Logfile of random's system information tool 1.09 (written by random/random)
Run by Pekarik at 2013-09-29 19:19:45
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 119 GB (25%) free of 477 GB
Total RAM: 7422 MB (65% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:20:15, on 29. 9. 2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16686)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe
C:\Program Files (x86)\ASUS\Turbo Key\TurboKey.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Origin\Origin.exe
C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe
C:\program files (x86)\avira\antivir desktop\avcenter.exe
C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Pekarik.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\ADVANC~1\BROWER~1\ASCPLU~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: (no name) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - (no file)
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Turbo Key] "C:\Program Files (x86)\ASUS\Turbo Key\TurboKey.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_4281F3CB61F060AA6452A3FA375A5C27] "C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-18\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira FireWall (AntiVirFirewallService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avfwsvc.exe
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Hotspot Shield Service (hshld) - AnchorFree Inc. - C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
O23 - Service: Hotspot Shield Tray Service (HssTrayService) - Unknown owner - C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE
O23 - Service: Hotspot Shield Monitoring Service (HssWd) - Unknown owner - C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
--
End of file - 9929 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Avira\AntiVir Desktop\avfwsvc.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe"
taskeng.exe {70FB6597-F099-4D58-9F8A-06D0445D4AC7}
taskeng.exe {10161273-24BD-417A-968C-E1A80E334F06}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe" -b
"C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe" /DisableUI
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
"C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe"
"C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2392
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_000006f8
"C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\ASUS\Turbo Key\TurboKey.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Program Files\TortoiseSVN\bin\TSVNCache.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3796.0.731527557\2035117933" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,20 --gpu-vendor-id=0x1002 --gpu-device-id=0x683d --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.200.11.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ForceCompositingMode/thread/InfiniteCache/No/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-50-Percent/default/ --disable-client-side-phishing-detection --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3796.4.873456961\1240744711" /prefetch:673131151
"C:\Program Files (x86)\Origin\Origin.exe"
"C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe" --type=service
"C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ForceCompositingMode/thread/InfiniteCache/No/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-50-Percent/default/ --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3796.16.1565799429\396239056" /prefetch:673131151
"C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll" --lang=cs --channel="3796.17.44610427\1447906063" /prefetch:-390060480
"C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll" --lang=cs --channel="3796.18.1320409940\454265161" /prefetch:-390060480
"C:\program files (x86)\avira\antivir desktop\avcenter.exe"
"C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ForceCompositingMode/thread/InfiniteCache/No/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-50-Percent/default/ --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3796.33.1648272814\141868514" /prefetch:673131151
"C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="3796.34.1744088952\1054427121" --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ForceCompositingMode/thread/InfiniteCache/No/NewMenuStyle/Compact2/OmniboxStopTimer/UseStopTimer/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_02/UMA-Uniformity-Trial-1-Percent/group_74/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-50-Percent/default/ --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="3796.36.584582710\1670046120" /prefetch:673131151
"c:\program files (x86)\avira\antivir desktop\avscan.exe" /CFG="C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVGUARD_524843e3\guard_slideup.avp"
"C:\Users\Pekarik\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Pekarik\AppData\Roaming\Mozilla\Firefox\Profiles\2p36ltir.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "keyword.URL" - "http://search.yahoo.com/search?fr=green ... =198484&p="
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.8.800.94 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn.me/esnsonar,version=0.70.4]
"Description"=ESN Sonar browser plugin
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.118.0]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.132.0]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=1.140.0]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=2.1.4]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/esnlaunch,version=2.3.0]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\SysWOW64\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.8.800.94 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.4.0]
"Description"=
"Path"=C:\Windows\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.4.0]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files (x86)\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Users\Pekarik\AppData\Roaming\Mozilla\Firefox\Profiles\2p36ltir.default\extensions\
ascsurfingprotection@iobit.com
C:\Users\Pekarik\AppData\Roaming\Mozilla\Firefox\Profiles\2p36ltir.default\searchplugins\
firmycz.xml
mapycz.xml
yahoo.xml
zbocz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-06-06 545224]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-09-29 254032]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-06-06 193480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-08-19 463272]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-09-29 192592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}]
Advanced SystemCare Browser Protection - C:\PROGRA~2\IObit\ADVANC~1\BROWER~1\ASCPLU~1.DLL [2013-04-24 659264]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-08-19 171944]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20 509496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\Alwil Software\Avast5\aswWebRepIE64.dll []
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-09-29 254032]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-09-29 192592]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-08-11 13538376]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Program Files (x86)\uTorrent\uTorrent.exe [2013-07-01 802136]
"GoogleChromeAutoLaunch_4281F3CB61F060AA6452A3FA375A5C27"=C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe [2013-07-25 846288]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-08-01 3673696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 6]
C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe [2013-04-18 491840]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppsHat]
C:\Users\Pekarik\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe [2012-10-26 202752]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG_UI]
C:\Program Files (x86)\AVG\AVG2013\avgui.exe /TRAYONLY []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\Pekarik\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\Pekarik\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-08-01 3673696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2013-02-13 1263952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\G Data AntiVirus Tray Application]
C:\Program Files (x86)\G Data\AntiVirus\AVKTray\AVKTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Pekarik\AppData\Local\Google\Update\GoogleUpdate.exe [2013-05-21 116648]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleChromeAutoLaunch_4281F3CB61F060AA6452A3FA375A5C27]
C:\Users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe [2013-07-25 846288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mouseElf]
C:\PROGRA~2\SCROLL~1\MouseElf.EXE [2005-12-16 438364]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NtVdmSrv]
C:\Windows\inf\ntvdm.vbe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Optimizer Pro]
C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDP]
C:\Users\Pekarik\AppData\Local\FilesFrog Update Checker\update_checker.exe /auto []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SearchSettings]
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\steam.exe [2013-09-26 1813928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2012-05-23 39408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Program Files (x86)\uTorrent\uTorrent.exe [2013-07-01 802136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebcamMaxAutoRun]
C:\Program Files (x86)\WebcamMax\WebcamMax.exe [2010-08-03 6043888]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
""= []
"Turbo Key"=C:\Program Files (x86)\ASUS\Turbo Key\TurboKey.exe [2009-11-24 1874432]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2013-06-28 2255184]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-08-15 766208]
"avast"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2013-08-06 4858968]
"amd_dc_opt"=C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2006-11-17 77824]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2013-09-29 347192]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=28
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.tscc"=C:\Windows\SysWOW64\tsccvid64.dll
"VIDC.FPS1"=frapsv64.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2013-09-29 19:19:45 ----D---- C:\rsit
2013-09-29 17:28:45 ----A---- C:\Windows\system32\drivers\avnetflt.sys
2013-09-29 17:11:28 ----D---- C:\_OTM
2013-09-29 15:41:09 ----A---- C:\ProgramData\ntuser.dat
2013-09-29 15:29:12 ----D---- C:\Users\Pekarik\AppData\Roaming\Avira
2013-09-29 15:26:47 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2013-09-29 15:26:47 ----A---- C:\Windows\system32\drivers\avipbb.sys
2013-09-29 15:26:47 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2013-09-29 15:26:47 ----A---- C:\Windows\system32\drivers\avfwot.sys
2013-09-29 15:26:47 ----A---- C:\Windows\system32\drivers\avfwim.sys
2013-09-29 15:26:44 ----D---- C:\ProgramData\Avira
2013-09-29 15:26:44 ----D---- C:\Program Files (x86)\Avira
2013-09-29 14:29:47 ----D---- C:\Windows\temp
2013-09-29 14:18:37 ----D---- C:\$RECYCLE.BIN
2013-09-28 23:04:08 ----AD---- C:\Qoobox
2013-09-28 13:06:14 ----D---- C:\Program Files\trend micro
2013-09-28 00:29:18 ----D---- C:\Users\Pekarik\AppData\Roaming\SUPERAntiSpyware.com
2013-09-28 00:28:00 ----D---- C:\Program Files\stinger
2013-09-27 20:31:26 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy
2013-09-26 15:14:28 ----D---- C:\Program Files\7-Zip
2013-09-26 12:43:32 ----D---- C:\Program Files\Permanent Delete
2013-09-26 12:39:09 ----D---- C:\Program Files (x86)\Delete Doctor
