Zasekání prohlížečů

Zpráva

#16 Příspěvek od **Márty84** » 15 srp 2014 17:16

Dejte novy log z RSIT

RockyCZ · #17 Příspěvek od **RockyCZ** » 15 srp 2014 19:22

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jirka at 2014-08-15 20:21:10
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 299 GB (63%) free of 477 GB
Total RAM: 4077 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:21:13, on 15.8.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17239)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\AVG\AVG2014\avgui.exe
C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
C:\Program Files (x86)\Genius\Imperator Pro\IMProHid.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\Jirka.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [STCAgent] "C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe"
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [Imperator pro] "C:\Program Files (x86)\Genius\Imperator Pro\IMProhid.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [OscarEditor] "C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe" Minimum
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Fiddler - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files (x86)\Fiddler2\Fiddler.exe" (file missing)
O9 - Extra 'Tools' menuitem: Fiddler - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files (x86)\Fiddler2\Fiddler.exe" (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: Splashtop Connect Firefox Software Updater Service (WCUService_STC_FF) - Splashtop Inc. - C:\Program Files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe
O23 - Service: Splashtop Connect IE Software Updater Service (WCUService_STC_IE) - Splashtop Inc. - C:\Program Files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9321 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe" -service
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe"
"C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe"
"C:\Program Files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-8c04c0c3-f73e-4099-a5bc-f9b802123383 -SystemEventPortName:HostProcess-29e059f5-0f26-4a01-818f-c72e6dc415aa -IoCancelEventPortName:HostProcess-7a33e17a-09bc-4b9f-96e1-17be185abdb3 -NonStateChangingEventPortName:HostProcess-c8bcb029-ceeb-4e1a-b380-14dc2fd639ee -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:afa3d36a-1601-498d-b724-bc1f9e7622b2 -DeviceGroupId:WpdFsGroup
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe" Minimum
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
"C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
HydraDM64.exe -h:65866 "Maximalizovat na celou plochu" "Maximalizovat k rohům okna" "Obnovit pracovní plochu"
"C:\Program Files (x86)\Genius\Imperator Pro\IMProHid.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
ctfmon.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4628 CREDAT:267521 /prefetch:2
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4628 CREDAT:3020119 /prefetch:2
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-756797166-475508454-2510727665-100038_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-756797166-475508454-2510727665-100038 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"

