Kontrola logu (notebook)

Zpráva

Gabo · #1 Příspěvek od **Gabo** » 23 pro 2013 18:47

Zdravim, poprosim o kontrolu logu a prajem prijemne sviatky

Logfile of random's system information tool 1.09 (written by random/random)
Run by Maja at 2013-12-23 18:46:47
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 345 GB (75%) free of 462 GB
Total RAM: 3999 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:47:20, on 23/12/2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
C:\Users\Maja\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Chiavetta Internet Olicard 145\ModemListener.exe
c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\Opera\Opera.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files\trend micro\Maja.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://it.msn.com/?pc=UP97&ocid=UP97DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O1 - Hosts: ÿþ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Guida per l'accesso a Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: OfferBox - {FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} - C:\Program Files (x86)\OfferBox\OfferBoxBHO.dll
O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [ModemListener] C:\Program Files (x86)\Chiavetta Internet Olicard 145\ModemListener.exe start
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [Magic Desktop for HP notification] "C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Maja\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIZIO DI RETE')
O4 - Startup: Dropbox.lnk = Maja\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Invia immagine alla periferica &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Invia pagina alla periferica &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Invia a Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Invia a periferica &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} - http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Servizio Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: DeviceManager - Unknown owner - C:\Program Files (x86)\Common Files\DeviceHelper\DeviceManager.exe
O23 - Service: DeviceVM Meta Data Export Service (DvmMDES) - DeviceVM, Inc. - C:\SPLASH.SYS\config\DVMExportService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Servizio iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14126 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\DeviceHelper\DeviceManager.exe" -start
"C:\SPLASH.SYS\config\DVMExportService.exe"
"C:\Windows\System32\igfxtray.exe"
C:\Windows\SysWOW64\svchost.exe -k netsvcs
"C:\Windows\System32\hkcmd.exe"
C:\Windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe"
"C:\Program Files\Apoint2K\Apoint.exe"
"C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" /background
"C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe"
"C:\Program Files\Java\jre6\bin\jusched.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2652
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\System32\alg.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Apoint2K\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"Apntex.exe"
\??\C:\Windows\system32\conhost.exe "-1407182054-8748421852032758081029266816-11786936091340370395202666773-414665195
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
taskeng.exe {009A37DA-E0CB-4C23-9F97-3B60FCB6B826}
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe" /Start
"C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe"
"C:\Users\Maja\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Chiavetta Internet Olicard 145\ModemListener.exe" start
"c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
taskeng.exe {BD5AC9FD-6A60-4FB1-842E-FB2FDF3CA4CD}
"C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe"
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Opera\Opera.exe" "http://www.avast.com/it-it/lp-fr-promo? ... .html_main"
"C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Internet Explorer\IELowutil.exe" -embedding
C:\Windows\system32\AUDIODG.EXE 0x528
C:\Windows\system32\msiexec.exe /V
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Maja\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1189767888-2067836427-3946388464-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1189767888-2067836427-3946388464-1000UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-22 1372864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2013-07-10 205472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-22 1372864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-10-09 6270336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2013-07-10 877784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2013-07-10 2328264]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-12-09 43520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-09-22 191792]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2012-10-25 329712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-12-22 1138536]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Guida per l'accesso a Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-11-10 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09 4502400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2013-07-10 704728]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2012-10-25 59376]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}]
OfferBox - C:\Program Files (x86)\OfferBox\OfferBoxBHO.dll [2010-11-22 135000]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-22 1372864]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-22 1372864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-12-22 1138536]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2009-09-19 165912]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2009-09-19 387608]
"Persistence"=C:\Windows\system32\igfxpers.exe [2009-09-19 365592]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-11-14 16405608]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2009-09-23 323584]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2009-10-20 347648]
"SmartMenu"=C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [2009-08-25 610872]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-12-09 171520]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2000-01-01 1128448]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"Google Update"=C:\Users\Maja\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-30 136176]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-10-21 20549280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPADVISOR]
C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"QlbCtrl.exe"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2009-08-20 322104]
"WirelessAssistant"=C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-09-01 499768]
"ModemListener"=C:\Program Files (x86)\Chiavetta Internet Olicard 145\ModemListener.exe [2010-04-27 98304]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2000-01-01 284440]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-09-17 254896]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]
"Magic Desktop for HP notification"=C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe [2013-12-11 1243656]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-12-22 3764024]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-11-02 152392]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Users\Maja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Maja\AppData\Roaming\Dropbox\bin\Dropbox.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-09-03 259584]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableLockWorkstation"=0
"DisableChangePassword"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"HideFastUserSwitching"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-12-23 18:44:01 ----D---- C:\Program Files\iPod
2013-12-23 18:43:59 ----D---- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-12-23 18:43:59 ----D---- C:\Program Files\iTunes
2013-12-23 18:43:59 ----D---- C:\Program Files (x86)\iTunes
2013-12-23 18:40:45 ----D---- C:\Program Files\Bonjour
2013-12-23 18:40:45 ----D---- C:\Program Files (x86)\Bonjour
2013-12-23 18:39:23 ----SHD---- C:\Config.Msi
2013-12-22 23:36:38 ----A---- C:\Windows\system32\FNTCACHE.DAT
2013-12-22 21:00:32 ----D---- C:\SUPERDelete
2013-12-22 20:53:53 ----D---- C:\Users\Maja\AppData\Roaming\AVAST Software
2013-12-22 20:50:32 ----A---- C:\Windows\system32\drivers\aswstm.sys
2013-12-18 22:01:04 ----A---- C:\Windows\system32\IEUDINIT.EXE
2013-12-18 17:30:03 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-12-18 17:30:03 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\url.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-12-18 17:29:54 ----A---- C:\Windows\system32\elshyph.dll
2013-12-18 17:29:53 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-12-18 17:29:53 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\wininet.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\wextract.exe
2013-12-18 17:29:53 ----A---- C:\Windows\system32\webcheck.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\vbscript.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\urlmon.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\url.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-12-18 17:29:53 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-18 17:29:53 ----A---- C:\Windows\system32\pngfilt.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\occache.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\msrating.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\msls31.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\mshtmler.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\mshtmled.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\MshtmlDac.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\mshtml.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\mshta.exe
2013-12-18 17:29:53 ----A---- C:\Windows\system32\msfeedssync.exe
2013-12-18 17:29:53 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\msfeeds.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\licmgr10.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\jsproxy.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\jsIntl.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\jscript9diag.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\jscript9.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\jscript.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\inseng.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\imgutil.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\iexpress.exe
2013-12-18 17:29:53 ----A---- C:\Windows\system32\ieUnatt.exe
2013-12-18 17:29:53 ----A---- C:\Windows\system32\ieui.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\iesysprep.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\iesetup.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\iertutil.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\iernonce.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\iepeers.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\ieframe.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\ieetwproxystub.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\ieetwcollector.exe
2013-12-18 17:29:53 ----A---- C:\Windows\system32\iedkcs32.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\ieapfltr.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\ieapfltr.dat
2013-12-18 17:29:53 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\ie4uinit.exe
2013-12-18 17:29:53 ----A---- C:\Windows\system32\icardie.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\dxtrans.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\dxtmsft.dll
2013-12-18 16:19:29 ----A---- C:\Windows\system32\wmploc.DLL
2013-12-18 16:19:28 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2013-12-18 16:19:27 ----A---- C:\Windows\SYSWOW64\wmp.dll
2013-12-18 16:19:23 ----A---- C:\Windows\system32\wmp.dll
2013-12-11 16:56:10 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-12-11 16:56:10 ----A---- C:\Windows\system32\WMPhoto.dll
2013-12-11 16:56:09 ----A---- C:\Windows\system32\win32k.sys
2013-12-11 16:56:08 ----A---- C:\Windows\system32\msieftp.dll
2013-12-11 16:56:07 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2013-12-11 16:56:07 ----A---- C:\Windows\system32\imagehlp.dll
2013-12-11 16:56:06 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2013-12-11 16:56:03 ----A---- C:\Windows\SYSWOW64\tzres.dll
2013-12-11 16:56:03 ----A---- C:\Windows\system32\tzres.dll
2013-12-11 16:55:55 ----A---- C:\Windows\system32\drivers\portcls.sys
2013-12-11 16:55:55 ----A---- C:\Windows\system32\drivers\drmk.sys
2013-12-11 16:55:53 ----A---- C:\Windows\SYSWOW64\wscript.exe
2013-12-11 16:55:53 ----A---- C:\Windows\system32\wscript.exe
2013-12-11 16:55:53 ----A---- C:\Windows\system32\scrrun.dll
2013-12-11 16:55:53 ----A---- C:\Windows\system32\cscript.exe
2013-12-11 16:55:52 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2013-12-11 16:55:52 ----A---- C:\Windows\SYSWOW64\cscript.exe
2013-12-11 16:41:10 ----D---- C:\ProgramData\Easybits Magic Desktop for HP

