en
2013-09-26 19:25:00 ----D---- C:\Windows\el
2013-09-26 19:24:59 ----D---- C:\Windows\de
2013-09-26 19:24:59 ----D---- C:\Windows\da
2013-09-26 19:24:59 ----D---- C:\Windows\cs
2013-09-26 19:24:59 ----D---- C:\Windows\ca
2013-09-26 19:24:59 ----D---- C:\Windows\bg
2013-09-26 19:24:54 ----D---- C:\Windows\ar
2013-09-26 19:24:54 ----D---- C:\Windows\AppCompat
2013-09-26 19:24:54 ----D---- C:\Users\Tomáš\AppData\Roaming\TouchSuite
2013-09-26 19:24:54 ----D---- C:\Users\Tomáš\AppData\Roaming\TouchGadget
2013-09-26 19:24:53 ----SD---- C:\Users\Tomáš\AppData\Roaming\Microsoft
2013-09-26 19:24:46 ----D---- C:\Program Files\Windows Sidebar
2013-09-26 19:24:45 ----D---- C:\Program Files\Windows Photo Viewer
2013-09-26 19:24:45 ----D---- C:\Program Files\Windows Media Player
2013-09-26 19:24:45 ----D---- C:\Program Files\Windows Live
2013-09-26 19:24:45 ----D---- C:\Program Files\NVIDIA Corporation
2013-09-26 19:24:44 ----D---- C:\Program Files\mcafee
2013-09-26 19:24:41 ----D---- C:\Program Files\mcafee.com
2013-09-26 19:24:41 ----D---- C:\Program Files\DVD Maker
2013-09-26 19:24:41 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-09-26 19:24:40 ----D---- C:\Program Files\Common Files\mcafee
2013-09-26 19:24:40 ----D---- C:\Program Files (x86)\Windows Sidebar
2013-09-26 19:24:39 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-09-26 19:24:39 ----D---- C:\Program Files (x86)\Windows Media Player
2013-09-26 19:24:36 ----D---- C:\Program Files (x86)\Windows Live
2013-09-26 19:24:19 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-09-26 19:24:17 ----D---- C:\Program Files (x86)\mcafee.com
2013-09-26 19:24:17 ----D---- C:\Program Files (x86)\McAfee
2013-09-26 19:24:13 ----D---- C:\Program Files (x86)\Common Files
2013-09-26 19:24:12 ----D---- C:\Program Files (x86)\Adobe
2013-09-26 19:24:09 ----D---- C:\Program Files (x86)\Acer GameZone
2013-09-26 19:24:06 ----HD---- C:\OEM
2013-09-26 19:24:02 ----D---- C:\Program Files (x86)\DVDVideoSoft
2013-09-26 19:24:02 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2013-09-26 19:24:02 ----D---- C:\Program Files (x86)\CygniCon
2013-09-26 19:23:58 ----D---- C:\Program Files (x86)\HP Photo Creations
2013-09-26 19:23:58 ----D---- C:\Program Files (x86)\HP
2013-09-26 19:23:57 ----D---- C:\Program Files (x86)\Java
2013-09-26 19:23:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-09-26 19:23:53 ----D---- C:\Program Files (x86)\PDF Editor 3
2013-09-26 19:23:51 ----D---- C:\Program Files (x86)\Skype
2013-09-26 19:23:49 ----D---- C:\Program Files\Eraser
2013-09-26 19:23:48 ----D---- C:\Program Files\Intel
2013-09-26 19:23:41 ----D---- C:\Program Files\Microsoft Security Client
2013-09-26 19:23:40 ----D---- C:\ProgramData\HP Photo Creations
2013-09-26 19:23:40 ----D---- C:\ProgramData\HP
2013-09-26 19:23:40 ----D---- C:\Program Files\WinRAR
2013-09-26 19:23:35 ----D---- C:\totalcmd
2013-09-26 19:23:35 ----D---- C:\ProgramData\Skype
2013-09-26 19:23:33 ----D---- C:\Users\Tomáš\AppData\Roaming\DAEMON Tools Lite
2013-09-26 19:23:32 ----D---- C:\Users\Tomáš\AppData\Roaming\Skype
2013-09-26 19:23:06 ----D---- C:\Windows\Minidump
2013-09-26 19:22:01 ----D---- C:\Windows\registration
2013-09-26 19:15:37 ----D---- C:\Windows\system32\wdi
2013-09-26 19:09:44 ----D---- C:\Windows\Help
2013-09-26 19:07:45 ----RD---- C:\Users
2013-09-26 19:06:45 ----D---- C:\Program Files\Common Files
2013-09-26 19:06:28 ----D---- C:\Program Files\Acer
2013-09-26 19:05:29 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-09-26 19:05:16 ----D---- C:\Program Files (x86)\Microsoft
2013-09-26 19:05:05 ----D---- C:\Program Files (x86)\Microsoft Office
2013-09-26 19:04:52 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-09-26 19:02:42 ----SHD---- C:\$Recycle.Bin
2013-09-26 18:54:20 ----D---- C:\ProgramData\NVIDIA
2013-09-26 18:18:34 ----D---- C:\Program Files\SUPERAntiSpyware
2013-09-26 17:00:53 ----D---- C:\MDTQILBR
2013-09-26 17:00:50 ----D---- C:\Program Files (x86)\AviSynth 2.5
2013-09-26 17:00:50 ----D---- C:\Program Files (x86)\AVI ReComp
2013-09-26 17:00:50 ----D---- C:\Program Files (x86)\Apple Software Update
2013-09-26 17:00:43 ----D---- C:\Program Files (x86)\DivX
2013-09-26 17:00:43 ----D---- C:\Program Files (x86)\DC++
2013-09-26 17:00:41 ----D---- C:\Program Files (x86)\ISO Creator
2013-09-26 17:00:34 ----D---- C:\Program Files (x86)\Microsoft Security Client
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\NeoTracePro
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\mpPhotobook
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2013-09-26 17:00:31 ----D---- C:\Program Files (x86)\QuickTime
2013-09-26 17:00:29 ----D---- C:\Program Files (x86)\VSO
2013-09-26 17:00:29 ----D---- C:\Program Files (x86)\Steam
2013-09-26 17:00:29 ----D---- C:\Program Files (x86)\SlideShowStudio
2013-09-26 17:00:18 ----D---- C:\Program Files (x86)\Youtube to MP3 Converter
2013-09-26 17:00:18 ----D---- C:\Program Files (x86)\Xvid
2013-09-26 17:00:16 ----D---- C:\Program Files\Microsoft Silverlight
2013-09-26 17:00:11 ----D---- C:\ProgramData\Microsoft Help
2013-09-26 17:00:11 ----D---- C:\ProgramData\DAEMON Tools Lite
2013-09-26 17:00:11 ----D---- C:\ProgramData\Apple Computer
2013-09-26 16:59:33 ----D---- C:\Users\Tomáš\AppData\Roaming\TOMI3
2013-09-26 16:58:01 ----D---- C:\Windows\softwaredistribution.bak
2013-09-26 16:57:37 ----D---- C:\Windows\SYSWOW64\Adobe
2013-09-26 16:57:37 ----D---- C:\Windows\system
2013-09-26 16:48:52 ----D---- C:\Users\Tomáš\AppData\Roaming\SoftGrid Client
2013-09-26 16:48:42 ----D---- C:\Users\Tomáš\AppData\Roaming\Adobe
2013-09-26 16:45:44 ----D---- C:\Program Files (x86)\Samsung
2013-09-23 16:18:54 ----D---- C:\Windows\Panther
2013-09-23 16:18:53 ----D---- C:\Windows\Logs
2013-09-23 16:18:53 ----D---- C:\Windows\debug
2013-09-23 15:48:19 ----D---- C:\Users\Tomáš\AppData\Roaming\Samsung
2013-09-23 15:48:18 ----D---- C:\ProgramData\Samsung
2013-09-22 20:45:30 ----D---- C:\ProgramData\Big Fish Games
2013-09-19 23:41:36 ----D---- C:\Users\Tomáš\AppData\Roaming\AVI ReComp
2013-09-12 06:20:14 ----D---- C:\Windows\system32\MRT
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2010-11-06 438808]
R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2011-10-15 647080]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2011-10-15 284648]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 mfenlfk;McAfee NDIS Light Filter; C:\Windows\system32\DRIVERS\mfenlfk.sys [2011-10-15 75808]
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2011-03-29 22912]
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2011-03-29 20328]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2011-03-29 62584]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 {31E9B156-F8C3-4B9A-BB45-D41BAA6B4400};Power Control [2011/09/26 22:08:54]; \??\C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\000.fcl [2010-10-26 146928]
R3 AVer7231_x64;AVerMedia 7231 capture service; C:\Windows\system32\DRIVERS\AVer7231_x64.sys [2010-04-08 1757952]
R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2010-11-21 80384]
R3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2011-10-15 65264]