"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\Jirka\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2009-08-06 132448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-08-09 12666984]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OscarEditor"=C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe [2012-08-17 3345408]
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2014-04-17 1967616]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"STCAgent"=C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe [2011-03-04 776064]
"AVG_UI"=C:\Program Files (x86)\AVG\AVG2014\avgui.exe [2014-08-11 5187088]
"EEventManager"=C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2010-08-30 979328]
"Imperator pro"=C:\Program Files (x86)\Genius\Imperator Pro\IMProhid.exe [2012-02-24 287232]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-04-17 767200]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"msacm.ac3filter"=ac3filter64.acm
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2014-08-15 12:33:37 ----D---- C:\Windows\temp
2014-08-15 12:33:36 ----A---- C:\ComboFix.txt
2014-08-15 12:29:07 ----D---- C:\$RECYCLE.BIN
2014-08-14 22:23:50 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2014-08-14 22:23:50 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2014-08-14 22:23:50 ----A---- C:\Windows\system32\infocardapi.dll
2014-08-14 22:23:50 ----A---- C:\Windows\system32\icardagt.exe
2014-08-14 22:23:49 ----A---- C:\Windows\SYSWOW64\icardres.dll
2014-08-14 22:23:49 ----A---- C:\Windows\system32\icardres.dll
2014-08-14 22:23:33 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2014-08-14 22:23:33 ----A---- C:\Windows\system32\TsWpfWrp.exe
2014-08-14 08:19:33 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2014-08-14 08:19:33 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2014-08-14 08:19:33 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2014-08-14 08:19:33 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2014-08-14 08:19:33 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2014-08-14 08:19:33 ----A---- C:\Windows\system32\KBDYAK.DLL
2014-08-14 08:19:33 ----A---- C:\Windows\system32\KBDTAT.DLL
2014-08-14 08:19:33 ----A---- C:\Windows\system32\KBDRU1.DLL
2014-08-14 08:19:33 ----A---- C:\Windows\system32\KBDRU.DLL
2014-08-14 08:19:33 ----A---- C:\Windows\system32\KBDBASH.DLL
2014-08-14 08:19:27 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-08-14 08:19:27 ----A---- C:\Windows\system32\tzres.dll
2014-08-14 08:19:23 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-08-14 08:19:23 ----A---- C:\Windows\system32\win32k.sys
2014-08-14 08:19:23 ----A---- C:\Windows\system32\gdi32.dll
2014-08-14 08:19:21 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-08-14 08:19:19 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-08-14 08:19:19 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-08-14 08:19:19 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-08-14 08:19:19 ----A---- C:\Windows\system32\msihnd.dll
2014-08-14 08:19:19 ----A---- C:\Windows\system32\msi.dll
2014-08-14 08:19:19 ----A---- C:\Windows\system32\consent.exe
2014-08-14 08:19:19 ----A---- C:\Windows\system32\authui.dll
2014-08-14 08:19:13 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-08-14 08:19:13 ----A---- C:\Windows\system32\shell32.dll
2014-08-14 08:19:09 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-08-14 08:19:09 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-08-14 08:19:09 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-08-14 08:19:09 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-08-14 08:19:09 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-08-14 08:19:09 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-08-14 08:19:09 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-14 08:19:09 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-08-14 08:19:08 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-08-14 08:19:08 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-08-14 08:19:08 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-08-14 08:19:06 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-08-14 08:19:06 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-08-14 08:19:06 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-08-14 08:19:06 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-08-14 08:19:06 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-08-14 08:19:06 ----A---- C:\Windows\system32\urlmon.dll
2014-08-14 08:19:06 ----A---- C:\Windows\system32\iernonce.dll
2014-08-14 08:19:06 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-08-14 08:19:06 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-08-14 08:19:06 ----A---- C:\Windows\system32\ie4uinit.exe
2014-08-14 08:19:06 ----A---- C:\Windows\system32\dxtmsft.dll
2014-08-14 08:19:05 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-08-14 08:19:05 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-08-14 08:19:05 ----A---- C:\Windows\system32\msfeeds.dll
2014-08-14 08:19:04 ----A---- C:\Windows\system32\iesetup.dll
2014-08-14 08:19:04 ----A---- C:\Windows\system32\iertutil.dll
2014-08-14 08:19:04 ----A---- C:\Windows\system32\iedkcs32.dll
2014-08-14 08:19:03 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-08-14 08:19:03 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-08-14 08:19:03 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-08-14 08:19:03 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-08-14 08:19:03 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-08-14 08:19:03 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-08-14 08:19:03 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-08-14 08:19:03 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-08-14 08:19:03 ----A---- C:\Windows\system32\jsproxy.dll
2014-08-14 08:19:03 ----A---- C:\Windows\system32\dxtrans.dll
2014-08-14 08:19:02 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-08-14 08:19:02 ----A---- C:\Windows\system32\mshtmled.dll
2014-08-14 08:19:02 ----A---- C:\Windows\system32\jscript9diag.dll
2014-08-14 08:19:02 ----A---- C:\Windows\system32\jscript9.dll
2014-08-14 08:19:02 ----A---- C:\Windows\system32\ieUnatt.exe
2014-08-14 08:19:02 ----A---- C:\Windows\system32\ieui.dll
2014-08-14 08:19:02 ----A---- C:\Windows\system32\ieframe.dll
2014-08-14 08:19:01 ----A---- C:\Windows\system32\wininet.dll
2014-08-14 08:19:01 ----A---- C:\Windows\system32\vbscript.dll
2014-08-14 08:19:01 ----A---- C:\Windows\system32\msrating.dll
2014-08-14 08:19:01 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-08-14 08:19:01 ----A---- C:\Windows\system32\ieapfltr.dll
2014-08-14 08:19:00 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-14 08:19:00 ----A---- C:\Windows\system32\mshtml.dll
2014-08-14 08:15:29 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-08-14 08:15:29 ----A---- C:\Windows\system32\rpcrt4.dll
2014-08-14 08:15:28 ----A---- C:\Windows\system32\aepdu.dll
2014-08-14 08:15:27 ----A---- C:\Windows\system32\aeinv.dll
2014-08-13 19:43:32 ----A---- C:\Windows\zip.exe
2014-08-13 19:43:32 ----A---- C:\Windows\SWSC.exe
2014-08-13 19:43:32 ----A---- C:\Windows\SWREG.exe
2014-08-13 19:43:32 ----A---- C:\Windows\sed.exe
2014-08-13 19:43:32 ----A---- C:\Windows\PEV.exe
2014-08-13 19:43:32 ----A---- C:\Windows\NIRCMD.exe
2014-08-13 19:43:32 ----A---- C:\Windows\MBR.exe
2014-08-13 19:43:32 ----A---- C:\Windows\grep.exe
2014-08-13 19:43:26 ----D---- C:\Qoobox
2014-08-13 19:43:14 ----D---- C:\Windows\erdnt
2014-08-13 16:00:46 ----D---- C:\rsit
2014-08-13 08:47:58 ----D---- C:\ProgramData\Malwarebytes
2014-08-12 16:43:39 ----D---- C:\AdwCleaner
2014-08-11 19:30:36 ----D---- C:\Program Files\trend micro
2014-08-09 17:40:15 ----A---- C:\Windows\eReg.dat
2014-08-09 11:56:37 ----D---- C:\Program Files (x86)\LG Electronics
2014-08-08 15:17:01 ----D---- C:\ProgramData\Origin
2014-08-04 18:24:07 ----D---- C:\ProgramData\GRETECH
2014-08-04 18:23:24 ----D---- C:\Users\Jirka\AppData\Roaming\GRETECH
2014-08-03 11:16:31 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-08-02 20:21:17 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-08-01 13:53:46 ----A---- C:\Windows\system32\wups2.dll
2014-08-01 13:53:46 ----A---- C:\Windows\system32\wucltux.dll
2014-08-01 13:53:46 ----A---- C:\Windows\system32\wuaueng.dll
2014-08-01 13:53:46 ----A---- C:\Windows\system32\wuauclt.exe
2014-08-01 13:53:34 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-08-01 13:53:34 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-08-01 13:53:34 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-08-01 13:53:34 ----A---- C:\Windows\system32\wups.dll
2014-08-01 13:53:34 ----A---- C:\Windows\system32\wudriver.dll
2014-08-01 13:53:34 ----A---- C:\Windows\system32\wuapi.dll
2014-08-01 13:53:13 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-08-01 13:53:13 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-08-01 13:53:13 ----A---- C:\Windows\system32\wuwebv.dll
2014-08-01 13:53:13 ----A---- C:\Windows\system32\wuapp.exe
2014-07-28 18:29:06 ----D---- C:\ProgramData\ATI
2014-07-28 18:23:21 ----D---- C:\Users\Jirka\AppData\Roaming\library_dir
2014-07-28 18:21:43 ----D---- C:\Program Files (x86)\AMD AVT
2014-07-28 18:17:09 ----D---- C:\Program Files\AMD
2014-07-28 18:14:23 ----D---- C:\ProgramData\Package Cache
2014-07-28 18:10:31 ----D---- C:\AMD
2014-07-23 20:31:17 ----A---- C:\protokol o instalaci cestiny do hry starcraft.txt
2014-07-23 20:19:04 ----A---- C:\Windows\scunin.dat
2014-07-23 20:19:02 ----A---- C:\Windows\ScUnin.pif
2014-07-23 20:19:02 ----A---- C:\Windows\ScUnin.exe
2014-07-21 20:12:40 ----A---- C:\Windows\d3dx.dat
2014-07-20 13:20:45 ----D---- C:\Users\Jirka\AppData\Roaming\GameRanger
2014-07-16 21:15:20 ----D---- C:\Program Files (x86)\Mozilla Firefox