======List of files/folders modified in the last 1 month======

2013-12-23 18:46:56 ----D---- C:\Windows\Temp
2013-12-23 18:46:54 ----D---- C:\Program Files\trend micro
2013-12-23 18:45:40 ----SHD---- C:\Windows\Installer
2013-12-23 18:45:07 ----D---- C:\Windows\SysWOW64
2013-12-23 18:45:07 ----D---- C:\Windows\System32
2013-12-23 18:44:14 ----SHD---- C:\System Volume Information
2013-12-23 18:44:01 ----RD---- C:\Program Files
2013-12-23 18:43:59 ----HD---- C:\ProgramData
2013-12-23 18:43:59 ----D---- C:\Program Files (x86)
2013-12-23 18:42:49 ----D---- C:\Windows\system32\config
2013-12-23 18:40:33 ----D---- C:\Windows\system32\catroot
2013-12-23 18:40:32 ----D---- C:\Windows\system32\DriverStore
2013-12-23 18:40:32 ----D---- C:\Windows\inf
2013-12-23 18:32:17 ----D---- C:\Windows
2013-12-23 18:31:55 ----D---- C:\Windows\Logs
2013-12-23 18:29:23 ----D---- C:\Windows\system32\drivers
2013-12-23 18:29:15 ----D---- C:\Users\Maja\AppData\Roaming\Skype
2013-12-23 18:28:32 ----D---- C:\Users\Maja\AppData\Roaming\Dropbox
2013-12-23 18:28:17 ----A---- C:\ProgramData\HPWALog.txt
2013-12-22 23:40:00 ----D---- C:\Windows\tracing
2013-12-22 23:36:08 ----D---- C:\Windows\system32\LogFiles
2013-12-22 21:46:10 ----D---- C:\Windows\Prefetch
2013-12-22 20:50:39 ----D---- C:\Windows\system32\Tasks
2013-12-22 20:50:31 ----D---- C:\Windows\winsxs
2013-12-22 20:50:25 ----A---- C:\Windows\system32\aswBoot.exe
2013-12-22 20:47:54 ----D---- C:\Program Files\Defraggler
2013-12-22 20:42:42 ----D---- C:\ProgramData\AVAST Software
2013-12-22 20:37:49 ----D---- C:\Program Files\SUPERAntiSpyware
2013-12-22 20:34:44 ----D---- C:\Windows\Panther
2013-12-22 20:34:44 ----D---- C:\Windows\debug
2013-12-22 20:32:21 ----D---- C:\Program Files\CCleaner
2013-12-19 16:42:23 ----D---- C:\Program Files (x86)\Internet Explorer
2013-12-19 16:42:22 ----D---- C:\Program Files\Internet Explorer
2013-12-19 16:42:21 ----D---- C:\Windows\SYSWOW64\migration
2013-12-19 16:42:21 ----D---- C:\Windows\SYSWOW64\it-IT
2013-12-19 16:42:21 ----D---- C:\Windows\SYSWOW64\en-US
2013-12-19 16:42:19 ----D---- C:\Windows\PolicyDefinitions
2013-12-19 16:42:18 ----D---- C:\Windows\system32\migration
2013-12-19 16:42:18 ----D---- C:\Windows\system32\it-IT
2013-12-19 16:42:18 ----D---- C:\Windows\system32\en-US
2013-12-18 17:34:10 ----D---- C:\Windows\system32\catroot2
2013-12-18 17:24:48 ----D---- C:\Windows\system32\MRT
2013-12-18 17:24:41 ----A---- C:\Windows\system32\MRT.exe
2013-12-18 16:28:32 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-12-18 16:20:41 ----D---- C:\Program Files\Windows Media Player
2013-12-18 16:20:41 ----D---- C:\Program Files (x86)\Windows Media Player
2013-12-11 17:54:15 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2013-12-22 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2013-12-22 207904]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 30008]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2000-01-01 558360]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2013-05-09 22600]
R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2013-12-22 92544]
R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2013-12-22 1034464]
R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2013-12-22 422216]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-12-19 64288]
R1 DVMIO;DVMIO; \??\C:\SPLASH.SYS\config\dvmio.sys [2009-09-27 21624]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-12-22 78648]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 43320]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2009-05-25 243760]
R3 aswStm;aswStm; \??\C:\Windows\system32\drivers\aswStm.sys [2013-12-23 79672]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2012-06-20 3678720]
R3 BthEnum;Driver blocco richieste Bluetooth; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Dispositivo Bluetooth (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Driver USB radio Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btwaudio;Periferica audio Bluetooth; C:\Windows\system32\drivers\btwaudio.sys [2009-09-17 98344]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-09-17 132648]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 35104]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-09-17 21160]
R3 DCamUSBNovatek;USB2.0 UVC Camera; C:\Windows\System32\Drivers\nvtcam.sys [2010-09-07 2755072]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2009-04-29 18432]
R3 RFCOMM;Dispositivo Bluetooth (RFCOMM protocollo TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10309; C:\Windows\system32\DRIVERS\stwrt64.sys [2000-01-01 528384]
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2009-09-29 40448]
S3 BTHPORT;Driver della porta Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys []
S3 hwusbfake;Huawei DataCard USB Fake; C:\Windows\system32\DRIVERS\ewusbfake.sys []
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-09-03 7369728]
S3 jrdusbser;Mobile Connector Device for Legacy Serial Communication; C:\Windows\system32\DRIVERS\jrdusbser.sys [2010-04-07 119680]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2009-10-31 84584]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RimUsb;Smartphone BlackBerry; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [2007-05-14 27520]
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-10-24 291328]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [2012-10-03 13920]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-09-28 53760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S3 ZTEusbmdm6k;ZTE Proprietary USB Driver; C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2012-10-01 140672]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2000-01-01 89600]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-12-22 50344]
R2 Bonjour Service; Servizio Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-09-04 873248]
R2 DeviceManager;DeviceManager; C:\Program Files (x86)\Common Files\DeviceHelper\DeviceManager.exe [2009-11-17 40960]
R2 DvmMDES;DeviceVM Meta Data Export Service; C:\SPLASH.SYS\config\DVMExportService.exe [2009-07-08 323584]
R2 ezSharedSvc;Easybits Shared Services for Windows; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2009-10-15 120832]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 30520]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2000-01-01 13592]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-11-14 392296]
R2 OfficeSvc;Service Microsoft Office; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-06-09 1900728]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-09-22 249136]
R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-09 3275136]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2000-01-01 301568]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-05-05 228408]
R3 hpqwmiex;hpqwmiex; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2009-04-30 229944]
R3 iPod Service;Servizio iPod; C:\Program Files\iPod\bin\iPodService.exe [2013-11-02 641352]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe [2009-06-06 250616]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-12-18 111616]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-06-01 150600]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2013-05-31 5132888]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-06-24 1255736]
S4 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2009-07-06 247152]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]

-----------------EOF-----------------

Gabo · #2 Příspěvek od **Gabo** » 23 pro 2013 21:10

Urobil som kompletny test MBAM a naslo 37 infikovanych suborov... Tu je zoznam. Mam ich vsetky vymazat?

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.12.23.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16428
Maja :: MAJA-PC [administrátor]

23/12/2013 18:56:51
MBAM-log-2013-12-23 (21-09-38).txt

Typ: Kompletní kontrola (C:\|D:\|E:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 466781
Uplynulý čas: 1 hodin, 51 minut, 2 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 7
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{463B0ED4-8AFA-404B-90E7-4063A0708050} (PUP.LyricsAd) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3} (PUP.Optional.Delta.A) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87} (PUP.Optional.Delta.A) -> Nebyla provedena žádná instrukce.
HKCU\Software\DataMngr (PUP.Optional.DataMngr.A) -> Nebyla provedena žádná instrukce.
HKCU\Software\BabSolution\Updater (PUP.Optional.Babylon.A) -> Nebyla provedena žádná instrukce.
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings (PUP.Optional.BProtector.A) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Google\Chrome\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh (PUP.WebCake) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 8
C:\Users\Maja\AppData\Roaming\WebCake (PUP.WebCake) -> Nebyla provedena žádná instrukce.
C:\Users\Maja\AppData\Roaming\WebCake\dat (PUP.WebCake) -> Nebyla provedena žádná instrukce.
C:\Users\Maja\AppData\Roaming\WebCake\dat\update (PUP.WebCake) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\WebCake (PUP.WebCake) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38} (PUP.WebCake) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}\Cache (PUP.WebCake) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\CoolLyrics (PUP.Optional.CoolLyrics.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\LyricsContainer (PUP.Optional.LyricsContainer.A) -> Nebyla provedena žádná instrukce.

Nalezené soubory: 22
C:\Program Files (x86)\LyricsContainer\trzBA2A.tmp (PUP.LyricsAd) -> Nebyla provedena žádná instrukce.
C:\Users\Maja\AppData\Roaming\WebCake\dat\Desktop.OS.dll (Adware.WebCake) -> Nebyla provedena žádná instrukce.
C:\Users\Maja\AppData\Roaming\WebCake\PlugIns.cache (PUP.WebCake) -> Nebyla provedena žádná instrukce.
C:\Users\Maja\AppData\Roaming\WebCake\dat\Desktop.OS.dll (PUP.WebCake) -> Nebyla provedena žádná instrukce.
C:\Users\Maja\AppData\Roaming\WebCake\dat\Paladin.dat (PUP.WebCake) -> Nebyla provedena žádná instrukce.
C:\Users\Maja\AppData\Roaming\WebCake\dat\Phoenix.dat (PUP.WebCake) -> Nebyla provedena žádná instrukce.
C:\Users\Maja\AppData\Roaming\WebCake\dat\update\Desktop.OS.dll (PUP.WebCake) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\WebCake\WebCakeLayers.crx (PUP.WebCake) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\WebCake\sqlite3.exe (PUP.WebCake) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}\Setup.ico (PUP.WebCake) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}\Setup.dat (PUP.WebCake) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}\Setup.exe (PUP.WebCake) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}\_Setup.dll (PUP.WebCake) -> Nebyla provedena žádná instrukce.
C:\ProgramData\Tarma Installer\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}\_Setupx.dll (PUP.WebCake) -> Nebyla provedena žádná instrukce.
C:\Users\Maja\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data (PUP.Optional.BProtector.A) -> Nebyla provedena žádná instrukce.
C:\Users\Maja\AppData\Local\Google\Chrome\User Data\Default\bProtectorPreferences (PUP.Optional.BProtector.A) -> Nebyla provedena žádná instrukce.
C:\Users\Maja\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage (PUP.Optional.BrowserDefender.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\LyricsContainer\116.crx (PUP.Optional.LyricsContainer.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\LyricsContainer\116.dat (PUP.Optional.LyricsContainer.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\LyricsContainer\116.xpi (PUP.Optional.LyricsContainer.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\LyricsContainer\chrome.manifest (PUP.Optional.LyricsContainer.A) -> Nebyla provedena žádná instrukce.
C:\Program Files (x86)\LyricsContainer\sqlite3.dll (PUP.Optional.LyricsContainer.A) -> Nebyla provedena žádná instrukce.

(konec)

#3 Příspěvek od **Márty84** » 23 pro 2013 22:30

Zdravim

Vsechny nalezy nechte odstranit. Po odstraneni a restartu pc test zopakujte. Dejte vedet, zda neco nasel a podle toho zvolim dalsi postup.

Gabo · #4 Příspěvek od **Gabo** » 24 pro 2013 21:12

Nenasiel uz nic:

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.12.24.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16428
Maja :: MAJA-PC [administrátor]

24/12/2013 15:45:43
mbam-log-2013-12-24 (15-45-43).txt

Typ: Kompletní kontrola (C:\|D:\|E:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 467324
Uplynulý čas: 1 hodin, 52 minut, 15 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

#5 Příspěvek od **Márty84** » 25 pro 2013 00:17

MBAM odinstalujte.

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a program zacne pracovat.
Az skonci, vyplivne na vas log (pokud ne, najdete ho zde C:\AdwCleaner\AdwCleaner[R?].txt ), ten mi sem zkopirujte.