R3 clwvd;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2011-03-01 31088]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\Windows\system32\DRIVERS\e1c62x64.sys [2010-09-21 313520]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-03-24 2817768]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2011-10-15 160280]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2011-10-15 229528]
R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2011-10-15 481768]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2010-11-12 155752]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter; C:\Windows\system32\DRIVERS\RTL8192su.sys [2010-07-08 694888]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2010-11-21 552448]
S3 mfeavfk01;McAfee Inc.; C:\Windows\system32\drivers\mfeavfk01.sys []
S3 mferkdet;McAfee Inc. mferkdet; C:\Windows\system32\drivers\mferkdet.sys [2011-10-15 100912]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 GREGService;GREGService; C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584]
R2 Live Updater Service;Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2011-01-31 244624]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 McMPFSvc;McAfee Personal Firewall; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 mcmscsvc;McAfee Services; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 McShield;McAfee McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2011-12-06 199272]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2011-12-06 208536]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe [2011-12-06 161168]
R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 NVSvc;NVIDIA Driver Helper Service; C:\Windows\system32\nvvsvc.exe [2011-02-09 1005160]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [2010-02-25 244904]
R2 USBS3S4Detection;USBS3S4Detection; C:\OEM\USBDECTION\USBS3S4Detection.exe [2009-12-09 76320]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 CLKMSVC10_34E30CCC;CyberLink Product - 2011/09/26 22:11:41; C:\Program Files (x86)\Acer\clear.fi\Movie\NavFilter\kmsvc.exe [2011-02-19 238576]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-06 13336]
S2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-02-01 326168]
S2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
S2 McNASvc;McAfee Network Agent; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
S2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-01 2656280]
S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2010-09-28 172912]
S3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2011-10-18 502032]
S4 McOobeSv;McAfee OOBE Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119531
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Virus nebo nejaka jina hovadina
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB}]
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Virus nebo nejaka jina hovadina
Logfile of random's system information tool 1.09 (written by random/random)
Run by Tomáš at 2013-09-27 22:42:23
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 118 GB (17%) free of 703 GB
Total RAM: 8171 MB (82% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:42:27, on 27.9.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe
C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\TouchPortalLauncher.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe
C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe
C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files\trend micro\Tomáš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20111225023815.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [MDS_Menu] "C:\Program Files (x86)\Acer\Acer TouchPortal\MediaShow Espresso\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Acer\Acer TouchPortal\MediaShow Espresso" UpdateWithCreateOnce "Software\CyberLink\MediaShow Espresso\5.6"
O4 - HKLM\..\Run: [TouchSuiteMovieService] "C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe"
O4 - HKLM\..\Run: [ArcadeMovieService] "C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"
O4 - HKLM\..\Run: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\progra~2\mcafee\msc\mcsniepl.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: CyberLink Product - 2011/09/26 22:11:41 (CLKMSVC10_34E30CCC) - CyberLink - C:\Program Files (x86)\Acer\clear.fi\Movie\NavFilter\kmsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Personal Firewall (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: USBS3S4Detection - Unknown owner - C:\OEM\USBDECTION\USBS3S4Detection.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11865 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
/QuitInfo:0000000000000168;000000000000015C; /AddRef;
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Acer\Registration\GREGsvc.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc
"C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe"
"C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe"
C:\OEM\USBDECTION\USBS3S4Detection.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 1196
"C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\x64\saHook.dll", saHooker_Initialize_and_Wait
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-eec51810-7776-4a19-b0d3-a2dd6a8f3a84 -SystemEventPortName:HostProcess-50cafa89-994e-4536-8046-197dc2f83b29 -IoCancelEventPortName:HostProcess-dc84a448-d56e-4a6b-9ec8-7da42c40c553 -NonStateChangingEventPortName:HostProcess-3bafb035-8202-4e72-86a4-ae9c35ee6e38 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:4d051db9-3321-4673-bf46-36c260468f72
"taskhost.exe"
/QuitInfo:0000000000000890;0000000000000894; /AddRef;
/QuitInfo:0000000000000874;000000000000089C;
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
/loadhooks /Parent:00000000000008E0
taskeng.exe {3F8675F5-CB04-4989-A5CA-AD4D9D5C10E7}
"C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe"
"C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\notepad.exe" C:\_OTM\MovedFiles\09272013_223821.log
"C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files (x86)\Acer\Acer TouchPortal\TouchPortalLauncher.exe" na
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
"C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
"C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe" /s
"C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe"
"C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"
"C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe"
"C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Internet Explorer\iexplore.exe"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:4848 CREDAT:71937
"C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:4848 CREDAT:71938
"C:\Users\Tomáš\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Acer Registration - Data Sending task.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20111225023815.dll [2011-12-06 94688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2012-06-21 322344]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20111225023815.dll [2011-12-06 79744]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\progra~2\mcafee\sitead~1\mcieplg.dll [2012-06-21 261568]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2012-06-21 322344]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\progra~2\mcafee\sitead~1\mcieplg.dll [2012-06-21 261568]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TouchORB"=C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe [2010-05-06 153416]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-03-24 11786344]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-03-21 2207848]