======List of files/folders modified in the last 1 month======

2014-08-15 20:21:14 ----D---- C:\Windows\Prefetch
2014-08-15 20:20:57 ----D---- C:\Users\Jirka\AppData\Roaming\Skype
2014-08-15 20:20:28 ----D---- C:\Users\Jirka\AppData\Roaming\BitTorrent
2014-08-15 17:40:22 ----D---- C:\ProgramData\MFAData
2014-08-15 14:18:42 ----D---- C:\Users\Jirka\AppData\Roaming\vlc
2014-08-15 13:38:18 ----D---- C:\Windows\system32\config
2014-08-15 13:11:28 ----D---- C:\Windows\rescache
2014-08-15 12:37:27 ----SHD---- C:\Windows\Installer
2014-08-15 12:33:38 ----D---- C:\Windows\system32\drivers
2014-08-15 12:33:37 ----D---- C:\Windows
2014-08-15 12:29:09 ----A---- C:\Windows\system.ini
2014-08-15 12:29:02 ----D---- C:\Windows\system32\drivers\etc
2014-08-15 12:16:43 ----D---- C:\Windows\SYSWOW64\drivers
2014-08-15 12:16:43 ----D---- C:\Windows\SysWOW64
2014-08-15 12:16:43 ----D---- C:\Windows\AppPatch
2014-08-15 12:16:42 ----D---- C:\Program Files (x86)\Common Files
2014-08-15 09:33:16 ----D---- C:\Windows\Microsoft.NET
2014-08-15 09:32:15 ----RSD---- C:\Windows\assembly
2014-08-15 09:01:32 ----D---- C:\Windows\winsxs
2014-08-15 08:57:41 ----D---- C:\Windows\ehome
2014-08-15 08:57:40 ----RSD---- C:\Windows\Fonts
2014-08-15 08:57:40 ----D---- C:\Windows\System32
2014-08-15 08:57:25 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-08-15 08:57:25 ----D---- C:\Windows\system32\cs-CZ
2014-08-15 08:57:22 ----D---- C:\Program Files\Internet Explorer
2014-08-15 08:57:21 ----D---- C:\Windows\SYSWOW64\en-US
2014-08-15 08:57:20 ----D---- C:\Windows\PolicyDefinitions
2014-08-15 08:57:19 ----D---- C:\Windows\system32\en-US
2014-08-15 08:57:17 ----D---- C:\Program Files (x86)\Internet Explorer
2014-08-14 22:36:10 ----D---- C:\Windows\system32\catroot2
2014-08-14 22:36:10 ----D---- C:\Windows\system32\catroot
2014-08-14 22:30:05 ----D---- C:\Windows\system32\MRT
2014-08-14 22:30:05 ----D---- C:\Windows\debug
2014-08-14 22:30:04 ----A---- C:\Windows\system32\MRT.exe
2014-08-14 22:28:40 ----D---- C:\ProgramData\Microsoft Help
2014-08-14 22:23:00 ----SD---- C:\Windows\system32\CompatTel
2014-08-14 22:22:50 ----SHD---- C:\System Volume Information
2014-08-13 15:52:51 ----RD---- C:\Program Files (x86)
2014-08-13 15:41:30 ----D---- C:\Windows\cs-CZ
2014-08-13 08:47:58 ----D---- C:\ProgramData
2014-08-11 19:30:36 ----RD---- C:\Program Files
2014-08-11 16:18:55 ----D---- C:\Windows\system32\FxsTmp
2014-08-10 16:28:57 ----D---- C:\Windows\inf
2014-08-10 16:28:56 ----D---- C:\Windows\system32\DriverStore
2014-08-09 17:40:03 ----D---- C:\Hry
2014-08-09 17:38:36 ----D---- C:\Users\Jirka\AppData\Roaming\DAEMON Tools Lite
2014-08-09 10:52:46 ----D---- C:\ProgramData\WarThunder
2014-08-05 20:43:05 ----D---- C:\Program Files (x86)\Google
2014-08-05 20:41:29 ----D---- C:\Windows\Tasks
2014-08-05 20:41:29 ----D---- C:\Windows\system32\Tasks
2014-08-04 19:16:12 ----D---- C:\Windows\Logs
2014-08-04 18:23:18 ----D---- C:\Program Files (x86)\GRETECH
2014-08-04 10:17:52 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-08-01 14:33:48 ----SD---- C:\Users\Jirka\AppData\Roaming\Microsoft
2014-07-28 18:29:12 ----D---- C:\Users\Jirka\AppData\Roaming\RIFT
2014-07-28 18:21:44 ----D---- C:\ProgramData\AMD
2014-07-28 18:21:39 ----D---- C:\Program Files (x86)\ATI Technologies
2014-07-28 18:20:59 ----D---- C:\Program Files\ATI Technologies
2014-07-25 14:09:20 ----D---- C:\Program Files\Microsoft Silverlight
2014-07-25 14:09:19 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-07-21 20:08:34 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-07-19 22:42:54 ----D---- C:\ProgramData\Oracle

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2014-06-17 190744]
R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2014-06-17 328984]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2014-06-17 123672]
R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2014-06-17 31512]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2011-01-10 21104]
R1 Avgdiska;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiska.sys [2014-06-30 152344]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2014-06-17 242968]
R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2014-06-17 235800]
R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2014-06-17 269080]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-04-18 15376384]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-04-18 638976]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-11-06 96256]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-02-05 283200]
R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys [2012-07-20 65152]
R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys [2012-07-20 88832]
R3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2014-08-15 25640]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-08-12 3053160]
R3 KYEKBPRO;IMPERATOR PRO Gaming Keyboard; C:\Windows\system32\drivers\KYEKBPRO.sys [2011-10-14 25600]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-01-13 413800]
S2 cvintdrv;cvintdrv; C:\Windows\system32\drivers\cvintdrv.sys []
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 AndNetDiag;LGE AndroidNet USB Serial Port; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [2012-07-03 29184]
S3 ANDNetModem;LGE AndroidNet USB Modem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [2012-07-03 36352]
S3 AODDriver;AODDriver; \??\C:\Program Files (x86)\Gigabyte\ET6\amd64\AODDriver.sys [2010-03-12 52280]
S3 AODDriver4.0;AODDriver4.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 etdrv;etdrv; \??\C:\Windows\etdrv.sys [2013-04-22 25640]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2009-08-06 61280]
S3 GVTDrv64;GVTDrv64; \??\C:\Windows\GVTDrv64.sys [2014-06-26 30528]
S3 LgBttPort;LGE Bluetooth TransPort; C:\Windows\system32\DRIVERS\lgbtpt64.sys []
S3 lgbusenum;LG Bluetooth Bus Enumerator; C:\Windows\system32\DRIVERS\lgbtbs64.sys []
S3 LGVMODEM;LGE Virtual Modem; C:\Windows\system32\DRIVERS\lgvmdm64.sys []
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 MSICDSetup;MSICDSetup; \??\D:\CDriver64.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2011-07-06 367976]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgx64bus.sys []
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgx64diag.sys []
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgx64modem.sys []
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
S3 X6va021;X6va021; \??\C:\Windows\SysWOW64\Drivers\X6va021 []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-18 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-04-18 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-04-17 344064]
R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2014-08-11 289328]
R2 ES lite Service;ES lite Service for program management.; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [2009-08-24 68136]
R2 WCUService_STC_FF;Splashtop Connect Firefox Software Updater Service; C:\Program Files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe [2011-03-24 493384]
R2 WCUService_STC_IE;Splashtop Connect IE Software Updater Service; C:\Program Files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe [2011-03-22 497480]
S2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2014-08-11 3244048]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-05 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-03 262320]
S3 fsssvc;Služba Windows Live Zabezpečení rodiny; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-05 116648]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-07-25 111616]
S3 npggsvc;nProtect GameGuard Service; C:\Windows\syswow64\GameMon.des [2013-07-22 5085688]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-01-31 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Tady to je..