Gabo · #6 Příspěvek od **Gabo** » 25 pro 2013 23:13

# AdwCleaner v3.016 - Report created 25/12/2013 at 22:01:54
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Maja - MAJA-PC
# Running from : C:\Users\Maja\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

File Found : C:\Windows\System32\Tasks\BitGuard
Folder Found : C:\Users\Maja\AppData\Local\Google\Chrome\User Data\Default\Extensions\abfmigjiaapipflmopkaaooigcjjdojh
Folder Found C:\Program Files (x86)\Conduit
Folder Found C:\Program Files (x86)\ConduitEngine
Folder Found C:\Program Files (x86)\DVDVideoSoftTB
Folder Found C:\Program Files (x86)\DVDVideoSoftTB
Folder Found C:\Program Files (x86)\OfferBox
Folder Found C:\Program Files (x86)\Softonic-IT
Folder Found C:\ProgramData\Tarma Installer
Folder Found C:\Users\Maja\AppData\Local\PackageAware
Folder Found C:\Users\Maja\AppData\LocalLow\AVG Security Toolbar
Folder Found C:\Users\Maja\AppData\LocalLow\Conduit
Folder Found C:\Users\Maja\AppData\LocalLow\ConduitEngine
Folder Found C:\Users\Maja\AppData\LocalLow\DVDVideoSoftTB
Folder Found C:\Users\Maja\AppData\LocalLow\DVDVideoSoftTB
Folder Found C:\Users\Maja\AppData\LocalLow\facemoods.com
Folder Found C:\Users\Maja\AppData\LocalLow\PriceGong
Folder Found C:\Users\Maja\AppData\LocalLow\Softonic-IT
Folder Found C:\Users\Maja\AppData\Roaming\dvdvideosoftiehelpers
Folder Found C:\Users\Maja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Folder Found C:\Users\Maja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserDefender
Folder Found C:\Users\Maja\AppData\Roaming\OfferBox
Folder Found C:\Users\Maja\AppData\Roaming\registry mechanic

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\58558d88bc68bd
Key Found : HKCU\Software\58558d88bc68bd43
Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AppDataLow\Software\conduitEngine
Key Found : HKCU\Software\AppDataLow\Software\conduitEngine
Key Found : HKCU\Software\AppDataLow\Software\DVDVideoSoftTB
Key Found : HKCU\Software\AppDataLow\Software\DVDVideoSoftTB
Key Found : HKCU\Software\AppDataLow\Software\LyricsContainer
Key Found : HKCU\Software\AppDataLow\Software\PriceGong
Key Found : HKCU\Software\AppDataLow\Software\Softonic-IT
Key Found : HKCU\Software\AppDataLow\Toolbar
Key Found : HKCU\Software\BabSolution
Key Found : HKCU\Software\IGearSettings
Key Found : HKCU\Software\ilivid
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7C5D7930-FACC-4A25-AE26-51DDA83F3D75}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{942B72C5-8C2C-4C2A-8873-08AB38383C46}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}
Key Found : HKCU\Software\Offerbox
Key Found : HKCU\Software\Softonic
Key Found : HKCU\Software\YahooPartnerToolbar
Key Found : [x64] HKCU\Software\BabSolution
Key Found : [x64] HKCU\Software\IGearSettings
Key Found : [x64] HKCU\Software\ilivid
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : [x64] HKCU\Software\Offerbox
Key Found : [x64] HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\YahooPartnerToolbar
Key Found : HKLM\SOFTWARE\58558d88bc68bd43
Key Found : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F511AFDB-726E-4458-90E7-1ECB97406544}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\conduitEngine
Key Found : HKLM\Software\conduitEngine
Key Found : HKLM\Software\DataMngr
Key Found : HKLM\Software\DeviceVM
Key Found : HKLM\Software\DVDVideoSoftTB
Key Found : HKLM\Software\DVDVideoSoftTB
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\abfmigjiaapipflmopkaaooigcjjdojh
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\bjeikeheijdjdfjbmknpefojickbkmom
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{40539061-2BB4-46AE-A30E-8CBEE30D8742}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6E6FD3AA-4BB9-401B-A964-E3B2FA51028D}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A62CD423-063A-4A15-9D43-DDFA3537C51E}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\DVDVideoSoftTBToolbarHelper_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\DVDVideoSoftTBToolbarHelper_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\facemoodssrv_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\facemoodssrv_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\offerbox_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\offerbox_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_jlcs-internet-tv (1)_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_jlcs-internet-tv (1)_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_jlcs-internet-tv (2)_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_jlcs-internet-tv (2)_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_jlcs-internet-tv_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_jlcs-internet-tv_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_spybot-search-destroy_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_spybot-search-destroy_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_openoffice-org_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_openoffice-org_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader64308_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader64308_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0A87DD95-4C3B-4524-9EA1-99B6C99C8C6B}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{942B72C5-8C2C-4C2A-8873-08AB38383C46}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DVDVideoSoftTB Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Softonic-IT Toolbar
Key Found : HKLM\Software\Offerbox
Key Found : HKLM\Software\Softonic-IT
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : [x64] HKLM\SOFTWARE\DeviceVM
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}
Key Found : [x64] HKLM\SOFTWARE\Tarma Installer
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{CCC7A320-B3CA-4199-B1A6-9F516DD69829}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Found : HKCU\Software\Mozilla\Firefox\Extensions [Lyrics@LyricsContainer.co]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [offerboxffx@offerbox.com]

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428

-\\ Google Chrome v

[ File : C:\Users\Maja\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Found : homepage
Found : icon_url
Found : search_url
Found : keyword
Found : urls_to_restore_on_startup
Found : urls_to_restore_on_startup
Found : homepage
Found : search_url
Found : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [10264 octets] - [25/12/2013 22:01:54]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [10325 octets] ##########

#7 Příspěvek od **Márty84** » 26 pro 2013 09:21

Znovu ukoncete vsechny programy a spustte AdwCleaner jako spravce.
Tentokrat kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne dalsi log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zase zkopirujte.

Gabo · #8 Příspěvek od **Gabo** » 26 pro 2013 10:30

# AdwCleaner v3.016 - Report created 26/12/2013 at 10:27:46
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Maja - MAJA-PC
# Running from : C:\Users\Maja\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\ConduitEngine
Folder Deleted : C:\Program Files (x86)\DVDVideoSoftTB
Folder Deleted : C:\Program Files (x86)\OfferBox
Folder Deleted : C:\Program Files (x86)\Softonic-IT
Folder Deleted : C:\Users\Maja\AppData\Local\PackageAware
Folder Deleted : C:\Users\Maja\AppData\LocalLow\AVG Security Toolbar
Folder Deleted : C:\Users\Maja\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Maja\AppData\LocalLow\ConduitEngine
Folder Deleted : C:\Users\Maja\AppData\LocalLow\DVDVideoSoftTB
Folder Deleted : C:\Users\Maja\AppData\LocalLow\facemoods.com
Folder Deleted : C:\Users\Maja\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Maja\AppData\LocalLow\Softonic-IT
Folder Deleted : C:\Users\Maja\AppData\Roaming\dvdvideosoftiehelpers
Folder Deleted : C:\Users\Maja\AppData\Roaming\OfferBox
Folder Deleted : C:\Users\Maja\AppData\Roaming\registry mechanic
Folder Deleted : C:\Users\Maja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard
Folder Deleted : C:\Users\Maja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserDefender
Folder Deleted : C:\Users\Maja\AppData\Local\Google\Chrome\User Data\Default\Extensions\abfmigjiaapipflmopkaaooigcjjdojh
File Deleted : C:\Windows\System32\Tasks\BitGuard

***** [ Shortcuts ] *****

***** [ Registry ] *****

Value Deleted : HKCU\Software\Mozilla\Firefox\Extensions [Lyrics@LyricsContainer.co]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [offerboxffx@offerbox.com]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\abfmigjiaapipflmopkaaooigcjjdojh
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bjeikeheijdjdfjbmknpefojickbkmom
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\DVDVideoSoftTBToolbarHelper_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\DVDVideoSoftTBToolbarHelper_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\facemoodssrv_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\facemoodssrv_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\offerbox_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\offerbox_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Key Deleted : HKCU\Software\58558d88bc68bd
Key Deleted : HKCU\Software\58558d88bc68bd43
Key Deleted : HKLM\SOFTWARE\58558d88bc68bd43
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader64308_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader64308_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_jlcs-internet-tv (1)_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_jlcs-internet-tv (1)_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_jlcs-internet-tv (2)_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_jlcs-internet-tv (2)_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_jlcs-internet-tv_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_jlcs-internet-tv_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_spybot-search-destroy_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_spybot-search-destroy_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_openoffice-org_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_per_openoffice-org_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F511AFDB-726E-4458-90E7-1ECB97406544}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{942B72C5-8C2C-4C2A-8873-08AB38383C46}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7C5D7930-FACC-4A25-AE26-51DDA83F3D75}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{0A87DD95-4C3B-4524-9EA1-99B6C99C8C6B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{942B72C5-8C2C-4C2A-8873-08AB38383C46}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A62CD423-063A-4A15-9D43-DDFA3537C51E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6E6FD3AA-4BB9-401B-A964-E3B2FA51028D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{40539061-2BB4-46AE-A30E-8CBEE30D8742}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{CCC7A320-B3CA-4199-B1A6-9F516DD69829}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\BabSolution
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\Offerbox
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\conduitEngine
Key Deleted : HKCU\Software\AppDataLow\Software\DVDVideoSoftTB
Key Deleted : HKCU\Software\AppDataLow\Software\LyricsContainer
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\Softonic-IT
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\conduitEngine
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\DeviceVM
Key Deleted : HKLM\Software\DVDVideoSoftTB
Key Deleted : HKLM\Software\Offerbox
Key Deleted : HKLM\Software\Softonic-IT
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DVDVideoSoftTB Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Softonic-IT Toolbar
Key Deleted : [x64] HKLM\SOFTWARE\DeviceVM
Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428

-\\ Google Chrome v

[ File : C:\Users\Maja\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : homepage
Deleted : icon_url
Deleted : search_url
Deleted : keyword
Deleted : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [10470 octets] - [25/12/2013 22:01:54]
AdwCleaner[R1].txt - [10531 octets] - [26/12/2013 10:26:05]
AdwCleaner[S0].txt - [9659 octets] - [26/12/2013 10:27:46]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9719 octets] ##########

#9 Příspěvek od **Márty84** » 26 pro 2013 11:58

Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne

Stahnete RogueKiller http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe , ulozte ho na plochu, kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Zprava a objevi se log. Ten mi sem vlozte