"TouchPortal"=C:\Program Files (x86)\Acer\Acer TouchPortal\TouchPortalLauncher.exe [2010-07-08 436256]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcui_exe]
C:\Program Files\McAfee.com\Agent\mcagent.exe [2010-02-04 1465304]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-11-06 283160]
"SuiteTray"=C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2010-09-28 340336]
"EgisTecPMMUpdate"=C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [2010-09-18 407920]
"EgisUpdate"=C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [2010-09-18 201584]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]
"YouCam Mirage"=C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe [2011-03-01 136488]
"YouCam Tray"=C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe [2011-03-01 162912]
"MDS_Menu"=C:\Program Files (x86)\Acer\Acer TouchPortal\MediaShow Espresso\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"TouchSuiteMovieService"=C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe [2010-10-30 124136]
"ArcadeMovieService"=C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [2011-02-19 177448]
"Hotkey Utility"=C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [2011-01-19 620136]
"Dolby Home Theater v4"=C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [2011-02-03 506712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-09-27 22:38:21 ----D---- C:\_OTM
2013-09-27 20:41:41 ----D---- C:\Program Files\CCleaner
2013-09-27 20:08:50 ----D---- C:\AdwCleaner
2013-09-27 19:37:45 ----D---- C:\Program Files\trend micro
2013-09-27 19:37:44 ----D---- C:\rsit
2013-09-27 19:18:42 ----D---- C:\Program Files (x86)\ESET
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wups2.dll
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wucltux.dll
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wuaueng.dll
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wuauclt.exe
2013-09-27 15:13:02 ----A---- C:\Windows\system32\wups.dll
2013-09-27 15:13:02 ----A---- C:\Windows\system32\wudriver.dll
2013-09-27 15:13:02 ----A---- C:\Windows\system32\wuapi.dll
2013-09-27 15:12:53 ----A---- C:\Windows\system32\wuwebv.dll
2013-09-27 15:12:53 ----A---- C:\Windows\system32\wuapp.exe
2013-09-26 16:10:27 ----D---- C:\ProgramData\MFAData
2013-09-23 16:03:10 ----D---- C:\ProgramData\SummerSoft
2013-09-23 15:52:13 ----A---- C:\Users\Tomáš\AppData\Roaming\regsvr32.exe_log.txt
2013-09-23 15:52:13 ----A---- C:\Users\Tomáš\AppData\Roaming\LiveSupport.exe_log.txt
2013-09-23 15:51:43 ----D---- C:\Program Files (x86)\Ss.Helper
2013-09-23 15:50:40 ----D---- C:\ProgramData\InstallMate
2013-09-22 20:45:31 ----D---- C:\ProgramData\Big Fish
2013-09-22 20:43:50 ----D---- C:\BigFishCache
2013-09-14 20:36:00 ----D---- C:\Users\Tomáš\AppData\Roaming\Ubisoft
======List of files/folders modified in the last 1 month======
2013-09-27 22:42:25 ----HD---- C:\Windows\Temp
2013-09-27 22:42:24 ----A---- C:\Windows\SYSWOW64\log.txt
2013-09-27 22:40:29 ----D---- C:\ProgramData\clear.fi
2013-09-27 22:39:57 ----D---- C:\Windows\system32\drivers
2013-09-27 22:38:45 ----D---- C:\Windows
2013-09-27 21:24:48 ----D---- C:\Windows\system32\config
2013-09-27 21:15:46 ----SHD---- C:\System Volume Information
2013-09-27 21:01:26 ----D---- C:\Windows\System32
2013-09-27 21:01:26 ----D---- C:\Windows\inf
2013-09-27 21:01:26 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-09-27 20:56:47 ----SHD---- C:\Config.Msi
2013-09-27 20:51:57 ----SHD---- C:\Windows\Installer
2013-09-27 20:51:55 ----SD---- C:\ProgramData\Microsoft
2013-09-27 20:51:55 ----D---- C:\Program Files (x86)\Microsoft
2013-09-27 20:49:32 ----RD---- C:\Program Files (x86)
2013-09-27 20:49:11 ----D---- C:\Users\Tomáš\AppData\Roaming\PowerCinema
2013-09-27 20:46:32 ----D---- C:\Windows\system32\Tasks
2013-09-27 20:41:41 ----RD---- C:\Program Files
2013-09-27 20:21:37 ----HD---- C:\ProgramData
2013-09-27 20:12:02 ----D---- C:\Windows\winsxs
2013-09-27 20:11:32 ----D---- C:\Windows\system32\sk-SK
2013-09-27 20:11:32 ----D---- C:\Windows\system32\en-US
2013-09-27 20:11:32 ----D---- C:\Windows\system32\cs-CZ
2013-09-27 19:20:59 ----D---- C:\Windows\system32\catroot2
2013-09-27 19:20:59 ----D---- C:\Windows\system32\catroot
2013-09-27 19:09:06 ----D---- C:\Windows\Prefetch
2013-09-27 15:00:29 ----D---- C:\ProgramData\McAfee
2013-09-27 03:06:52 ----D---- C:\Windows\system32\LogFiles
2013-09-26 19:39:22 ----D---- C:\Windows\Microsoft.NET
2013-09-26 19:38:54 ----RSD---- C:\Windows\assembly
2013-09-26 19:31:34 ----D---- C:\Windows\SysWOW64
2013-09-26 19:30:35 ----D---- C:\Windows\Tasks
2013-09-26 19:30:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-09-26 19:30:35 ----D---- C:\Windows\system32\wfp
2013-09-26 19:30:34 ----RSD---- C:\Windows\Fonts
2013-09-26 19:30:34 ----D---- C:\Windows\system32\drivers\UMDF
2013-09-26 19:30:33 ----D---- C:\Program Files\Internet Explorer
2013-09-26 19:30:28 ----D---- C:\Program Files (x86)\Microsoft Application Virtualization Client
2013-09-26 19:30:21 ----D---- C:\Windows\system32\wbem
2013-09-26 19:27:39 ----D---- C:\Windows\ShellNew
2013-09-26 19:27:39 ----D---- C:\Windows\AppPatch
2013-09-26 19:27:39 ----D---- C:\Program Files\Windows Journal
2013-09-26 19:27:39 ----D---- C:\Program Files\Windows Defender
2013-09-26 19:27:39 ----D---- C:\Program Files\Common Files\System
2013-09-26 19:27:39 ----D---- C:\Program Files (x86)\Windows Defender
2013-09-26 19:27:39 ----D---- C:\Program Files (x86)\Internet Explorer
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\wbem
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\migration
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\en-US
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\en
2013-09-26 19:27:33 ----D---- C:\Windows\SYSWOW64\drivers\sk-SK
2013-09-26 19:27:33 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2013-09-26 19:27:33 ----D---- C:\Windows\system32\migration
2013-09-26 19:27:33 ----D---- C:\Windows\system32\en
2013-09-26 19:27:24 ----RSD---- C:\Windows\Media
2013-09-26 19:27:24 ----D---- C:\Windows\system32\DriverStore
2013-09-26 19:27:24 ----D---- C:\Windows\system32\drivers\sk-SK
2013-09-26 19:27:24 ----D---- C:\Windows\system32\drivers\en-US
2013-09-26 19:27:24 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-09-26 19:27:24 ----D---- C:\Windows\system32\Boot
2013-09-26 19:27:24 ----D---- C:\Windows\sk-SK
2013-09-26 19:27:24 ----D---- C:\Windows\rescache
2013-09-26 19:27:24 ----D---- C:\Windows\PolicyDefinitions
2013-09-26 19:27:24 ----D---- C:\Windows\Offline Web Pages
2013-09-26 19:27:24 ----D---- C:\Windows\L2Schemas
2013-09-26 19:27:23 ----D---- C:\Windows\en-US
2013-09-26 19:27:23 ----D---- C:\Windows\ehome
2013-09-26 19:27:23 ----D---- C:\Windows\Downloaded Program Files
2013-09-26 19:27:22 ----D---- C:\Program Files\Windows Mail
2013-09-26 19:27:20 ----D---- C:\Program Files (x86)\Windows Mail