#18 Příspěvek od **Márty84** » 15 srp 2014 19:41

Posledni sken a budem mazat.

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

RockyCZ · #19 Příspěvek od **RockyCZ** » 16 srp 2014 17:25

Je v pořádku že ten program běží už cca 7 hodin?

RockyCZ · #20 Příspěvek od **RockyCZ** » 16 srp 2014 22:06

Může mi prosím někdo poradit?.. Ten program OTL běží cca 12 hodin a pořád jen kontroluje soubory C:\Users\All users\Application data\Data aplikaci\Application data\Application data\Application data\Application data\Application data\Application data\xxxxxxx.xxx

(xxxxxx.xxx je nějaký soubor)

RockyCZ · #21 Příspěvek od **RockyCZ** » 16 srp 2014 22:56

Super, takže po bezmála 13 hodinách si moje blbá sestra usmyslela vytrhnout PC z elektriky

... Na noc zapnu ten test znova, jen doufám že to nebude na 2 dny nonstop.

RockyCZ · #22 Příspěvek od **RockyCZ** » 18 srp 2014 07:34

Prosím, můžete mi NĚKDO napsat, jak dlouho bude ten slavný scan tím OTL probíhat? Jede to už cca 38 hodin a pořád to skenuje:
C:\Users\All Users\Data aplikaci\Application Data\Application Data\Application Data\Application Data\Data aplikaci\Data aplikaci\Application Data\xxxxxxxxxx.xxx
xxxxxxxxxx.xxx = různé soubory

Mimochodem od nedávné doby je IE nepoužitelný... Drtivá většina stránek nejde načíst a stránky které jdou blbnou takovým způsobem, že například nefungují tlačítka na nich atd.

#23 Příspěvek od **Márty84** » 18 srp 2014 08:58

Sken bude trvat tak dlouho, jak bude potreba

Pokud se nesekl a stale skenuje, je treba pockat. Je to ale hodne neobvykle. Pripadne ho muzete spustit v nouzovem rezimu

RockyCZ · #24 Příspěvek od **RockyCZ** » 18 srp 2014 09:32

Stále scanuje, ty soubory se pořád mění, takže seklý není.. a když už to scanuje tak dlouho, tak nevím jestli má cenu spouštět to v nouzovém režimu od začátku.

Zajímá mě, jestli nebude vadit když PC budu normálně používat (youtube, filmy, aplikace, hry) při tom scanu. Už to scanuje dá se říct dva dny

...

RockyCZ · #25 Příspěvek od **RockyCZ** » 18 srp 2014 09:40

Změna plánu. Právě mi problikl proud.. jak jinak že? Prostě zákon schválnosti. Nemám sílu ani čas dělat tu nějaký scan co trvá 4 dny... Zkusil jsem to zapnout znovu s tím, že jsem dal "prohledat rychle".. Doufám že to takhle bude stačit.

#26 Příspěvek od **Márty84** » 19 srp 2014 09:36

Ten sken normalne trva neco koklem hodiny az dvou. U vas je to nejaky extrem. Log bez skriptu je neuplny a neukaze dulezite veci. Ale samozrejme lepsi nez nic.

RockyCZ · #27 Příspěvek od **RockyCZ** » 19 srp 2014 19:25

Ani ten rychlý scan nebudu moci nahodit. Prostě to ne a ne končit... Neznáte nějakou jinou metodu řešení mého problému?..

Mimochodem teď začal i systém vykazovat pomalejší a pomalejší reakce. Přemýšlím, jestli nebude nejrychlejší a nejsnadnější připíchnout přenosnej HDD, nahrát si důležité data a celé to přeinstalovat...

EDIT: Dnes, po tom co jsem vzdal to skenování OTL (hold nechci tu mít zaplý PC dva týdny v kuse, zatím mi to stačilo xD) jsem se zkusil spolehnout na McAfee (trial nejvyšší verze), ani skenování přes antivir nedojede dokonce. Zasekne se na 99% u zhruba 230905 souborů a dál se nehne.

#28 Příspěvek od **Márty84** » 21 srp 2014 08:43

RockyCZ píše:Přemýšlím, jestli nebude nejrychlejší a nejsnadnější připíchnout přenosnej HDD, nahrát si důležité data a celé to přeinstalovat...

Taky moznost.

RockyCZ píše:Dnes, po tom co jsem vzdal to skenování OTL (hold nechci tu mít zaplý PC dva týdny v kuse, zatím mi to stačilo xD) jsem se zkusil spolehnout na McAfee (trial nejvyšší verze), ani skenování přes antivir nedojede dokonce. Zasekne se na 99% u zhruba 230905 souborů a dál se nehne.

Zkusil jste to i v nouzovem rezimu?