2013-09-26 12:11:28 ----D---- C:\Users\Pekarik\AppData\Roaming\Malwarebytes
2013-09-26 12:10:56 ----D---- C:\ProgramData\Malwarebytes
2013-09-25 21:53:17 ----A---- C:\Windows\system32\klfphc.dll
2013-09-25 21:51:31 ----D---- C:\Windows\ELAMBKUP
2013-09-25 21:51:11 ----D---- C:\ProgramData\Kaspersky Lab
2013-09-25 21:51:11 ----D---- C:\Program Files (x86)\Kaspersky Lab
2013-09-25 19:22:15 ----A---- C:\Windows\system32\drivers\revoflt.sys
2013-09-25 18:23:31 ----D---- C:\ProgramData\Spybot - Search & Destroy
2013-09-22 16:55:13 ----A---- C:\Windows\Counter-Strike 1.6 Standalone Uninstaller.exe
2013-09-22 15:30:24 ----D---- C:\ProgramData\Tunngle
2013-09-20 18:15:16 ----D---- C:\Users\Pekarik\AppData\Roaming\Opera Software
2013-09-20 18:15:12 ----D---- C:\Program Files (x86)\Opera
2013-09-16 17:49:48 ----D---- C:\ProgramData\Bohemia Interactive
2013-09-16 12:24:58 ----D---- C:\Program Files (x86)\Seznam.cz
2013-09-16 12:21:15 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2013-09-16 12:21:10 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2013-09-15 23:10:30 ----A---- C:\Windows\system32\drivers\aswNdis2.sys
2013-09-15 23:10:29 ----A---- C:\Windows\system32\drivers\aswFW.sys
2013-09-11 23:58:23 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-09-11 23:58:23 ----A---- C:\Windows\system32\ieui.dll
2013-09-11 23:58:21 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-09-11 23:58:21 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-09-11 23:58:21 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-09-11 23:58:21 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-09-11 23:58:21 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-11 23:58:21 ----A---- C:\Windows\system32\iesetup.dll
2013-09-11 23:58:21 ----A---- C:\Windows\system32\iernonce.dll
2013-09-11 23:58:21 ----A---- C:\Windows\system32\ie4uinit.exe
2013-09-11 23:58:20 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-09-11 23:58:20 ----A---- C:\Windows\system32\iesysprep.dll
2013-09-11 23:58:20 ----A---- C:\Windows\system32\iertutil.dll
2013-09-11 23:58:18 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-09-11 23:58:18 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-09-11 23:58:18 ----A---- C:\Windows\system32\msfeeds.dll
2013-09-11 23:58:18 ----A---- C:\Windows\system32\jscript.dll
2013-09-11 23:58:17 ----A---- C:\Windows\system32\jscript9.dll
2013-09-11 23:58:16 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-09-11 23:58:16 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-09-11 23:58:15 ----A---- C:\Windows\system32\urlmon.dll
2013-09-11 23:58:14 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-09-11 23:58:14 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-09-11 23:58:14 ----A---- C:\Windows\system32\jsproxy.dll
2013-09-11 23:58:13 ----A---- C:\Windows\system32\wininet.dll
2013-09-11 23:58:12 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-09-11 23:58:11 ----A---- C:\Windows\system32\ieframe.dll
2013-09-11 23:58:10 ----A---- C:\Windows\system32\mshtml.dll
2013-09-11 23:58:08 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-09-11 14:57:18 ----A---- C:\Windows\system32\drivers\ataport.sys
2013-09-11 14:57:13 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-09-11 14:57:12 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-09-11 14:57:12 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-09-11 14:57:12 ----A---- C:\Windows\system32\ntdll.dll
2013-09-11 14:57:12 ----A---- C:\Windows\system32\KernelBase.dll
2013-09-11 14:57:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-11 14:57:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-11 14:57:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-11 14:57:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-11 14:57:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-11 14:57:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-11 14:57:11 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-11 14:57:11 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-11 14:57:11 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-11 14:57:11 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-11 14:57:11 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-11 14:57:11 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-11 14:57:11 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-11 14:57:11 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-11 14:57:11 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-11 14:57:11 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-11 14:57:11 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-11 14:57:11 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-11 14:57:11 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-09-11 14:57:11 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-09-11 14:57:11 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-09-11 14:57:11 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-09-11 14:57:11 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-09-11 14:57:11 ----A---- C:\Windows\system32\wow64win.dll
2013-09-11 14:57:11 ----A---- C:\Windows\system32\wow64cpu.dll
2013-09-11 14:57:11 ----A---- C:\Windows\system32\wow64.dll
2013-09-11 14:57:11 ----A---- C:\Windows\system32\winsrv.dll
2013-09-11 14:57:11 ----A---- C:\Windows\system32\smss.exe
2013-09-11 14:57:11 ----A---- C:\Windows\system32\ntvdm64.dll
2013-09-11 14:57:11 ----A---- C:\Windows\system32\kernel32.dll
2013-09-11 14:57:11 ----A---- C:\Windows\system32\csrsrv.dll
2013-09-11 14:57:11 ----A---- C:\Windows\system32\conhost.exe
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-11 14:57:10 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-11 14:57:09 ----A---- C:\Windows\SYSWOW64\user.exe
2013-09-11 14:57:09 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-09-11 14:57:09 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-09-11 14:57:09 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2013-09-11 14:57:09 ----A---- C:\Windows\system32\apisetschema.dll
2013-09-11 14:57:05 ----A---- C:\Windows\system32\win32k.sys
2013-09-11 14:57:01 ----A---- C:\Windows\system32\shell32.dll
2013-09-11 14:57:00 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-09-11 14:57:00 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-09-11 14:57:00 ----A---- C:\Windows\system32\shdocvw.dll
2013-09-10 16:27:31 ----D---- C:\Users\Pekarik\AppData\Roaming\The Creative Assembly
2013-09-04 15:48:11 ----D---- C:\Program Files (x86)\Ubisoft
2013-09-01 16:20:22 ----D---- C:\ProgramData\ATI
2013-09-01 16:20:19 ----D---- C:\Program Files (x86)\AMD AVT
2013-09-01 14:39:46 ----A---- C:\Windows\SYSWOW64\pbsvc_moh.exe
2013-08-31 13:27:42 ----D---- C:\ProgramData\Solidshield
======List of files/folders modified in the last 1 month======
2013-09-29 19:20:03 ----D---- C:\Windows\Prefetch
2013-09-29 18:26:47 ----D---- C:\Windows\SysWOW64
2013-09-29 18:26:42 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-09-29 18:23:06 ----D---- C:\Users\Pekarik\AppData\Roaming\TS3Client
2013-09-29 17:28:45 ----D---- C:\Windows\system32\drivers
2013-09-29 17:24:47 ----D---- C:\Program Files (x86)\Origin
2013-09-29 17:24:41 ----D---- C:\Users\Pekarik\AppData\Roaming\uTorrent
2013-09-29 17:12:54 ----D---- C:\Windows\system32\config
2013-09-29 17:12:54 ----D---- C:\Windows\system32\catroot2
2013-09-29 17:12:21 ----D---- C:\Windows
2013-09-29 17:11:38 ----D---- C:\Windows\Tasks
2013-09-29 16:19:04 ----D---- C:\Program Files (x86)\Steam
2013-09-29 15:54:15 ----D---- C:\Windows\system32\Tasks
2013-09-29 15:54:07 ----SHD---- C:\System Volume Information
2013-09-29 15:41:27 ----SHD---- C:\Windows\Installer
2013-09-29 15:41:27 ----D---- C:\Windows\system32\catroot
2013-09-29 15:41:24 ----D---- C:\Config.Msi
2013-09-29 15:41:15 ----D---- C:\ProgramData
2013-09-29 15:27:15 ----D---- C:\Windows\inf
2013-09-29 15:27:11 ----D---- C:\Windows\system32\DriverStore
2013-09-29 15:26:44 ----RD---- C:\Program Files (x86)
2013-09-29 14:18:40 ----A---- C:\Windows\system.ini
2013-09-29 14:18:26 ----D---- C:\Windows\system32\drivers\etc
2013-09-29 14:07:02 ----D---- C:\Windows\SYSWOW64\drivers
2013-09-29 14:07:02 ----D---- C:\Windows\AppPatch
2013-09-29 14:06:59 ----D---- C:\Program Files (x86)\Common Files
2013-09-29 13:52:48 ----RD---- C:\Program Files
2013-09-29 13:47:43 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-09-29 13:47:09 ----D---- C:\ProgramData\Codemasters
2013-09-29 13:45:57 ----RSD---- C:\Windows\assembly
2013-09-29 11:00:41 ----SD---- C:\ProgramData\Microsoft
2013-09-29 11:00:41 ----D---- C:\Program Files (x86)\Microsoft
2013-09-29 10:53:28 ----D---- C:\Windows\Logs
2013-09-28 23:45:31 ----D---- C:\ProgramData\Skype
2013-09-28 13:36:49 ----D---- C:\Users\Pekarik\AppData\Roaming\Skype
2013-09-28 12:02:26 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-09-28 00:29:24 ----D---- C:\Windows\System32
2013-09-27 17:05:01 ----D---- C:\AMD
2013-09-27 13:28:55 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2013-09-26 15:44:35 ----D---- C:\Program Files (x86)\PS3 Media Server
2013-09-26 12:31:47 ----D---- C:\Users\Pekarik\AppData\Roaming\DAEMON Tools Lite
2013-09-26 12:31:10 ----D---- C:\Windows\debug
2013-09-26 12:11:13 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-09-25 23:05:54 ----RD---- C:\Users
2013-09-25 21:53:26 ----D---- C:\Windows\winsxs
2013-09-25 20:05:31 ----D---- C:\ProgramData\Origin
2013-09-25 19:22:13 ----D---- C:\Program Files\VS Revo Group
2013-09-22 16:54:05 ----D---- C:\Program Files (x86)\Counter-Strike 1.6 Standalone
2013-09-22 15:38:27 ----D---- C:\Users\Pekarik\AppData\Roaming\Tunngle
2013-09-22 15:30:28 ----D---- C:\Program Files (x86)\Tunngle
2013-09-21 11:42:50 ----D---- C:\Users\Pekarik\AppData\Roaming\Seznam.cz
2013-09-16 17:49:10 ----D---- C:\Users\Pekarik\AppData\Roaming\.minecraft
2013-09-16 17:30:28 ----D---- C:\Users\Pekarik\AppData\Roaming\vlc
2013-09-16 12:53:31 ----D---- C:\Users\Pekarik\AppData\Roaming\Origin
2013-09-15 11:30:59 ----D---- C:\Windows\Panther
2013-09-15 11:30:52 ----D---- C:\Windows\Minidump
2013-09-12 06:45:40 ----D---- C:\Windows\Microsoft.NET
2013-09-12 06:37:49 ----D---- C:\Program Files (x86)\Internet Explorer
2013-09-12 06:37:46 ----D---- C:\Program Files\Internet Explorer
2013-09-12 06:37:27 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-09-12 06:37:27 ----D---- C:\Windows\system32\sk-SK
2013-09-11 23:59:48 ----D---- C:\ProgramData\Microsoft Help
2013-09-11 23:58:06 ----D---- C:\Windows\system32\MRT
2013-09-11 23:55:09 ----A---- C:\Windows\system32\MRT.exe
2013-09-04 15:56:44 ----D---- C:\ProgramData\Orbit
2013-09-01 16:20:19 ----D---- C:\ProgramData\AMD
2013-09-01 16:19:43 ----D---- C:\Program Files\ATI Technologies
2013-09-01 16:12:14 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-09-01 16:09:45 ----D---- C:\Windows\SYSWOW64\en-US
2013-09-01 16:09:45 ----D---- C:\Windows\system32\en-US
2013-08-31 22:43:57 ----D---- C:\Program Files (x86)\Origin Games
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2013-08-06 22600]
R0 aswNdis;avast! Firewall NDIS Filter Service; C:\Windows\system32\DRIVERS\aswNdis.sys [2011-01-05 12368]
R0 aswNdis2;avast! Firewall Core Firewall Service; C:\Windows\system32\drivers\aswNdis2.sys [2013-08-06 270824]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-08-06 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-08-06 189936]