2013-09-26 19:27:19 ----D---- C:\Windows\zh-tw
2013-09-26 19:25:16 ----D---- C:\Windows\tr
2013-09-26 19:25:16 ----D---- C:\Windows\th
2013-09-26 19:25:16 ----D---- C:\Windows\SYSWOW64\winrm
2013-09-26 19:25:16 ----D---- C:\Windows\SYSWOW64\WCN
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\slmgr
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\migwiz
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\Macromed
2013-09-26 19:25:14 ----D---- C:\Windows\SYSWOW64\DriverStore
2013-09-26 19:25:14 ----D---- C:\Windows\SYSWOW64\drivers
2013-09-26 19:25:14 ----D---- C:\Windows\SYSWOW64\Dism
2013-09-26 19:25:13 ----D---- C:\Windows\system32\winrm
2013-09-26 19:25:13 ----D---- C:\Windows\system32\WCN
2013-09-26 19:25:13 ----D---- C:\Windows\system32\sysprep
2013-09-26 19:25:13 ----D---- C:\Windows\system32\slmgr
2013-09-26 19:25:12 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2013-09-26 19:25:12 ----D---- C:\Windows\system32\oobe
2013-09-26 19:25:12 ----D---- C:\Windows\system32\migwiz
2013-09-26 19:25:10 ----D---- C:\Windows\system32\Dism
2013-09-26 19:25:10 ----D---- C:\Windows\system32\CodeIntegrity
2013-09-26 19:25:09 ----D---- C:\Windows\sv
2013-09-26 19:25:09 ----D---- C:\Windows\Speech
2013-09-26 19:25:09 ----D---- C:\Windows\sl
2013-09-26 19:25:09 ----D---- C:\Windows\sk
2013-09-26 19:25:08 ----D---- C:\Windows\servicing
2013-09-26 19:25:04 ----D---- C:\Windows\security
2013-09-26 19:25:04 ----D---- C:\Windows\ru
2013-09-26 19:25:04 ----D---- C:\Windows\ro
2013-09-26 19:25:04 ----D---- C:\Windows\pt-pt
2013-09-26 19:25:04 ----D---- C:\Windows\pt-br
2013-09-26 19:25:04 ----D---- C:\Windows\pl
2013-09-26 19:25:04 ----D---- C:\Windows\no
2013-09-26 19:25:04 ----D---- C:\Windows\nl
2013-09-26 19:25:03 ----D---- C:\Windows\it
2013-09-26 19:25:01 ----D---- C:\Windows\hu
2013-09-26 19:25:01 ----D---- C:\Windows\hr
2013-09-26 19:25:00 ----D---- C:\Windows\he
2013-09-26 19:25:00 ----D---- C:\Windows\fr
2013-09-26 19:25:00 ----D---- C:\Windows\fi
2013-09-26 19:25:00 ----D---- C:\Windows\eu
2013-09-26 19:25:00 ----D---- C:\Windows\es
2013-09-26 19:25:00 ----D---- C:\Windows\en
2013-09-26 19:25:00 ----D---- C:\Windows\el
2013-09-26 19:24:59 ----D---- C:\Windows\de
2013-09-26 19:24:59 ----D---- C:\Windows\da
2013-09-26 19:24:59 ----D---- C:\Windows\cs
2013-09-26 19:24:59 ----D---- C:\Windows\ca
2013-09-26 19:24:59 ----D---- C:\Windows\bg
2013-09-26 19:24:54 ----D---- C:\Windows\ar
2013-09-26 19:24:54 ----D---- C:\Windows\AppCompat
2013-09-26 19:24:54 ----D---- C:\Users\Tomáš\AppData\Roaming\TouchSuite
2013-09-26 19:24:54 ----D---- C:\Users\Tomáš\AppData\Roaming\TouchGadget
2013-09-26 19:24:53 ----SD---- C:\Users\Tomáš\AppData\Roaming\Microsoft
2013-09-26 19:24:46 ----D---- C:\Program Files\Windows Sidebar
2013-09-26 19:24:45 ----D---- C:\Program Files\Windows Photo Viewer
2013-09-26 19:24:45 ----D---- C:\Program Files\Windows Media Player
2013-09-26 19:24:45 ----D---- C:\Program Files\Windows Live
2013-09-26 19:24:45 ----D---- C:\Program Files\NVIDIA Corporation
2013-09-26 19:24:44 ----D---- C:\Program Files\mcafee
2013-09-26 19:24:41 ----D---- C:\Program Files\mcafee.com
2013-09-26 19:24:41 ----D---- C:\Program Files\DVD Maker
2013-09-26 19:24:41 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-09-26 19:24:40 ----D---- C:\Program Files\Common Files\mcafee
2013-09-26 19:24:40 ----D---- C:\Program Files (x86)\Windows Sidebar
2013-09-26 19:24:39 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-09-26 19:24:39 ----D---- C:\Program Files (x86)\Windows Media Player
2013-09-26 19:24:36 ----D---- C:\Program Files (x86)\Windows Live
2013-09-26 19:24:19 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-09-26 19:24:17 ----D---- C:\Program Files (x86)\mcafee.com
2013-09-26 19:24:17 ----D---- C:\Program Files (x86)\McAfee
2013-09-26 19:24:13 ----D---- C:\Program Files (x86)\Common Files
2013-09-26 19:24:12 ----D---- C:\Program Files (x86)\Adobe
2013-09-26 19:24:09 ----D---- C:\Program Files (x86)\Acer GameZone
2013-09-26 19:24:06 ----HD---- C:\OEM
2013-09-26 19:24:02 ----D---- C:\Program Files (x86)\DVDVideoSoft
2013-09-26 19:24:02 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2013-09-26 19:24:02 ----D---- C:\Program Files (x86)\CygniCon
2013-09-26 19:23:58 ----D---- C:\Program Files (x86)\HP Photo Creations
2013-09-26 19:23:58 ----D---- C:\Program Files (x86)\HP
2013-09-26 19:23:57 ----D---- C:\Program Files (x86)\Java
2013-09-26 19:23:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-09-26 19:23:53 ----D---- C:\Program Files (x86)\PDF Editor 3
2013-09-26 19:23:51 ----D---- C:\Program Files (x86)\Skype
2013-09-26 19:23:49 ----D---- C:\Program Files\Eraser
2013-09-26 19:23:48 ----D---- C:\Program Files\Intel
2013-09-26 19:23:41 ----D---- C:\Program Files\Microsoft Security Client
2013-09-26 19:23:40 ----D---- C:\ProgramData\HP Photo Creations
2013-09-26 19:23:40 ----D---- C:\ProgramData\HP
2013-09-26 19:23:40 ----D---- C:\Program Files\WinRAR
2013-09-26 19:23:35 ----D---- C:\totalcmd
2013-09-26 19:23:35 ----D---- C:\ProgramData\Skype
2013-09-26 19:23:33 ----D---- C:\Users\Tomáš\AppData\Roaming\DAEMON Tools Lite
2013-09-26 19:23:32 ----D---- C:\Users\Tomáš\AppData\Roaming\Skype
2013-09-26 19:23:06 ----D---- C:\Windows\Minidump
2013-09-26 19:22:01 ----D---- C:\Windows\registration
2013-09-26 19:15:37 ----D---- C:\Windows\system32\wdi
2013-09-26 19:09:44 ----D---- C:\Windows\Help
2013-09-26 19:07:45 ----RD---- C:\Users
2013-09-26 19:06:45 ----D---- C:\Program Files\Common Files
2013-09-26 19:06:28 ----D---- C:\Program Files\Acer
2013-09-26 19:05:29 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-09-26 19:05:05 ----D---- C:\Program Files (x86)\Microsoft Office
2013-09-26 19:04:52 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-09-26 19:02:42 ----SHD---- C:\$Recycle.Bin
2013-09-26 18:54:20 ----D---- C:\ProgramData\NVIDIA
2013-09-26 18:18:34 ----D---- C:\Program Files\SUPERAntiSpyware
2013-09-26 17:00:53 ----D---- C:\MDTQILBR
2013-09-26 17:00:50 ----D---- C:\Program Files (x86)\AviSynth 2.5
2013-09-26 17:00:50 ----D---- C:\Program Files (x86)\AVI ReComp
2013-09-26 17:00:50 ----D---- C:\Program Files (x86)\Apple Software Update
2013-09-26 17:00:43 ----D---- C:\Program Files (x86)\DivX
2013-09-26 17:00:43 ----D---- C:\Program Files (x86)\DC++
2013-09-26 17:00:41 ----D---- C:\Program Files (x86)\ISO Creator
2013-09-26 17:00:34 ----D---- C:\Program Files (x86)\Microsoft Security Client
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\NeoTracePro
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\mpPhotobook
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2013-09-26 17:00:31 ----D---- C:\Program Files (x86)\QuickTime
2013-09-26 17:00:29 ----D---- C:\Program Files (x86)\VSO
2013-09-26 17:00:29 ----D---- C:\Program Files (x86)\Steam
2013-09-26 17:00:29 ----D---- C:\Program Files (x86)\SlideShowStudio
2013-09-26 17:00:18 ----D---- C:\Program Files (x86)\Youtube to MP3 Converter
2013-09-26 17:00:18 ----D---- C:\Program Files (x86)\Xvid
2013-09-26 17:00:16 ----D---- C:\Program Files\Microsoft Silverlight
2013-09-26 17:00:11 ----D---- C:\ProgramData\Microsoft Help
2013-09-26 17:00:11 ----D---- C:\ProgramData\DAEMON Tools Lite