Dejte aktualni log z RSIT

RockyCZ · #29 Příspěvek od **RockyCZ** » 22 srp 2014 12:51

Log z RSITu je zde:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Jirka at 2014-08-22 13:48:22
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 293 GB (61%) free of 477 GB
Total RAM: 4077 MB (35% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:48:28, on 22.8.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17239)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
C:\Program Files (x86)\Genius\Imperator Pro\IMProHid.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\cmd.exe
C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
c:\PROGRA~2\mcafee\SITEAD~1\saui.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Jirka.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [STCAgent] "C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe"
O4 - HKLM\..\Run: [EEventManager] "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
O4 - HKLM\..\Run: [Imperator pro] "C:\Program Files (x86)\Genius\Imperator Pro\IMProhid.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\Common~1\McAfee\Platform\mcuicnt.exe" /platui /runkey
O4 - HKCU\..\Run: [OscarEditor] "C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe" Minimum
O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Fiddler - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files (x86)\Fiddler2\Fiddler.exe" (file missing)
O9 - Extra 'Tools' menuitem: Fiddler - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files (x86)\Fiddler2\Fiddler.exe" (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: McAfee Online Backup Service (MOBKbackup) - McAfee, Inc. - C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: Splashtop Connect Firefox Software Updater Service (WCUService_STC_FF) - Splashtop Inc. - C:\Program Files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe
O23 - Service: Splashtop Connect IE Software Updater Service (WCUService_STC_IE) - Splashtop Inc. - C:\Program Files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11552 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe" -service
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE"
"C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc
"C:\Windows\system32\mfevtps.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe"
"C:\Program Files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe"
"C:\Program Files\McAfee\MSC\McAPExe.exe"
"C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe"
"C:\Windows\SysWOW64\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\saHook.dll", saHooker_Initialize_and_Wait
"C:\Windows\system32\rundll32.exe" "c:\PROGRA~2\mcafee\SITEAD~1\x64\saHook.dll", saHooker_Initialize_and_Wait
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe" Minimum
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
"C:\Program Files (x86)\Genius\Imperator Pro\IMProHid.exe"
"C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe" /platui /runkey
"C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe"
HydraDM64.exe -h:65908 "Maximalizovat na celou plochu" "Maximalizovat k rohům okna" "Obnovit pracovní plochu"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-d6bb4140-7241-4c55-a155-eb4d5d9e93ff -SystemEventPortName:HostProcess-ba097306-7cb4-41e3-bfe4-3daa4e654f2b -IoCancelEventPortName:HostProcess-8d0b4689-fe56-48a5-bae7-d5070637628f -NonStateChangingEventPortName:HostProcess-aec71a3a-6e98-4487-9341-446a5edadeb4 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:9f738a92-84b0-40f5-a8f6-674c4097d3ed -DeviceGroupId:WpdFsGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Skype\Phone\Skype.exe"
"C:\Program Files\McAfee\MAT\McPvTray.exe"
"C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe"
"C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe" /wts 4136 696 700
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"c:\PROGRA~1\mcafee\vul\mcvulctr.exe" -Embedding
"c:\PROGRA~1\mcafee\vul\MCVULA~1.EXE" -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="3244.0.269981895\1493986807" --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,16 --gpu-vendor-id=0x1002 --gpu-device-id=0x673e --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=14.100.0.0 --ignored=" --type=renderer " /prefetch:822062411
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_56/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --channel="3244.2.858901750\1466165245" /prefetch:673131151
C:\Windows\system32\cmd.exe /c "C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" --parent-window=0 chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/ < \\.\pipe\chrome.nativeMessaging.in.7b5d01f0ddc7a5d5 > \\.\pipe\chrome.nativeMessaging.out.7b5d01f0ddc7a5d5
\??\C:\Windows\system32\conhost.exe "-14695422612059804477-7513792101422113702732737971-1659281664-1474124332961908879
"C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe" --parent-window=0 chrome-extension://fheoggkfdfchfphceeifdbepaooicaho/
"c:\PROGRA~2\mcafee\SITEAD~1\saui.exe" -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/ChromeSuggestions/Most Likely with Kodachrome/EmbeddedSearch/Group5 pct:10e stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionInstallVerification/Enforce/FlashHardwareVideoDecode/HwVideo/GoogleNow/Enable/OmniboxBundledExperimentV1/StandardR4/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Disabled/SettingsEnforcement/no_enforcement/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Control/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_17/UMA-Uniformity-Trial-1-Percent/group_56/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --renderer-print-preview --enable-threaded-compositing --enable-delegated-renderer --channel="3244.9.658186525\507248228" /prefetch:673131151
C:\Windows\System32\svchost.exe -k WerSvcGroup
taskeng.exe {AA3D7DE0-AA17-4059-9A8D-250F4EB4F866}