Gabo · #10 Příspěvek od **Gabo** » 26 pro 2013 13:59

Nech sa paci:

RogueKiller V8.7.13 [Dec 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Maja [Práva správce]
Mód : Kontrola -- Datum : 12/26/2013 13:58:34
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 1 ¤¤¤
[SUSP PATH] mdhpSUN.exe -- C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe [7] -> Chiuso [TermProc]

¤¤¤ ¤¤¤ Záznamy Registrů: : 3 ¤¤¤
[RUN][SUSP PATH] HKLM\[...]\Wow6432Node\[...]\Run : Magic Desktop for HP notification ("C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe" [7]) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

ÿþ1

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9500420AS +++++
--- User ---
[MBR] 038207f732527edc6cbbc27920b2ece4
[BSP] 2eed5eb1b06ff2577666db9756e6513e : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 199 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 409600 | Size: 461973 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 946530304 | Size: 14663 Mo
3 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 976560128 | Size: 103 Mo
User = LL1 ... OK!
User != LL2 ... KO!
--- LL2 ---
[MBR] 291dbbba0778b17629d28fe94f545d35
[BSP] dfad361455aabd4d3610d92fe4d7c32f : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 409600 | Size: 69632 Mo
1 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 143015936 | Size: 400 Mo

Dokončeno : << RKreport[0]_S_12262013_135834.txt >>

#11 Příspěvek od **Márty84** » 26 pro 2013 14:21

Znovu spustte RogueKiller jako spravce (pokud jste ho jeste nezavrel/a, rovnou kliknete na napis Smazat)
Probehne kratoucky testik a pak se zpristupni vpravo nahore tlacitko Prohledat. Na to kliknete a probehne dalsi test.
Po dokonceni kliknete na napis Smazat.
Pak kliknete na napis Zprava a objevi se log. Ten mi sem vlozte.
Pak kliknete na napis Oprava Host a Zprava.
Objevi se dalsi log. I ten mi sem vlozte.

Gabo · #12 Příspěvek od **Gabo** » 26 pro 2013 14:56

RogueKiller V8.7.13 [Dec 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Maja [Práva správce]
Mód : Odebrat -- Datum : 12/26/2013 14:55:25
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 1 ¤¤¤
[SUSP PATH] mdhpSUN.exe -- C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe [7] -> Chiuso [TermProc]

¤¤¤ ¤¤¤ Záznamy Registrů: : 3 ¤¤¤
[RUN][SUSP PATH] HKLM\[...]\Wow6432Node\[...]\Run : Magic Desktop for HP notification ("C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe" [7]) -> VYMAZÁNO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

ÿþ1

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9500420AS +++++
--- User ---
[MBR] 038207f732527edc6cbbc27920b2ece4
[BSP] 2eed5eb1b06ff2577666db9756e6513e : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 199 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 409600 | Size: 461973 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 946530304 | Size: 14663 Mo
3 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 976560128 | Size: 103 Mo
User = LL1 ... OK!
User != LL2 ... KO!
--- LL2 ---
[MBR] 291dbbba0778b17629d28fe94f545d35
[BSP] dfad361455aabd4d3610d92fe4d7c32f : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 409600 | Size: 69632 Mo
1 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 143015936 | Size: 400 Mo

Dokončeno : << RKreport[0]_D_12262013_145525.txt >>
RKreport[0]_S_12262013_135834.txt

RogueKiller V8.7.13 [Dec 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : Maja [Práva správce]
Mód : Oprava HOSTS -- Datum : 12/26/2013 14:56:44
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 1 ¤¤¤
[SUSP PATH] mdhpSUN.exe -- C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe [7] -> Chiuso [TermProc]

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

ÿþ1

¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost

Dokončeno : << RKreport[0]_H_12262013_145644.txt >>
RKreport[0]_D_12262013_145525.txt;RKreport[0]_S_12262013_135834.txt