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2010-05-20 16440]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 AsIO;AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [2009-08-04 13440]
R1 aswFW;avast! TDI Firewall driver; C:\Windows\system32\drivers\aswFW.sys [2013-08-06 131232]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-08-06 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-08-06 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-08-06 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-08-06 64288]
R1 avfwot;avfwot; C:\Windows\system32\DRIVERS\avfwot.sys [2013-09-29 141376]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2013-09-29 132088]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2013-09-29 28600]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-09-16 283064]
R1 HssDRV6;Hotspot Shield Routing Driver 6; C:\Windows\system32\DRIVERS\hssdrv6.sys [2013-06-21 46792]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-08-06 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-08-06 80816]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2013-09-29 105344]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-08-15 12652544]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-08-15 617984]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-07-05 96256]
R3 avfwim;AvFw Packet Filter Miniport; C:\Windows\system32\DRIVERS\avfwim.sys [2013-09-29 114608]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-08-11 3425608]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-17 15416]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2013-08-11 849992]
R3 ScreamBAudioSvc;ScreamBee Audio; C:\Windows\system32\drivers\ScreamingBAudio64.sys [2010-07-01 38992]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle); C:\Windows\system32\DRIVERS\tap0901t.sys [2009-09-16 31232]
R3 taphss6;Anchorfree HSS VPN Adapter; C:\Windows\system32\DRIVERS\taphss6.sys [2013-06-21 42184]
S0 amdkmafd;AMD Audio Bus Lower Filter; C:\Windows\system32\DRIVERS\amdkmafd.sys [2013-08-11 21600]
S0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-05-27 868848]
S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2012-08-02 28504]
S1 kltdi;kltdi; C:\Windows\system32\DRIVERS\kltdi.sys [2013-09-26 54368]
S1 kneps;kneps; C:\Windows\system32\DRIVERS\kneps.sys [2013-09-26 178448]
S2 AODDriver4.01;AODDriver4.01; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-06-19 34816]
S2 AODDriver4.2.0;AODDriver4.2.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2013-06-19 34816]
S3 androidusb;ADB Interface Driver; C:\Windows\System32\Drivers\fxxandroidusb.sys [2010-06-17 31744]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-20 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 DrvAgent64;DrvAgent64; \??\C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS [2013-08-19 21712]
S3 EagleX64;EagleX64; C:\Windows\system32\drivers\EagleX64.sys []
S3 FairplayKD;FairplayKD; C:\Windows\system32\drivers\FairplayKD.sys []
S3 GDPkIcpt;GDPkIcpt; \??\C:\Windows\system32\drivers\PktIcpt.sys [2013-07-14 59768]
S3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver; C:\Windows\system32\DRIVERS\MijXfilt.sys [2011-01-01 97040]
S3 MSICDSetup;MSICDSetup; \??\D:\CDriver64.sys []
S3 PPJoyBus;Parallel Port Joystick Bus Enumerator; C:\Windows\system32\DRIVERS\PPJoyBus64.sys [2010-02-20 20024]
S3 PPortJoystick;Parallel Port Joystick Device Driver; C:\Windows\system32\DRIVERS\PPortJoy64.sys [2010-02-20 39992]
S3 qcusbser;Qualcomm USB Device for Legacy Serial Communication; C:\Windows\system32\DRIVERS\FXX\qcusbser.sys [2010-06-17 364288]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2013-08-01 19456]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 31800]
S3 tap0901;TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2012-07-20 36736]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-08-01 57856]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2012-07-04 11880]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirFirewallService;Avira FireWall; C:\Program Files (x86)\Avira\AntiVir Desktop\avfwsvc.exe [2013-09-29 655928]
R2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe [2013-09-29 622648]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-09-29 108088]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-09-29 84024]
R2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [2013-09-29 815160]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2009-08-19 90112]
R2 Fabs;FABS - Helping agent for MAGIX media database; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2009-08-27 1253376]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2013-06-28 2470736]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 hshld;Hotspot Shield Service; C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [2013-06-21 831272]
R2 HssWd;Hotspot Shield Monitoring Service; C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [2013-06-21 548136]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-02-21 76888]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2013-08-06 46808]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-20 194032]
S3 HssTrayService;Hotspot Shield Tray Service; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [2013-06-21 78512]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-09-26 565672]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-05-23 1255736]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-19 257416]
S4 AdvancedSystemCareService6;Advanced SystemCare Service 6; C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [2013-04-18 574272]
S4 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-08-15 239616]
S4 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-08-15 344064]
S4 avast! Firewall;avast! Firewall; C:\Program Files\Alwil Software\Avast5\afwServ.exe [2013-08-06 137960]
S4 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files (x86)\Bonjour\mDNSResponder.exe []
S4 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2008-08-07 3276800]
S4 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2012-11-22 654848]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-05-23 136176]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-05-23 136176]
S4 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-05-13 115608]
S4 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [2008-12-02 877864]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [2009-03-25 537896]
S4 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [2006-12-19 81920]
S4 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-02-15 158856]
S4 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2013-01-31 2148664]
S4 TunngleService;TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [2013-09-03 759192]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Hacker alebo virus alebo niečo iné ? Prosím o pomoc .
Moderátor: Moderátoři
-
Rudy
- Site Admin
- Příspěvky: 119411
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Hacker alebo virus alebo niečo iné ? Prosím o pomoc .
Dvouklikem na soubor C:\Program Files\trend micro\Pekarik.exe spusťte HijackThis. Klikněte na "Do a system scan only" a v otevřeném okně vlevo ve čtverečcích zaškrtněte:
Klikněte na >FixChecked<. Pak znovu spusťte OTM a klikněte na >CleanUp!<. OTM po sobě uklidí. Nakonec restartujte PC.O2 - BHO: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: (no name) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - (no file)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Rudy
- Site Admin
- Příspěvky: 119411
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Hacker alebo virus alebo niečo iné ? Prosím o pomoc .
Problém pokračuje, nebo se něco změnilo?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Hacker alebo virus alebo niečo iné ? Prosím o pomoc .
No tak to neviem lebo Steam mi ešte support nevrátil a Origin som si viac zabezpečil tak ak budem mať späť svoj Steam tak o taky týždeň alebo o 2 sa to dozviem lebo zvyčajne taj prídem o to .
-
Rudy
- Site Admin
- Příspěvky: 119411
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Hacker alebo virus alebo niečo iné ? Prosím o pomoc .
OK. Zkusíme hloubkovou kontrolu: Dejte log ComboFix:
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
pote spustte aplikaci pod uctem s administratorskym opravnenim
hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.
v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se
jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine
aplikace ani nic jineho
behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)
upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,
pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k
nezadoucim kolizim s rezidentem antispyware.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Hacker alebo virus alebo niečo iné ? Prosím o pomoc .
ComboFix 13-09-30.02 - Pekarik . 09. 2013 15:47:03.3.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.421.1051.18.7422.5736 [GMT 2:00]
Running from: c:\users\Pekarik\Desktop\ComboFix.exe
AV: avast! Internet Security *Disabled/Outdated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
FW: avast! Internet Security *Disabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47}
FW: FireWall *Enabled* {CE40CCC0-8ADB-6D67-25A0-C5B6438E4B57}
SP: avast! Internet Security *Disabled/Outdated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Pekarik\AppData\Local\Google\Chrome\User Data\Default\Preferences
.
.
((((((((((((((((((((((((( Files Created from 2013-08-28 to 2013-09-30 )))))))))))))))))))))))))))))))
.
.
2013-09-30 14:02 . 2013-09-30 14:02 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-09-30 12:48 . 2013-09-30 12:48 63115 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\USERTILE.JS
2013-09-30 12:48 . 2013-09-30 12:48 4599 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\UIRESOURCE.JS
2013-09-29 15:28 . 2013-09-29 15:28 81112 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2013-09-29 13:29 . 2013-09-29 13:29 -------- d-----w- c:\users\Pekarik\AppData\Roaming\Avira
2013-09-29 13:26 . 2013-09-29 13:20 28600 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2013-09-29 13:26 . 2013-09-29 13:20 141376 ----a-w- c:\windows\system32\drivers\avfwot.sys
2013-09-29 13:26 . 2013-09-29 13:20 132088 ----a-w- c:\windows\system32\drivers\avipbb.sys
2013-09-29 13:26 . 2013-09-29 13:20 114608 ----a-w- c:\windows\system32\drivers\avfwim.sys
2013-09-29 13:26 . 2013-09-29 13:20 105344 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2013-09-29 13:26 . 2013-09-29 13:27 -------- d-----w- c:\programdata\Avira
2013-09-29 13:26 . 2013-09-29 13:26 -------- d-----w- c:\program files (x86)\Avira
2013-09-29 09:01 . 2013-09-29 09:01 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2013-09-29 07:32 . 2013-09-05 05:32 9694160 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{CBAACFDD-EECB-486C-A5B2-7B417EE0D03A}\mpengine.dll
2013-09-28 11:06 . 2013-09-29 17:19 -------- d-----w- c:\program files\trend micro
2013-09-28 10:43 . 2013-09-28 10:43 -------- d-----w- c:\users\Pekarik\AppData\Local\Norman Malware Cleaner
2013-09-27 22:29 . 2013-09-27 22:29 -------- d-----w- c:\users\Pekarik\AppData\Roaming\SUPERAntiSpyware.com
2013-09-27 22:28 . 2013-09-28 10:12 -------- d-----w- c:\program files\stinger
2013-09-27 18:31 . 2013-09-29 11:53 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy
2013-09-26 13:14 . 2013-09-26 13:14 -------- d-----w- c:\program files\7-Zip
2013-09-26 10:43 . 2013-09-26 10:43 -------- d-----w- c:\program files\Permanent Delete