2013-09-26 17:00:11 ----D---- C:\ProgramData\Apple Computer
2013-09-26 16:59:33 ----D---- C:\Users\Tomáš\AppData\Roaming\TOMI3
2013-09-26 16:58:01 ----D---- C:\Windows\softwaredistribution.bak
2013-09-26 16:57:37 ----D---- C:\Windows\SYSWOW64\Adobe
2013-09-26 16:57:37 ----D---- C:\Windows\system
2013-09-26 16:48:52 ----D---- C:\Users\Tomáš\AppData\Roaming\SoftGrid Client
2013-09-26 16:48:42 ----D---- C:\Users\Tomáš\AppData\Roaming\Adobe
2013-09-26 16:45:44 ----D---- C:\Program Files (x86)\Samsung
2013-09-23 16:18:54 ----D---- C:\Windows\Panther
2013-09-23 16:18:53 ----D---- C:\Windows\Logs
2013-09-23 16:18:53 ----D---- C:\Windows\debug
2013-09-23 15:48:19 ----D---- C:\Users\Tomáš\AppData\Roaming\Samsung
2013-09-23 15:48:18 ----D---- C:\ProgramData\Samsung
2013-09-22 20:45:30 ----D---- C:\ProgramData\Big Fish Games
2013-09-19 23:41:36 ----D---- C:\Users\Tomáš\AppData\Roaming\AVI ReComp
2013-09-12 06:20:14 ----D---- C:\Windows\system32\MRT
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2010-11-06 438808]
R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2011-10-15 647080]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2011-10-15 284648]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 mfenlfk;McAfee NDIS Light Filter; C:\Windows\system32\DRIVERS\mfenlfk.sys [2011-10-15 75808]
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2011-03-29 22912]
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2011-03-29 20328]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2011-03-29 62584]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 {31E9B156-F8C3-4B9A-BB45-D41BAA6B4400};Power Control [2011/09/26 22:08:54]; \??\C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\000.fcl [2010-10-26 146928]
R3 AVer7231_x64;AVerMedia 7231 capture service; C:\Windows\system32\DRIVERS\AVer7231_x64.sys [2010-04-08 1757952]
R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2010-11-21 80384]
R3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2011-10-15 65264]
R3 clwvd;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2011-03-01 31088]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\Windows\system32\DRIVERS\e1c62x64.sys [2010-09-21 313520]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-03-24 2817768]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2011-10-15 160280]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2011-10-15 229528]
R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2011-10-15 481768]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2010-11-12 155752]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter; C:\Windows\system32\DRIVERS\RTL8192su.sys [2010-07-08 694888]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2010-11-21 552448]
S3 mfeavfk01;McAfee Inc.; C:\Windows\system32\drivers\mfeavfk01.sys []
S3 mferkdet;McAfee Inc. mferkdet; C:\Windows\system32\drivers\mferkdet.sys [2011-10-15 100912]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 GREGService;GREGService; C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-06 13336]
R2 Live Updater Service;Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2011-01-31 244624]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-02-01 326168]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 McMPFSvc;McAfee Personal Firewall; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 mcmscsvc;McAfee Services; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 McNASvc;McAfee Network Agent; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 McShield;McAfee McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2011-12-06 199272]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2011-12-06 208536]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe [2011-12-06 161168]
R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 NVSvc;NVIDIA Driver Helper Service; C:\Windows\system32\nvvsvc.exe [2011-02-09 1005160]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [2010-02-25 244904]
R2 USBS3S4Detection;USBS3S4Detection; C:\OEM\USBDECTION\USBS3S4Detection.exe [2009-12-09 76320]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 CLKMSVC10_34E30CCC;CyberLink Product - 2011/09/26 22:11:41; C:\Program Files (x86)\Acer\clear.fi\Movie\NavFilter\kmsvc.exe [2011-02-19 238576]
S2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-01 2656280]
S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2010-09-28 172912]
S3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2011-10-18 502032]
S4 McOobeSv;McAfee OOBE Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
-----------------EOF-----------------
Run by Tomáš at 2013-09-27 22:42:23
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 118 GB (17%) free of 703 GB
Total RAM: 8171 MB (82% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:42:27, on 27.9.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe
C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\TouchPortalLauncher.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe
C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe
C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe
C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files\trend micro\Tomáš.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20111225023815.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [MDS_Menu] "C:\Program Files (x86)\Acer\Acer TouchPortal\MediaShow Espresso\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Acer\Acer TouchPortal\MediaShow Espresso" UpdateWithCreateOnce "Software\CyberLink\MediaShow Espresso\5.6"
O4 - HKLM\..\Run: [TouchSuiteMovieService] "C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe"
O4 - HKLM\..\Run: [ArcadeMovieService] "C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"
O4 - HKLM\..\Run: [Hotkey Utility] C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~2\mcafee\sitead~1\mcieplg.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\progra~2\mcafee\msc\mcsniepl.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: CyberLink Product - 2011/09/26 22:11:41 (CLKMSVC10_34E30CCC) - CyberLink - C:\Program Files (x86)\Acer\clear.fi\Movie\NavFilter\kmsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Personal Firewall (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\mcafee\VirusScan\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: USBS3S4Detection - Unknown owner - C:\OEM\USBDECTION\USBS3S4Detection.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11865 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
/QuitInfo:0000000000000168;000000000000015C; /AddRef;
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Acer\Registration\GREGsvc.exe"
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc
"C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe"
"C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe"
C:\OEM\USBDECTION\USBS3S4Detection.exe
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 1196
"C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe"
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\x64\saHook.dll", saHooker_Initialize_and_Wait