"C:\Users\Jirka\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4f3ed5cd-0726-42a9-87f5-d13f3d2976ac}]
Windows Live Family Safety Browser Helper Class - C:\Program Files\Windows Live\Family Safety\fssbho.dll [2009-08-06 132448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2014-06-30 294400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2014-06-30 241352]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MIF5BA~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2009-08-24 430592]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2014-06-30 294400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2014-06-30 241352]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-08-09 12666984]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OscarEditor"=C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe [2012-08-17 3345408]
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2014-04-17 1967616]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"STCAgent"=C:\Program Files (x86)\Splashtop\Splashtop Connect IE\STCAgent.exe [2011-03-04 776064]
"EEventManager"=C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [2010-08-30 979328]
"Imperator pro"=C:\Program Files (x86)\Genius\Imperator Pro\IMProhid.exe [2012-02-24 287232]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2014-04-17 767200]
"mcpltui_exe"=C:\Program Files\Common~1\McAfee\Platform\mcuicnt.exe [2014-05-13 638432]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableTaskMgr"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoRun"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoRun"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"msacm.ac3filter"=ac3filter64.acm
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2014-08-22 13:26:51 ----D---- C:\Program Files (x86)\Adobe
2014-08-22 13:20:47 ----D---- C:\Program Files (x86)\VideoLAN
2014-08-20 12:44:42 ----D---- C:\Users\Jirka\AppData\Roaming\Mozilla
2014-08-18 11:29:12 ----D---- C:\Program Files (x86)\McAfeeMOBK
2014-08-18 11:29:04 ----D---- C:\Program Files (x86)\McAfee Online Backup
2014-08-18 11:29:04 ----A---- C:\Windows\system32\drivers\MOBK.sys
2014-08-18 11:29:04 ----A---- C:\Windows\system32\drivers\HipShieldK.sys
2014-08-18 11:28:26 ----A---- C:\Windows\system32\drivers\McPvDrv.sys
2014-08-18 11:27:47 ----D---- C:\Program Files (x86)\McAfee.com
2014-08-18 11:26:10 ----D---- C:\Program Files\McAfee.com
2014-08-18 11:26:09 ----D---- C:\Program Files\McAfee
2014-08-18 11:26:02 ----D---- C:\Program Files (x86)\McAfee
2014-08-18 11:09:11 ----D---- C:\Program Files\stinger
2014-08-18 11:08:30 ----A---- C:\Windows\system32\mfevtps.exe
2014-08-18 11:08:28 ----D---- C:\ProgramData\McAfee
2014-08-18 11:08:28 ----D---- C:\Program Files\Common Files\McAfee
2014-08-15 12:33:37 ----D---- C:\Windows\temp
2014-08-15 12:33:36 ----A---- C:\ComboFix.txt
2014-08-15 12:29:07 ----D---- C:\$RECYCLE.BIN
2014-08-14 22:23:50 ----A---- C:\Windows\SYSWOW64\infocardapi.dll
2014-08-14 22:23:50 ----A---- C:\Windows\SYSWOW64\icardagt.exe
2014-08-14 22:23:50 ----A---- C:\Windows\system32\infocardapi.dll
2014-08-14 22:23:50 ----A---- C:\Windows\system32\icardagt.exe
2014-08-14 22:23:49 ----A---- C:\Windows\SYSWOW64\icardres.dll
2014-08-14 22:23:49 ----A---- C:\Windows\system32\icardres.dll
2014-08-14 22:23:33 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe
2014-08-14 22:23:33 ----A---- C:\Windows\system32\TsWpfWrp.exe
2014-08-14 08:19:33 ----A---- C:\Windows\SYSWOW64\KBDYAK.DLL
2014-08-14 08:19:33 ----A---- C:\Windows\SYSWOW64\KBDTAT.DLL
2014-08-14 08:19:33 ----A---- C:\Windows\SYSWOW64\KBDRU1.DLL
2014-08-14 08:19:33 ----A---- C:\Windows\SYSWOW64\KBDRU.DLL
2014-08-14 08:19:33 ----A---- C:\Windows\SYSWOW64\KBDBASH.DLL
2014-08-14 08:19:33 ----A---- C:\Windows\system32\KBDYAK.DLL
2014-08-14 08:19:33 ----A---- C:\Windows\system32\KBDTAT.DLL
2014-08-14 08:19:33 ----A---- C:\Windows\system32\KBDRU1.DLL
2014-08-14 08:19:33 ----A---- C:\Windows\system32\KBDRU.DLL
2014-08-14 08:19:33 ----A---- C:\Windows\system32\KBDBASH.DLL
2014-08-14 08:19:27 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-08-14 08:19:27 ----A---- C:\Windows\system32\tzres.dll
2014-08-14 08:19:23 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-08-14 08:19:23 ----A---- C:\Windows\system32\win32k.sys
2014-08-14 08:19:23 ----A---- C:\Windows\system32\gdi32.dll
2014-08-14 08:19:21 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-08-14 08:19:19 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2014-08-14 08:19:19 ----A---- C:\Windows\SYSWOW64\msi.dll
2014-08-14 08:19:19 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-08-14 08:19:19 ----A---- C:\Windows\system32\msihnd.dll
2014-08-14 08:19:19 ----A---- C:\Windows\system32\msi.dll
2014-08-14 08:19:19 ----A---- C:\Windows\system32\consent.exe
2014-08-14 08:19:19 ----A---- C:\Windows\system32\authui.dll
2014-08-14 08:19:13 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-08-14 08:19:13 ----A---- C:\Windows\system32\shell32.dll
2014-08-14 08:19:09 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-08-14 08:19:09 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-08-14 08:19:09 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-08-14 08:19:09 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-08-14 08:19:09 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-08-14 08:19:09 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-08-14 08:19:09 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-14 08:19:09 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-08-14 08:19:08 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-08-14 08:19:08 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-08-14 08:19:08 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-08-14 08:19:06 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-08-14 08:19:06 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-08-14 08:19:06 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-08-14 08:19:06 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-08-14 08:19:06 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-08-14 08:19:06 ----A---- C:\Windows\system32\urlmon.dll
2014-08-14 08:19:06 ----A---- C:\Windows\system32\iernonce.dll
2014-08-14 08:19:06 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-08-14 08:19:06 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-08-14 08:19:06 ----A---- C:\Windows\system32\ie4uinit.exe
2014-08-14 08:19:06 ----A---- C:\Windows\system32\dxtmsft.dll
2014-08-14 08:19:05 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-08-14 08:19:05 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-08-14 08:19:05 ----A---- C:\Windows\system32\msfeeds.dll
2014-08-14 08:19:04 ----A---- C:\Windows\system32\iesetup.dll
2014-08-14 08:19:04 ----A---- C:\Windows\system32\iertutil.dll
2014-08-14 08:19:04 ----A---- C:\Windows\system32\iedkcs32.dll
2014-08-14 08:19:03 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-08-14 08:19:03 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-08-14 08:19:03 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-08-14 08:19:03 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-08-14 08:19:03 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-08-14 08:19:03 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-08-14 08:19:03 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-08-14 08:19:03 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-08-14 08:19:03 ----A---- C:\Windows\system32\jsproxy.dll
2014-08-14 08:19:03 ----A---- C:\Windows\system32\dxtrans.dll
2014-08-14 08:19:02 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-08-14 08:19:02 ----A---- C:\Windows\system32\mshtmled.dll
2014-08-14 08:19:02 ----A---- C:\Windows\system32\jscript9diag.dll
2014-08-14 08:19:02 ----A---- C:\Windows\system32\jscript9.dll
2014-08-14 08:19:02 ----A---- C:\Windows\system32\ieUnatt.exe
2014-08-14 08:19:02 ----A---- C:\Windows\system32\ieui.dll
2014-08-14 08:19:02 ----A---- C:\Windows\system32\ieframe.dll
2014-08-14 08:19:01 ----A---- C:\Windows\system32\wininet.dll
2014-08-14 08:19:01 ----A---- C:\Windows\system32\vbscript.dll
2014-08-14 08:19:01 ----A---- C:\Windows\system32\msrating.dll
2014-08-14 08:19:01 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-08-14 08:19:01 ----A---- C:\Windows\system32\ieapfltr.dll
2014-08-14 08:19:00 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-14 08:19:00 ----A---- C:\Windows\system32\mshtml.dll
2014-08-14 08:15:29 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-08-14 08:15:29 ----A---- C:\Windows\system32\rpcrt4.dll
2014-08-14 08:15:28 ----A---- C:\Windows\system32\aepdu.dll
2014-08-14 08:15:27 ----A---- C:\Windows\system32\aeinv.dll
2014-08-13 19:43:32 ----A---- C:\Windows\zip.exe
2014-08-13 19:43:32 ----A---- C:\Windows\SWSC.exe
2014-08-13 19:43:32 ----A---- C:\Windows\SWREG.exe
2014-08-13 19:43:32 ----A---- C:\Windows\sed.exe
2014-08-13 19:43:32 ----A---- C:\Windows\PEV.exe
2014-08-13 19:43:32 ----A---- C:\Windows\NIRCMD.exe
2014-08-13 19:43:32 ----A---- C:\Windows\MBR.exe
2014-08-13 19:43:32 ----A---- C:\Windows\grep.exe
2014-08-13 19:43:26 ----D---- C:\Qoobox
2014-08-13 19:43:14 ----D---- C:\Windows\erdnt
2014-08-13 16:00:46 ----D---- C:\rsit
2014-08-13 08:47:58 ----D---- C:\ProgramData\Malwarebytes
2014-08-12 16:43:39 ----D---- C:\AdwCleaner
2014-08-11 19:30:36 ----D---- C:\Program Files\trend micro
2014-08-09 17:40:15 ----A---- C:\Windows\eReg.dat
2014-08-09 11:56:37 ----D---- C:\Program Files (x86)\LG Electronics
2014-08-08 15:17:01 ----D---- C:\ProgramData\Origin
2014-08-04 18:24:07 ----D---- C:\ProgramData\GRETECH
2014-08-04 18:23:24 ----D---- C:\Users\Jirka\AppData\Roaming\GRETECH
2014-08-03 11:16:31 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-08-02 20:21:17 ----A---- C:\Windows\SYSWOW64\sqlite3.dll
2014-08-01 13:53:46 ----A---- C:\Windows\system32\wups2.dll
2014-08-01 13:53:46 ----A---- C:\Windows\system32\wucltux.dll
2014-08-01 13:53:46 ----A---- C:\Windows\system32\wuaueng.dll
2014-08-01 13:53:46 ----A---- C:\Windows\system32\wuauclt.exe
2014-08-01 13:53:34 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-08-01 13:53:34 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-08-01 13:53:34 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-08-01 13:53:34 ----A---- C:\Windows\system32\wups.dll
2014-08-01 13:53:34 ----A---- C:\Windows\system32\wudriver.dll
2014-08-01 13:53:34 ----A---- C:\Windows\system32\wuapi.dll
2014-08-01 13:53:13 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-08-01 13:53:13 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-08-01 13:53:13 ----A---- C:\Windows\system32\wuwebv.dll
2014-08-01 13:53:13 ----A---- C:\Windows\system32\wuapp.exe
2014-07-28 18:29:06 ----D---- C:\ProgramData\ATI
2014-07-28 18:23:21 ----D---- C:\Users\Jirka\AppData\Roaming\library_dir
2014-07-28 18:21:43 ----D---- C:\Program Files (x86)\AMD AVT
2014-07-28 18:17:09 ----D---- C:\Program Files\AMD
2014-07-28 18:14:23 ----D---- C:\ProgramData\Package Cache
2014-07-28 18:10:31 ----D---- C:\AMD
2014-07-23 20:31:17 ----A---- C:\protokol o instalaci cestiny do hry starcraft.txt
2014-07-23 20:19:04 ----A---- C:\Windows\scunin.dat
2014-07-23 20:19:02 ----A---- C:\Windows\ScUnin.pif
2014-07-23 20:19:02 ----A---- C:\Windows\ScUnin.exe