2013-09-26 10:39 . 2013-09-29 11:44 -------- d-----w- c:\program files (x86)\Delete Doctor
2013-09-26 10:11 . 2013-09-28 16:15 -------- d-----w- c:\users\Pekarik\AppData\Roaming\Malwarebytes
2013-09-26 10:10 . 2013-09-28 16:15 -------- d-----w- c:\programdata\Malwarebytes
2013-09-25 19:53 . 2012-07-11 15:09 64856 ----a-w- c:\windows\system32\klfphc.dll
2013-09-25 19:51 . 2013-09-25 19:51 -------- d-----w- c:\windows\ELAMBKUP
2013-09-25 19:51 . 2013-09-29 13:40 -------- d-----w- c:\programdata\Kaspersky Lab
2013-09-25 19:51 . 2013-09-25 19:51 -------- d-----w- c:\program files (x86)\Kaspersky Lab
2013-09-25 17:22 . 2009-12-30 09:21 31800 ----a-w- c:\windows\system32\drivers\revoflt.sys
2013-09-25 16:23 . 2013-09-29 11:53 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2013-09-22 14:55 . 2013-09-22 14:55 722882 ----a-w- c:\windows\Counter-Strike 1.6 Standalone Uninstaller.exe
2013-09-22 14:53 . 2013-09-22 14:53 -------- d-----w- c:\program files (x86)\Common Files\Thraex Software
2013-09-22 13:52 . 2003-09-03 00:28 724992 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iKernel.dll
2013-09-22 13:52 . 2003-09-03 00:27 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\ctor.dll
2013-09-22 13:52 . 2003-09-03 00:26 266240 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iscript.dll
2013-09-22 13:52 . 2003-09-03 00:26 192512 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iuser.dll
2013-09-22 13:52 . 2003-09-03 00:25 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\DotNetInstaller.exe
2013-09-22 13:52 . 2013-09-22 13:52 184452 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iGdi.dll
2013-09-22 13:52 . 2013-09-22 13:52 311428 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\Setup.dll
2013-09-22 13:30 . 2013-09-22 13:38 -------- d-----w- c:\programdata\Tunngle
2013-09-20 16:15 . 2013-09-20 16:15 -------- d-----w- c:\users\Pekarik\AppData\Roaming\Opera Software
2013-09-20 16:15 . 2013-09-20 16:15 -------- d-----w- c:\users\Pekarik\AppData\Local\Opera Software
2013-09-20 16:15 . 2013-09-25 13:09 -------- d-----w- c:\program files (x86)\Opera
2013-09-16 15:49 . 2013-09-19 15:33 -------- d-----w- c:\users\Pekarik\AppData\Local\Arma 3
2013-09-16 15:49 . 2013-09-16 15:49 -------- d-----w- c:\programdata\Bohemia Interactive
2013-09-16 10:24 . 2013-09-16 10:24 -------- d-----w- c:\program files (x86)\Seznam.cz
2013-09-16 10:23 . 2013-09-28 16:03 -------- d-----w- c:\users\Pekarik\AppData\Local\AppsHat Mobile Apps
2013-09-16 10:23 . 2013-09-16 10:23 -------- d-----w- c:\users\Pekarik\AppData\Local\WebPlayer
2013-09-16 10:21 . 2013-09-16 10:21 283064 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-09-16 10:21 . 2013-09-16 10:21 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2013-09-15 21:10 . 2013-08-06 06:16 270824 ----a-w- c:\windows\system32\drivers\aswNdis2.sys
2013-09-15 21:10 . 2013-08-06 06:16 131232 ----a-w- c:\windows\system32\drivers\aswFW.sys
2013-09-11 12:57 . 2013-08-05 02:25 155584 ----a-w- c:\windows\system32\drivers\ataport.sys
2013-09-10 14:27 . 2013-09-10 14:27 -------- d-----w- c:\users\Pekarik\AppData\Roaming\The Creative Assembly
2013-09-04 13:48 . 2013-09-04 13:48 -------- d-----w- c:\program files (x86)\Ubisoft
2013-09-01 14:20 . 2013-09-01 14:20 -------- d-----w- c:\programdata\ATI
2013-09-01 14:20 . 2013-09-01 14:20 -------- d-----w- c:\program files (x86)\AMD AVT
2013-09-01 12:39 . 2010-09-15 22:13 2601752 ----a-w- c:\windows\SysWow64\pbsvc_moh.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-09-29 16:26 . 2012-05-26 07:28 290184 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-09-29 16:26 . 2012-05-26 07:18 290184 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-09-29 16:26 . 2012-05-26 07:18 291088 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2013-09-26 11:32 . 2012-08-13 14:49 178448 ----a-w- c:\windows\system32\drivers\kneps.sys
2013-09-26 11:32 . 2012-06-08 09:38 54368 ----a-w- c:\windows\system32\drivers\kltdi.sys
2013-09-11 21:55 . 2012-05-23 11:48 79143768 ----a-w- c:\windows\system32\MRT.exe
2013-08-19 14:41 . 2012-05-23 10:41 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-08-19 14:41 . 2012-05-23 10:41 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-08-19 11:43 . 2013-08-19 11:43 21712 ----a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS
2013-08-19 11:14 . 2013-08-19 11:14 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-08-19 11:14 . 2012-06-06 20:15 867240 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-08-19 11:14 . 2012-06-06 20:15 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-08-15 13:11 . 2013-08-15 13:11 157736 ----a-w- c:\windows\system32\amdhcp64.dll
2013-08-15 13:11 . 2013-08-15 13:11 142304 ----a-w- c:\windows\SysWow64\amdhcp32.dll
2013-08-15 13:11 . 2013-08-15 13:11 78432 ----a-w- c:\windows\system32\atimpc64.dll
2013-08-15 13:11 . 2013-08-15 13:11 78432 ----a-w- c:\windows\system32\amdpcom64.dll
2013-08-15 13:11 . 2013-08-15 13:11 71704 ----a-w- c:\windows\SysWow64\atimpc32.dll
2013-08-15 13:11 . 2013-08-15 13:11 71704 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2013-08-15 13:11 . 2013-08-15 13:11 126336 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2013-08-15 13:11 . 2012-01-18 04:21 143304 ----a-w- c:\windows\system32\atiuxp64.dll
2013-08-15 13:11 . 2013-08-15 13:11 115512 ----a-w- c:\windows\system32\atiu9p64.dll
2013-08-15 13:11 . 2012-04-06 01:09 98496 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2013-08-15 13:11 . 2013-08-15 13:11 1266552 ----a-w- c:\windows\system32\aticfx64.dll
2013-08-15 13:11 . 2012-07-28 02:15 1052264 ----a-w- c:\windows\SysWow64\aticfx32.dll
2013-08-15 13:11 . 2013-08-15 13:11 9067808 ----a-w- c:\windows\system32\atidxx64.dll
2013-08-15 13:11 . 2013-08-15 13:11 7919328 ----a-w- c:\windows\SysWow64\atidxx32.dll
2013-08-15 13:11 . 2012-07-28 01:32 6502024 ----a-w- c:\windows\SysWow64\atiumdva.dll
2013-08-15 13:10 . 2012-07-28 04:09 6549928 ----a-w- c:\windows\SysWow64\atiumdag.dll
2013-08-15 13:10 . 2013-08-15 13:10 7128240 ----a-w- c:\windows\system32\atiumd6a.dll
2013-08-15 13:10 . 2013-08-15 13:10 7625784 ----a-w- c:\windows\system32\atiumd64.dll
2013-08-15 13:09 . 2013-08-15 13:09 12652544 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2013-08-15 12:55 . 2013-08-15 12:55 229888 ----a-w- c:\windows\system32\clinfo.exe
2013-08-15 12:55 . 2013-08-15 12:55 98816 ----a-w- c:\windows\system32\OpenVideo64.dll
2013-08-15 12:54 . 2013-08-15 12:54 83456 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2013-08-15 12:54 . 2013-08-15 12:54 86528 ----a-w- c:\windows\system32\OVDecode64.dll
2013-08-15 12:54 . 2013-08-15 12:54 73216 ----a-w- c:\windows\SysWow64\OVDecode.dll
2013-08-15 12:54 . 2013-08-15 12:54 28445184 ----a-w- c:\windows\system32\amdocl64.dll
2013-08-15 12:51 . 2013-08-15 12:51 23989248 ----a-w- c:\windows\SysWow64\amdocl.dll
2013-08-15 12:49 . 2013-08-15 12:49 63488 ----a-w- c:\windows\system32\OpenCL.dll
2013-08-15 12:49 . 2013-08-15 12:49 57344 ----a-w- c:\windows\SysWow64\OpenCL.dll
2013-08-15 12:45 . 2013-08-15 12:45 129536 ----a-w- c:\windows\system32\coinst_13.20.11.dll
2013-08-15 12:33 . 2013-08-15 12:33 368640 ----a-w- c:\windows\system32\atiapfxx.exe
2013-08-15 12:33 . 2013-08-15 12:33 62464 ----a-w- c:\windows\system32\aticalrt64.dll
2013-08-15 12:33 . 2013-08-15 12:33 52224 ----a-w- c:\windows\SysWow64\aticalrt.dll
2013-08-15 12:33 . 2013-08-15 12:33 55808 ----a-w- c:\windows\system32\aticalcl64.dll
2013-08-15 12:33 . 2013-08-15 12:33 49152 ----a-w- c:\windows\SysWow64\aticalcl.dll
2013-08-15 12:33 . 2013-08-15 12:33 15716352 ----a-w- c:\windows\system32\aticaldd64.dll
2013-08-15 12:33 . 2013-08-15 12:33 25611264 ----a-w- c:\windows\system32\atio6axx.dll
2013-08-15 12:29 . 2013-08-15 12:29 14302208 ----a-w- c:\windows\SysWow64\aticaldd.dll
2013-08-15 12:15 . 2013-08-15 12:15 21624832 ----a-w- c:\windows\SysWow64\atioglxx.dll
2013-08-15 12:12 . 2013-08-15 12:12 442368 ----a-w- c:\windows\system32\atidemgy.dll
2013-08-15 12:12 . 2013-08-15 12:12 26112 ----a-w- c:\windows\system32\atimuixx.dll
2013-08-15 12:12 . 2013-08-15 12:12 574976 ----a-w- c:\windows\system32\atieclxx.exe
2013-08-15 12:11 . 2013-08-15 12:11 239616 ----a-w- c:\windows\system32\atiesrxx.exe
2013-08-15 12:09 . 2013-08-15 12:09 190976 ----a-w- c:\windows\system32\atitmm64.dll
2013-08-15 11:41 . 2013-08-15 11:41 1097728 ----a-w- c:\windows\system32\atiadlxx.dll
2013-08-15 11:40 . 2013-08-15 11:40 828416 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2013-08-15 11:40 . 2013-08-15 11:40 75264 ----a-w- c:\windows\system32\atig6pxx.dll
2013-08-15 11:40 . 2013-08-15 11:40 69632 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2013-08-15 11:40 . 2013-08-15 11:40 69632 ----a-w- c:\windows\system32\atiglpxx.dll
2013-08-15 11:40 . 2013-08-15 11:40 100352 ----a-w- c:\windows\system32\atig6txx.dll
2013-08-15 11:40 . 2013-08-15 11:40 96768 ----a-w- c:\windows\SysWow64\atigktxx.dll
2013-08-15 11:40 . 2013-08-15 11:40 617984 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2013-08-15 11:38 . 2013-08-15 11:38 95744 ----a-w- c:\windows\system32\amdave64.dll
2013-08-15 11:37 . 2013-08-15 11:37 90112 ----a-w- c:\windows\SysWow64\amdave32.dll
2013-08-15 11:37 . 2013-08-15 11:37 89088 ----a-w- c:\windows\system32\atisamu64.dll
2013-08-15 11:37 . 2013-08-15 11:37 80896 ----a-w- c:\windows\SysWow64\atisamu32.dll
2013-08-15 11:36 . 2013-08-15 11:36 43520 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2013-08-15 07:06 . 2013-08-15 07:06 51200 ----a-w- c:\windows\system32\kdbsdk64.dll
2013-08-15 07:01 . 2013-08-15 07:01 38912 ----a-w- c:\windows\SysWow64\kdbsdk32.dll
2013-08-11 13:48 . 2013-07-14 15:41 106648 ----a-w- c:\windows\system32\drivers\GRD.sys
2013-08-11 13:15 . 2013-07-14 15:30 65912 ----a-w- c:\windows\system32\drivers\gdwfpcd64.sys
2013-08-11 12:44 . 2013-08-11 12:44 849992 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2013-08-11 12:44 . 2013-08-11 12:44 73800 ----a-w- c:\windows\system32\RtNicProp64.dll
2013-08-11 12:44 . 2012-05-23 10:03 108104 ----a-w- c:\windows\system32\RTNUninst64.dll
2013-08-11 12:43 . 2013-08-11 12:43 916016 ----a-w- c:\windows\system32\SFSS_APO.dll
2013-08-11 12:43 . 2013-08-11 12:43 858032 ----a-w- c:\windows\system32\tossaeapo64.dll
2013-08-11 12:43 . 2013-08-11 12:43 836544 ----a-w- c:\windows\system32\tadefxapo264.dll
2013-08-11 12:43 . 2013-08-11 12:43 834328 ----a-w- c:\windows\system32\slcnt64.dll
2013-08-11 12:43 . 2013-08-11 12:43 81248 ----a-w- c:\windows\system32\SFCOM64.dll
2013-08-11 12:43 . 2013-08-11 12:43 78688 ----a-w- c:\windows\system32\SFAPO64.dll
2013-08-11 12:43 . 2013-08-11 12:43 748376 ----a-w- c:\windows\system32\RTKSMSettingsIPC.dll
2013-08-11 12:43 . 2013-08-11 12:43 65944 ----a-w- c:\windows\system32\tepeqapo64.dll
2013-08-11 12:43 . 2013-08-11 12:43 635160 ----a-w- c:\windows\system32\sltech64.dll
2013-08-11 12:43 . 2013-08-11 12:43 569256 ----a-w- c:\windows\system32\tosasfapo64.dll
2013-08-11 12:43 . 2013-08-11 12:43 528152 ----a-w- c:\windows\system32\sl3apo64.dll
2013-08-11 12:43 . 2013-08-11 12:43 4819224 ----a-w- c:\windows\system32\RTKSMlfx.dll
2013-08-11 12:43 . 2013-08-11 12:43 3693640 ----a-w- c:\windows\system32\RtkAPO64.dll
2013-08-11 12:43 . 2013-08-11 12:43 3425608 ----a-w- c:\windows\system32\drivers\RTKVHD64.sys
2013-08-11 12:43 . 2013-08-11 12:43 331880 ----a-w- c:\windows\system32\RtlCPAPI64.dll
2013-08-11 12:43 . 2013-08-11 12:43 2794056 ----a-w- c:\windows\system32\RtPgEx64.dll
2013-08-11 12:43 . 2013-08-11 12:43 221024 ----a-w- c:\windows\system32\SFNHK64.dll