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-eec51810-7776-4a19-b0d3-a2dd6a8f3a84 -SystemEventPortName:HostProcess-50cafa89-994e-4536-8046-197dc2f83b29 -IoCancelEventPortName:HostProcess-dc84a448-d56e-4a6b-9ec8-7da42c40c553 -NonStateChangingEventPortName:HostProcess-3bafb035-8202-4e72-86a4-ae9c35ee6e38 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:4d051db9-3321-4673-bf46-36c260468f72
"taskhost.exe"
/QuitInfo:0000000000000890;0000000000000894; /AddRef;
/QuitInfo:0000000000000874;000000000000089C;
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
/loadhooks /Parent:00000000000008E0
taskeng.exe {3F8675F5-CB04-4989-A5CA-AD4D9D5C10E7}
"C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe"
"C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\notepad.exe" C:\_OTM\MovedFiles\09272013_223821.log
"C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files (x86)\Acer\Acer TouchPortal\TouchPortalLauncher.exe" na
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
"C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
"C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe" /s
"C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe"
"C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe"
"C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe"
"C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe" -autostart
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Internet Explorer\iexplore.exe"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:4848 CREDAT:71937
"C:\Program Files (x86)\Internet Explorer\iexplore.exe" SCODEF:4848 CREDAT:71938
"C:\Users\Tomáš\Desktop\RSITx64.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
======Scheduled tasks folder======
C:\Windows\tasks\Acer Registration - Data Sending task.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20111225023815.dll [2011-12-06 94688]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2012-06-21 322344]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20111225023815.dll [2011-12-06 79744]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\progra~2\mcafee\sitead~1\mcieplg.dll [2012-06-21 261568]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2012-06-21 322344]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\progra~2\mcafee\sitead~1\mcieplg.dll [2012-06-21 261568]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TouchORB"=C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe [2010-05-06 153416]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-03-24 11786344]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-03-21 2207848]
"TouchPortal"=C:\Program Files (x86)\Acer\Acer TouchPortal\TouchPortalLauncher.exe [2010-07-08 436256]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcui_exe]
C:\Program Files\McAfee.com\Agent\mcagent.exe [2010-02-04 1465304]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-11-06 283160]
"SuiteTray"=C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2010-09-28 340336]
"EgisTecPMMUpdate"=C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [2010-09-18 407920]
"EgisUpdate"=C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [2010-09-18 201584]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-28 35696]
"YouCam Mirage"=C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YCMMirage.exe [2011-03-01 136488]
"YouCam Tray"=C:\Program Files (x86)\Acer\Acer TouchPortal\YouCam\YouCamTray.exe [2011-03-01 162912]
"MDS_Menu"=C:\Program Files (x86)\Acer\Acer TouchPortal\MediaShow Espresso\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"TouchSuiteMovieService"=C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\TouchMovieService.exe [2010-10-30 124136]
"ArcadeMovieService"=C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [2011-02-19 177448]
"Hotkey Utility"=C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [2011-01-19 620136]
"Dolby Home Theater v4"=C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [2011-02-03 506712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-09-27 22:38:21 ----D---- C:\_OTM
2013-09-27 20:41:41 ----D---- C:\Program Files\CCleaner
2013-09-27 20:08:50 ----D---- C:\AdwCleaner
2013-09-27 19:37:45 ----D---- C:\Program Files\trend micro
2013-09-27 19:37:44 ----D---- C:\rsit
2013-09-27 19:18:42 ----D---- C:\Program Files (x86)\ESET
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wups2.dll
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wucltux.dll
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wuaueng.dll
2013-09-27 15:13:11 ----A---- C:\Windows\system32\wuauclt.exe
2013-09-27 15:13:02 ----A---- C:\Windows\system32\wups.dll
2013-09-27 15:13:02 ----A---- C:\Windows\system32\wudriver.dll
2013-09-27 15:13:02 ----A---- C:\Windows\system32\wuapi.dll
2013-09-27 15:12:53 ----A---- C:\Windows\system32\wuwebv.dll
2013-09-27 15:12:53 ----A---- C:\Windows\system32\wuapp.exe
2013-09-26 16:10:27 ----D---- C:\ProgramData\MFAData
2013-09-23 16:03:10 ----D---- C:\ProgramData\SummerSoft
2013-09-23 15:52:13 ----A---- C:\Users\Tomáš\AppData\Roaming\regsvr32.exe_log.txt
2013-09-23 15:52:13 ----A---- C:\Users\Tomáš\AppData\Roaming\LiveSupport.exe_log.txt
2013-09-23 15:51:43 ----D---- C:\Program Files (x86)\Ss.Helper
2013-09-23 15:50:40 ----D---- C:\ProgramData\InstallMate
2013-09-22 20:45:31 ----D---- C:\ProgramData\Big Fish
2013-09-22 20:43:50 ----D---- C:\BigFishCache
2013-09-14 20:36:00 ----D---- C:\Users\Tomáš\AppData\Roaming\Ubisoft
======List of files/folders modified in the last 1 month======
2013-09-27 22:42:25 ----HD---- C:\Windows\Temp
2013-09-27 22:42:24 ----A---- C:\Windows\SYSWOW64\log.txt
2013-09-27 22:40:29 ----D---- C:\ProgramData\clear.fi
2013-09-27 22:39:57 ----D---- C:\Windows\system32\drivers
2013-09-27 22:38:45 ----D---- C:\Windows
2013-09-27 21:24:48 ----D---- C:\Windows\system32\config
2013-09-27 21:15:46 ----SHD---- C:\System Volume Information
2013-09-27 21:01:26 ----D---- C:\Windows\System32
2013-09-27 21:01:26 ----D---- C:\Windows\inf
2013-09-27 21:01:26 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-09-27 20:56:47 ----SHD---- C:\Config.Msi
2013-09-27 20:51:57 ----SHD---- C:\Windows\Installer
2013-09-27 20:51:55 ----SD---- C:\ProgramData\Microsoft
2013-09-27 20:51:55 ----D---- C:\Program Files (x86)\Microsoft
2013-09-27 20:49:32 ----RD---- C:\Program Files (x86)
2013-09-27 20:49:11 ----D---- C:\Users\Tomáš\AppData\Roaming\PowerCinema
2013-09-27 20:46:32 ----D---- C:\Windows\system32\Tasks
2013-09-27 20:41:41 ----RD---- C:\Program Files
2013-09-27 20:21:37 ----HD---- C:\ProgramData
2013-09-27 20:12:02 ----D---- C:\Windows\winsxs
2013-09-27 20:11:32 ----D---- C:\Windows\system32\sk-SK
2013-09-27 20:11:32 ----D---- C:\Windows\system32\en-US
2013-09-27 20:11:32 ----D---- C:\Windows\system32\cs-CZ
2013-09-27 19:20:59 ----D---- C:\Windows\system32\catroot2
2013-09-27 19:20:59 ----D---- C:\Windows\system32\catroot
2013-09-27 19:09:06 ----D---- C:\Windows\Prefetch
2013-09-27 15:00:29 ----D---- C:\ProgramData\McAfee
2013-09-27 03:06:52 ----D---- C:\Windows\system32\LogFiles
2013-09-26 19:39:22 ----D---- C:\Windows\Microsoft.NET
2013-09-26 19:38:54 ----RSD---- C:\Windows\assembly
2013-09-26 19:31:34 ----D---- C:\Windows\SysWOW64
2013-09-26 19:30:35 ----D---- C:\Windows\Tasks
2013-09-26 19:30:35 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-09-26 19:30:35 ----D---- C:\Windows\system32\wfp