#13 Příspěvek od **Márty84** » 26 pro 2013 17:00

Dejte novy log z RSIT

Gabo · #14 Příspěvek od **Gabo** » 26 pro 2013 18:09

Logfile of random's system information tool 1.09 (written by random/random)
Run by Maja at 2013-12-26 18:08:30
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 344 GB (74%) free of 462 GB
Total RAM: 3999 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:08:55, on 26/12/2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\Users\Maja\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
C:\Program Files (x86)\Chiavetta Internet Olicard 145\ModemListener.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Opera\opera.exe
c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files\trend micro\Maja.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://it.msn.com/?pc=UP97&ocid=UP97DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Guida per l'accesso a Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [ModemListener] C:\Program Files (x86)\Chiavetta Internet Olicard 145\ModemListener.exe start
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Maja\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIZIO LOCALE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVIZIO DI RETE')
O4 - Startup: Dropbox.lnk = Maja\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Invia immagine alla periferica &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Invia pagina alla periferica &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Invia a Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Invia a periferica &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} - http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Servizio Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: DeviceManager - Unknown owner - C:\Program Files (x86)\Common Files\DeviceHelper\DeviceManager.exe
O23 - Service: DeviceVM Meta Data Export Service (DvmMDES) - DeviceVM, Inc. - C:\SPLASH.SYS\config\DVMExportService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Servizio iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13216 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files\IDT\WDM\AESTSr64.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"taskhost.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"C:\Program Files (x86)\Common Files\DeviceHelper\DeviceManager.exe" -start
"C:\SPLASH.SYS\config\DVMExportService.exe"
C:\Windows\SysWOW64\svchost.exe -k netsvcs
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe"
"C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe"
"C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2744
C:\Windows\System32\alg.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
"C:\Program Files\Apoint2K\Apoint.exe"
"C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" /background
"C:\Program Files\Java\jre6\bin\jusched.exe"
C:\Windows\system32\igfxsrvc.exe -Embedding
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Users\Maja\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files\Apoint2K\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"Apntex.exe"
\??\C:\Windows\system32\conhost.exe "367257719-1630633855573854651-1263503935203696204-20507033481833301017-1608632528
"C:\Windows\system32\NOTEPAD.EXE" C:\AdwCleaner\AdwCleaner[S0].txt
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe" /Start
"C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe"
"C:\Program Files (x86)\Chiavetta Internet Olicard 145\ModemListener.exe" start
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
taskeng.exe {33DC3F8C-39E5-4279-A241-10C6BD9E8FFF}
"C:\Program Files (x86)\Opera\opera.exe"
"c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe"
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\sppsvc.exe
taskeng.exe {4387FFB6-42C0-4350-BDC8-2524D95FD991}
C:\Windows\system32\AUDIODG.EXE 0x908
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe7_ Global\UsGthrCtrlFltPipeMssGthrPipe7 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540
"C:\Users\Maja\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1189767888-2067836427-3946388464-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1189767888-2067836427-3946388464-1000UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-22 1372864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2013-07-10 205472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-22 1372864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2013-07-10 877784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2013-07-10 2328264]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-12-09 43520]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-09-22 191792]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-12-22 1138536]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Guida per l'accesso a Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-11-10 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2013-07-10 704728]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2012-10-25 59376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-22 1372864]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-22 1372864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-12-22 1138536]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2009-09-19 165912]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2009-09-19 387608]
"Persistence"=C:\Windows\system32\igfxpers.exe [2009-09-19 365592]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-11-14 16405608]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2009-09-23 323584]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2009-10-20 347648]
"SmartMenu"=C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [2009-08-25 610872]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-12-09 171520]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2000-01-01 1128448]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"Google Update"=C:\Users\Maja\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-30 136176]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-10-21 20549280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPADVISOR]
C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"QlbCtrl.exe"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2009-08-20 322104]
"WirelessAssistant"=C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-09-01 499768]
"ModemListener"=C:\Program Files (x86)\Chiavetta Internet Olicard 145\ModemListener.exe [2010-04-27 98304]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2000-01-01 284440]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-12-22 3764024]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-11-02 152392]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Users\Maja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Maja\AppData\Roaming\Dropbox\bin\Dropbox.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-09-03 259584]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableLockWorkstation"=0
"DisableChangePassword"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"HideFastUserSwitching"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-12-26 13:58:27 ----A---- C:\Windows\system32\drivers\yk62x64.sys.bak
2013-12-26 13:58:26 ----A---- C:\Windows\system32\drivers\WUDFRd.sys.bak
2013-12-26 13:58:26 ----A---- C:\Windows\system32\drivers\WUDFPf.sys.bak
2013-12-26 13:58:26 ----A---- C:\Windows\system32\drivers\ws2ifsl.sys.bak
2013-12-26 13:58:25 ----A---- C:\Windows\system32\drivers\wmilib.sys.bak
2013-12-26 13:58:25 ----A---- C:\Windows\system32\drivers\wmiacpi.sys.bak
2013-12-26 13:58:24 ----A---- C:\Windows\system32\drivers\winusb.sys.bak
2013-12-26 13:58:24 ----A---- C:\Windows\system32\drivers\wimmount.sys.bak
2013-12-26 13:58:24 ----A---- C:\Windows\system32\drivers\wfplwf.sys.bak
2013-12-26 13:58:23 ----A---- C:\Windows\system32\drivers\WdfLdr.sys.bak
2013-12-26 13:58:23 ----A---- C:\Windows\system32\drivers\Wdf01000.sys.bak
2013-12-26 13:58:22 ----A---- C:\Windows\system32\drivers\wd.sys.bak
2013-12-26 13:58:22 ----A---- C:\Windows\system32\drivers\watchdog.sys.bak
2013-12-26 13:58:21 ----A---- C:\Windows\system32\drivers\wanarp.sys.bak
2013-12-26 13:58:21 ----A---- C:\Windows\system32\drivers\wacompen.sys.bak
2013-12-26 13:58:21 ----A---- C:\Windows\system32\drivers\vwifimp.sys.bak
2013-12-26 13:58:20 ----A---- C:\Windows\system32\drivers\vwififlt.sys.bak
2013-12-26 13:58:20 ----A---- C:\Windows\system32\drivers\vwifibus.sys.bak
2013-12-26 13:58:19 ----A---- C:\Windows\system32\drivers\VSTDPV6.SYS.bak
2013-12-26 13:58:18 ----A---- C:\Windows\system32\drivers\VSTCNXT6.SYS.bak
2013-12-26 13:58:18 ----A---- C:\Windows\system32\drivers\VSTAZL6.SYS.bak
2013-12-26 13:58:18 ----A---- C:\Windows\system32\drivers\vsmraid.sys.bak
2013-12-26 13:58:17 ----A---- C:\Windows\system32\drivers\volsnap.sys.bak
2013-12-26 13:58:17 ----A---- C:\Windows\system32\drivers\volmgrx.sys.bak
2013-12-26 13:58:16 ----A---- C:\Windows\system32\drivers\volmgr.sys.bak
2013-12-26 13:58:16 ----A---- C:\Windows\system32\drivers\videoprt.sys.bak
2013-12-26 13:58:15 ----A---- C:\Windows\system32\drivers\viaide.sys.bak
2013-12-26 13:58:15 ----A---- C:\Windows\system32\drivers\vhdmp.sys.bak
2013-12-26 13:58:15 ----A---- C:\Windows\system32\drivers\vgapnp.sys.bak
2013-12-26 13:58:14 ----A---- C:\Windows\system32\drivers\vga.sys.bak
2013-12-26 13:58:14 ----A---- C:\Windows\system32\drivers\vdrvroot.sys.bak
2013-12-26 13:58:13 ----A---- C:\Windows\system32\drivers\usbvideo.sys.bak
2013-12-26 13:58:13 ----A---- C:\Windows\system32\drivers\usbuhci.sys.bak
2013-12-26 13:58:13 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS.bak
2013-12-26 13:58:12 ----A---- C:\Windows\system32\drivers\usbrpm.sys.bak
2013-12-26 13:58:12 ----A---- C:\Windows\system32\drivers\usbprint.sys.bak
2013-12-26 13:58:11 ----A---- C:\Windows\system32\drivers\usbport.sys.bak
2013-12-26 13:58:11 ----A---- C:\Windows\system32\drivers\usbohci.sys.bak
2013-12-26 13:58:10 ----A---- C:\Windows\system32\drivers\usbhub.sys.bak
2013-12-26 13:58:10 ----A---- C:\Windows\system32\drivers\usbehci.sys.bak
2013-12-26 13:58:10 ----A---- C:\Windows\system32\drivers\usbd.sys.bak
2013-12-26 13:58:09 ----A---- C:\Windows\system32\drivers\usbcir.sys.bak
2013-12-26 13:58:09 ----A---- C:\Windows\system32\drivers\usbccgp.sys.bak
2013-12-26 13:58:08 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys.bak
2013-12-26 13:58:08 ----A---- C:\Windows\system32\drivers\usbaapl64.sys.bak
2013-12-26 13:58:07 ----A---- C:\Windows\system32\drivers\usb8023.sys.bak
2013-12-26 13:58:07 ----A---- C:\Windows\system32\drivers\umpass.sys.bak
2013-12-26 13:58:07 ----A---- C:\Windows\system32\drivers\umbus.sys.bak
2013-12-26 13:58:06 ----A---- C:\Windows\system32\drivers\ULIAGPKX.SYS.bak
2013-12-26 13:58:06 ----A---- C:\Windows\system32\drivers\udfs.sys.bak
2013-12-26 13:58:05 ----A---- C:\Windows\system32\drivers\UAGP35.SYS.bak
2013-12-26 13:58:05 ----A---- C:\Windows\system32\drivers\tunnel.sys.bak
2013-12-26 13:58:04 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys.bak
2013-12-26 13:58:04 ----A---- C:\Windows\system32\drivers\tssecsrv.sys.bak
2013-12-26 13:58:04 ----A---- C:\Windows\system32\drivers\termdd.sys.bak
2013-12-26 13:58:03 ----A---- C:\Windows\system32\drivers\tdx.sys.bak
2013-12-26 13:58:03 ----A---- C:\Windows\system32\drivers\tdtcp.sys.bak
2013-12-26 13:58:03 ----A---- C:\Windows\system32\drivers\tdpipe.sys.bak
2013-12-26 13:58:02 ----A---- C:\Windows\system32\drivers\tdi.sys.bak
2013-12-26 13:58:02 ----A---- C:\Windows\system32\drivers\tcpipreg.sys.bak
2013-12-26 13:58:01 ----A---- C:\Windows\system32\drivers\tcpip.sys.bak
2013-12-26 13:58:01 ----A---- C:\Windows\system32\drivers\tape.sys.bak