2013-08-11 12:43 . 2013-08-11 12:43 215320 ----a-w- c:\windows\system32\slprp64.dll
2013-08-11 12:43 . 2013-08-11 12:43 2103040 ----a-w- c:\windows\system32\WavesGUILib64.dll
2013-08-11 12:43 . 2013-08-11 12:43 1662024 ----a-w- c:\windows\system32\RTSnMg64.cpl
2013-08-11 12:43 . 2013-08-11 12:43 14952 ----a-w- c:\windows\system32\RtkCoLDR64.dll
2013-08-11 12:43 . 2013-08-11 12:43 148912 ----a-w- c:\windows\system32\toseaeapo64.dll
2013-08-11 12:43 . 2013-08-11 12:43 1003592 ----a-w- c:\windows\system32\RtkApi64.dll
2013-08-11 12:43 . 2013-08-11 12:43 920320 ----a-w- c:\windows\system32\MaxxAudioAPOShell64.dll
2013-08-11 12:43 . 2013-08-11 12:43 9123608 ----a-w- c:\windows\system32\MaxxAudioVnA64.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseNormal]
@="{C5994560-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994560-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseModified]
@="{C5994561-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994561-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseConflict]
@="{C5994562-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994562-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseLocked]
@="{C5994563-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994563-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseReadOnly]
@="{C5994564-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994564-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseDeleted]
@="{C5994565-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994565-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseAdded]
@="{C5994566-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994566-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\8TortoiseIgnored]
@="{C5994567-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994567-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\9TortoiseUnversioned]
@="{C5994568-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994568-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2013-07-01 802136]
"GoogleChromeAutoLaunch_4281F3CB61F060AA6452A3FA375A5C27"="c:\users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe" [2013-07-25 846288]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-08-01 3673696]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Turbo Key"="c:\program files (x86)\ASUS\Turbo Key\TurboKey.exe" [2009-11-24 1874432]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2013-06-28 2255184]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2013-08-15 766208]
"avast"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2013-08-06 4858968]
"amd_dc_opt"="c:\program files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2006-11-17 77824]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-09-29 347192]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2012-02-15 17146504]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2009-9-20 270336]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk /r \??\F:\0autocheck autochk *
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"NBKeyScan"="c:\program files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
"HP Software Update"=c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
R0 amdkmafd;AMD Audio Bus Lower Filter;c:\windows\system32\DRIVERS\amdkmafd.sys;c:\windows\SYSNATIVE\DRIVERS\amdkmafd.sys [x]
R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys;c:\windows\SYSNATIVE\Drivers\sptd.sys [x]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys;c:\windows\SYSNATIVE\DRIVERS\klim6.sys [x]
R1 kltdi;kltdi;c:\windows\system32\DRIVERS\kltdi.sys;c:\windows\SYSNATIVE\DRIVERS\kltdi.sys [x]
R1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys;c:\windows\SYSNATIVE\DRIVERS\kneps.sys [x]
R2 AODDriver4.01;AODDriver4.01;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
R2 AODDriver4.2.0;AODDriver4.2.0;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 androidusb;ADB Interface Driver;c:\windows\system32\Drivers\fxxandroidusb.sys;c:\windows\SYSNATIVE\Drivers\fxxandroidusb.sys [x]
R3 DrvAgent64;DrvAgent64;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS [x]
R3 EagleX64;EagleX64; [x]
R3 FairplayKD;FairplayKD; [x]
R3 GDPkIcpt;GDPkIcpt;c:\windows\system32\drivers\PktIcpt.sys;c:\windows\SYSNATIVE\drivers\PktIcpt.sys [x]
R3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;c:\windows\system32\DRIVERS\MijXfilt.sys;c:\windows\SYSNATIVE\DRIVERS\MijXfilt.sys [x]
R3 MSICDSetup;MSICDSetup;d:\cdriver64.sys;d:\CDriver64.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 PPJoyBus;Parallel Port Joystick Bus Enumerator;c:\windows\system32\DRIVERS\PPJoyBus64.sys;c:\windows\SYSNATIVE\DRIVERS\PPJoyBus64.sys [x]
R3 PPortJoystick;Parallel Port Joystick Device Driver;c:\windows\system32\DRIVERS\PPortJoy64.sys;c:\windows\SYSNATIVE\DRIVERS\PPortJoy64.sys [x]
R3 qcusbser;Qualcomm USB Device for Legacy Serial Communication;c:\windows\system32\DRIVERS\FXX\qcusbser.sys;c:\windows\SYSNATIVE\DRIVERS\FXX\qcusbser.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys;c:\windows\SYSNATIVE\DRIVERS\revoflt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [x]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [x]
R4 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
R4 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
R4 avast! Firewall;avast! Firewall;c:\program files\Alwil Software\Avast5\afwServ.exe;c:\program files\Alwil Software\Avast5\afwServ.exe [x]
R4 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [x]
R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R4 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [x]
R4 TunngleService;TunngleService;c:\program files (x86)\Tunngle\TnglCtrl.exe;c:\program files (x86)\Tunngle\TnglCtrl.exe [x]
S0 aswKbd;aswKbd; [x]
S0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\DRIVERS\aswNdis.sys;c:\windows\SYSNATIVE\DRIVERS\aswNdis.sys [x]
S0 aswNdis2;avast! Firewall Core Firewall Service;c:\windows\system32\drivers\aswNdis2.sys;c:\windows\SYSNATIVE\drivers\aswNdis2.sys [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S1 aswFW;avast! TDI Firewall driver; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 avfwot;avfwot;c:\windows\system32\DRIVERS\avfwot.sys;c:\windows\SYSNATIVE\DRIVERS\avfwot.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 HssDRV6;Hotspot Shield Routing Driver 6;c:\windows\system32\DRIVERS\hssdrv6.sys;c:\windows\SYSNATIVE\DRIVERS\hssdrv6.sys [x]
S2 AntiVirFirewallService;Avira FireWall;c:\program files (x86)\Avira\AntiVir Desktop\avfwsvc.exe;c:\program files (x86)\Avira\AntiVir Desktop\avfwsvc.exe [x]
S2 AntiVirMailService;Avira Mail Protection;c:\program files (x86)\Avira\AntiVir Desktop\avmailc.exe;c:\program files (x86)\Avira\AntiVir Desktop\avmailc.exe [x]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 AntiVirWebService;Avira Web Protection;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [x]
S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 hshld;Hotspot Shield Service;c:\program files (x86)\Hotspot Shield\bin\cmw_srv.exe;c:\program files (x86)\Hotspot Shield\bin\cmw_srv.exe [x]
S2 HssWd;Hotspot Shield Monitoring Service;c:\program files (x86)\Hotspot Shield\bin\hsswd.exe;c:\program files (x86)\Hotspot Shield\bin\hsswd.exe [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 avfwim;AvFw Packet Filter Miniport;c:\windows\system32\DRIVERS\avfwim.sys;c:\windows\SYSNATIVE\DRIVERS\avfwim.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 ScreamBAudioSvc;ScreamBee Audio;c:\windows\system32\drivers\ScreamingBAudio64.sys;c:\windows\SYSNATIVE\drivers\ScreamingBAudio64.sys [x]
S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys;c:\windows\SYSNATIVE\DRIVERS\tap0901t.sys [x]
S3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-08-06 06:15 133840 ----a-w- c:\program files\Alwil Software\Avast5\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseNormal]
@="{C5994560-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994560-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseModified]
@="{C5994561-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994561-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseConflict]
@="{C5994562-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994562-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseLocked]
@="{C5994563-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994563-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseReadOnly]
@="{C5994564-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994564-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseDeleted]
@="{C5994565-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994565-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseAdded]
@="{C5994566-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994566-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\8TortoiseIgnored]
@="{C5994567-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994567-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\9TortoiseUnversioned]
@="{C5994568-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994568-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-08-11 13538376]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SYSTEM32\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
LSP: c:\program files (x86)\Avira\AntiVir Desktop\avsda.dll
FF - ProfilePath - c:\users\Pekarik\AppData\Roaming\Mozilla\Firefox\Profiles\2p36ltir.default\
FF - prefs.js: browser.search.selectedEngine -
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=198484&p=
FF - ExtSQL: 2013-08-01 19:20; ascsurfingprotection@iobit.com; c:\users\Pekarik\AppData\Roaming\Mozilla\Firefox\Profiles\2p36ltir.default\extensions\ascsurfingprotection@iobit.com
FF - ExtSQL: !HIDDEN! 2012-08-30 18:10; smartwebprinting@hp.com; c:\program files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
.
- - - - ORPHANS REMOVED - - - -
.
BHO-{F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
AddRemove-AGrcon v1.0 - c:\program files (x86)\AGrcon\Uninstal.exe
AddRemove-Any Video Converter Professional_is1 - c:\program files (x86)\AnvSoft\Any Video Converter Professional\unins000.exe
AddRemove-ARO 2013_is1 - c:\program files (x86)\ARO 2013\unins000.exe
AddRemove-Battlelog Web Plugins - c:\program files (x86)\Battlelog Web Plugins\uninstall.exe
AddRemove-Call of Duty Black Ops II_is1 - c:\program files (x86)\Activision\Call of Duty Black Ops II\unins000.exe
AddRemove-dBpoweramp Music Converter - c:\windows\system32\SpoonUninstall.exe
AddRemove-ESN Sonar-0.70.4 - c:\program files (x86)\Battlelog Web Plugins\Sonar\esnsonar_uninstall.exe
AddRemove-Free Easy Burner_is1 - c:\program files (x86)\Free Easy Burner\unins000.exe
AddRemove-PCSleek Free Error Cleaner_is1 - c:\program files (x86)\PCSleek\Free Error Cleaner\unins000.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc_moh.exe
AddRemove-QVJNQTM=_is1 - f:\hry\ARMA 3\unins000.exe
AddRemove-R2FtZURldlR5Y29vbnYxMzI=_is1 - f:\program files (x86)\Game Dev Tycoon v1.3.2\unins000.exe
AddRemove-{C2872E18-8799-44A3-B6BD-AC535F1982A6}_is1 - f:\program files (x86)\Total War Rome II CZ\unins000.exe
AddRemove-{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1 - c:\program files (x86)\BRS\unins000.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{64A3D41B-61A5-4834-9A42-FDE1C37D0009}]
@Denied: (Full) (Everyone)
@=""
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-09-30 16:09:30
ComboFix-quarantined-files.txt 2013-09-30 14:09
.