2013-09-26 19:30:34 ----RSD---- C:\Windows\Fonts
2013-09-26 19:30:34 ----D---- C:\Windows\system32\drivers\UMDF
2013-09-26 19:30:33 ----D---- C:\Program Files\Internet Explorer
2013-09-26 19:30:28 ----D---- C:\Program Files (x86)\Microsoft Application Virtualization Client
2013-09-26 19:30:21 ----D---- C:\Windows\system32\wbem
2013-09-26 19:27:39 ----D---- C:\Windows\ShellNew
2013-09-26 19:27:39 ----D---- C:\Windows\AppPatch
2013-09-26 19:27:39 ----D---- C:\Program Files\Windows Journal
2013-09-26 19:27:39 ----D---- C:\Program Files\Windows Defender
2013-09-26 19:27:39 ----D---- C:\Program Files\Common Files\System
2013-09-26 19:27:39 ----D---- C:\Program Files (x86)\Windows Defender
2013-09-26 19:27:39 ----D---- C:\Program Files (x86)\Internet Explorer
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\wbem
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\migration
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\en-US
2013-09-26 19:27:34 ----D---- C:\Windows\SYSWOW64\en
2013-09-26 19:27:33 ----D---- C:\Windows\SYSWOW64\drivers\sk-SK
2013-09-26 19:27:33 ----D---- C:\Windows\SYSWOW64\drivers\en-US
2013-09-26 19:27:33 ----D---- C:\Windows\system32\migration
2013-09-26 19:27:33 ----D---- C:\Windows\system32\en
2013-09-26 19:27:24 ----RSD---- C:\Windows\Media
2013-09-26 19:27:24 ----D---- C:\Windows\system32\DriverStore
2013-09-26 19:27:24 ----D---- C:\Windows\system32\drivers\sk-SK
2013-09-26 19:27:24 ----D---- C:\Windows\system32\drivers\en-US
2013-09-26 19:27:24 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-09-26 19:27:24 ----D---- C:\Windows\system32\Boot
2013-09-26 19:27:24 ----D---- C:\Windows\sk-SK
2013-09-26 19:27:24 ----D---- C:\Windows\rescache
2013-09-26 19:27:24 ----D---- C:\Windows\PolicyDefinitions
2013-09-26 19:27:24 ----D---- C:\Windows\Offline Web Pages
2013-09-26 19:27:24 ----D---- C:\Windows\L2Schemas
2013-09-26 19:27:23 ----D---- C:\Windows\en-US
2013-09-26 19:27:23 ----D---- C:\Windows\ehome
2013-09-26 19:27:23 ----D---- C:\Windows\Downloaded Program Files
2013-09-26 19:27:22 ----D---- C:\Program Files\Windows Mail
2013-09-26 19:27:20 ----D---- C:\Program Files (x86)\Windows Mail
2013-09-26 19:27:19 ----D---- C:\Windows\zh-tw
2013-09-26 19:25:16 ----D---- C:\Windows\tr
2013-09-26 19:25:16 ----D---- C:\Windows\th
2013-09-26 19:25:16 ----D---- C:\Windows\SYSWOW64\winrm
2013-09-26 19:25:16 ----D---- C:\Windows\SYSWOW64\WCN
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\slmgr
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\migwiz
2013-09-26 19:25:15 ----D---- C:\Windows\SYSWOW64\Macromed
2013-09-26 19:25:14 ----D---- C:\Windows\SYSWOW64\DriverStore
2013-09-26 19:25:14 ----D---- C:\Windows\SYSWOW64\drivers
2013-09-26 19:25:14 ----D---- C:\Windows\SYSWOW64\Dism
2013-09-26 19:25:13 ----D---- C:\Windows\system32\winrm
2013-09-26 19:25:13 ----D---- C:\Windows\system32\WCN
2013-09-26 19:25:13 ----D---- C:\Windows\system32\sysprep
2013-09-26 19:25:13 ----D---- C:\Windows\system32\slmgr
2013-09-26 19:25:12 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2013-09-26 19:25:12 ----D---- C:\Windows\system32\oobe
2013-09-26 19:25:12 ----D---- C:\Windows\system32\migwiz
2013-09-26 19:25:10 ----D---- C:\Windows\system32\Dism
2013-09-26 19:25:10 ----D---- C:\Windows\system32\CodeIntegrity
2013-09-26 19:25:09 ----D---- C:\Windows\sv
2013-09-26 19:25:09 ----D---- C:\Windows\Speech
2013-09-26 19:25:09 ----D---- C:\Windows\sl
2013-09-26 19:25:09 ----D---- C:\Windows\sk
2013-09-26 19:25:08 ----D---- C:\Windows\servicing
2013-09-26 19:25:04 ----D---- C:\Windows\security
2013-09-26 19:25:04 ----D---- C:\Windows\ru
2013-09-26 19:25:04 ----D---- C:\Windows\ro
2013-09-26 19:25:04 ----D---- C:\Windows\pt-pt
2013-09-26 19:25:04 ----D---- C:\Windows\pt-br
2013-09-26 19:25:04 ----D---- C:\Windows\pl
2013-09-26 19:25:04 ----D---- C:\Windows\no
2013-09-26 19:25:04 ----D---- C:\Windows\nl
2013-09-26 19:25:03 ----D---- C:\Windows\it
2013-09-26 19:25:01 ----D---- C:\Windows\hu
2013-09-26 19:25:01 ----D---- C:\Windows\hr
2013-09-26 19:25:00 ----D---- C:\Windows\he
2013-09-26 19:25:00 ----D---- C:\Windows\fr
2013-09-26 19:25:00 ----D---- C:\Windows\fi
2013-09-26 19:25:00 ----D---- C:\Windows\eu
2013-09-26 19:25:00 ----D---- C:\Windows\es
2013-09-26 19:25:00 ----D---- C:\Windows\en
2013-09-26 19:25:00 ----D---- C:\Windows\el
2013-09-26 19:24:59 ----D---- C:\Windows\de
2013-09-26 19:24:59 ----D---- C:\Windows\da
2013-09-26 19:24:59 ----D---- C:\Windows\cs
2013-09-26 19:24:59 ----D---- C:\Windows\ca
2013-09-26 19:24:59 ----D---- C:\Windows\bg
2013-09-26 19:24:54 ----D---- C:\Windows\ar
2013-09-26 19:24:54 ----D---- C:\Windows\AppCompat
2013-09-26 19:24:54 ----D---- C:\Users\Tomáš\AppData\Roaming\TouchSuite
2013-09-26 19:24:54 ----D---- C:\Users\Tomáš\AppData\Roaming\TouchGadget
2013-09-26 19:24:53 ----SD---- C:\Users\Tomáš\AppData\Roaming\Microsoft
2013-09-26 19:24:46 ----D---- C:\Program Files\Windows Sidebar
2013-09-26 19:24:45 ----D---- C:\Program Files\Windows Photo Viewer
2013-09-26 19:24:45 ----D---- C:\Program Files\Windows Media Player
2013-09-26 19:24:45 ----D---- C:\Program Files\Windows Live
2013-09-26 19:24:45 ----D---- C:\Program Files\NVIDIA Corporation
2013-09-26 19:24:44 ----D---- C:\Program Files\mcafee
2013-09-26 19:24:41 ----D---- C:\Program Files\mcafee.com
2013-09-26 19:24:41 ----D---- C:\Program Files\DVD Maker
2013-09-26 19:24:41 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-09-26 19:24:40 ----D---- C:\Program Files\Common Files\mcafee
2013-09-26 19:24:40 ----D---- C:\Program Files (x86)\Windows Sidebar
2013-09-26 19:24:39 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-09-26 19:24:39 ----D---- C:\Program Files (x86)\Windows Media Player
2013-09-26 19:24:36 ----D---- C:\Program Files (x86)\Windows Live
2013-09-26 19:24:19 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-09-26 19:24:17 ----D---- C:\Program Files (x86)\mcafee.com
2013-09-26 19:24:17 ----D---- C:\Program Files (x86)\McAfee
2013-09-26 19:24:13 ----D---- C:\Program Files (x86)\Common Files
2013-09-26 19:24:12 ----D---- C:\Program Files (x86)\Adobe
2013-09-26 19:24:09 ----D---- C:\Program Files (x86)\Acer GameZone
2013-09-26 19:24:06 ----HD---- C:\OEM
2013-09-26 19:24:02 ----D---- C:\Program Files (x86)\DVDVideoSoft
2013-09-26 19:24:02 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2013-09-26 19:24:02 ----D---- C:\Program Files (x86)\CygniCon
2013-09-26 19:23:58 ----D---- C:\Program Files (x86)\HP Photo Creations
2013-09-26 19:23:58 ----D---- C:\Program Files (x86)\HP
2013-09-26 19:23:57 ----D---- C:\Program Files (x86)\Java
2013-09-26 19:23:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-09-26 19:23:53 ----D---- C:\Program Files (x86)\PDF Editor 3
2013-09-26 19:23:51 ----D---- C:\Program Files (x86)\Skype
2013-09-26 19:23:49 ----D---- C:\Program Files\Eraser
2013-09-26 19:23:48 ----D---- C:\Program Files\Intel
2013-09-26 19:23:41 ----D---- C:\Program Files\Microsoft Security Client
2013-09-26 19:23:40 ----D---- C:\ProgramData\HP Photo Creations
2013-09-26 19:23:40 ----D---- C:\ProgramData\HP
2013-09-26 19:23:40 ----D---- C:\Program Files\WinRAR
2013-09-26 19:23:35 ----D---- C:\totalcmd
2013-09-26 19:23:35 ----D---- C:\ProgramData\Skype