======List of files/folders modified in the last 1 month======

2014-08-22 13:48:28 ----D---- C:\Windows\Prefetch
2014-08-22 13:27:45 ----D---- C:\Windows\system32\catroot2
2014-08-22 13:27:38 ----SHD---- C:\System Volume Information
2014-08-22 13:27:24 ----D---- C:\Windows\system32\config
2014-08-22 13:27:17 ----SHD---- C:\Windows\Installer
2014-08-22 13:26:58 ----D---- C:\Windows\SysWOW64
2014-08-22 13:26:53 ----D---- C:\ProgramData\Adobe
2014-08-22 13:26:51 ----RD---- C:\Program Files (x86)
2014-08-22 13:26:51 ----D---- C:\Program Files (x86)\Common Files
2014-08-22 13:23:11 ----D---- C:\Users\Jirka\AppData\Roaming\Skype
2014-08-22 13:18:36 ----D---- C:\Program Files\WinRAR
2014-08-21 22:52:09 ----D---- C:\Users\Jirka\AppData\Roaming\BitTorrent
2014-08-21 13:56:41 ----D---- C:\Windows\system32\FxsTmp
2014-08-18 14:51:48 ----D---- C:\Windows\System32
2014-08-18 14:51:36 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-08-18 14:50:54 ----D---- C:\Windows\inf
2014-08-18 11:29:30 ----D---- C:\Windows
2014-08-18 11:29:04 ----DC---- C:\Windows\system32\DRVSTORE
2014-08-18 11:29:04 ----D---- C:\Windows\system32\drivers
2014-08-18 11:29:04 ----D---- C:\Windows\system32\catroot
2014-08-18 11:26:10 ----RD---- C:\Program Files
2014-08-18 11:15:27 ----D---- C:\ProgramData
2014-08-18 11:15:23 ----D---- C:\ProgramData\MFAData
2014-08-18 11:08:28 ----D---- C:\Program Files\Common Files
2014-08-16 21:03:13 ----D---- C:\Users\Jirka\AppData\Roaming\vlc
2014-08-15 13:11:28 ----D---- C:\Windows\rescache
2014-08-15 12:29:09 ----A---- C:\Windows\system.ini
2014-08-15 12:29:02 ----D---- C:\Windows\system32\drivers\etc
2014-08-15 12:16:43 ----D---- C:\Windows\SYSWOW64\drivers
2014-08-15 12:16:43 ----D---- C:\Windows\AppPatch
2014-08-15 09:33:16 ----D---- C:\Windows\Microsoft.NET
2014-08-15 09:32:15 ----RSD---- C:\Windows\assembly
2014-08-15 09:01:32 ----D---- C:\Windows\winsxs
2014-08-15 08:57:41 ----D---- C:\Windows\ehome
2014-08-15 08:57:40 ----RSD---- C:\Windows\Fonts
2014-08-15 08:57:25 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-08-15 08:57:25 ----D---- C:\Windows\system32\cs-CZ
2014-08-15 08:57:22 ----D---- C:\Program Files\Internet Explorer
2014-08-15 08:57:21 ----D---- C:\Windows\SYSWOW64\en-US
2014-08-15 08:57:20 ----D---- C:\Windows\PolicyDefinitions
2014-08-15 08:57:19 ----D---- C:\Windows\system32\en-US
2014-08-15 08:57:17 ----D---- C:\Program Files (x86)\Internet Explorer
2014-08-14 22:30:05 ----D---- C:\Windows\system32\MRT
2014-08-14 22:30:05 ----D---- C:\Windows\debug
2014-08-14 22:30:04 ----A---- C:\Windows\system32\MRT.exe
2014-08-14 22:28:40 ----D---- C:\ProgramData\Microsoft Help
2014-08-14 22:23:00 ----SD---- C:\Windows\system32\CompatTel
2014-08-13 15:41:30 ----D---- C:\Windows\cs-CZ
2014-08-10 16:28:56 ----D---- C:\Windows\system32\DriverStore
2014-08-09 17:40:03 ----D---- C:\Hry
2014-08-09 17:38:36 ----D---- C:\Users\Jirka\AppData\Roaming\DAEMON Tools Lite
2014-08-09 10:52:46 ----D---- C:\ProgramData\WarThunder
2014-08-05 20:43:05 ----D---- C:\Program Files (x86)\Google
2014-08-05 20:41:29 ----D---- C:\Windows\Tasks
2014-08-05 20:41:29 ----D---- C:\Windows\system32\Tasks
2014-08-04 19:16:12 ----D---- C:\Windows\Logs
2014-08-04 18:23:18 ----D---- C:\Program Files (x86)\GRETECH
2014-08-01 14:33:48 ----SD---- C:\Users\Jirka\AppData\Roaming\Microsoft
2014-07-28 18:29:12 ----D---- C:\Users\Jirka\AppData\Roaming\RIFT
2014-07-28 18:21:44 ----D---- C:\ProgramData\AMD
2014-07-28 18:21:39 ----D---- C:\Program Files (x86)\ATI Technologies
2014-07-28 18:20:59 ----D---- C:\Program Files\ATI Technologies
2014-07-25 14:09:20 ----D---- C:\Program Files\Microsoft Silverlight
2014-07-25 14:09:19 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-07-24 15:10:17 ----D---- C:\Program Files (x86)\Mozilla Firefox