Pre-Run: 134 445 056 000 bytes free
Post-Run: 134 261 137 408 bytes free
.
- - End Of File - - 68BF1EA16E235E1411FD686FBC4BE7F3
A36C5E4F47E84449FF07ED3517B43A31
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.421.1051.18.7422.5736 [GMT 2:00]
Running from: c:\users\Pekarik\Desktop\ComboFix.exe
AV: avast! Internet Security *Disabled/Outdated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
FW: avast! Internet Security *Disabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47}
FW: FireWall *Enabled* {CE40CCC0-8ADB-6D67-25A0-C5B6438E4B57}
SP: avast! Internet Security *Disabled/Outdated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Pekarik\AppData\Local\Google\Chrome\User Data\Default\Preferences
.
.
((((((((((((((((((((((((( Files Created from 2013-08-28 to 2013-09-30 )))))))))))))))))))))))))))))))
.
.
2013-09-30 14:02 . 2013-09-30 14:02 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-09-30 12:48 . 2013-09-30 12:48 63115 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\USERTILE.JS
2013-09-30 12:48 . 2013-09-30 12:48 4599 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\UIRESOURCE.JS
2013-09-29 15:28 . 2013-09-29 15:28 81112 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2013-09-29 13:29 . 2013-09-29 13:29 -------- d-----w- c:\users\Pekarik\AppData\Roaming\Avira
2013-09-29 13:26 . 2013-09-29 13:20 28600 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2013-09-29 13:26 . 2013-09-29 13:20 141376 ----a-w- c:\windows\system32\drivers\avfwot.sys
2013-09-29 13:26 . 2013-09-29 13:20 132088 ----a-w- c:\windows\system32\drivers\avipbb.sys
2013-09-29 13:26 . 2013-09-29 13:20 114608 ----a-w- c:\windows\system32\drivers\avfwim.sys
2013-09-29 13:26 . 2013-09-29 13:20 105344 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2013-09-29 13:26 . 2013-09-29 13:27 -------- d-----w- c:\programdata\Avira
2013-09-29 13:26 . 2013-09-29 13:26 -------- d-----w- c:\program files (x86)\Avira
2013-09-29 09:01 . 2013-09-29 09:01 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2013-09-29 07:32 . 2013-09-05 05:32 9694160 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{CBAACFDD-EECB-486C-A5B2-7B417EE0D03A}\mpengine.dll
2013-09-28 11:06 . 2013-09-29 17:19 -------- d-----w- c:\program files\trend micro
2013-09-28 10:43 . 2013-09-28 10:43 -------- d-----w- c:\users\Pekarik\AppData\Local\Norman Malware Cleaner
2013-09-27 22:29 . 2013-09-27 22:29 -------- d-----w- c:\users\Pekarik\AppData\Roaming\SUPERAntiSpyware.com
2013-09-27 22:28 . 2013-09-28 10:12 -------- d-----w- c:\program files\stinger
2013-09-27 18:31 . 2013-09-29 11:53 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy
2013-09-26 13:14 . 2013-09-26 13:14 -------- d-----w- c:\program files\7-Zip
2013-09-26 10:43 . 2013-09-26 10:43 -------- d-----w- c:\program files\Permanent Delete
2013-09-26 10:39 . 2013-09-29 11:44 -------- d-----w- c:\program files (x86)\Delete Doctor
2013-09-26 10:11 . 2013-09-28 16:15 -------- d-----w- c:\users\Pekarik\AppData\Roaming\Malwarebytes
2013-09-26 10:10 . 2013-09-28 16:15 -------- d-----w- c:\programdata\Malwarebytes
2013-09-25 19:53 . 2012-07-11 15:09 64856 ----a-w- c:\windows\system32\klfphc.dll
2013-09-25 19:51 . 2013-09-25 19:51 -------- d-----w- c:\windows\ELAMBKUP
2013-09-25 19:51 . 2013-09-29 13:40 -------- d-----w- c:\programdata\Kaspersky Lab
2013-09-25 19:51 . 2013-09-25 19:51 -------- d-----w- c:\program files (x86)\Kaspersky Lab
2013-09-25 17:22 . 2009-12-30 09:21 31800 ----a-w- c:\windows\system32\drivers\revoflt.sys
2013-09-25 16:23 . 2013-09-29 11:53 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2013-09-22 14:55 . 2013-09-22 14:55 722882 ----a-w- c:\windows\Counter-Strike 1.6 Standalone Uninstaller.exe
2013-09-22 14:53 . 2013-09-22 14:53 -------- d-----w- c:\program files (x86)\Common Files\Thraex Software
2013-09-22 13:52 . 2003-09-03 00:28 724992 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iKernel.dll
2013-09-22 13:52 . 2003-09-03 00:27 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\ctor.dll
2013-09-22 13:52 . 2003-09-03 00:26 266240 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iscript.dll
2013-09-22 13:52 . 2003-09-03 00:26 192512 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iuser.dll
2013-09-22 13:52 . 2003-09-03 00:25 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\DotNetInstaller.exe
2013-09-22 13:52 . 2013-09-22 13:52 184452 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iGdi.dll
2013-09-22 13:52 . 2013-09-22 13:52 311428 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\Setup.dll
2013-09-22 13:30 . 2013-09-22 13:38 -------- d-----w- c:\programdata\Tunngle
2013-09-20 16:15 . 2013-09-20 16:15 -------- d-----w- c:\users\Pekarik\AppData\Roaming\Opera Software
2013-09-20 16:15 . 2013-09-20 16:15 -------- d-----w- c:\users\Pekarik\AppData\Local\Opera Software
2013-09-20 16:15 . 2013-09-25 13:09 -------- d-----w- c:\program files (x86)\Opera
2013-09-16 15:49 . 2013-09-19 15:33 -------- d-----w- c:\users\Pekarik\AppData\Local\Arma 3
2013-09-16 15:49 . 2013-09-16 15:49 -------- d-----w- c:\programdata\Bohemia Interactive
2013-09-16 10:24 . 2013-09-16 10:24 -------- d-----w- c:\program files (x86)\Seznam.cz
2013-09-16 10:23 . 2013-09-28 16:03 -------- d-----w- c:\users\Pekarik\AppData\Local\AppsHat Mobile Apps
2013-09-16 10:23 . 2013-09-16 10:23 -------- d-----w- c:\users\Pekarik\AppData\Local\WebPlayer
2013-09-16 10:21 . 2013-09-16 10:21 283064 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-09-16 10:21 . 2013-09-16 10:21 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2013-09-15 21:10 . 2013-08-06 06:16 270824 ----a-w- c:\windows\system32\drivers\aswNdis2.sys
2013-09-15 21:10 . 2013-08-06 06:16 131232 ----a-w- c:\windows\system32\drivers\aswFW.sys
2013-09-11 12:57 . 2013-08-05 02:25 155584 ----a-w- c:\windows\system32\drivers\ataport.sys
2013-09-10 14:27 . 2013-09-10 14:27 -------- d-----w- c:\users\Pekarik\AppData\Roaming\The Creative Assembly
2013-09-04 13:48 . 2013-09-04 13:48 -------- d-----w- c:\program files (x86)\Ubisoft
2013-09-01 14:20 . 2013-09-01 14:20 -------- d-----w- c:\programdata\ATI
2013-09-01 14:20 . 2013-09-01 14:20 -------- d-----w- c:\program files (x86)\AMD AVT
2013-09-01 12:39 . 2010-09-15 22:13 2601752 ----a-w- c:\windows\SysWow64\pbsvc_moh.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-09-29 16:26 . 2012-05-26 07:28 290184 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-09-29 16:26 . 2012-05-26 07:18 290184 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-09-29 16:26 . 2012-05-26 07:18 291088 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2013-09-26 11:32 . 2012-08-13 14:49 178448 ----a-w- c:\windows\system32\drivers\kneps.sys
2013-09-26 11:32 . 2012-06-08 09:38 54368 ----a-w- c:\windows\system32\drivers\kltdi.sys
2013-09-11 21:55 . 2012-05-23 11:48 79143768 ----a-w- c:\windows\system32\MRT.exe
2013-08-19 14:41 . 2012-05-23 10:41 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-08-19 14:41 . 2012-05-23 10:41 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-08-19 11:43 . 2013-08-19 11:43 21712 ----a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS
2013-08-19 11:14 . 2013-08-19 11:14 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-08-19 11:14 . 2012-06-06 20:15 867240 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-08-19 11:14 . 2012-06-06 20:15 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-08-15 13:11 . 2013-08-15 13:11 157736 ----a-w- c:\windows\system32\amdhcp64.dll
2013-08-15 13:11 . 2013-08-15 13:11 142304 ----a-w- c:\windows\SysWow64\amdhcp32.dll
2013-08-15 13:11 . 2013-08-15 13:11 78432 ----a-w- c:\windows\system32\atimpc64.dll
2013-08-15 13:11 . 2013-08-15 13:11 78432 ----a-w- c:\windows\system32\amdpcom64.dll
2013-08-15 13:11 . 2013-08-15 13:11 71704 ----a-w- c:\windows\SysWow64\atimpc32.dll
2013-08-15 13:11 . 2013-08-15 13:11 71704 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2013-08-15 13:11 . 2013-08-15 13:11 126336 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2013-08-15 13:11 . 2012-01-18 04:21 143304 ----a-w- c:\windows\system32\atiuxp64.dll
2013-08-15 13:11 . 2013-08-15 13:11 115512 ----a-w- c:\windows\system32\atiu9p64.dll
2013-08-15 13:11 . 2012-04-06 01:09 98496 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2013-08-15 13:11 . 2013-08-15 13:11 1266552 ----a-w- c:\windows\system32\aticfx64.dll
2013-08-15 13:11 . 2012-07-28 02:15 1052264 ----a-w- c:\windows\SysWow64\aticfx32.dll
2013-08-15 13:11 . 2013-08-15 13:11 9067808 ----a-w- c:\windows\system32\atidxx64.dll
2013-08-15 13:11 . 2013-08-15 13:11 7919328 ----a-w- c:\windows\SysWow64\atidxx32.dll
2013-08-15 13:11 . 2012-07-28 01:32 6502024 ----a-w- c:\windows\SysWow64\atiumdva.dll
2013-08-15 13:10 . 2012-07-28 04:09 6549928 ----a-w- c:\windows\SysWow64\atiumdag.dll
2013-08-15 13:10 . 2013-08-15 13:10 7128240 ----a-w- c:\windows\system32\atiumd6a.dll
2013-08-15 13:10 . 2013-08-15 13:10 7625784 ----a-w- c:\windows\system32\atiumd64.dll
2013-08-15 13:09 . 2013-08-15 13:09 12652544 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2013-08-15 12:55 . 2013-08-15 12:55 229888 ----a-w- c:\windows\system32\clinfo.exe
2013-08-15 12:55 . 2013-08-15 12:55 98816 ----a-w- c:\windows\system32\OpenVideo64.dll
2013-08-15 12:54 . 2013-08-15 12:54 83456 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2013-08-15 12:54 . 2013-08-15 12:54 86528 ----a-w- c:\windows\system32\OVDecode64.dll
2013-08-15 12:54 . 2013-08-15 12:54 73216 ----a-w- c:\windows\SysWow64\OVDecode.dll
2013-08-15 12:54 . 2013-08-15 12:54 28445184 ----a-w- c:\windows\system32\amdocl64.dll
2013-08-15 12:51 . 2013-08-15 12:51 23989248 ----a-w- c:\windows\SysWow64\amdocl.dll