2013-12-26 13:58:00 ----A---- C:\Windows\system32\drivers\swenum.sys.bak
2013-12-26 13:58:00 ----A---- C:\Windows\system32\drivers\SWDUMon.sys.bak
2013-12-26 13:57:59 ----A---- C:\Windows\system32\drivers\stwrt64.sys.bak
2013-12-26 13:57:59 ----A---- C:\Windows\system32\drivers\stream.sys.bak
2013-12-26 13:57:58 ----A---- C:\Windows\system32\drivers\storport.sys.bak
2013-12-26 13:57:58 ----A---- C:\Windows\system32\drivers\stexstor.sys.bak
2013-12-26 13:57:57 ----A---- C:\Windows\system32\drivers\srvnet.sys.bak
2013-12-26 13:57:57 ----A---- C:\Windows\system32\drivers\srv2.sys.bak
2013-12-26 13:57:56 ----A---- C:\Windows\system32\drivers\srv.sys.bak
2013-12-26 13:57:56 ----A---- C:\Windows\system32\drivers\spsys.sys.bak
2013-12-26 13:57:56 ----A---- C:\Windows\system32\drivers\spldr.sys.bak
2013-12-26 13:57:55 ----A---- C:\Windows\system32\drivers\smclib.sys.bak
2013-12-26 13:57:55 ----A---- C:\Windows\system32\drivers\smb.sys.bak
2013-12-26 13:57:54 ----A---- C:\Windows\system32\drivers\sisraid4.sys.bak
2013-12-26 13:57:54 ----A---- C:\Windows\system32\drivers\sisraid2.sys.bak
2013-12-26 13:57:53 ----A---- C:\Windows\system32\drivers\sfloppy.sys.bak
2013-12-26 13:57:53 ----A---- C:\Windows\system32\drivers\sffp_sd.sys.bak
2013-12-26 13:57:53 ----A---- C:\Windows\system32\drivers\sffp_mmc.sys.bak
2013-12-26 13:57:52 ----A---- C:\Windows\system32\drivers\sffdisk.sys.bak
2013-12-26 13:57:52 ----A---- C:\Windows\system32\drivers\sermouse.sys.bak
2013-12-26 13:57:52 ----A---- C:\Windows\system32\drivers\serial.sys.bak
2013-12-26 13:57:51 ----A---- C:\Windows\system32\drivers\serenum.sys.bak
2013-12-26 13:57:51 ----A---- C:\Windows\system32\drivers\secdrv.sys.bak
2013-12-26 13:57:50 ----A---- C:\Windows\system32\drivers\sdbus.sys.bak
2013-12-26 13:57:50 ----A---- C:\Windows\system32\drivers\scsiport.sys.bak
2013-12-26 13:57:50 ----A---- C:\Windows\system32\drivers\scfilter.sys.bak
2013-12-26 13:57:49 ----A---- C:\Windows\system32\drivers\sbp2port.sys.bak
2013-12-26 13:57:49 ----A---- C:\Windows\system32\drivers\Rt64win7.sys.bak
2013-12-26 13:57:48 ----A---- C:\Windows\system32\drivers\rspndr.sys.bak
2013-12-26 13:57:48 ----A---- C:\Windows\system32\drivers\rootmdm.sys.bak
2013-12-26 13:57:48 ----A---- C:\Windows\system32\drivers\RNDISMP.sys.bak
2013-12-26 13:57:47 ----A---- C:\Windows\system32\drivers\rmcast.sys.bak
2013-12-26 13:57:47 ----A---- C:\Windows\system32\drivers\RimUsb_AMD64.sys.bak
2013-12-26 13:57:46 ----A---- C:\Windows\system32\drivers\rfcomm.sys.bak
2013-12-26 13:57:46 ----A---- C:\Windows\system32\drivers\rdyboost.sys.bak
2013-12-26 13:57:45 ----A---- C:\Windows\system32\drivers\rdpwd.sys.bak
2013-12-26 13:57:45 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys.bak
2013-12-26 13:57:45 ----A---- C:\Windows\system32\drivers\RDPREFMP.sys.bak
2013-12-26 13:57:44 ----A---- C:\Windows\system32\drivers\RDPENCDD.sys.bak
2013-12-26 13:57:44 ----A---- C:\Windows\system32\drivers\RDPCDD.sys.bak
2013-12-26 13:57:43 ----A---- C:\Windows\system32\drivers\rdpbus.sys.bak
2013-12-26 13:57:43 ----A---- C:\Windows\system32\drivers\rdbss.sys.bak
2013-12-26 13:57:43 ----A---- C:\Windows\system32\drivers\rassstp.sys.bak
2013-12-26 13:57:42 ----A---- C:\Windows\system32\drivers\raspptp.sys.bak
2013-12-26 13:57:42 ----A---- C:\Windows\system32\drivers\raspppoe.sys.bak
2013-12-26 13:57:41 ----A---- C:\Windows\system32\drivers\rasl2tp.sys.bak
2013-12-26 13:57:41 ----A---- C:\Windows\system32\drivers\rasacd.sys.bak
2013-12-26 13:57:40 ----A---- C:\Windows\system32\drivers\qwavedrv.sys.bak
2013-12-26 13:57:40 ----A---- C:\Windows\system32\drivers\ql40xx.sys.bak
2013-12-26 13:57:39 ----A---- C:\Windows\system32\drivers\ql2300.sys.bak
2013-12-26 13:57:39 ----A---- C:\Windows\system32\drivers\processr.sys.bak
2013-12-26 13:57:38 ----A---- C:\Windows\system32\drivers\portcls.sys.bak
2013-12-26 13:57:38 ----A---- C:\Windows\system32\drivers\PEAuth.sys.bak
2013-12-26 13:57:37 ----A---- C:\Windows\system32\drivers\pcw.sys.bak
2013-12-26 13:57:37 ----A---- C:\Windows\system32\drivers\pcmcia.sys.bak
2013-12-26 13:57:37 ----A---- C:\Windows\system32\drivers\pciidex.sys.bak
2013-12-26 13:57:36 ----A---- C:\Windows\system32\drivers\pciide.sys.bak
2013-12-26 13:57:36 ----A---- C:\Windows\system32\drivers\pci.sys.bak
2013-12-26 13:57:35 ----A---- C:\Windows\system32\drivers\partmgr.sys.bak
2013-12-26 13:57:35 ----A---- C:\Windows\system32\drivers\parport.sys.bak
2013-12-26 13:57:35 ----A---- C:\Windows\system32\drivers\pacer.sys.bak
2013-12-26 13:57:34 ----A---- C:\Windows\system32\drivers\ohci1394.sys.bak
2013-12-26 13:57:34 ----A---- C:\Windows\system32\drivers\nwifi.sys.bak
2013-12-26 13:57:33 ----A---- C:\Windows\system32\drivers\nvtcamd2.sys.bak
2013-12-26 13:57:33 ----A---- C:\Windows\system32\drivers\NV_AGP.SYS.bak
2013-12-26 13:57:32 ----A---- C:\Windows\system32\drivers\nvtcam.sys.bak
2013-12-26 13:57:31 ----A---- C:\Windows\system32\drivers\nvstor.sys.bak
2013-12-26 13:57:30 ----A---- C:\Windows\system32\drivers\nvraid.sys.bak
2013-12-26 13:57:28 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys.bak
2013-12-26 13:57:28 ----A---- C:\Windows\system32\drivers\nvhda64v.sys.bak
2013-12-26 13:57:27 ----A---- C:\Windows\system32\drivers\null.sys.bak
2013-12-26 13:57:26 ----A---- C:\Windows\system32\drivers\ntfs.sys.bak
2013-12-26 13:57:26 ----A---- C:\Windows\system32\drivers\nsiproxy.sys.bak
2013-12-26 13:57:26 ----A---- C:\Windows\system32\drivers\npfs.sys.bak
2013-12-26 13:57:25 ----A---- C:\Windows\system32\drivers\nfrd960.sys.bak
2013-12-26 13:57:24 ----A---- C:\Windows\system32\drivers\netw5v64.sys.bak
2013-12-26 13:57:23 ----A---- C:\Windows\system32\drivers\netio.sys.bak
2013-12-26 13:57:23 ----A---- C:\Windows\system32\drivers\netbt.sys.bak
2013-12-26 13:57:22 ----A---- C:\Windows\system32\drivers\netbios.sys.bak
2013-12-26 13:57:22 ----A---- C:\Windows\system32\drivers\ndproxy.sys.bak
2013-12-26 13:57:22 ----A---- C:\Windows\system32\drivers\ndiswan.sys.bak
2013-12-26 13:57:21 ----A---- C:\Windows\system32\drivers\ndisuio.sys.bak
2013-12-26 13:57:21 ----A---- C:\Windows\system32\drivers\ndistapi.sys.bak
2013-12-26 13:57:20 ----A---- C:\Windows\system32\drivers\ndiscap.sys.bak
2013-12-26 13:57:20 ----A---- C:\Windows\system32\drivers\ndis.sys.bak
2013-12-26 13:57:20 ----A---- C:\Windows\system32\drivers\mup.sys.bak
2013-12-26 13:57:19 ----A---- C:\Windows\system32\drivers\MTConfig.sys.bak
2013-12-26 13:57:19 ----A---- C:\Windows\system32\drivers\mstee.sys.bak
2013-12-26 13:57:18 ----A---- C:\Windows\system32\drivers\mssmbios.sys.bak
2013-12-26 13:57:18 ----A---- C:\Windows\system32\drivers\msrpc.sys.bak
2013-12-26 13:57:18 ----A---- C:\Windows\system32\drivers\mspqm.sys.bak
2013-12-26 13:57:17 ----A---- C:\Windows\system32\drivers\mspclock.sys.bak
2013-12-26 13:57:17 ----A---- C:\Windows\system32\drivers\mskssrv.sys.bak
2013-12-26 13:57:16 ----A---- C:\Windows\system32\drivers\msiscsi.sys.bak
2013-12-26 13:57:16 ----A---- C:\Windows\system32\drivers\msisadrv.sys.bak
2013-12-26 13:57:16 ----A---- C:\Windows\system32\drivers\mshidkmdf.sys.bak
2013-12-26 13:57:15 ----A---- C:\Windows\system32\drivers\msfs.sys.bak
2013-12-26 13:57:15 ----A---- C:\Windows\system32\drivers\msdsm.sys.bak
2013-12-26 13:57:15 ----A---- C:\Windows\system32\drivers\msahci.sys.bak
2013-12-26 13:57:14 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys.bak
2013-12-26 13:57:14 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys.bak
2013-12-26 13:57:13 ----A---- C:\Windows\system32\drivers\mrxsmb.sys.bak
2013-12-26 13:57:13 ----A---- C:\Windows\system32\drivers\mrxdav.sys.bak
2013-12-26 13:57:13 ----A---- C:\Windows\system32\drivers\mpsdrv.sys.bak
2013-12-26 13:57:12 ----A---- C:\Windows\system32\drivers\mpio.sys.bak
2013-12-26 13:57:12 ----A---- C:\Windows\system32\drivers\mountmgr.sys.bak
2013-12-26 13:57:11 ----A---- C:\Windows\system32\drivers\mouhid.sys.bak
2013-12-26 13:57:11 ----A---- C:\Windows\system32\drivers\mouclass.sys.bak
2013-12-26 13:57:11 ----A---- C:\Windows\system32\drivers\monitor.sys.bak
2013-12-26 13:57:10 ----A---- C:\Windows\system32\drivers\modem.sys.bak
2013-12-26 13:57:10 ----A---- C:\Windows\system32\drivers\MegaSR.sys.bak
2013-12-26 13:57:10 ----A---- C:\Windows\system32\drivers\megasas.sys.bak
2013-12-26 13:57:09 ----A---- C:\Windows\system32\drivers\mcd.sys.bak
2013-12-26 13:57:09 ----A---- C:\Windows\system32\drivers\luafv.sys.bak
2013-12-26 13:57:08 ----A---- C:\Windows\system32\drivers\lsi_scsi.sys.bak
2013-12-26 13:57:08 ----A---- C:\Windows\system32\drivers\lsi_sas2.sys.bak
2013-12-26 13:57:08 ----A---- C:\Windows\system32\drivers\lsi_sas.sys.bak
2013-12-26 13:57:07 ----A---- C:\Windows\system32\drivers\lsi_fc.sys.bak
2013-12-26 13:57:07 ----A---- C:\Windows\system32\drivers\lltdio.sys.bak
2013-12-26 13:57:06 ----A---- C:\Windows\system32\drivers\ksthunk.sys.bak
2013-12-26 13:57:06 ----A---- C:\Windows\system32\drivers\ksecpkg.sys.bak
2013-12-26 13:57:05 ----A---- C:\Windows\system32\drivers\ksecdd.sys.bak
2013-12-26 13:57:05 ----A---- C:\Windows\system32\drivers\ks.sys.bak
2013-12-26 13:57:05 ----A---- C:\Windows\system32\drivers\kbdhid.sys.bak
2013-12-26 13:57:04 ----A---- C:\Windows\system32\drivers\kbdclass.sys.bak
2013-12-26 13:57:04 ----A---- C:\Windows\system32\drivers\jrdusbser.sys.bak
2013-12-26 13:57:04 ----A---- C:\Windows\system32\drivers\isapnp.sys.bak
2013-12-26 13:57:03 ----A---- C:\Windows\system32\drivers\irenum.sys.bak
2013-12-26 13:57:03 ----A---- C:\Windows\system32\drivers\irda.sys.bak
2013-12-26 13:57:02 ----A---- C:\Windows\system32\drivers\ipnat.sys.bak
2013-12-26 13:57:02 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys.bak
2013-12-26 13:57:01 ----A---- C:\Windows\system32\drivers\ipfltdrv.sys.bak
2013-12-26 13:57:01 ----A---- C:\Windows\system32\drivers\intelppm.sys.bak
2013-12-26 13:57:01 ----A---- C:\Windows\system32\drivers\intelide.sys.bak
2013-12-26 13:56:59 ----A---- C:\Windows\system32\drivers\iirsp.sys.bak
2013-12-26 13:56:58 ----A---- C:\Windows\system32\drivers\igdkmd64.sys.bak
2013-12-26 13:56:58 ----A---- C:\Windows\system32\drivers\iaStorV.sys.bak
2013-12-26 13:56:57 ----A---- C:\Windows\system32\drivers\iaStor.sys.bak
2013-12-26 13:56:57 ----A---- C:\Windows\system32\drivers\i8042prt.sys.bak
2013-12-26 13:56:57 ----A---- C:\Windows\system32\drivers\hwpolicy.sys.bak
2013-12-26 13:56:56 ----A---- C:\Windows\system32\drivers\http.sys.bak
2013-12-26 13:56:56 ----A---- C:\Windows\system32\drivers\HpSAMD.sys.bak
2013-12-26 13:56:55 ----A---- C:\Windows\system32\drivers\HpqKbFiltr.sys.bak
2013-12-26 13:56:55 ----A---- C:\Windows\system32\drivers\hpdskflt.sys.bak
2013-12-26 13:56:55 ----A---- C:\Windows\system32\drivers\hidusb.sys.bak
2013-12-26 13:56:54 ----A---- C:\Windows\system32\drivers\hidparse.sys.bak
2013-12-26 13:56:54 ----A---- C:\Windows\system32\drivers\hidir.sys.bak
2013-12-26 13:56:53 ----A---- C:\Windows\system32\drivers\hidclass.sys.bak
2013-12-26 13:56:53 ----A---- C:\Windows\system32\drivers\hidbth.sys.bak
2013-12-26 13:56:53 ----A---- C:\Windows\system32\drivers\hidbatt.sys.bak
2013-12-26 13:56:52 ----A---- C:\Windows\system32\drivers\HdAudio.sys.bak
2013-12-26 13:56:52 ----A---- C:\Windows\system32\drivers\hdaudbus.sys.bak
2013-12-26 13:56:51 ----A---- C:\Windows\system32\drivers\hcw85cir.sys.bak
2013-12-26 13:56:51 ----A---- C:\Windows\system32\drivers\GEARAspiWDM.sys.bak
2013-12-26 13:56:50 ----A---- C:\Windows\system32\drivers\GAGP30KX.SYS.bak
2013-12-26 13:56:50 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS.bak
2013-12-26 13:56:50 ----A---- C:\Windows\system32\drivers\fvevol.sys.bak
2013-12-26 13:56:49 ----A---- C:\Windows\system32\drivers\fssfltr.sys.bak