2013-09-26 19:23:33 ----D---- C:\Users\Tomáš\AppData\Roaming\DAEMON Tools Lite
2013-09-26 19:23:32 ----D---- C:\Users\Tomáš\AppData\Roaming\Skype
2013-09-26 19:23:06 ----D---- C:\Windows\Minidump
2013-09-26 19:22:01 ----D---- C:\Windows\registration
2013-09-26 19:15:37 ----D---- C:\Windows\system32\wdi
2013-09-26 19:09:44 ----D---- C:\Windows\Help
2013-09-26 19:07:45 ----RD---- C:\Users
2013-09-26 19:06:45 ----D---- C:\Program Files\Common Files
2013-09-26 19:06:28 ----D---- C:\Program Files\Acer
2013-09-26 19:05:29 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-09-26 19:05:05 ----D---- C:\Program Files (x86)\Microsoft Office
2013-09-26 19:04:52 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-09-26 19:02:42 ----SHD---- C:\$Recycle.Bin
2013-09-26 18:54:20 ----D---- C:\ProgramData\NVIDIA
2013-09-26 18:18:34 ----D---- C:\Program Files\SUPERAntiSpyware
2013-09-26 17:00:53 ----D---- C:\MDTQILBR
2013-09-26 17:00:50 ----D---- C:\Program Files (x86)\AviSynth 2.5
2013-09-26 17:00:50 ----D---- C:\Program Files (x86)\AVI ReComp
2013-09-26 17:00:50 ----D---- C:\Program Files (x86)\Apple Software Update
2013-09-26 17:00:43 ----D---- C:\Program Files (x86)\DivX
2013-09-26 17:00:43 ----D---- C:\Program Files (x86)\DC++
2013-09-26 17:00:41 ----D---- C:\Program Files (x86)\ISO Creator
2013-09-26 17:00:34 ----D---- C:\Program Files (x86)\Microsoft Security Client
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\NeoTracePro
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\mpPhotobook
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-26 17:00:32 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2013-09-26 17:00:31 ----D---- C:\Program Files (x86)\QuickTime
2013-09-26 17:00:29 ----D---- C:\Program Files (x86)\VSO
2013-09-26 17:00:29 ----D---- C:\Program Files (x86)\Steam
2013-09-26 17:00:29 ----D---- C:\Program Files (x86)\SlideShowStudio
2013-09-26 17:00:18 ----D---- C:\Program Files (x86)\Youtube to MP3 Converter
2013-09-26 17:00:18 ----D---- C:\Program Files (x86)\Xvid
2013-09-26 17:00:16 ----D---- C:\Program Files\Microsoft Silverlight
2013-09-26 17:00:11 ----D---- C:\ProgramData\Microsoft Help
2013-09-26 17:00:11 ----D---- C:\ProgramData\DAEMON Tools Lite
2013-09-26 17:00:11 ----D---- C:\ProgramData\Apple Computer
2013-09-26 16:59:33 ----D---- C:\Users\Tomáš\AppData\Roaming\TOMI3
2013-09-26 16:58:01 ----D---- C:\Windows\softwaredistribution.bak
2013-09-26 16:57:37 ----D---- C:\Windows\SYSWOW64\Adobe
2013-09-26 16:57:37 ----D---- C:\Windows\system
2013-09-26 16:48:52 ----D---- C:\Users\Tomáš\AppData\Roaming\SoftGrid Client
2013-09-26 16:48:42 ----D---- C:\Users\Tomáš\AppData\Roaming\Adobe
2013-09-26 16:45:44 ----D---- C:\Program Files (x86)\Samsung
2013-09-23 16:18:54 ----D---- C:\Windows\Panther
2013-09-23 16:18:53 ----D---- C:\Windows\Logs
2013-09-23 16:18:53 ----D---- C:\Windows\debug
2013-09-23 15:48:19 ----D---- C:\Users\Tomáš\AppData\Roaming\Samsung
2013-09-23 15:48:18 ----D---- C:\ProgramData\Samsung
2013-09-22 20:45:30 ----D---- C:\ProgramData\Big Fish Games
2013-09-19 23:41:36 ----D---- C:\Users\Tomáš\AppData\Roaming\AVI ReComp
2013-09-12 06:20:14 ----D---- C:\Windows\system32\MRT
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2010-11-06 438808]
R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2011-10-15 647080]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2011-10-15 284648]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 mfenlfk;McAfee NDIS Light Filter; C:\Windows\system32\DRIVERS\mfenlfk.sys [2011-10-15 75808]
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2011-03-29 22912]
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2011-03-29 20328]
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2011-03-29 62584]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 {31E9B156-F8C3-4B9A-BB45-D41BAA6B4400};Power Control [2011/09/26 22:08:54]; \??\C:\Program Files (x86)\Acer\Acer TouchPortal\Acer Touch Movie\000.fcl [2010-10-26 146928]
R3 AVer7231_x64;AVerMedia 7231 capture service; C:\Windows\system32\DRIVERS\AVer7231_x64.sys [2010-04-08 1757952]
R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2010-11-21 80384]
R3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2011-10-15 65264]
R3 clwvd;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2011-03-01 31088]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\Windows\system32\DRIVERS\e1c62x64.sys [2010-09-21 313520]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-03-24 2817768]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2011-10-15 160280]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2011-10-15 229528]
R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2011-10-15 481768]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2010-11-12 155752]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter; C:\Windows\system32\DRIVERS\RTL8192su.sys [2010-07-08 694888]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2010-11-21 552448]
S3 mfeavfk01;McAfee Inc.; C:\Windows\system32\drivers\mfeavfk01.sys []
S3 mferkdet;McAfee Inc. mferkdet; C:\Windows\system32\drivers\mferkdet.sys [2011-10-15 100912]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 GREGService;GREGService; C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-06 13336]
R2 Live Updater Service;Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2011-01-31 244624]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-02-01 326168]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 McMPFSvc;McAfee Personal Firewall; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 mcmscsvc;McAfee Services; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 McNASvc;McAfee Network Agent; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 McShield;McAfee McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2011-12-06 199272]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2011-12-06 208536]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe [2011-12-06 161168]
R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2009-12-15 355440]
R2 NVSvc;NVIDIA Driver Helper Service; C:\Windows\system32\nvvsvc.exe [2011-02-09 1005160]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [2010-02-25 244904]
R2 USBS3S4Detection;USBS3S4Detection; C:\OEM\USBDECTION\USBS3S4Detection.exe [2009-12-09 76320]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 CLKMSVC10_34E30CCC;CyberLink Product - 2011/09/26 22:11:41; C:\Program Files (x86)\Acer\clear.fi\Movie\NavFilter\kmsvc.exe [2011-02-19 238576]
S2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
S2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-01 2656280]
S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2010-09-28 172912]
S3 McODS;McAfee Scanner; C:\Program Files\mcafee\VirusScan\mcods.exe [2011-10-18 502032]
S4 McOobeSv;McAfee OOBE Service; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [2009-12-15 355440]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
-----------------EOF-----------------
-
Rudy
- Site Admin
- Příspěvky: 119531
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Virus nebo nejaka jina hovadina
Log již vypadá OK. Znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?