2013-08-15 12:49 . 2013-08-15 12:49 63488 ----a-w- c:\windows\system32\OpenCL.dll
2013-08-15 12:49 . 2013-08-15 12:49 57344 ----a-w- c:\windows\SysWow64\OpenCL.dll
2013-08-15 12:45 . 2013-08-15 12:45 129536 ----a-w- c:\windows\system32\coinst_13.20.11.dll
2013-08-15 12:33 . 2013-08-15 12:33 368640 ----a-w- c:\windows\system32\atiapfxx.exe
2013-08-15 12:33 . 2013-08-15 12:33 62464 ----a-w- c:\windows\system32\aticalrt64.dll
2013-08-15 12:33 . 2013-08-15 12:33 52224 ----a-w- c:\windows\SysWow64\aticalrt.dll
2013-08-15 12:33 . 2013-08-15 12:33 55808 ----a-w- c:\windows\system32\aticalcl64.dll
2013-08-15 12:33 . 2013-08-15 12:33 49152 ----a-w- c:\windows\SysWow64\aticalcl.dll
2013-08-15 12:33 . 2013-08-15 12:33 15716352 ----a-w- c:\windows\system32\aticaldd64.dll
2013-08-15 12:33 . 2013-08-15 12:33 25611264 ----a-w- c:\windows\system32\atio6axx.dll
2013-08-15 12:29 . 2013-08-15 12:29 14302208 ----a-w- c:\windows\SysWow64\aticaldd.dll
2013-08-15 12:15 . 2013-08-15 12:15 21624832 ----a-w- c:\windows\SysWow64\atioglxx.dll
2013-08-15 12:12 . 2013-08-15 12:12 442368 ----a-w- c:\windows\system32\atidemgy.dll
2013-08-15 12:12 . 2013-08-15 12:12 26112 ----a-w- c:\windows\system32\atimuixx.dll
2013-08-15 12:12 . 2013-08-15 12:12 574976 ----a-w- c:\windows\system32\atieclxx.exe
2013-08-15 12:11 . 2013-08-15 12:11 239616 ----a-w- c:\windows\system32\atiesrxx.exe
2013-08-15 12:09 . 2013-08-15 12:09 190976 ----a-w- c:\windows\system32\atitmm64.dll
2013-08-15 11:41 . 2013-08-15 11:41 1097728 ----a-w- c:\windows\system32\atiadlxx.dll
2013-08-15 11:40 . 2013-08-15 11:40 828416 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2013-08-15 11:40 . 2013-08-15 11:40 75264 ----a-w- c:\windows\system32\atig6pxx.dll
2013-08-15 11:40 . 2013-08-15 11:40 69632 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2013-08-15 11:40 . 2013-08-15 11:40 69632 ----a-w- c:\windows\system32\atiglpxx.dll
2013-08-15 11:40 . 2013-08-15 11:40 100352 ----a-w- c:\windows\system32\atig6txx.dll
2013-08-15 11:40 . 2013-08-15 11:40 96768 ----a-w- c:\windows\SysWow64\atigktxx.dll
2013-08-15 11:40 . 2013-08-15 11:40 617984 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2013-08-15 11:38 . 2013-08-15 11:38 95744 ----a-w- c:\windows\system32\amdave64.dll
2013-08-15 11:37 . 2013-08-15 11:37 90112 ----a-w- c:\windows\SysWow64\amdave32.dll
2013-08-15 11:37 . 2013-08-15 11:37 89088 ----a-w- c:\windows\system32\atisamu64.dll
2013-08-15 11:37 . 2013-08-15 11:37 80896 ----a-w- c:\windows\SysWow64\atisamu32.dll
2013-08-15 11:36 . 2013-08-15 11:36 43520 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2013-08-15 07:06 . 2013-08-15 07:06 51200 ----a-w- c:\windows\system32\kdbsdk64.dll
2013-08-15 07:01 . 2013-08-15 07:01 38912 ----a-w- c:\windows\SysWow64\kdbsdk32.dll
2013-08-11 13:48 . 2013-07-14 15:41 106648 ----a-w- c:\windows\system32\drivers\GRD.sys
2013-08-11 13:15 . 2013-07-14 15:30 65912 ----a-w- c:\windows\system32\drivers\gdwfpcd64.sys
2013-08-11 12:44 . 2013-08-11 12:44 849992 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2013-08-11 12:44 . 2013-08-11 12:44 73800 ----a-w- c:\windows\system32\RtNicProp64.dll
2013-08-11 12:44 . 2012-05-23 10:03 108104 ----a-w- c:\windows\system32\RTNUninst64.dll
2013-08-11 12:43 . 2013-08-11 12:43 916016 ----a-w- c:\windows\system32\SFSS_APO.dll
2013-08-11 12:43 . 2013-08-11 12:43 858032 ----a-w- c:\windows\system32\tossaeapo64.dll
2013-08-11 12:43 . 2013-08-11 12:43 836544 ----a-w- c:\windows\system32\tadefxapo264.dll
2013-08-11 12:43 . 2013-08-11 12:43 834328 ----a-w- c:\windows\system32\slcnt64.dll
2013-08-11 12:43 . 2013-08-11 12:43 81248 ----a-w- c:\windows\system32\SFCOM64.dll
2013-08-11 12:43 . 2013-08-11 12:43 78688 ----a-w- c:\windows\system32\SFAPO64.dll
2013-08-11 12:43 . 2013-08-11 12:43 748376 ----a-w- c:\windows\system32\RTKSMSettingsIPC.dll
2013-08-11 12:43 . 2013-08-11 12:43 65944 ----a-w- c:\windows\system32\tepeqapo64.dll
2013-08-11 12:43 . 2013-08-11 12:43 635160 ----a-w- c:\windows\system32\sltech64.dll
2013-08-11 12:43 . 2013-08-11 12:43 569256 ----a-w- c:\windows\system32\tosasfapo64.dll
2013-08-11 12:43 . 2013-08-11 12:43 528152 ----a-w- c:\windows\system32\sl3apo64.dll
2013-08-11 12:43 . 2013-08-11 12:43 4819224 ----a-w- c:\windows\system32\RTKSMlfx.dll
2013-08-11 12:43 . 2013-08-11 12:43 3693640 ----a-w- c:\windows\system32\RtkAPO64.dll
2013-08-11 12:43 . 2013-08-11 12:43 3425608 ----a-w- c:\windows\system32\drivers\RTKVHD64.sys
2013-08-11 12:43 . 2013-08-11 12:43 331880 ----a-w- c:\windows\system32\RtlCPAPI64.dll
2013-08-11 12:43 . 2013-08-11 12:43 2794056 ----a-w- c:\windows\system32\RtPgEx64.dll
2013-08-11 12:43 . 2013-08-11 12:43 221024 ----a-w- c:\windows\system32\SFNHK64.dll
2013-08-11 12:43 . 2013-08-11 12:43 215320 ----a-w- c:\windows\system32\slprp64.dll
2013-08-11 12:43 . 2013-08-11 12:43 2103040 ----a-w- c:\windows\system32\WavesGUILib64.dll
2013-08-11 12:43 . 2013-08-11 12:43 1662024 ----a-w- c:\windows\system32\RTSnMg64.cpl
2013-08-11 12:43 . 2013-08-11 12:43 14952 ----a-w- c:\windows\system32\RtkCoLDR64.dll
2013-08-11 12:43 . 2013-08-11 12:43 148912 ----a-w- c:\windows\system32\toseaeapo64.dll
2013-08-11 12:43 . 2013-08-11 12:43 1003592 ----a-w- c:\windows\system32\RtkApi64.dll
2013-08-11 12:43 . 2013-08-11 12:43 920320 ----a-w- c:\windows\system32\MaxxAudioAPOShell64.dll
2013-08-11 12:43 . 2013-08-11 12:43 9123608 ----a-w- c:\windows\system32\MaxxAudioVnA64.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseNormal]
@="{C5994560-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994560-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseModified]
@="{C5994561-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994561-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseConflict]
@="{C5994562-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994562-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseLocked]
@="{C5994563-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994563-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseReadOnly]
@="{C5994564-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994564-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseDeleted]
@="{C5994565-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994565-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseAdded]
@="{C5994566-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994566-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\8TortoiseIgnored]
@="{C5994567-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994567-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\9TortoiseUnversioned]
@="{C5994568-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994568-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 64792 ----a-w- c:\program files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2013-07-01 802136]
"GoogleChromeAutoLaunch_4281F3CB61F060AA6452A3FA375A5C27"="c:\users\Pekarik\AppData\Local\Google\Chrome\Application\chrome.exe" [2013-07-25 846288]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-08-01 3673696]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Turbo Key"="c:\program files (x86)\ASUS\Turbo Key\TurboKey.exe" [2009-11-24 1874432]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2013-06-28 2255184]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2013-08-15 766208]
"avast"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2013-08-06 4858968]
"amd_dc_opt"="c:\program files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2006-11-17 77824]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-09-29 347192]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2012-02-15 17146504]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2009-9-20 270336]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk /r \??\F:\0autocheck autochk *
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"NBKeyScan"="c:\program files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
"HP Software Update"=c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
R0 amdkmafd;AMD Audio Bus Lower Filter;c:\windows\system32\DRIVERS\amdkmafd.sys;c:\windows\SYSNATIVE\DRIVERS\amdkmafd.sys [x]
R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys;c:\windows\SYSNATIVE\Drivers\sptd.sys [x]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys;c:\windows\SYSNATIVE\DRIVERS\klim6.sys [x]
R1 kltdi;kltdi;c:\windows\system32\DRIVERS\kltdi.sys;c:\windows\SYSNATIVE\DRIVERS\kltdi.sys [x]
R1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys;c:\windows\SYSNATIVE\DRIVERS\kneps.sys [x]
R2 AODDriver4.01;AODDriver4.01;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
R2 AODDriver4.2.0;AODDriver4.2.0;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 androidusb;ADB Interface Driver;c:\windows\system32\Drivers\fxxandroidusb.sys;c:\windows\SYSNATIVE\Drivers\fxxandroidusb.sys [x]
R3 DrvAgent64;DrvAgent64;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS [x]
R3 EagleX64;EagleX64; [x]
R3 FairplayKD;FairplayKD; [x]
R3 GDPkIcpt;GDPkIcpt;c:\windows\system32\drivers\PktIcpt.sys;c:\windows\SYSNATIVE\drivers\PktIcpt.sys [x]
R3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;c:\windows\system32\DRIVERS\MijXfilt.sys;c:\windows\SYSNATIVE\DRIVERS\MijXfilt.sys [x]
R3 MSICDSetup;MSICDSetup;d:\cdriver64.sys;d:\CDriver64.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 PPJoyBus;Parallel Port Joystick Bus Enumerator;c:\windows\system32\DRIVERS\PPJoyBus64.sys;c:\windows\SYSNATIVE\DRIVERS\PPJoyBus64.sys [x]
R3 PPortJoystick;Parallel Port Joystick Device Driver;c:\windows\system32\DRIVERS\PPortJoy64.sys;c:\windows\SYSNATIVE\DRIVERS\PPortJoy64.sys [x]