2013-12-26 13:56:49 ----A---- C:\Windows\system32\drivers\fs_rec.sys.bak
2013-12-26 13:56:48 ----A---- C:\Windows\system32\drivers\fsdepends.sys.bak
2013-12-26 13:56:48 ----A---- C:\Windows\system32\drivers\fltMgr.sys.bak
2013-12-26 13:56:48 ----A---- C:\Windows\system32\drivers\flpydisk.sys.bak
2013-12-26 13:56:47 ----A---- C:\Windows\system32\drivers\filetrace.sys.bak
2013-12-26 13:56:47 ----A---- C:\Windows\system32\drivers\fileinfo.sys.bak
2013-12-26 13:56:46 ----A---- C:\Windows\system32\drivers\fdc.sys.bak
2013-12-26 13:56:46 ----A---- C:\Windows\system32\drivers\fastfat.sys.bak
2013-12-26 13:56:45 ----A---- C:\Windows\system32\drivers\exfat.sys.bak
2013-12-26 13:56:45 ----A---- C:\Windows\system32\drivers\evbda.sys.bak
2013-12-26 13:56:44 ----A---- C:\Windows\system32\drivers\errdev.sys.bak
2013-12-26 13:56:44 ----A---- C:\Windows\system32\drivers\elxstor.sys.bak
2013-12-26 13:56:43 ----A---- C:\Windows\system32\drivers\dxgmms1.sys.bak
2013-12-26 13:56:43 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys.bak
2013-12-26 13:56:42 ----A---- C:\Windows\system32\drivers\dxg.sys.bak
2013-12-26 13:56:42 ----A---- C:\Windows\system32\drivers\dxapi.sys.bak
2013-12-26 13:56:41 ----A---- C:\Windows\system32\drivers\dumpfve.sys.bak
2013-12-26 13:56:41 ----A---- C:\Windows\system32\drivers\Dumpata.sys.bak
2013-12-26 13:56:41 ----A---- C:\Windows\system32\drivers\drmkaud.sys.bak
2013-12-26 13:56:40 ----A---- C:\Windows\system32\drivers\drmk.sys.bak
2013-12-26 13:56:40 ----A---- C:\Windows\system32\drivers\Diskdump.sys.bak
2013-12-26 13:56:39 ----A---- C:\Windows\system32\drivers\disk.sys.bak
2013-12-26 13:56:39 ----A---- C:\Windows\system32\drivers\discache.sys.bak
2013-12-26 13:56:39 ----A---- C:\Windows\system32\drivers\dfsc.sys.bak
2013-12-26 13:56:38 ----A---- C:\Windows\system32\drivers\crcdisk.sys.bak
2013-12-26 13:56:38 ----A---- C:\Windows\system32\drivers\crashdmp.sys.bak
2013-12-26 13:56:38 ----A---- C:\Windows\system32\drivers\CompositeBus.sys.bak
2013-12-26 13:56:37 ----A---- C:\Windows\system32\drivers\compbatt.sys.bak
2013-12-26 13:56:37 ----A---- C:\Windows\system32\drivers\cng.sys.bak
2013-12-26 13:56:36 ----A---- C:\Windows\system32\drivers\cmdide.sys.bak
2013-12-26 13:56:36 ----A---- C:\Windows\system32\drivers\CmBatt.sys.bak
2013-12-26 13:56:36 ----A---- C:\Windows\system32\drivers\Classpnp.sys.bak
2013-12-26 13:56:35 ----A---- C:\Windows\system32\drivers\circlass.sys.bak
2013-12-26 13:56:35 ----A---- C:\Windows\system32\drivers\cdrom.sys.bak
2013-12-26 13:56:34 ----A---- C:\Windows\system32\drivers\cdfs.sys.bak
2013-12-26 13:56:34 ----A---- C:\Windows\system32\drivers\bxvbda.sys.bak
2013-12-26 13:56:33 ----A---- C:\Windows\system32\drivers\btwrchid.sys.bak
2013-12-26 13:56:33 ----A---- C:\Windows\system32\drivers\btwl2cap.sys.bak
2013-12-26 13:56:33 ----A---- C:\Windows\system32\drivers\btwavdt.sys.bak
2013-12-26 13:56:32 ----A---- C:\Windows\system32\drivers\btwaudio.sys.bak
2013-12-26 13:56:32 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS.bak
2013-12-26 13:56:31 ----A---- C:\Windows\system32\drivers\bthport.sys.bak
2013-12-26 13:56:31 ----A---- C:\Windows\system32\drivers\bthpan.sys.bak
2013-12-26 13:56:31 ----A---- C:\Windows\system32\drivers\bthmodem.sys.bak
2013-12-26 13:56:30 ----A---- C:\Windows\system32\drivers\bthenum.sys.bak
2013-12-26 13:56:30 ----A---- C:\Windows\system32\drivers\BrUsbSer.sys.bak
2013-12-26 13:56:29 ----A---- C:\Windows\system32\drivers\BrUsbMdm.sys.bak
2013-12-26 13:56:29 ----A---- C:\Windows\system32\drivers\BrSerWdm.sys.bak
2013-12-26 13:56:29 ----A---- C:\Windows\system32\drivers\BrSerId.sys.bak
2013-12-26 13:56:28 ----A---- C:\Windows\system32\drivers\bridge.sys.bak
2013-12-26 13:56:28 ----A---- C:\Windows\system32\drivers\BrFiltUp.sys.bak
2013-12-26 13:56:28 ----A---- C:\Windows\system32\drivers\BrFiltLo.sys.bak
2013-12-26 13:56:27 ----A---- C:\Windows\system32\drivers\bowser.sys.bak
2013-12-26 13:56:27 ----A---- C:\Windows\system32\drivers\blbdrive.sys.bak
2013-12-26 13:56:26 ----A---- C:\Windows\system32\drivers\beep.sys.bak
2013-12-26 13:56:26 ----A---- C:\Windows\system32\drivers\battc.sys.bak
2013-12-26 13:56:25 ----A---- C:\Windows\system32\drivers\b57nd60a.sys.bak
2013-12-26 13:56:25 ----A---- C:\Windows\system32\drivers\athrx.sys.bak
2013-12-26 13:56:24 ----A---- C:\Windows\system32\drivers\ataport.sys.bak
2013-12-26 13:56:24 ----A---- C:\Windows\system32\drivers\atapi.sys.bak
2013-12-26 13:56:23 ----A---- C:\Windows\system32\drivers\asyncmac.sys.bak
2013-12-26 13:56:23 ----A---- C:\Windows\system32\drivers\arcsas.sys.bak
2013-12-26 13:56:23 ----A---- C:\Windows\system32\drivers\arc.sys.bak
2013-12-26 13:56:22 ----A---- C:\Windows\system32\drivers\appid.sys.bak
2013-12-26 13:56:22 ----A---- C:\Windows\system32\drivers\Apfiltr.sys.bak
2013-12-26 13:56:21 ----A---- C:\Windows\system32\drivers\AmUStor.sys.bak
2013-12-26 13:56:21 ----A---- C:\Windows\system32\drivers\amdxata.sys.bak
2013-12-26 13:56:21 ----A---- C:\Windows\system32\drivers\amdsbs.sys.bak
2013-12-26 13:56:20 ----A---- C:\Windows\system32\drivers\amdsata.sys.bak
2013-12-26 13:56:20 ----A---- C:\Windows\system32\drivers\amdppm.sys.bak
2013-12-26 13:56:20 ----A---- C:\Windows\system32\drivers\amdk8.sys.bak
2013-12-26 13:56:20 ----A---- C:\Windows\system32\drivers\amdide.sys.bak
2013-12-26 13:56:19 ----A---- C:\Windows\system32\drivers\aliide.sys.bak
2013-12-26 13:56:19 ----A---- C:\Windows\system32\drivers\AGP440.sys.bak
2013-12-26 13:56:18 ----A---- C:\Windows\system32\drivers\agilevpn.sys.bak
2013-12-26 13:56:18 ----A---- C:\Windows\system32\drivers\afd.sys.bak
2013-12-26 13:56:17 ----A---- C:\Windows\system32\drivers\adpu320.sys.bak
2013-12-26 13:56:17 ----A---- C:\Windows\system32\drivers\adpahci.sys.bak
2013-12-26 13:56:16 ----A---- C:\Windows\system32\drivers\adp94xx.sys.bak
2013-12-26 13:56:16 ----A---- C:\Windows\system32\drivers\acpipmi.sys.bak
2013-12-26 13:56:16 ----A---- C:\Windows\system32\drivers\acpi.sys.bak
2013-12-26 13:56:15 ----A---- C:\Windows\system32\drivers\Accelerometer.sys.bak
2013-12-26 13:56:15 ----A---- C:\Windows\system32\drivers\1394ohci.sys.bak
2013-12-26 13:56:14 ----A---- C:\Windows\system32\drivers\1394bus.sys.bak
2013-12-25 22:01:50 ----D---- C:\AdwCleaner
2013-12-23 22:34:22 ----A---- C:\Windows\system32\FNTCACHE.DAT
2013-12-23 18:44:01 ----D---- C:\Program Files\iPod
2013-12-23 18:43:59 ----D---- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-12-23 18:43:59 ----D---- C:\Program Files\iTunes
2013-12-23 18:43:59 ----D---- C:\Program Files (x86)\iTunes
2013-12-23 18:40:45 ----D---- C:\Program Files\Bonjour
2013-12-23 18:40:45 ----D---- C:\Program Files (x86)\Bonjour
2013-12-22 21:00:32 ----D---- C:\SUPERDelete
2013-12-22 20:53:53 ----D---- C:\Users\Maja\AppData\Roaming\AVAST Software
2013-12-22 20:50:32 ----A---- C:\Windows\system32\drivers\aswstm.sys
2013-12-18 22:01:04 ----A---- C:\Windows\system32\IEUDINIT.EXE
2013-12-18 17:30:03 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-12-18 17:30:03 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\url.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-12-18 17:29:54 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-12-18 17:29:54 ----A---- C:\Windows\system32\elshyph.dll
2013-12-18 17:29:53 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-12-18 17:29:53 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\wininet.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\wextract.exe
2013-12-18 17:29:53 ----A---- C:\Windows\system32\webcheck.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\vbscript.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\urlmon.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\url.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-12-18 17:29:53 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-18 17:29:53 ----A---- C:\Windows\system32\pngfilt.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\occache.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\msrating.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\msls31.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\mshtmler.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\mshtmled.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\MshtmlDac.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\mshtml.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\mshta.exe
2013-12-18 17:29:53 ----A---- C:\Windows\system32\msfeedssync.exe
2013-12-18 17:29:53 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\msfeeds.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\licmgr10.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\jsproxy.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\jsIntl.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\jscript9diag.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\jscript9.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\jscript.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\inseng.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\imgutil.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\iexpress.exe
2013-12-18 17:29:53 ----A---- C:\Windows\system32\ieUnatt.exe
2013-12-18 17:29:53 ----A---- C:\Windows\system32\ieui.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\iesysprep.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\iesetup.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\iertutil.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\iernonce.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\iepeers.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\ieframe.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\ieetwproxystub.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\ieetwcollector.exe
2013-12-18 17:29:53 ----A---- C:\Windows\system32\iedkcs32.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\ieapfltr.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\ieapfltr.dat
2013-12-18 17:29:53 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\ie4uinit.exe
2013-12-18 17:29:53 ----A---- C:\Windows\system32\icardie.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\dxtrans.dll
2013-12-18 17:29:53 ----A---- C:\Windows\system32\dxtmsft.dll
2013-12-18 16:19:29 ----A---- C:\Windows\system32\wmploc.DLL
2013-12-18 16:19:28 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2013-12-18 16:19:27 ----A---- C:\Windows\SYSWOW64\wmp.dll
2013-12-18 16:19:23 ----A---- C:\Windows\system32\wmp.dll
2013-12-11 16:56:10 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-12-11 16:56:10 ----A---- C:\Windows\system32\WMPhoto.dll
2013-12-11 16:56:09 ----A---- C:\Windows\system32\win32k.sys
2013-12-11 16:56:08 ----A---- C:\Windows\system32\msieftp.dll
2013-12-11 16:56:07 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2013-12-11 16:56:07 ----A---- C:\Windows\system32\imagehlp.dll
2013-12-11 16:56:06 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2013-12-11 16:56:03 ----A---- C:\Windows\SYSWOW64\tzres.dll
2013-12-11 16:56:03 ----A---- C:\Windows\system32\tzres.dll
2013-12-11 16:55:55 ----A---- C:\Windows\system32\drivers\portcls.sys
2013-12-11 16:55:55 ----A---- C:\Windows\system32\drivers\drmk.sys
2013-12-11 16:55:53 ----A---- C:\Windows\SYSWOW64\wscript.exe
2013-12-11 16:55:53 ----A---- C:\Windows\system32\wscript.exe
2013-12-11 16:55:53 ----A---- C:\Windows\system32\scrrun.dll
2013-12-11 16:55:53 ----A---- C:\Windows\system32\cscript.exe
2013-12-11 16:55:52 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2013-12-11 16:55:52 ----A---- C:\Windows\SYSWOW64\cscript.exe
2013-12-11 16:41:10 ----D---- C:\ProgramData\Easybits Magic Desktop for HP