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 mfehidk;McAfee Inc. mfehidk; C:\Windows\system32\drivers\mfehidk.sys [2014-05-02 784760]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\Windows\system32\drivers\mfewfpk.sys [2014-05-02 346760]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2011-01-10 21104]
R1 MOBKFilter;MOBKFilter; C:\Windows\system32\DRIVERS\MOBK.sys [2014-05-20 67808]
R2 AODDriver4.3;AODDriver4.3; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
R2 McPvDrv;McPvDrv Driver; C:\Windows\system32\drivers\McPvDrv.sys [2014-05-26 76064]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-04-18 15376384]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2014-04-18 638976]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-11-06 96256]
R3 cfwids;McAfee Inc. cfwids; C:\Windows\system32\drivers\cfwids.sys [2014-05-02 70592]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-02-05 283200]
R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys [2012-07-20 65152]
R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys [2012-07-20 88832]
R3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2014-08-22 25640]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-08-12 3053160]
R3 KYEKBPRO;IMPERATOR PRO Gaming Keyboard; C:\Windows\system32\drivers\KYEKBPRO.sys [2011-10-14 25600]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\Windows\system32\drivers\mfeapfk.sys [2014-05-02 180272]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\Windows\system32\drivers\mfeavfk.sys [2014-05-02 311856]
R3 mfefirek;McAfee Inc. mfefirek; C:\Windows\system32\drivers\mfefirek.sys [2014-05-02 522360]
R3 mfencbdc;McAfee Inc. mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [2014-03-18 441264]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-01-13 413800]
S2 cvintdrv;cvintdrv; C:\Windows\system32\drivers\cvintdrv.sys []
S3 amdiox64;AMD IO Driver; C:\Windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 AndNetDiag;LGE AndroidNet USB Serial Port; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [2012-07-03 29184]
S3 ANDNetModem;LGE AndroidNet USB Modem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [2012-07-03 36352]
S3 AODDriver;AODDriver; \??\C:\Program Files (x86)\Gigabyte\ET6\amd64\AODDriver.sys [2010-03-12 52280]
S3 AODDriver4.0;AODDriver4.0; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2014-02-11 59616]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys []
S3 etdrv;etdrv; \??\C:\Windows\etdrv.sys [2013-04-22 25640]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2009-08-06 61280]
S3 GVTDrv64;GVTDrv64; \??\C:\Windows\GVTDrv64.sys [2014-06-26 30528]
S3 HipShieldK;McAfee Inc. HipShieldK; C:\Windows\system32\drivers\HipShieldK.sys [2013-09-23 197704]
S3 LgBttPort;LGE Bluetooth TransPort; C:\Windows\system32\DRIVERS\lgbtpt64.sys []
S3 lgbusenum;LG Bluetooth Bus Enumerator; C:\Windows\system32\DRIVERS\lgbtbs64.sys []
S3 LGVMODEM;LGE Virtual Modem; C:\Windows\system32\DRIVERS\lgvmdm64.sys []
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 mfencrk;McAfee Inc. mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [2014-03-18 96592]
S3 MSICDSetup;MSICDSetup; \??\D:\CDriver64.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIVX.sys [2011-07-06 367976]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgx64bus.sys []
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgx64diag.sys []
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgx64modem.sys []
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2014-04-18 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2014-04-17 344064]
R2 ES lite Service;ES lite Service for program management.; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [2009-08-24 68136]
R2 HomeNetSvc;McAfee Home Network; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2014-05-13 335064]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2014-05-13 335064]
R2 McAPExe;McAfee AP Service; C:\Program Files\McAfee\MSC\McAPExe.exe [2014-05-28 560128]
R2 McMPFSvc;McAfee Personal Firewall Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2014-05-13 335064]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2014-05-13 335064]
R2 mcpltsvc;McAfee Platform Services; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2014-05-13 335064]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2014-05-13 335064]
R2 mfecore;McAfee Anti-Malware Core; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [2014-03-18 1041192]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2014-05-02 219752]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2014-05-02 189912]
R2 MOBKbackup;McAfee Online Backup Service; C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe [2014-05-20 184168]
R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2014-05-13 335064]
R2 WCUService_STC_FF;Splashtop Connect Firefox Software Updater Service; C:\Program Files (x86)\Splashtop\Splashtop Connect Firefox Software Updater\WCUService.exe [2011-03-24 493384]
R2 WCUService_STC_IE;Splashtop Connect IE Software Updater Service; C:\Program Files (x86)\Splashtop\Splashtop Connect IE Software Updater\WCUService.exe [2011-03-22 497480]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-05 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-22 262320]
S3 fsssvc;Služba Windows Live Zabezpečení rodiny; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-05 116648]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-07-25 111616]
S3 McODS;McAfee Scanner; C:\Program Files\McAfee\VirusScan\mcods.exe [2014-05-27 601864]
S3 npggsvc;nProtect GameGuard Service; C:\Windows\syswow64\GameMon.des [2013-07-22 5085688]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-01-31 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

Ne, v nouzovém režimu jsem to nezkoušel. Mám to tedy zkusit? Má to cenu? (o víkendu bych si udělal čas na přeinstalaci)

#30 Příspěvek od **Márty84** » 22 srp 2014 23:26

RockyCZ píše:Ne, v nouzovém režimu jsem to nezkoušel. Mám to tedy zkusit? Má to cenu? (o víkendu bych si udělal čas na přeinstalaci)

Pokud budete preinstalovavat, nema smysl dale patrat

11.10.

http://forum.viry.cz/viewtopic.php?f=12&t=123975

VIRY.CZ

Zasekání prohlížečů

Re: Zasekání prohlížečů

Re: Zasekání prohlížečů

Re: Zasekání prohlížečů

Re: Zasekání prohlížečů

Re: Zasekání prohlížečů

Re: Zasekání prohlížečů

Re: Zasekání prohlížečů

Re: Zasekání prohlížečů

Re: Zasekání prohlížečů

Re: Zasekání prohlížečů

Re: Zasekání prohlížečů

Re: Zasekání prohlížečů

Re: Zasekání prohlížečů

Re: Zasekání prohlížečů

Re: Zasekání prohlížečů