R3 qcusbser;Qualcomm USB Device for Legacy Serial Communication;c:\windows\system32\DRIVERS\FXX\qcusbser.sys;c:\windows\SYSNATIVE\DRIVERS\FXX\qcusbser.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys;c:\windows\SYSNATIVE\DRIVERS\revoflt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [x]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [x]
R4 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
R4 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
R4 avast! Firewall;avast! Firewall;c:\program files\Alwil Software\Avast5\afwServ.exe;c:\program files\Alwil Software\Avast5\afwServ.exe [x]
R4 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [x]
R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R4 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [x]
R4 TunngleService;TunngleService;c:\program files (x86)\Tunngle\TnglCtrl.exe;c:\program files (x86)\Tunngle\TnglCtrl.exe [x]
S0 aswKbd;aswKbd; [x]
S0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\DRIVERS\aswNdis.sys;c:\windows\SYSNATIVE\DRIVERS\aswNdis.sys [x]
S0 aswNdis2;avast! Firewall Core Firewall Service;c:\windows\system32\drivers\aswNdis2.sys;c:\windows\SYSNATIVE\drivers\aswNdis2.sys [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S1 aswFW;avast! TDI Firewall driver; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 avfwot;avfwot;c:\windows\system32\DRIVERS\avfwot.sys;c:\windows\SYSNATIVE\DRIVERS\avfwot.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 HssDRV6;Hotspot Shield Routing Driver 6;c:\windows\system32\DRIVERS\hssdrv6.sys;c:\windows\SYSNATIVE\DRIVERS\hssdrv6.sys [x]
S2 AntiVirFirewallService;Avira FireWall;c:\program files (x86)\Avira\AntiVir Desktop\avfwsvc.exe;c:\program files (x86)\Avira\AntiVir Desktop\avfwsvc.exe [x]
S2 AntiVirMailService;Avira Mail Protection;c:\program files (x86)\Avira\AntiVir Desktop\avmailc.exe;c:\program files (x86)\Avira\AntiVir Desktop\avmailc.exe [x]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 AntiVirWebService;Avira Web Protection;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [x]
S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 hshld;Hotspot Shield Service;c:\program files (x86)\Hotspot Shield\bin\cmw_srv.exe;c:\program files (x86)\Hotspot Shield\bin\cmw_srv.exe [x]
S2 HssWd;Hotspot Shield Monitoring Service;c:\program files (x86)\Hotspot Shield\bin\hsswd.exe;c:\program files (x86)\Hotspot Shield\bin\hsswd.exe [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 avfwim;AvFw Packet Filter Miniport;c:\windows\system32\DRIVERS\avfwim.sys;c:\windows\SYSNATIVE\DRIVERS\avfwim.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 ScreamBAudioSvc;ScreamBee Audio;c:\windows\system32\drivers\ScreamingBAudio64.sys;c:\windows\SYSNATIVE\drivers\ScreamingBAudio64.sys [x]
S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys;c:\windows\SYSNATIVE\DRIVERS\tap0901t.sys [x]
S3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-08-06 06:15 133840 ----a-w- c:\program files\Alwil Software\Avast5\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseNormal]
@="{C5994560-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994560-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseModified]
@="{C5994561-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994561-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseConflict]
@="{C5994562-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994562-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseLocked]
@="{C5994563-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994563-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseReadOnly]
@="{C5994564-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994564-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseDeleted]
@="{C5994565-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994565-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseAdded]
@="{C5994566-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994566-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\8TortoiseIgnored]
@="{C5994567-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994567-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\9TortoiseUnversioned]
@="{C5994568-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994568-53D9-4125-87C9-F193FC689CB2}]
2011-06-13 08:20 75544 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-08-11 13538376]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SYSTEM32\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
LSP: c:\program files (x86)\Avira\AntiVir Desktop\avsda.dll
FF - ProfilePath - c:\users\Pekarik\AppData\Roaming\Mozilla\Firefox\Profiles\2p36ltir.default\
FF - prefs.js: browser.search.selectedEngine -
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=198484&p=
FF - ExtSQL: 2013-08-01 19:20; ascsurfingprotection@iobit.com; c:\users\Pekarik\AppData\Roaming\Mozilla\Firefox\Profiles\2p36ltir.default\extensions\ascsurfingprotection@iobit.com
FF - ExtSQL: !HIDDEN! 2012-08-30 18:10; smartwebprinting@hp.com; c:\program files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
.
- - - - ORPHANS REMOVED - - - -
.
BHO-{F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
AddRemove-AGrcon v1.0 - c:\program files (x86)\AGrcon\Uninstal.exe
AddRemove-Any Video Converter Professional_is1 - c:\program files (x86)\AnvSoft\Any Video Converter Professional\unins000.exe
AddRemove-ARO 2013_is1 - c:\program files (x86)\ARO 2013\unins000.exe
AddRemove-Battlelog Web Plugins - c:\program files (x86)\Battlelog Web Plugins\uninstall.exe
AddRemove-Call of Duty Black Ops II_is1 - c:\program files (x86)\Activision\Call of Duty Black Ops II\unins000.exe
AddRemove-dBpoweramp Music Converter - c:\windows\system32\SpoonUninstall.exe
AddRemove-ESN Sonar-0.70.4 - c:\program files (x86)\Battlelog Web Plugins\Sonar\esnsonar_uninstall.exe
AddRemove-Free Easy Burner_is1 - c:\program files (x86)\Free Easy Burner\unins000.exe
AddRemove-PCSleek Free Error Cleaner_is1 - c:\program files (x86)\PCSleek\Free Error Cleaner\unins000.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc_moh.exe
AddRemove-QVJNQTM=_is1 - f:\hry\ARMA 3\unins000.exe
AddRemove-R2FtZURldlR5Y29vbnYxMzI=_is1 - f:\program files (x86)\Game Dev Tycoon v1.3.2\unins000.exe
AddRemove-{C2872E18-8799-44A3-B6BD-AC535F1982A6}_is1 - f:\program files (x86)\Total War Rome II CZ\unins000.exe
AddRemove-{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1 - c:\program files (x86)\BRS\unins000.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{64A3D41B-61A5-4834-9A42-FDE1C37D0009}]
@Denied: (Full) (Everyone)
@=""
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-09-30 16:09:30
ComboFix-quarantined-files.txt 2013-09-30 14:09
.
Pre-Run: 134 445 056 000 bytes free
Post-Run: 134 261 137 408 bytes free
.
- - End Of File - - 68BF1EA16E235E1411FD686FBC4BE7F3
A36C5E4F47E84449FF07ED3517B43A31
-
Rudy
- Site Admin
- Příspěvky: 119411
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Hacker alebo virus alebo niečo iné ? Prosím o pomoc .
V PC jsou 2 antiviry (Avast, Avira). Jeden z nich odinstalujte, aby nedocházelo k sw kolizím. Jinak je log OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Hacker alebo virus alebo niečo iné ? Prosím o pomoc .
Avast mi nejde odinštalovať lebo nieje ani v CCleaner a ani v Revo uninstaller. A keď ho dam vymazať tak mi napíše že na to nemám oprávnenie 
-
Rudy
- Site Admin
- Příspěvky: 119411
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Hacker alebo virus alebo niečo iné ? Prosím o pomoc .
Zkuste to pomocí odinstalační utility: http://www.avast.com/cs-cz/uninstall-utility . Lepší je ji použít v nouz. režimu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Hacker alebo virus alebo niečo iné ? Prosím o pomoc .
Tak diky to pomohlo . Kebyže mi zas niekto zmeni heslo na origin alebo Steam tak napíšem znovu Ale už asi nenapíšem lebo další tyžden chcem preinštalovať windows ...A v čom vlastne bola ta chyba že dajaky zmrd vedel komplet všetko čo pišem ?
Ale už asi nenapíšem lebo další tyžden chcem preinštalovať windows ...A v čom vlastne bola ta chyba že dajaky zmrd vedel komplet všetko čo pišem ?-
Rudy
- Site Admin
- Příspěvky: 119411
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Hacker alebo virus alebo niečo iné ? Prosím o pomoc .
V PC jsem nalezl jen běžné Ad-Wary a zbytečnosti, které podle mne nejsou příčinou vámi popisovaného jevu. Jelikož se v hrách nevyznám (nejsem pařan), neví co/kdo vám mohl změnit heslo na Origin. Musíte se zeptat nekoho, kdo principiálně ví, jak tyto softy fungují. Za sebe mohu říci, že nyní je váš PC po virové stránce čistý.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Hacker alebo virus alebo niečo iné ? Prosím o pomoc .
No ide o to že on akokeby vedel všetky moje údaje , či od Gmailu alebo od Seznamu . Na origine som mal 4 kontrolne otázky ktoré by len tak niekto nevedel . Jedna z toho bolo meno mojej korytnačky ktoré som jej vymyslel len tak a nevie ho nikto na svete tak ho uhádnuť nemohol , jedite by mu nieako prišlo to čo píšem do toho alebo niečo také .
-
Rudy
- Site Admin
- Příspěvky: 119411
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Hacker alebo virus alebo niečo iné ? Prosím o pomoc .
Já vám mohu ručit pouze za to, že žádný virus, ani soubor, kterým by se vám mohl někdo dostat do PC, nemáte. Co se děle, mezi hráči her, nebo co umožňují hrací softy, opravdu nevím.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Hacker alebo virus alebo niečo iné ? Prosím o pomoc .
Takže , odkedy mam Aviru tak mi niekedy píše : "Lokálne pripojenie je ICMP Flooded" alebo niečo také Skúšal som google ale tam mi našlo že je to nieaký útok Tak chcel by som presnejšie vedieť čo to znamená a či je to zle .
Skúšal som google ale tam mi našlo že je to nieaký útok Tak chcel by som presnejšie vedieť čo to znamená a či je to zle .
Přispějete na provoz fóra?