======List of files/folders modified in the last 1 month======

2013-12-26 18:08:35 ----D---- C:\Windows\Temp
2013-12-26 18:08:33 ----D---- C:\Program Files\trend micro
2013-12-26 17:15:18 ----D---- C:\Windows\tracing
2013-12-26 13:58:27 ----D---- C:\Windows\system32\drivers
2013-12-26 13:54:05 ----D---- C:\Windows\system32\LogFiles
2013-12-26 10:43:32 ----D---- C:\Windows\system32\config
2013-12-26 10:31:14 ----D---- C:\Users\Maja\AppData\Roaming\Skype
2013-12-26 10:30:46 ----A---- C:\ProgramData\HPWALog.txt
2013-12-26 10:30:35 ----HD---- C:\ProgramData
2013-12-26 10:30:13 ----D---- C:\Users\Maja\AppData\Roaming\Dropbox
2013-12-26 10:27:53 ----D---- C:\Windows\system32\Tasks
2013-12-26 10:27:47 ----D---- C:\Program Files (x86)
2013-12-26 10:26:41 ----SHD---- C:\System Volume Information
2013-12-25 22:00:20 ----SHD---- C:\Windows\Installer
2013-12-25 22:00:16 ----D---- C:\Program Files (x86)\Java
2013-12-25 21:59:44 ----D---- C:\Windows\SysWOW64
2013-12-24 21:22:05 ----D---- C:\Windows\System32
2013-12-24 21:22:05 ----D---- C:\Windows\inf
2013-12-24 21:22:05 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-12-23 23:36:09 ----D---- C:\Windows
2013-12-23 23:35:50 ----D---- C:\Windows\Logs
2013-12-23 18:54:30 ----D---- C:\Windows\SoftwareDistribution
2013-12-23 18:49:51 ----D---- C:\Windows\system32\catroot
2013-12-23 18:44:01 ----RD---- C:\Program Files
2013-12-23 18:40:32 ----D---- C:\Windows\system32\DriverStore
2013-12-22 21:46:10 ----D---- C:\Windows\Prefetch
2013-12-22 20:50:31 ----D---- C:\Windows\winsxs
2013-12-22 20:50:25 ----A---- C:\Windows\system32\aswBoot.exe
2013-12-22 20:47:54 ----D---- C:\Program Files\Defraggler
2013-12-22 20:42:42 ----D---- C:\ProgramData\AVAST Software
2013-12-22 20:37:49 ----D---- C:\Program Files\SUPERAntiSpyware
2013-12-22 20:34:44 ----D---- C:\Windows\Panther
2013-12-22 20:34:44 ----D---- C:\Windows\debug
2013-12-22 20:32:21 ----D---- C:\Program Files\CCleaner
2013-12-19 17:23:49 ----D---- C:\Windows\system32\MRT
2013-12-19 16:42:23 ----D---- C:\Program Files (x86)\Internet Explorer
2013-12-19 16:42:22 ----D---- C:\Program Files\Internet Explorer
2013-12-19 16:42:21 ----D---- C:\Windows\SYSWOW64\migration
2013-12-19 16:42:21 ----D---- C:\Windows\SYSWOW64\it-IT
2013-12-19 16:42:21 ----D---- C:\Windows\SYSWOW64\en-US
2013-12-19 16:42:19 ----D---- C:\Windows\PolicyDefinitions
2013-12-19 16:42:18 ----D---- C:\Windows\system32\migration
2013-12-19 16:42:18 ----D---- C:\Windows\system32\it-IT
2013-12-19 16:42:18 ----D---- C:\Windows\system32\en-US
2013-12-18 17:34:10 ----D---- C:\Windows\system32\catroot2
2013-12-18 17:24:41 ----A---- C:\Windows\system32\MRT.exe
2013-12-18 16:20:41 ----D---- C:\Program Files\Windows Media Player
2013-12-18 16:20:41 ----D---- C:\Program Files (x86)\Windows Media Player
2013-12-11 17:54:15 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2013-12-22 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2013-12-22 207904]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 30008]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2000-01-01 558360]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2013-05-09 22600]
R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2013-12-22 92544]
R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2013-12-22 1034464]
R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2013-12-22 422216]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-12-19 64288]
R1 DVMIO;DVMIO; \??\C:\SPLASH.SYS\config\dvmio.sys [2009-09-27 21624]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-12-22 78648]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 43320]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2009-05-25 243760]
R3 aswStm;aswStm; \??\C:\Windows\system32\drivers\aswStm.sys [2013-12-23 79672]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2012-06-20 3678720]
R3 BthEnum;Driver blocco richieste Bluetooth; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Dispositivo Bluetooth (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Driver USB radio Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btwaudio;Periferica audio Bluetooth; C:\Windows\system32\drivers\btwaudio.sys [2009-09-17 98344]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-09-17 132648]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-09-17 35104]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-09-17 21160]
R3 DCamUSBNovatek;USB2.0 UVC Camera; C:\Windows\System32\Drivers\nvtcam.sys [2010-09-07 2755072]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2009-04-29 18432]
R3 RFCOMM;Dispositivo Bluetooth (RFCOMM protocollo TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10309; C:\Windows\system32\DRIVERS\stwrt64.sys [2000-01-01 528384]
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2009-09-29 40448]
S3 BTHPORT;Driver della porta Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys []
S3 hwusbfake;Huawei DataCard USB Fake; C:\Windows\system32\DRIVERS\ewusbfake.sys []
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2009-09-03 7369728]
S3 jrdusbser;Mobile Connector Device for Legacy Serial Communication; C:\Windows\system32\DRIVERS\jrdusbser.sys [2010-04-07 119680]
S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit; C:\Windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2009-10-31 84584]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RimUsb;Smartphone BlackBerry; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [2007-05-14 27520]
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-10-24 291328]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
S3 SWDUMon;SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [2012-10-03 13920]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-09-28 53760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S3 ZTEusbmdm6k;ZTE Proprietary USB Driver; C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2012-10-01 140672]
R2 AESTFilters;Andrea ST Filters Service; C:\Program Files\IDT\WDM\AESTSr64.exe [2000-01-01 89600]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2013-09-07 55624]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-12-22 50344]
R2 Bonjour Service; Servizio Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-09-04 873248]
R2 DeviceManager;DeviceManager; C:\Program Files (x86)\Common Files\DeviceHelper\DeviceManager.exe [2009-11-17 40960]
R2 DvmMDES;DeviceVM Meta Data Export Service; C:\SPLASH.SYS\config\DVMExportService.exe [2009-07-08 323584]
R2 ezSharedSvc;Easybits Shared Services for Windows; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [2009-10-15 120832]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 30520]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2000-01-01 13592]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-11-14 392296]
R2 OfficeSvc;Service Microsoft Office; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-06-09 1900728]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-09-22 249136]
R2 Skype C2C Service;Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-09 3275136]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10101; C:\Program Files\IDT\WDM\STacSV64.exe [2000-01-01 301568]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-05-05 228408]
R3 hpqwmiex;hpqwmiex; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2009-04-30 229944]
R3 iPod Service;Servizio iPod; C:\Program Files\iPod\bin\iPodService.exe [2013-11-02 641352]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-09-05 171680]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe [2009-06-06 250616]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-12-18 111616]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2013-06-01 150600]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2013-05-31 5132888]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-06-24 1255736]
S4 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2009-07-06 247152]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]

-----------------EOF-----------------

#15 Příspěvek od **Márty84** » 26 pro 2013 18:59

Jeste jeden sken a budem mazat.

Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

VIRY.CZ

Kontrola logu (notebook)

Kontrola logu (notebook)

Re: Kontrola logu (notebook)

Re: Kontrola logu (notebook)

Re: Kontrola logu (notebook)

Re: Kontrola logu (notebook)

Re: Kontrola logu (notebook)

Re: Kontrola logu (notebook)

Re: Kontrola logu (notebook)

Re: Kontrola logu (notebook)

Re: Kontrola logu (notebook)

Re: Kontrola logu (notebook)

Re: Kontrola logu (notebook)

Re: Kontrola logu (notebook)

Re: Kontrola logu (notebook)

Re: Kontrola logu (notebook)